Dynamic replica failure detection and healing

US 9,971,823 B2
Filed: 04/04/2016
Issued: 05/15/2018
Est. Priority Date: 06/13/2013
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

a plurality of compute nodes, each comprising at least one processor and memory, wherein the plurality of compute nodes implement a data store;

wherein the data store is configured to;

maintain a plurality of replicas of data on behalf of a client of the data store at different ones of the compute nodes as a replica group for the data;

obtain individual metadata for different replicas of the replica group to update status metadata stored for the replica group at one or more of the compute nodes remote from the different ones of the compute nodes that maintain the plurality of replicas;

access, by a replica group status sweeper remote from the different ones of the compute nodes and remote from the one or more compute nodes that store the status metadata, the updated status metadata for the replica group at the one or more compute nodes to evaluate the replica group for compliance with a healthy state definition of a number of replicas for the replica group based, at least in part, on the updated status metadata, wherein the evaluation determines that a number of available replicas for the replica group is not compliant with the healthy state definition; and

automatically restore the replica group such that the number of available replicas for the replica group is compliant with the healthy state definition for the replica group.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Detecting replica faults within a replica group and dynamically scheduling replica healing operations are described. Status metadata for one or more replica groups may be accessed. Based, at least in part, the status data a number of available replicas for at least one replica group may be determined to incompliant with a healthy state definition for the replica group. One or more healing operations to restore the number of available replicas for the at least one replica group to the respective healthy state definition may be dynamically scheduled. In some embodiments, one or more resource constraints for performing healing operations and one or more resource requirements for each of the one or more healing operations may be used to order the one or more healing operations.

73 Citations

View as Search Results

20 Claims

1. A system, comprising:
- a plurality of compute nodes, each comprising at least one processor and memory, wherein the plurality of compute nodes implement a data store;
  
  wherein the data store is configured to;
  
  maintain a plurality of replicas of data on behalf of a client of the data store at different ones of the compute nodes as a replica group for the data;
  
  obtain individual metadata for different replicas of the replica group to update status metadata stored for the replica group at one or more of the compute nodes remote from the different ones of the compute nodes that maintain the plurality of replicas;
  
  access, by a replica group status sweeper remote from the different ones of the compute nodes and remote from the one or more compute nodes that store the status metadata, the updated status metadata for the replica group at the one or more compute nodes to evaluate the replica group for compliance with a healthy state definition of a number of replicas for the replica group based, at least in part, on the updated status metadata, wherein the evaluation determines that a number of available replicas for the replica group is not compliant with the healthy state definition; and
  
  automatically restore the replica group such that the number of available replicas for the replica group is compliant with the healthy state definition for the replica group.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The system of claim 1, wherein to obtain the individual metadata for different replicas of the replica group to update the status metadata, the data store is configured to send, by the different replicas of the data, the individual metadata to the one or more compute nodes to store the individual metadata as part of the status metadata.
  - 3. The system of claim 1,wherein one of the replicas in the replica group is a master replica for the replica group;
    - wherein to obtain the individual metadata for different replicas of the replica group to update the status metadata, the data store is configured to;
      
      request, by the master replica, the individual metadata for the different replicas of the replica group; and
      
      update, by the master replica, the status metadata according to the individual metadata received from the different replicas.
  - 4. The system of claim 1,wherein to obtain the individual metadata for different replicas of the replica group to update the status metadata, the data store is configured to:
    - request, by the replica group status sweeper, the individual metadata for the different replicas of the replica group; and
      
      update, by the replica group status sweeper, the status metadata according to the individual metadata received from the different replicas.
  - 5. The system of claim 1, wherein to evaluate the replica group for compliance with a healthy state definition of a number of replicas for the replica group, the data store is configured to:
    - determine that the individual metadata for one or more replicas of the replica group has not been updated in the status metadata within a time threshold;
      
      send a request for the individual metadata to the one or more replicas; and
      
      identify the one or more replicas as unavailable upon a failure of the one or more replicas to respond to the request.
  - 6. The system of claim 1, wherein the data store is further configured to:
    - prior to the performance of the automatic restoration;
      
      attempt to obtain current metadata for one or more replicas of the replica group determined to be unavailable according to the evaluation of the status metadata; and
      
      based, at least in part, on the attempt to obtain the current metadata, confirm performance of the automatic restoration, wherein unconfirmed automatic restorations at the data store are not performed.
  - 7. The system of claim 1,wherein the data store is a network-based storage service, wherein the replica group is one of a plurality of different replica groups for different respective data maintained at the network-based storage service among the compute nodes;
    - wherein the network-based storage service is further configured to perform the obtainment of the individual metadata, the access of the status metadata, and the automatic restoration for one or more other replica groups in addition to the replica group; and
      
      wherein the performance of the automatic restoration for the replica group and the one or more other replica groups is ordered according to a dynamically determined schedule for performing the automatic restorations based, at least in part, on one or more resource constraints in the network-based storage service.

8. A method, comprising:
- performing, by a plurality of computing devices;
  
  maintaining a plurality of replicas of data on behalf of a client of a data store at different ones of a plurality of compute nodes as a replica group for the data;
  
  obtaining individual metadata for different replicas of the replica group to update status metadata stored for the replica group at one or more of the compute nodes remote from the different ones of the compute nodes;
  
  accessing, by a replica group status sweeper that is remote from the different ones of the compute nodes and remote from the one or more compute nodes that store the status metadata, the updated status metadata for the replica group at the one or more compute nodes to evaluate the replica group for compliance with a healthy state definition of a number of replicas for the replica group based, at least in part, on the updated status metadata, wherein the evaluation determines that a number of available replicas for the replica group is not compliant with the healthy state definition; and
  
  automatically restoring the replica group such that the number of available replicas for the replica group is compliant with the healthy state definition for the replica group.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, wherein the obtaining the individual metadata for different replicas of the replica group to update the status metadata, comprises sending, by the different replicas of the data, the individual metadata to the one or more compute nodes to store the individual metadata as part of the status metadata.
  - 10. The method of claim 8,wherein one of the replicas in the replica group is a master replica for the replica group;
    - wherein the obtaining the individual metadata for different replicas of the replica group to update the status metadata, comprises;
      
      requesting, by the master replica, the individual metadata for the different replicas of the replica group; and
      
      updating, by the master replica, the status metadata according to the individual metadata received from the different replicas.
  - 11. The method of claim 8,wherein the obtaining the individual metadata for different replicas of the replica group to update the status metadata, comprises:
    - requesting, by the replica group status sweeper, the individual metadata for the different replicas of the replica group; and
      
      updating, by the replica group status sweeper, the status metadata according to the individual metadata received from the different replicas.
  - 12. The method of claim 8, wherein evaluating the replicas for the replica group, comprises:
    - determining that the individual metadata for one or more replicas of the replica group has not been updated in the status metadata within a time threshold;
      
      sending a request for the individual metadata to the one or more replicas; and
      
      identifying the one or more replicas as unavailable upon a failure of the one or more replicas to respond to the request.
  - 13. The method of claim 8, further comprising:
    - prior to automatically restoring the replica group;
      
      attempting to obtain current metadata for one or more replicas of the replica group determined to be unavailable according to the evaluation of the status metadata;
      
      based, at least in part, on the attempt to obtain the current metadata, confirming performance of the automatic restoration, wherein unconfirmed automatic restorations at the data store are not performed.
  - 14. The method of claim 8,wherein the data store is a network-based storage service, wherein the replica group is one of a plurality of different replica groups for different respective data maintained at the network-based storage service among the compute nodes;
    - wherein the method further comprises performing the obtaining of the individual metadata, the accessing of the status metadata, and the automatically restoring for one or more other replica groups in addition to the replica group; and
      
      wherein the performance of the automatic restoration for the replica group and the one or more other replica groups is ordered according to a dynamically determined schedule for performing the automatic restorations based, at least in part, on one or more resource constraints in the network-based storage service.

15. A non-transitory, computer-readable storage medium, storing program instructions that when executed by a plurality of computing devices implement a data storage service that implements:
- maintaining a plurality of replicas of data on behalf of a client of a data store at different ones of a plurality of compute nodes as a replica group for the data;
  
  obtaining individual metadata for different replicas of the replica group to update status metadata stored for the replica group at one or more of the compute nodes remote from the different ones of the compute nodes;
  
  accessing, by a replica group status sweeper that is remote from the different ones of the compute nodes and remote from the one or more compute nodes that store the status metadata, the updated status metadata for the replica group at the one or more compute nodes to evaluate the replica group for compliance with a healthy state definition of a number of replicas for the replica group based, at least in part, on the updated status metadata, wherein the evaluation determines that a number of available replicas for the replica group is not compliant with the healthy state definition; and
  
  automatically restoring the replica group such that the number of available replicas for the replica group is compliant with the healthy state definition for the replica group.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory, computer-readable storage medium of claim 15, wherein, in obtaining the individual metadata for different replicas of the replica group to update the status metadata, the program instructions cause the one or more computing devices to implement sending, by the different replicas of the data, the individual metadata to the one or more compute nodes to store the individual metadata as part of the status metadata.
  - 17. The non-transitory, computer-readable storage medium of claim 15,wherein one of the replicas in the replica group is a master replica for the replica group;
    - wherein, in obtaining the individual metadata for different replicas of the replica group to update the status metadata, the program instructions cause the one or more computing devices to implement;
      
      requesting, by the master replica, the individual metadata for the different replicas of the replica group; and
      
      updating, by the master replica, the status metadata according to the individual metadata received from the different replicas.
  - 18. The non-transitory, computer-readable storage medium of claim 15,wherein, in obtaining the individual metadata for different replicas of the replica group to update the status metadata, the program instructions cause the one or more computing devices to implement:
    - requesting, by the replica group status sweeper, the individual metadata for the different replicas of the replica group; and
      
      updating, by the replica group status sweeper, the status metadata according to the individual metadata received from the different replicas.
  - 19. The non-transitory, computer-readable storage medium of claim 15, wherein, in evaluating the replicas for the replica group, the program instructions cause the one or more computing devices to implement:
    - determining that the individual metadata for one or more replicas of the replica group has not been updated in the status metadata within a time threshold;
      
      sending a request for the individual metadata to the one or more replicas; and
      
      identifying the one or more replicas as unavailable upon a failure of the one or more replicas to respond to the request.
  - 20. The non-transitory, computer-readable storage medium of claim 15, wherein the program instructions cause the one or more computing devices to further implement:
    - prior to automatically restoring the replica group;
      
      attempting to obtain current metadata for one or more replicas of the replica group determined to be unavailable according to the evaluation of the status metadata;
      
      based, at least in part, on the attempt to obtain the current metadata, confirming performance of the automatic restoration, wherein unconfirmed automatic restorations at the data store are not performed.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Inventors
Vasanth, Jai, Hunter, Jr., Barry Bailey, Muniswamy-Reddy, Kiran-Kumar, Lutz, David Alan, Wang, Jian, Maccanti, Maximiliano
Primary Examiner(s)
Cao, Phuong Thao

Application Number

US15/090,547
Publication Number

US 20160292249A1
Time in Patent Office

771 Days
Field of Search

707679
US Class Current
CPC Class Codes

G06F 11/006   Identification G06F11/2289 ...

G06F 11/07   Responding to the occurrenc...

G06F 11/0709   in a distributed system con...

G06F 11/0793   Remedial or corrective acti...

G06F 16/27   Replication, distribution o...

G06F 2201/86   Event-based monitoring

G06F 3/0617   in relation to availability

G06F 3/067   Distributed or networked st...

G06F 9/4881   Scheduling strategies for d...

H04L 67/1095   Replication or mirroring of...

Dynamic replica failure detection and healing

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

73 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Dynamic replica failure detection and healing

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

73 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links