Add to collection(s) Add to saved
  1. No category

Distributed algorithms for fault-tolerance Last lecture

advertisement 
Distributed algorithms for
fault-tolerance
Unreliable failure detectors
Simin Nadjm-Tehrani
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
1
Last lecture
• The importance of consensus as a
primitive mechanism for faulttolerance
• The impossibility result in
asynchronous networks
• Is there some hope?
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
2
So far ...
• We looked at general properties of
consensus
• Now we study specific algorithms
to achieve consensus
• To prove that they are correct we
make additional assumptions!
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
3
1
Parameters
• Failure model: still only crash
failures
• Timing model: Not entirely
asynchronous, some responses will
be assumed bounded. But never
with a fixed predetermined timing!
• Number of crashes that are
tolerated
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
4
Failures & suspicions
• Failures F : T →℘(P)
• No recovery: t < t´⇒ F(t) ⊆ F(t´)
• Suspicions H : P × T → ℘ (P)
• Q = H(p,t) the set suspected by p
at time t
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
5
Crashes and detectors
• Crash(F) :
∪ t∈ T F(t)
• Corr(F) : P \ Crash(F)
• A detector D is a mapping from
collections of F to collections of H
– D(F) = H describes the relation
between failures and suspicions
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
6
2
Properties of detectors
• Completeness1 of D
∀F ∀H∈ D(F) ∃t
∀p∈Crash(F) ∀q∈Corr(F) ∀ t´≥ t
p∈ H(q,t´)
1(Tel’s
terminology)
All crashed processes are eventually
suspected by every correct process
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
7
Accuracy (1)
• Strong Accuracy of D
∀F ∀H∈ D(F) ∀t ∀p∀q∈ Corr(F)
p∉ H(q,t)
No correct process is ever
suspected by a correct process
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
8
Accuracy (2)
• Weak Accuracy of D
∀F ∀H∈ D(F) ∀t ∀p ∈ Corr(F) ∃p∈Corr(F)
p∉ H(q,t)
There exists a correct process that
is never suspected
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
9
3
Eventual accuracy
• Strong: There is a time point after
which no correct process is ever
suspected by correct processes
• Weak: There is a correct process
that is never suspected beyond
some point in time
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
10
Classes of detectors
• Perfect:
Complete and Strongly accurate
• Strong:
Complete and weakly accurate
• Eventually Perfect
• Eventually Strong
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
11
Rotating coordinator
algorithm
[Chandra & Tuoeg 96], Tel ch.16
At each pi:
xi := input
For r := 1 to N do
if i = r then ∀j send(⟨xi ,r⟩)to pj
wait (receive(⟨x,r⟩) or suspect(p r ))
if not suspect(pr )then xi:= x
decide(x i )
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
12
4
Consensus properties
• Every correct process decides
(termination)
• All decisions are equal (ageement)
• A decision was the input of at least
one process (validity)
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
13
Correctness
• The rotating coordinator algorithm
is a correct implementation of
consensus in presence of a strong
failure detector
If no messages are lost or corrupted
and no spurious messages ...
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
14
How long?
• Since there exists a correct
process that is never suspected
the algorithm can terminate after
N rounds and be sure that there is
a valid agreement
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
15
5
Less reliable?
• What if we do not have weak
accuracy?
• Given a weaker detector:
– How many crashes can we tolerate?
– How long does it take before we can
terminate and get agreement?
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
16
Upperbound on crashes
• The number of crashes has an
upper bound of N/2 in presence of
eventually perfect detectors
(complete and eventually strong
accuracy)
• Check Theorem 16.5 in Tel!
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
17
Rotating coordinator
with eventually strong detector
Check algorithm 16.2 in Tel!
• What is the upperbound on
number of crashes?
• How long will it take to terminate?
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
18
6
Reading material
• Chapter 16 in Tel´s book: a nice
concise overview
• Article by Chandra and Tuoeg 96:
as detailed background
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
19
Reading list for next time
• Birman’s CACM 1993 article
• Babaoglu, Davoli, Montresor, LNCS
1752, 2000
• Tel ch. 12.1 and 15
• Lynch ch. 6.3 and 6.4
• Tel ch. 17
Dist. Algorithms for FT
© Simin Nadjm -Tehrani, 2003
20
7
Related documents
So far... Distributed algorithms for fault-tolerance
So far... Distributed algorithms for fault-tolerance
Last lecture Distributed algorithms for fault-tolerance
Last lecture Distributed algorithms for fault-tolerance
Distributed algorithms for fault tolerance From last lecture
Distributed algorithms for fault tolerance From last lecture
Distributed algorithms for fault tolerance Basic replication models Basic notions in distributed
Distributed algorithms for fault tolerance Basic replication models Basic notions in distributed
Hotwheel Lab Make a description of your car-____________________________________________ Hotwheel Table:
Hotwheel Lab Make a description of your car-____________________________________________ Hotwheel Table:
Exploring Latent Structure in Data Algorithms and Implementations
Exploring Latent Structure in Data Algorithms and Implementations
CSCI 8080: Design and Analysis of Algorithms
CSCI 8080: Design and Analysis of Algorithms
COS 423 - Princeton University
COS 423 - Princeton University
Download
advertisement