Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Narwhal] cleanup: split LeaderSchedule into a separate file #14462

Merged
merged 1 commit into from
Oct 27, 2023
Merged

[Narwhal] cleanup: split LeaderSchedule into a separate file #14462

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
290 changes: 290 additions & 0 deletions narwhal/primary/src/consensus/leader_schedule.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,290 @@
// Copyright (c) Mysten Labs, Inc.
// SPDX-License-Identifier: Apache-2.0

use std::{
collections::HashMap,
fmt::{Debug, Formatter},
sync::Arc,
};

use config::{Authority, AuthorityIdentifier, Committee, Stake};
use parking_lot::RwLock;
use rand::{rngs::StdRng, seq::SliceRandom, SeedableRng};
use storage::ConsensusStore;
use sui_protocol_config::ProtocolConfig;
use tracing::{debug, trace};
use types::{Certificate, ReputationScores, Round};

use super::Dag;

#[cfg(test)]
#[path = "tests/leader_schedule_tests.rs"]
mod leader_schedule_tests;

#[derive(Default, Clone)]
pub struct LeaderSwapTable {
/// The round on which the leader swap table get into effect.
round: Round,
/// The list of `f` (by stake) authorities with best scores as those defined by the provided `ReputationScores`.
/// Those authorities will be used in the position of the `bad_nodes` on the final leader schedule.
good_nodes: Vec<Authority>,
/// The set of `f` (by stake) authorities with the worst scores as those defined by the provided `ReputationScores`.
/// Every time where such authority is elected as leader on the schedule, it will swapped by one
/// of the authorities of the `good_nodes`.
bad_nodes: HashMap<AuthorityIdentifier, Authority>,
}

impl Debug for LeaderSwapTable {
fn fmt(&self, f: &mut Formatter<'_>) -> std::fmt::Result {
f.write_str(&format!(
"LeaderSwapTable round:{}, good_nodes:{:?} with stake:{}, bad_nodes:{:?} with stake:{}",
self.round,
self.good_nodes
.iter()
.map(|a| a.id())
.collect::<Vec<AuthorityIdentifier>>(),
self.good_nodes.iter().map(|a| a.stake()).sum::<Stake>(),
self.bad_nodes
.iter()
.map(|a| *a.0)
.collect::<Vec<AuthorityIdentifier>>(),
self.bad_nodes.iter().map(|a| a.1.stake()).sum::<Stake>(),
))
}
}

impl LeaderSwapTable {
// constructs a new table based on the provided reputation scores. The `bad_nodes_stake_threshold` designates the
// total (by stake) nodes that will be considered as "bad" based on their scores and will be replaced by good nodes.
// The `bad_nodes_stake_threshold` should be in the range of [0 - 33].
pub fn new(
committee: &Committee,
round: Round,
reputation_scores: &ReputationScores,
bad_nodes_stake_threshold: u64,
) -> Self {
assert!((0..=33).contains(&bad_nodes_stake_threshold), "The bad_nodes_stake_threshold should be in range [0 - 33], out of bounds parameter detected");
assert!(reputation_scores.final_of_schedule, "Only reputation scores that have been calculated on the end of a schedule are accepted");

// calculating the good nodes
let good_nodes = Self::retrieve_first_nodes(
committee,
reputation_scores.authorities_by_score_desc().into_iter(),
bad_nodes_stake_threshold,
);

// calculating the bad nodes
// we revert the sorted authorities to score ascending so we get the first low scorers
// up to the dictated stake threshold.
let bad_nodes = Self::retrieve_first_nodes(
committee,
reputation_scores
.authorities_by_score_desc()
.into_iter()
.rev(),
bad_nodes_stake_threshold,
)
.into_iter()
.map(|authority| (authority.id(), authority))
.collect::<HashMap<AuthorityIdentifier, Authority>>();

good_nodes.iter().for_each(|good_node| {
debug!(
"Good node on round {}: {} -> {}",
round,
good_node.hostname(),
reputation_scores
.scores_per_authority
.get(&good_node.id())
.unwrap()
);
});

bad_nodes.iter().for_each(|(_id, bad_node)| {
debug!(
"Bad node on round {}: {} -> {}",
round,
bad_node.hostname(),
reputation_scores
.scores_per_authority
.get(&bad_node.id())
.unwrap()
);
});

debug!("Reputation scores on round {round}: {reputation_scores:?}");

Self {
round,
good_nodes,
bad_nodes,
}
}

/// Checks whether the provided leader is a bad performer and needs to be swapped in the schedule
/// with a good performer. If not, then the method returns None. Otherwise the leader to swap with
/// is returned instead. The `leader_round` represents the DAG round on which the provided AuthorityIdentifier
/// is a leader on and is used as a seed to random function in order to calculate the good node that
/// will swap in that round with the bad node. We are intentionally not doing weighted randomness as
/// we want to give to all the good nodes equal opportunity to get swapped with bad nodes and not
/// have one node with enough stake end up swapping bad nodes more frequently than the others on
/// the final schedule.
pub fn swap(&self, leader: &AuthorityIdentifier, leader_round: Round) -> Option<Authority> {
if self.bad_nodes.contains_key(leader) {
let mut seed_bytes = [0u8; 32];
seed_bytes[32 - 8..].copy_from_slice(&leader_round.to_le_bytes());
let mut rng = StdRng::from_seed(seed_bytes);

let good_node = self
.good_nodes
.choose(&mut rng)
.expect("There should be at least one good node available");

trace!(
"Swapping bad leader {} -> {} for round {}",
leader,
good_node.id(),
leader_round
);

return Some(good_node.to_owned());
}
None
}

// Retrieves the first nodes provided by the iterator `authorities` until the `stake_threshold` has been
// reached. The `stake_threshold` should be between [0, 100] and expresses the percentage of stake that is
// considered the cutoff. Basically we keep adding to the response authorities until the sum of the stake
// reaches the `stake_threshold`. It's the caller's responsibility to ensure that the elements of the `authorities`
// input is already sorted.
fn retrieve_first_nodes(
committee: &Committee,
authorities: impl Iterator<Item = (AuthorityIdentifier, u64)>,
stake_threshold: u64,
) -> Vec<Authority> {
let mut filtered_authorities = Vec::new();

let mut stake = 0;
for (authority_id, _score) in authorities {
stake += committee.stake_by_id(authority_id);

// if the total accumulated stake has surpassed the stake threshold then we omit this
// last authority and we exit the loop.
if stake > (stake_threshold * committee.total_stake()) / 100 as Stake {
break;
}
filtered_authorities.push(committee.authority_safe(&authority_id).to_owned());
}

filtered_authorities
}
}

/// The LeaderSchedule is responsible for producing the leader schedule across an epoch. It provides
/// methods to derive the leader of a round based on the provided leader swap table. This struct can
/// be cloned and shared freely as the internal parts are atomically updated.
#[derive(Clone)]
pub struct LeaderSchedule {
pub committee: Committee,
pub leader_swap_table: Arc<RwLock<LeaderSwapTable>>,
}

impl LeaderSchedule {
pub fn new(committee: Committee, table: LeaderSwapTable) -> Self {
Self {
committee,
leader_swap_table: Arc::new(RwLock::new(table)),
}
}

/// Restores the LeaderSchedule by using the storage. It will attempt to retrieve the last committed
/// "final" ReputationScores and use them to create build a LeaderSwapTable to use for the LeaderSchedule.
pub fn from_store(
committee: Committee,
store: Arc<ConsensusStore>,
protocol_config: ProtocolConfig,
) -> Self {
let table = store
.read_latest_commit_with_final_reputation_scores()
.map_or(LeaderSwapTable::default(), |commit| {
LeaderSwapTable::new(
&committee,
commit.leader_round(),
&commit.reputation_score(),
protocol_config.consensus_bad_nodes_stake_threshold(),
)
});
// create the schedule
Self::new(committee, table)
}

/// Atomically updates the leader swap table with the new provided one. Any leader queried from
/// now on will get calculated according to this swap table until a new one is provided again.
pub fn update_leader_swap_table(&self, table: LeaderSwapTable) {
trace!("Updating swap table {:?}", table);

let mut write = self.leader_swap_table.write();
*write = table;
}

/// Returns the leader for the provided round. Keep in mind that this method will return a leader
/// according to the provided LeaderSwapTable. Providing a different table can potentially produce
/// a different leader for the same round.
pub fn leader(&self, round: Round) -> Authority {
assert_eq!(
round % 2,
0,
"We should never attempt to do a leader election for odd rounds"
);

// TODO: split the leader election logic for testing from the production code.
cfg_if::cfg_if! {
if #[cfg(test)] {
// We apply round robin in leader election. Since we expect round to be an even number,
// 2, 4, 6, 8... it can't work well for leader election as we'll omit leaders. Thus
// we can always divide by 2 to get a monotonically incremented sequence,
// 2/2 = 1, 4/2 = 2, 6/2 = 3, 8/2 = 4 etc, and then do minus 1 so we can always
// start with base zero 0.
let next_leader = (round/2 + self.committee.size() as u64 - 1) as usize % self.committee.size();
let authorities = self.committee.authorities().collect::<Vec<_>>();

let leader: Authority = (*authorities.get(next_leader).unwrap()).clone();
let table = self.leader_swap_table.read();

table.swap(&leader.id(), round).unwrap_or(leader)
} else {
// Elect the leader in a stake-weighted choice seeded by the round
let leader = self.committee.leader(round);

let table = self.leader_swap_table.read();
table.swap(&leader.id(), round).unwrap_or(leader)
}
}
}

/// Returns the certificate originated by the leader of the specified round (if any). The Authority
/// leader of the round is always returned and that's irrespective of whether the certificate exists
/// as that's deterministically determined. The provided `leader_swap_table` is being used to determine
/// any overrides that need to be performed to the original schedule.
pub fn leader_certificate<'a>(
&self,
round: Round,
dag: &'a Dag,
) -> (Authority, Option<&'a Certificate>) {
// Note: this function is often called with even rounds only. While we do not aim at random selection
// yet (see issue https://github.com/MystenLabs/sui/issues/5182), repeated calls to this function
// should still pick from the whole roster of leaders.
let leader = self.leader(round);

// Return its certificate and the certificate's digest.
match dag.get(&round).and_then(|x| x.get(&leader.id())) {
None => (leader, None),
Some((_, certificate)) => (leader, Some(certificate)),
}
}

pub fn num_of_bad_nodes(&self) -> usize {
let read = self.leader_swap_table.read();
read.bad_nodes.len()
}
}
6 changes: 3 additions & 3 deletions narwhal/primary/src/consensus/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@ mod bullshark;
#[cfg(test)]
#[path = "tests/consensus_utils.rs"]
mod consensus_utils;
mod leader_schedule;
mod metrics;
mod state;
mod utils;
Expand All @@ -14,10 +15,9 @@ pub use crate::consensus::bullshark::Bullshark;
use crate::consensus::consensus_utils::{
make_certificate_store, make_consensus_store, NUM_SUB_DAGS_PER_SCHEDULE,
};
pub use crate::consensus::leader_schedule::{LeaderSchedule, LeaderSwapTable};
pub use crate::consensus::metrics::{ChannelMetrics, ConsensusMetrics};
pub use crate::consensus::state::{
Consensus, ConsensusRound, ConsensusState, Dag, LeaderSchedule, LeaderSwapTable,
};
pub use crate::consensus::state::{Consensus, ConsensusRound, ConsensusState, Dag};
pub use crate::consensus::utils::gc_round;

use store::StoreError;
Expand Down
Loading
Loading