6.5840 2024 Lecture 1: Introduction 6.5840: Distributed Systems Engineering What I mean by "distributed system": a group of computers cooperating to provide a service Examples we all use distributed systems popular apps' back-ends, e.g. for messaging big web sites DNS phone system often built from services that are internally distributed databases transaction systems "big data" processing frameworks authentication services sometimes distribution itself is the service cloud systems like Amazon AWS This class is mostly about infrastructure services e.g. storage for big web sites, MapReduce, peer-to-peer sharing It's not easy to build systems this way: concurrency complex interactions hard to get high performance partial failure So why do people build distributed systems? to increase capacity via parallel processing to tolerate faults via replication to match distribution of physical devices e.g. sensors to increase security via isolation Why study this topic? interesting -- hard problems, powerful solutions widely used -- driven by the rise of big Web sites active research area -- important unsolved problems challenging to build -- you'll do it in the labs COURSE STRUCTURE http://pdos.csail.mit.edu/6.5840 Course staff: Frans Kaashoek and Robert Morris, lecturers Kenneth Choi, TA Lily Tsai, TA Yun-Sheng Chang, TA Ananya Jain, TA Upamanyu Sharma, TA Course components: lectures papers two exams labs final project (optional) Lectures: big ideas, paper discussion, lab guidance recorded, available online Papers: a paper is assigned for almost every lecture research papers, some classic, some new problems, ideas, implementation details, evaluation please read papers before class! web site has a short question for you to answer about each paper and we ask you to send us a question you have about the paper submit answer and question before start of lecture Exams: Mid-term exam in class Final exam during finals week Mostly about papers and labs Labs: goal: use and implement some important techniques goal: experience with distributed programming first lab is due a week from Friday one per week after that for a while Lab 1: distributed big-data framework (like MapReduce) Lab 2: client/server vs unreliable network Lab 3: fault tolerance using replication (Raft) Lab 4: a fault-tolerant database Lab 5: scalable database performance via sharding Optional final project at the end, in groups of 2 or 3. The final project substitutes for Lab 5. You think of a project and clear it with us. Code, short write-up, demo on last day. Warning: debugging the labs can be time-consuming start early ask questions on Piazza use the TA office hours We grade the labs using a set of tests we give you all the tests; none are secret MAIN TOPICS This is a course about infrastructure for applications. * Storage. * Communication. * Computation. A big goal: hide the complexity of distribution from applications. Topic: fault tolerance 1000s of servers, big network -> always something broken We'd like to hide these failures from the application. "High availability": service continues despite failures Big idea: replicated servers. If one server crashes, can proceed using the other(s). Topic: consistency General-purpose infrastructure needs well-defined behavior. E.g. "read(x) yields the value from the most recent write(x)." Achieving good behavior is hard! e.g. "replica" servers are hard to keep identical. Topic: performance The goal: scalable throughput Nx servers -> Nx total throughput via parallel CPU, RAM, disk, net. Scaling gets harder as N grows: Load imbalance. Slowest-of-N latency. Some things don't speed up with N: initialization, interaction. Topic: tradeoffs Fault-tolerance, consistency, and performance are enemies. Fault tolerance and consistency require communication e.g., send data to backup server e.g., check if cached data is up-to-date communication is often slow and non-scalable Many designs sacrifice consistency to gain speed. e.g. read(x) might *not* yield the latest write(x)! Painful for application programmers (or users). We'll see many design points in the consistency/performance spectrum. Topic: implementation RPC, threads, concurrency control, configuration. The labs... This material comes up a lot in the real world. All big web sites and cloud providers are expert at distributed systems. Many big open source projects are built around these ideas. We'll read multiple papers from industry. And industry has adopted many ideas from academia. CASE STUDY: MapReduce Let's talk about MapReduce (MR) a good illustration of 6.5840's main topics hugely influential the focus of Lab 1 MapReduce overview context: multi-hour computations on multi-terabyte data-sets e.g. build search index, or sort, or analyze structure of web only practical with 1000s of computers applications not written by distributed systems experts big goal: easy for non-specialist programmers programmer just defines Map and Reduce functions often fairly simple sequential code MR manages, and hides, all aspects of distribution! Abstract view of a MapReduce job -- word count Input1 -> Map -> a,1 b,1 Input2 -> Map -> b,1 Input3 -> Map -> a,1 c,1 | | | | | -> Reduce -> c,1 | -----> Reduce -> b,2 ---------> Reduce -> a,2 1) input is (already) split into M pieces 2) MR calls Map() for each input split, produces list of k,v pairs "intermediate" data each Map() call is a "task" 3) when Maps are done, MR gathers all intermediate v's for each k, and passes each key + values to a Reduce call 4) final output is set of pairs from Reduce()s Word-count code Map(d) chop d into words for each word w emit(w, "1") Reduce(k, v[]) emit(len(v[])) MapReduce scales well: N "worker" computers (might) get you Nx throughput. Maps()s can run in parallel, since they don't interact. Same for Reduce()s. Thus more computers -> more throughput -- very nice! MapReduce hides many details: sending map+reduce function code to servers tracking which tasks have finished "shuffling" intermediate data from Maps to Reduces balancing load over servers recovering from crashed servers To get these benefits, MapReduce imposes rules: No interaction or state (other than via intermediate output). Just the one Map/Reduce pattern for data flow. No real-time or streaming processing. Some details (paper's Figure 1) Input and output are stored on the GFS cluster file system MR needs huge parallel input and output throughput. GFS splits files over many servers, in 64 MB chunks Maps read in parallel Reduces write in parallel GFS replicates all data on 2 or 3 servers GFS is a big win for MapReduce The "Coordinator" manages all the steps in a job. 1. coordinator gives Map tasks to workers until all Maps complete Maps write output (intermediate data) to local disk Maps split output, by hash(key) mod R, into one file per Reduce task 2. after all Maps have finished, coordinator hands out Reduce tasks each Reduce task corresponds to one hash bucket of intermediate output each Reduce task fetches its intermediate output from (all) Map workers sort by key, call Reduce() for each key each Reduce task writes a separate output file on GFS What will likely limit the performance? We care since that limit is the thing to optimize. CPU? memory? disk? network? In 2004 authors were limited by network speed. What does MR send over the network? Maps read input from GFS. Reduces read Map intermediate output. Often as large as input, e.g. for sorting. Reduces write output files to GFS. [diagram: servers, tree of network switches] In MR's all-to-all shuffle, half of traffic goes through root switch. Paper's root switch: 100 to 200 gigabits/second, total 1800 machines, so 55 megabits/second/machine. 55 is small: much less than disk or RAM speed. How does MR minimize network use? Coordinator tries to run each Map task on GFS server that stores its input. All computers run both GFS and MR workers So Map input is usually read from GFS data on local disk, not over network. Intermediate data goes over network just once. Map worker writes to local disk. Reduce workers read from Map worker disks over the network. (Storing it in GFS would require at least two trips over the network.) Intermediate data hash-partitioned into files holding many keys. Reduce task unit is a hash bucket (rather than just one key). Big network transfers are more efficient. How does MR get good load balance? Why do we care about load balance? If one server has more work than others, or is slower, then other servers will lie idle (wasted) at the end, waiting. But tasks vary in size, and computers vary in speed. Solution: many more tasks than worker machines. Coordinator hands out new tasks to workers who finish previous tasks. So faster servers do more tasks than slower ones. And slow servers are given less work, reducing impact on total time. What about fault tolerance? What if a worker computer crashes? We want to hide failures from the application programmer! Does MR have to re-run the whole job from the beginning? Why not? MR re-runs just the failed Map()s and Reduce()s. Suppose MR runs a Map task twice, one Reduce sees first run's output, but another Reduce sees the second run's output? The two Map executions had better produce identical intermediate output! Map and Reduce should be pure deterministic functions: they are only allowed to look at their arguments/input. no state, no file I/O, no interaction, no external communication, no random numbers. Programmer is responsible for ensuring this determinism. Details of worker crash recovery: * a worker crashes while running a Map task: coordinator notices worker is not responding coordinator knows which Map tasks ran on that worker those tasks' intermediate output is now lost, must be re-created coordinator tells other workers to run those tasks can omit re-running if all Reduces have fetched the intermediate data * a worker crashes while running a Reduce task: finished tasks are OK -- stored in GFS, with replicas. coordinator re-starts worker's unfinished tasks on other workers. Other failures/problems: * What if the coordinator gives two workers the same Map() task? perhaps the coordinator incorrectly thinks one worker died. it will tell Reduce workers about only one of them. * What if the coordinator gives two workers the same Reduce() task? they will both try to write the same output file on GFS! atomic GFS rename prevents mixing; one complete file will be visible. * What if a single worker is very slow -- a "straggler"? perhaps due to flakey hardware. coordinator starts a second copy of last few tasks. * What if a worker computes incorrect output, due to broken h/w or s/w? too bad! MR assumes "fail-stop" CPUs and software. * What if the coordinator crashes? Current status? Hugely influential (Hadoop, Spark, &c). Probably no longer in use at Google. Replaced by Flume / FlumeJava (see paper by Chambers et al). GFS replaced by Colossus (no good description), and BigTable. Conclusion MapReduce made big cluster computation popular. - Not the most efficient or flexible. + Scales well. + Easy to program -- failures and data movement are hidden. These were good trade-offs in practice. We'll see some more advanced successors later in the course. Have fun with Lab 1!