Update 'Stop a Node' with more draining info #2671
Conversation
|
This change is |
|
@a-robinson - Alfonso is on holiday for 2 weeks and suggested you as a potential reviewer. Mind giving these changes a look? |
|
Reviewed 3 of 3 files at r1. v2.0/cluster-settings.md, line 25 at r1 (raw file):
We shouldn't replace these with the entire list -- they were curated to be non-experimental settings that end users could reasonably understand and use on their own without additional documentation or handholding from us. I know it's a pain to keep this up-to-date, but we should either continue trying to do so or change the sentence above to not claim that they can all be configured without our advice. v2.0/stop-a-node.md, line 19 at r1 (raw file):
I'd phrase this as "that times out after the duration specified by the v2.0/stop-a-node.md, line 21 at r1 (raw file):
s/best effort/a best effort/ And a similar rephrasing as above would make sense here, too. v2.0/stop-a-node.md, line 21 at r1 (raw file):
I'm not positive how effective the "distribute query planning" part actually is (particularly given cockroachdb/cockroach#23601), but that's certainly how we'd like it to work so including it here is probably fine. Out of curiosity, @solongordon do you know whether other nodes attempt to avoid scheduling distsql processing on draining nodes? Is it purely based on the leaseholder cache? Comments from Reviewable |
|
v2.0/cluster-settings.md, line 25 at r1 (raw file): Previously, a-robinson (Alex Robinson) wrote…
cc @dt, who did the work to auto-generate this markdown. Comments from Reviewable |
|
Review status: 2 of 3 files reviewed at latest revision, 4 unresolved discussions, some commit checks failed. v2.0/stop-a-node.md, line 21 at r1 (raw file): Previously, a-robinson (Alex Robinson) wrote…
I haven't seen it in action but it does look like there's logic for avoiding processing on draining nodes: https://github.com/cockroachdb/cockroach/blob/afdf5e12bfdd11054582be7e33280fa185974d9e/pkg/sql/distsql_physical_planner.go#L540-L556 Comments from Reviewable |
|
Review status: 2 of 3 files reviewed at latest revision, 4 unresolved discussions, some commit checks failed. v2.0/cluster-settings.md, line 25 at r1 (raw file): Previously, jseldess wrote…
I think we should put the whole list here and we should remove the sentence above. Note that above that sentence is a call-out box saying that you should know what you're doing, or talk to us, before changing settings, which I believe adequately sets expectations around these. For settings that are riskier or whatever, I think we should mention that it in their defined description (we might want to add a longer-form description field). For extreme cases, we also have the ability to define settings as Comments from Reviewable |
|
Reviewed 1 of 1 files at r2. Comments from Reviewable |
There was a problem hiding this comment.
LGTM, @rmloveland, with one minor request.
The new node shutdown description is big improvement. Thank you!
Are you sure you don't want to handle the other versions in this PR?
v2.0/stop-a-node.md
Outdated
|
|
||
| - Finishes in-flight requests. Note that this is a best effort that times out at the `server.shutdown.query_wait` [cluster setting](cluster-settings.html). | ||
| - Transfers all *range leases* and Raft leadership to other nodes. | ||
| - Gossips its draining state to the cluster, so that other nodes do not try to distribute query planning to the draining node, and no leases are transferred to the draining node. Note that this is best effort that times out at the `server.shutdown.drain_wait` [cluster setting](cluster-settings.html), so other nodes may not receive the gossip info in time. |
There was a problem hiding this comment.
nit: Use only one space after the first period. I know you prefer 2, @rmloveland, but convention in our docs is 1.
v2.0/cluster-settings.md
Outdated
| | `sql.metrics.statement_details.dump_to_logs` | On each node, also copy collected per-statement statistics to the [logging output](debug-and-error-logs.html) when automatic reporting is enabled. | Boolean | `false` | | ||
| | `sql.metrics.statement_details.threshold` | Only collect per-statement statistics for statements that run longer than this threshold. | Interval | 0 seconds (all statements) | | ||
| | `sql.trace.log_statement_execute` | On each node, copy all executed statements to the [logging output](debug-and-error-logs.html). | Boolean | `false` | | ||
| {% include settings/v2.0/settings.md %} | ||
|
|
||
| <!-- Add this section back in once `system.settings` has been fleshed out. |
There was a problem hiding this comment.
Please remove this old commented-out text.
|
Review status: 1 of 3 files reviewed at latest revision, 6 unresolved discussions, some commit checks pending. v2.0/cluster-settings.md, line 25 at r1 (raw file): Previously, dt (David Taylor) wrote…
Removed the sentence above the list as recommended - in 898fa26 v2.0/cluster-settings.md, line 25 at r2 (raw file): Previously, jseldess wrote…
Removed the commented-out text in 94b0f11 v2.0/stop-a-node.md, line 19 at r1 (raw file): Previously, a-robinson (Alex Robinson) wrote…
Updated as recommended in 7fc7a2f v2.0/stop-a-node.md, line 21 at r1 (raw file): Previously, a-robinson (Alex Robinson) wrote…
Thanks - fixed the "a" best effort thing in 94f88ce Updated the cluster setting language in 253660f v2.0/stop-a-node.md, line 21 at r2 (raw file): Previously, jseldess wrote…
Oops, sorry - fixed in 94f88ce Comments from Reviewable |
|
Hey @a-robinson, at @jseldess' recommendation I'm going to try to add the 1.1.{5,6} changes to this PR as well. Do you mind answering some additional questions? I'm a lot less clear on these versions, as you will see from the below. :-) I have some text below (which I also pushed in 64e718f so you can more easily comment) that I prepared in person with Alfonso on FixitDay before he left for holiday. Each bullet is followed by the version in which Alfonso said the changes occurred. I made it a numbered list here so I can ask related questions for each item below. First, the draft text from 64e718f: 1. Finishes in-flight requests. Note that this is a best effort that times out after the duration specified by the `???` cluster setting (1.1.5) 2. Transfers all *range leases* and Raft leadership to other nodes. (1.1.6) 3. Gossips its draining state to the cluster so that no leases are transferred to the draining node. Note that this is a best effort that times out after the duration specified by the `???` cluster setting, so other nodes may not receive the gossip info in time. (1.1.6) 4. No new ranges are transferred to the draining node, to avoid a possible loss of quorum after the node shuts down. (1.1.5) My questions:
The binary I'm running to look up these cluster settings is v1.1.6: Cluster settings don't seem to allow for control of the features in items 1 and 3 above, but I'm not very familiar: |
The settings we want to keep hidden are also hidden from the auto-generated table, according to the discussion at cockroachdb/cockroach#23531
rmloveland
force-pushed
the
fixitday-node-draining-update
branch
from
4f5db79 to
64e718f
Compare
v1.1/stop-a-node.md
Outdated
| @@ -14,6 +14,11 @@ For information about permanently removing nodes to downsize a cluster or react | |||
|
|
|||
| ### How It Works | |||
|
|
|||
| - Finishes in-flight requests. Note that this is a best effort that times out after the duration specified by the `???` cluster setting (1.1.5) | |||
There was a problem hiding this comment.
This setting is not in v1.1. The server just cancels all current sessions without waiting.
There was a problem hiding this comment.
Thanks, updated to say that in 14139e9
v1.1/stop-a-node.md
Outdated
| @@ -14,6 +14,11 @@ For information about permanently removing nodes to downsize a cluster or react | |||
|
|
|||
| ### How It Works | |||
|
|
|||
| - Finishes in-flight requests. Note that this is a best effort that times out after the duration specified by the `???` cluster setting (1.1.5) | |||
| - Transfers all *range leases* and Raft leadership to other nodes. (1.1.6) | |||
| - Gossips its draining state to the cluster so that no leases are transferred to the draining node. Note that this is a best effort that times out after the duration specified by the `???` cluster setting, so other nodes may not receive the gossip info in time. (1.1.6) | |||
There was a problem hiding this comment.
This still happens as of 1.1.6. In 1.1.5 and earlier, this part was broken.
There was a problem hiding this comment.
Thanks for confirming. Do you know if there is a cluster setting for this in 1.1.6? None of the documented cluster settings for 1.1.6 look to be the one. And it wasn't clear from a quick SHOW ALL CLUSTER SETTINGS on a 1.1.6 binary (though I may have missed it).
v1.1/stop-a-node.md
Outdated
| @@ -14,6 +14,11 @@ For information about permanently removing nodes to downsize a cluster or react | |||
|
|
|||
| ### How It Works | |||
|
|
|||
| - Finishes in-flight requests. Note that this is a best effort that times out after the duration specified by the `???` cluster setting (1.1.5) | |||
| - Transfers all *range leases* and Raft leadership to other nodes. (1.1.6) | |||
There was a problem hiding this comment.
This still happens as of 1.1.6. In 1.1.5 and earlier, these parts didn't always happen as intended.
There was a problem hiding this comment.
Great, thanks! Since the stable web docs show 1.1.6 now, I'll leave this in (minus the version number).
v1.1/stop-a-node.md
Outdated
| - Finishes in-flight requests. Note that this is a best effort that times out after the duration specified by the `???` cluster setting (1.1.5) | ||
| - Transfers all *range leases* and Raft leadership to other nodes. (1.1.6) | ||
| - Gossips its draining state to the cluster so that no leases are transferred to the draining node. Note that this is a best effort that times out after the duration specified by the `???` cluster setting, so other nodes may not receive the gossip info in time. (1.1.6) | ||
| - No new ranges are transferred to the draining node, to avoid a possible loss of quorum after the node shuts down. (1.1.5) |
There was a problem hiding this comment.
This is true for all 1.1.x versions, as far as I'm aware.
There was a problem hiding this comment.
Thanks! Again, leaving in but removing the version number.
|
Reviewed 1 of 1 files at r5, 1 of 1 files at r8, 1 of 1 files at r13. v1.1/stop-a-node.md, line 19 at r9 (raw file): Previously, rmloveland (Rich Loveland) wrote…
Nope, no cluster setting in any of the v1.1 releases. It'd have to be something pretty critical for us to introduce/backport a new cluster setting in a patch release. Comments from Reviewable |
|
@jseldess do you want a final editorial look at the v1.1 changes before merge? |
v1.1/stop-a-node.md
Outdated
| @@ -14,7 +14,12 @@ For information about permanently removing nodes to downsize a cluster or react | |||
|
|
|||
| ### How It Works | |||
|
|
|||
| When you stop a node, CockroachDB lets the node finish in-flight requests and transfers all **range leases** off the node before shutting it down. If the node then stays offline for a certain amount of time (5 minutes by default), the cluster considers the node dead and starts to transfer its **range replicas** to other nodes as well. | |||
| - Cancels all current sessions without waiting. | |||
| - Transfers all *range leases* and Raft leadership to other nodes. | |||
There was a problem hiding this comment.
nit: bold instead of italics.
There was a problem hiding this comment.
Thanks, fixed in bb14e1b
Fixes #2436
Fixes #2620