INDY-1683: bugfix backup_instance_faulty_processor with quorum logic #954
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Changes: - add tests - bugfix backup_instance_faulty_processor with quorum logic Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
| from plenum.test.test_node import ensureElectionsDone, checkNodesConnected | ||
|
|
||
|
|
||
| @pytest.fixture(scope="module", params=[{"instance_degraded": "local", "instance_primary_disconnected": "local"}, |
There was a problem hiding this comment.
I think we can write unit tests for BackupInstanceFaultyProcessor. Please have a look at fake_node fixture we can use for it.
I can imagine the following unit tests:
- test that 1 call of
on_backup_degradationleads to replica removal with local strategy - test that 1 call of
on_backup_degradationdoes not lead to replica removal with quorum strategy - test that 1 call of
on_backup_primary_disconnectedleads to replica removal with local strategy - test that 1 call of
on_backup_primary_disconnecteddoes not lead to replica removal with quorum strategy - test that
process_backup_instance_faulty_msgdoes not lead to removal in case of local strategy - test that f calls of
process_backup_instance_faulty_msgwith same messages does not lead to removal in case of quorum strategy - test that f+1 calls of
process_backup_instance_faulty_msgwith same messages leads to removal in case of quorum strategy - test that BackupInstanceFaulty from our Node is not required to remove replica (just a quorum of any nodes)
- test that only BackupInstanceFaulty with the same viewNo as the current one leads to removal
- test that n BackupInstanceFaulty with different instances where we have f count for every instance in total doesn't lead to removal (in case of quorum)
- test that n BackupInstanceFaulty with different instances where we have f+1 count for 1 instance and f for others lead to removal this 1 instance only
- test that n BackupInstanceFaulty with different instances where we have f+1 for all instances in total leads to removal of all instances
- test that restore_replicas restores all replicas
- test BackupInstanceFaulty with empty instances values
There was a problem hiding this comment.
- Added test_on_backup_degradation_for_one with local strategy
- Added test_on_backup_degradation_for_one with quorum strategy
- Added test_on_backup_primary_disconnected_for_one with local strategy
- Added test_on_backup_primary_disconnected_for_one with quorum strategy
- Was in method __process_backup_instance_faulty_msg_work_with_different_msgs()
- Added check in __process_backup_instance_faulty_msg_work_with_different_msgs() but I don't sure that this check is correct. Should we sleep some time and what time?
- In test_process_backup_instance_faulty_msg() we send n-1 message and it's more than f. Is it enough?
- Changed sending in __process_backup_instance_faulty_msg_work_with_different_msgs()
- Added test_process_backup_instance_with_incorrect_view_no
- Why shouldn't remove?
- Was in test_restore_replicas
- Added test_process_backup_instance_empty_msg
Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
…nto task-1682-remove-replicas-with-ic
Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
…nto task-1682-remove-replicas-with-ic
Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
Changes: - change logic to remove replica with quorum of own messages - add tests to test_instance_faulty_processor.py Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
Changes: - refactoring test_instance_faulty_processor.py - update test_replica_removing_after_node_started.py - change REPLICAS_REMOVING_WITH_DEGRADATION to quorum Signed-off-by: toktar <renata.toktar@dsr-corporation.com>
…nto task-1682-remove-replicas-with-ic
ashcherbakov
reviewed
Nov 7, 2018
| if inst_id not in self.node.replicas.keys(): | ||
| continue | ||
| self.backup_instances_faulty.setdefault(inst_id, dict()).setdefault(frm, 0) | ||
| self.backup_instances_faulty[inst_id].setdefault(self.node.name, 0) | ||
| self.backup_instances_faulty[inst_id][frm] += 1 | ||
| if not self.node.quorums.backup_instance_faulty.is_reached( |
There was a problem hiding this comment.
Please add a comment explaining this condition
There was a problem hiding this comment.
I will add. This code add default value for message sender and for own node messages. But may be you see cleaner way to do it.
| """ | ||
| instance_to_remove = 1 | ||
| view_no = txnPoolNodeSet[0].viewNo | ||
| Node will change view even though it does not find the master to be degraded |
There was a problem hiding this comment.
Are we talking about a view change or removing of replicas here? Is the comment correct?
| if not self.node.quorums.backup_instance_faulty.is_reached( | ||
| len(self.backup_instances_faulty[inst_id])): | ||
| len(self.backup_instances_faulty[inst_id].keys())) \ | ||
| and not self.node.quorums.backup_instance_faulty.is_reached( |
There was a problem hiding this comment.
- Should we use a different quorum here?
- Should we take into account only degradations from this node in a row, that is if we face degradation once per hour, it should not be accumulated, and replica should not be removed, right?
There was a problem hiding this comment.
As for the second item: should we send BackupInstanceNotFaulty when there is no degradation observed during the next check in monitor? BackupInstanceNotFaulty could clear all backup_instance_faulty for this node .
Unit tests need to be added for this.
|
|
||
| backup_instance_faulty_processor.on_backup_degradation(degraded_backups) | ||
|
|
||
| assert not (set(node.replicas.remove_replica_calls) - set(degraded_backups)) |
There was a problem hiding this comment.
Why can't we just compare two sets here? assert set(node.replicas.remove_replica_calls) == set(degraded_backups)
|
|
||
| backup_instance_faulty_processor.restore_replicas() | ||
| # check that all replicas were restored and backup_instances_faulty has been cleaned | ||
| assert not backup_instance_faulty_processor.backup_instances_faulty |
There was a problem hiding this comment.
But was it non-empty before we call restore_replicas?
| assert nodes.issubset(backup_instance_faulty_processor.backup_instances_faulty[instance_to_remove]) | ||
| assert not node.replicas.remove_replica_calls | ||
|
|
||
| # check that messages from all nodes lead to replica removing |
There was a problem hiding this comment.
The comment says that we should send just 1 more message (sufficient for quorum)
| node = FakeNode(tdir, config=tconf) | ||
| node.view_change_in_progress = False | ||
| node.requiredNumberOfInstances = len(node.replicas) | ||
| node.allNodeNames = ["Node{}".format(i) |
There was a problem hiding this comment.
Should it be "Node{}".format(i+1)?
There was a problem hiding this comment.
We have a range(1, (node.requiredNumberOfInstances - 1) * 3 + 2) . But I will change it to range((node.requiredNumberOfInstances - 1) * 3 + 1) to make it code more understandable.
ashcherbakov
approved these changes
Nov 7, 2018
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Changes: