feat(meta): inject and collect barrier in bidi stream

[wenym1]

I hereby agree to the terms of the RisingWave Labs, Inc. Contributor License Agreement.

What's changed and what's your intention?

In this PR, we replace the inject_barrier, collect_barrier and force_stop_actors rpc with a bidi-stream called StreamingControlStream.

When a new stream between meta and CN is established, the CN will be reset, which is similar to the original force_stop_actors. After the stream is established, meta node will inject barrier via a InjectBarrierRequest request in the stream, and when the barrier is collected on CN, CN will response with a BarrierCompleteResponse. InjectBarrierResponse and BarrierCompleteRequest is no longer needed and is removed in this PR.

message StreamingControlStreamRequest {
  message InitRequest {
    uint64 prev_epoch = 2;
  }

  oneof request {
    InitRequest init = 1;
    InjectBarrierRequest inject_barrier = 2;
  }
}

message StreamingControlStreamResponse {
  message InitResponse {}

  oneof response {
    InitResponse init = 1;
    BarrierCompleteResponse complete_barrier = 2;
  }
}

rpc StreamingControlStream(stream StreamingControlStreamRequest) returns (stream StreamingControlStreamResponse);

Any CN failure, such as failure to collect a barrier or CN crashes, will be reflected to meta node as an error on the stream. On error, the meta node will trigger a recovery, which will reestablish the stream between meta and each CN, and each CN will be reset.

On meta side, in CheckpointControl previously we have an enum BarrierEpochState to represent the state of barrier, which can be either Inflight, which means the barrier is injected but not yet completed, or Completed, which means the barrier has been collected from all CNs. In this PR, the barrier may have been collected from a subset of CNs, and there are some pending CNs to be collect, and therefore we change it to the following struct to store the node to be collected and the collected response. When node_to_collect gets empty, it means the barrier has been collected from all CNs, and we can continue complete the barrier.

struct BarrierEpochState {
    node_to_collect: HashSet<WorkerId>,
    resps: Vec<BarrierCompleteResponse>,
}

Checklist

• I have written necessary rustdoc comments
• I have added necessary unit tests and integration tests
• I have added test labels as necessary. See details.
• I have added fuzzing tests or opened an issue to track them. (Optional, recommended for new SQL features Sqlsmith: Sql feature generation #7934).
• My PR contains breaking changes. (If it deprecates some features, please create a tracking issue to remove them in the future).
• All checks passed in ./risedev check (or alias, ./risedev c)
• My PR changes performance-critical code. (Please run macro/micro-benchmarks and show the results.)

• My PR contains critical fixes that are necessary to be merged into the latest release. (Please check out the details)

Documentation

• My PR needs documentation updates. (Please use the Release note section below to summarize the impact on users)

Release note

If this PR includes changes that directly affect users or other significant modifications relevant to the community, kindly draft a release note to provide a concise summary of these changes. Please prioritize highlighting the impact these changes will have on users.

[gitguardian]

️✅ There are no secrets present in this pull request anymore.

If these secrets were true positive and are still valid, we highly recommend you to revoke them.
Once a secret has been leaked into a git repository, you should consider it compromised, even if it was deleted immediately.
Find here more information about risks.

---

<sup><sub>🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!</sub></sup>

[kwannoel]

Can you add some comments on the motivation behind this PR?

[wenym1]

Can you add some comments on the motivation behind this PR?

The main motivation behind this PR is for support of partial checkpoint. In the design of partial checkpoint, barrier collection will be reported to meta in the granularity of per MV or per actor, and there will be more control messages sent between meta and CN. Therefore it's not suitable to use a single rpc to collect barrier from all actors any more.

Apart from support for partial checkpoint, there is some general benefits replace oneshot rpc calls with a single bidi stream.

First, we can avoid out of order messages. For example, currently when injecting barrier, we need to wait for the inject response before injecting the next barrier because inflight messages of multiple concurrents rpc can be out of order. With bidi stream, the messages must be in the order of being sent.

Second, we can avoid stale requests. In current code, some stale rpc might be still in flight when recovery happens, and may be handled after recovery, and we will need extra effort to handle these stale requests. After this PR, a new control stream will be established in recovery and all previously in flight request in the stream will be discarded, and we can get rid of stale requests.

[wenym1]

@hzxa21 @BugenZhao @kwannoel @yezizp2012 @shanicky The PR is ready for review now. PTAL~

[MrCroxx]

Could you please explain why introducing a bidi-stream to solve the problem? What's the limitation of the original design? Thanks.

[hzxa21]

LGTM!

[hzxa21]

Just curious: will it be beneficial if we move update_actors and build_actors into the bidi-streaming rpc?

[kwannoel]

Minor comment, I suppose RescheduleFragment is actually RescheduleFragments? Hence we have a hashmap here, rather than just the actor ids in upstream and downstream fragment of reschedules.

[kwannoel]

Also why we refactor and add the field fragment_actors here?

[hzxa21]

I guess it is to make to_mutation non-async

[wenym1]

Yes. It's for making it non-async.

[BugenZhao]

What's this change for?

[wenym1]

If we take &self, the return future will take the immutable reference to self. The future is Send only when &self is Send, which then requires self to be Sync. However, after this PR, self holds the bidi stream returned from rpc client, which is only Send but not Sync. If we don't change it, we will fail to compile it.

[BugenZhao]

Interesting. This sounds like the problem that Exclusive is designed for.

[BugenZhao]

Wow, so complicated. 🫨

[BugenZhao]

InjectBarrierResponse and BarrierCompleteRequest is no longer needed and is removed in this PR.

Prior to this PR, we have await-tree instrumentation for all RPC calls. The tree for barrier_complete could be useful for developers to investigate the barriers piling up on a specific compute node. Is this still available now?

[wenym1]

InjectBarrierResponse and BarrierCompleteRequest is no longer needed and is removed in this PR.

Prior to this PR, we have await-tree instrumentation for all RPC calls. The tree for barrier_complete could be useful for developers to investigate the barriers piling up on a specific compute node. Is this still available now?

It's not supported in the PR currently. Do you have any recommendation on how to support it? Is it doable to store a await tree tracing span in the inflight barrier queue?

[BugenZhao]

InjectBarrierResponse and BarrierCompleteRequest is no longer needed and is removed in this PR.

Prior to this PR, we have await-tree instrumentation for all RPC calls. The tree for barrier_complete could be useful for developers to investigate the barriers piling up on a specific compute node. Is this still available now?

It's not supported in the PR currently. Do you have any recommendation on how to support it? Is it doable to store a await tree tracing span in the inflight barrier queue?

I don't have an idea. #4581 introduces a middleware for non-streaming gRPC calls so that they can be instrumented transparently. Now it seems that we have to find a way to do that manually.

[wenym1]

InjectBarrierResponse and BarrierCompleteRequest is no longer needed and is removed in this PR.

Prior to this PR, we have await-tree instrumentation for all RPC calls. The tree for barrier_complete could be useful for developers to investigate the barriers piling up on a specific compute node. Is this still available now?

It's not supported in the PR currently. Do you have any recommendation on how to support it? Is it doable to store a await tree tracing span in the inflight barrier queue?

I don't have an idea. #4581 introduces a middleware for non-streaming gRPC calls so that they can be instrumented transparently. Now it seems that we have to find a way to do that manually.

Split to Implement in #15608, given that the current PR is quite large.