-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add Restate architecture documentation #100
Merged
Merged
Changes from all commits
Commits
Show all changes
3 commits
Select commit
Hold shift + click to select a range
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,7 +1,105 @@ | ||
| --- | ||
| sidebar_position: 1 | ||
| description: "A deep-dive in the internals of Restate." | ||
| draft: true | ||
| description: "A deep-dive into the internals of Restate." | ||
| --- | ||
|
|
||
| # Architecture | ||
| # Architecture | ||
|
|
||
| In order to provide the building blocks of consistent state, reliable messaging and durable execution for applications, Restate itself needs to be highly scalable, consistent and fault-tolerant with high availability. | ||
|
|
||
| The runtime is split into the control plane consisting of *Metas* and the data plane consisting of *Workers*. | ||
|
|
||
| The *Metas* are responsible for managing the service meta information and coordinating the *Workers*. | ||
|
|
||
| The *Workers* are responsible for invoking services, storing the invocation and service state as well as maintaining processing order. | ||
| *Workers* also expose a *SQL* interface to query the runtime's internal state. | ||
|
|
||
| Services run on *Service Endpoints* which can be deployed independently of the runtime. | ||
|
|
||
|  | ||
|
|
||
| ## Durable execution via journaling | ||
|
|
||
| Things always eventually go wrong, in particular at scale when running a distributed application. | ||
| Therefore, services that Restate invokes will also fail eventually. | ||
| In these cases, the services need to be re-invoked so that they can complete. | ||
| Ideally, services resume from the point where they failed without re-doing all the previous actions, effectively resulting into durable execution of services. | ||
|
|
||
| The way Restate achieves durable execution is by recording the actions a service takes in a durable journal. | ||
| When re-invoking a service, the journal is sent alongside the service state to the service endpoint. | ||
| The service endpoint resumes the invocation by replaying the recorded journal entries without re-doing the actual operations (e.g. calling another service, storing state, running a side-effect, etc.). | ||
| A useful side-effect of the journal is that Restate can always suspend an invocation and resume it at a later point in time if need should arise. | ||
|
|
||
|  | ||
|
|
||
| ## Service invocation flow | ||
|
|
||
| All service invocations need to go through Restate which acts as a reverse-proxy for the registered services. | ||
| Restate knows where the services are running and invokes them on behalf of the clients. | ||
| By putting Restate in charge of the actual invocation, the system can achieve the following properties: | ||
|
|
||
| * Enrich the invocation with extra information such as service and journal state | ||
| * Guarantee that keyed invocations are executed in order and isolation | ||
| * Retry failed invocations until they complete | ||
|
|
||
| The service invocation flow is as follows: | ||
|
|
||
| 1. New invocations are received by the *Ingress service* running on the *Workers*. The ingress extracts the invocation key which determines the partition responsible for processing the invocation. | ||
| 2. Based on the key, the invocation is forwarded to the right *Worker* running the *Partition processor* of the target partition. | ||
| 3. The *Partition processor* makes sure that for a given key and service, the invocations are executed sequentially. | ||
| 4. Once all preceding invocations have completed, the invocation request will be enriched with the service's state and sent to the service endpoint where it executes. | ||
| 5. While executing, the runtime journals actions the service takes in order to be able to recover from failures without redoing these actions. | ||
| 6. Once the invocation completes with a response, it will be sent back to the *Ingress service* and then to the invoking client. | ||
|
|
||
|  | ||
|
|
||
| ## Runtime | ||
|
|
||
| ### Scalability | ||
|
|
||
| Restate is highly scalable because it shards the space of service invocations into partitions which are processed each by a dedicated *Partition processor*. | ||
| Each *Worker* runs a set of these *Partition processors*. | ||
| In order to react to changing workloads, the partitions can be merged and split dynamically. | ||
|
|
||
|  | ||
|
|
||
| :::note | ||
| Dynamic partitioning is still under development. | ||
| ::: | ||
|
|
||
| ### Consistency and fault-tolerance | ||
|
|
||
| Consistency and fault-tolerance is achieved by replicating the *Partition processors* via [Raft](https://raft.github.io/). | ||
| All commands for a partition go through the Raft log, which ensures that all partition processor replicas stay consistent and can be recovered in case of failures. | ||
|
|
||
| Each partition is governed by their own Raft group. | ||
| A *Worker* runs multiple *Partition processors* belonging to different Raft groups which operate independently. | ||
| Such an architecture is known as [Multi-Raft](https://tikv.org/deep-dive/scalability/multi-raft/). | ||
|
|
||
|  | ||
|
|
||
| :::note | ||
| Currently, Restate runs as a single process. The distributed implementation is still under development. | ||
| ::: | ||
|
|
||
| ### State storage | ||
|
|
||
| The Raft and *Partition processor* state is stored by the *Workers* in [RocksDB](https://github.com/facebook/rocksdb). | ||
| Using RocksDB allows for graceful spilling to disk and comparatively fast writes. | ||
| Moreover, it supports asynchronous checkpointing which is required to truncate the Raft log. | ||
|
|
||
| ### State queries | ||
|
|
||
| Restate makes its internal state accessible via a SQL interface. | ||
| Any client that supports the PostgreSQL wire protocol can be used to issue queries. | ||
| Internally, the SQL queries are executed using [DataFusion](https://github.com/apache/arrow-datafusion). | ||
|
|
||
| ### Service registry | ||
|
|
||
| All servie meta information is maintained by the *Metas* via the service registry. | ||
| The service registry contains information about the registered services which includes the address of the service endpoints, the exposed service methods, their signatures and type definitions. | ||
| The service contracts and their type definitions are also exposed via [gRPC reflection](https://github.com/grpc/grpc/blob/master/doc/server-reflection.md) by the *Workers*. | ||
|
|
||
| Services are added to the registry by discovering service endpoints. | ||
| Upon discovery request, the *Metas* reach out to the specified service endpoint and retrieve all registered services, their methods and type definitions. | ||
| After discovery, the new service meta information is propagated to the *Workers* which enables invoking these services through Restate. | ||
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.