SLO/etcd main cluster: Difference between revisions

From Wikitech
< SLO
Browse history interactively
ā† Older editNewer edit ā†’
Content deleted Content added
VisualWikitext
No edit summary
No edit summary
Line 142: Line 142:
The error rate will not exceed 0.1%
The error rate will not exceed 0.1%


99.9% of successful requests will complete in less than 32ms
99.8% of successful requests will complete in less than 32ms


=== References ===
=== References ===

Revision as of 00:40, 16 January 2021

SLO Worksheet - etcd Main

Service

etcd (https://etcd.io/) is an open source key-value store with a focus on reliability that is used to store configuration and state data for distributed systems. At WMF we run a number of etcd clusters, this document addresses the two etcd Main clusters, one each installed in the primary datacenters, eqiad and codfw. A number of applications, including mediawiki read/write configuration store state data on etcd.

Teams

etcd is owned by the Service Operations SRE team, which is responsible for all aspects including operation, scalability, backups and software updates. Contact:Ā  [[1]] and https://office.wikimedia.org/wiki/Contact_list#Service_Operations

Architectural

An etcd Main cluster consists of 3 nodes. Each of the etcd nodes can answer read requests, but write requests are handled by a single node, the ā€œleaderā€. If the leader node becomes non functional the remaining nodes (the ā€œfollowersā€) elect a new leader maintaining the cluster functional. The election of the new leader is managed via the RAFT algorithm. etcd itself replicates data between the nodes and each node has a complete copy of the data. High availability is provided by etcd out of the box, by a combination of etcd client and server software.

Hard Dependencies

Etcd is a foundational service and does not have any hard dependencies beyond hardware and networking. It is worth pointing out that server hardware and networking have their own failure rates that are in the 99% range. Etcd as configured is able to deal with a certain type of failures in a local datacenter.

Soft Dependencies

Etcd is a foundational service and does not have any soft dependencies beyond hardware and networking.

Client-facing

Clients

software use connection interval failure mode

(etcd down)

pybal/LVS retrieve LB pools servers lists, weights, state custom python/twisted, host only watch will keep working until restart
varnish/traffic retrieve list of backend servers confd 3s will keep working
gdnsd/auth dns Write admin state files for discovery.wmnet records confd 3s will keep working
scap/deployment Dsh lists confd 60 s will keep working
redis Replica configuration (changes NOT applied) confd 60 s will keep working
parsoid Use of http or https to connect to the mw api confd 60 s will keep working
MediaWiki fetch some config variables php-curl.

PHP requests at intervals, cached in APCu.

10 s will keep working until restart
Icinga servers Update a local cache of the last modified index to be used by other checks cURL 30 s the checks will use stale data for comparison
conftool/dbctl/cumin Used to pool/depool hosts or datacenters and populate data after a puppet-merge Python requests N/A Will fail, but thatā€™s ok

Confd: a lightweight configuration management daemon focused on keeping local configuration files up-to-date using data stored in etcd - Wikitech

Host only: the client can only connect to a single host, has no failover capability.

Request Classes

Reads:

  • GET/QGET/HEAD requests. Those are the requests that are only reading from the datastore. Itā€™s the bulk of the requests, amounting over the course of 30 days to 120-130 Million GET requests and 350-400 Million Quorum GET (QGET) requests.

Writes:

  • PUT/DELETE requests. Those are only sent by conftool, dbctl and cumin. They are very rare compared to the read requests. Over the course of 30 days, we count DELETEs in the ballpark of 50-100 and PUTs on the order of 3000-4000.

Service Level Indicators (SLI)

SRE looks at three SLIs for etcd: availability, acceptable latency rate and error rate.

We measure over a three-month SLO period that ends 1 month before the fiscal quarter for reporting reasons, i.e. theĀ  SLO period is December, January, February and so forth.

Availability is determined by monitoring all transactions and calculated for the SLO period: dividing the difference of all transactions and the number of failed (all errors, except 404) or slow (i.e. over 32 ms) transactions by all transactions.

Acceptable latency is determined by monitoring all transactions against the etcd store and calculated over our SLO period: dividing the difference of all transactions and the number of transactions over 32 ms by all transactions.

Error rate is determined by monitoring all transactions against the etcd store and calculated over the SLO period: dividing the number of failed transactions by all transactions.

SLI for GET requests inĀ %:

Ā  Ā 100% * (all GET transactions - GET transaction slower than 32 ms) / all GET transactions

SLI for Errors:

Ā  Ā  100% * (transactions with an error code >= 500) / all transactions

Reference: Golden signals includes latency, traffic, errors, and saturation

Operational

Monitoring

Grafana Dashboard

Some values:

Latency: p99 +/- 15 ms GET

Latency: p99 +/-Ā  2ms (thatā€™s 50%) QGET

Failures: 0.00 fps about 300 rps

All errors are 404 at the moment, they are not counted.

Troubleshooting

The health of the etcd Main cluster is monitored by icinga. In case of alerts follow the troubleshooting procedures defined in the alert message, hosted on wikitech at https://wikitech.wikimedia.org/wiki/Etcd/Main_cluster.

Deployment

The service isnā€™t often deployed. It only gets deployed when doing OS upgrades.

Service Level Objectives

The error rate will not exceed 0.1%

99.8% of successful requests will complete in less than 32ms

References

Notes Service Level Implementation

https://docs.google.com/document/d/1Ox718hy_tlpK7xku7c0dHGG8N2dEyzD17e3puFRH1cA/edit?usp=sharinghttps://docs.google.com/document/d/1Ox718hy_tlpK7xku7c0dHGG8N2dEyzD17e3puFRH1cA/edit?usp=sharing

Service Level Implementation - section 1 and 2

https://docs.google.com/document/d/1rH_SxQuK5hUq3kPFmQ08EblJxOuR-z47GangoM67-FA/edit

Whole book - 2 copies Google SRE Drive

https://drive.google.com/file/d/1QqRjKwBQj7NeKOhiHWm3kepVWmfmeZHJ/view?usp=sharing

https://drive.google.com/file/d/1SKUSh7YYLNHZeavjVpud9UbocL5jLyM1/view?usp=sharing

We do have metrics for etcd, we lack a dashboard - dashboard now exists

https://grafana.wikimedia.org/explore?orgId=1&left=%5B%22now-1h%22,%22now%22,%22eqiad%20prometheus%2Fops%22,%7B%22expr%22:%22etcd_server_has_leader%22%7D,%7B%22ui%22:%5Btrue,true,true,%22none%22%5D%7D%5D

Examples of past issues: Performance degradation due to RAID resyncing starving etcd from needed IOPS.

Hardware failures

AWS EC2 SLA: 90% single EC2 VM

Azure: 95% for single VM with HD, 99.5% for VM with SSD, Premium VM 99.9%

Retrieved from "https://wikitech.wikimedia.org/w/index.php?title=SLO/etcd_main_cluster&oldid=1893729"