Reshard add shard count

[ankikuma]

Add reshard count - effective shard count as seen by the coordination node - to the replication request. Note that this new field has not been serialized over the network yet.

[bcully]

I'm tempted to want concrete examples here. I know this makes for a long comment, but I think the field is unintuitive enough to warrant it.

[ankikuma]

I agree that examples will be helpful. Its semantics really is confusing.

Also, I was thinking if I rename the field in the ReplicationRequest to reshardSplitExpectedShardCount, will that be better ?

[lkts]

I think we referred to this value as a "checksum of resharding state" in the design document. I wonder if calling it some kind of checksum will resolve the naming dispute.

[ankikuma]

Ya I like reshardSplitShardCountChecksum. Because otherwise it sounds like it's a count that you can actually use for something. It's really just a value to be used not as is, but in the context of reconciling cluster state between 2 different nodes.

[bcully]

bikeshedding, how about "summary" instead of "checksum"?

[ankikuma]

I kind of like checksum better but happy change it ...

[bcully]

Ok, I won't push hard on this. To me checksum implies an integrity check - you have some data, and alongside it you have a provided checksum, and if you recompute the checksum and it doesn't match the provided checksum you have an integrity problem. It sort of applies here - we have our own view of the routing table, and the coordinator provides a "checksum", and if we don't produce the same value over our view then we don't trust the coordinator's binning (which kind of looks like a response to an integrity error if you squint).

I felt that summary (i.e., a lossily compressed form that still has relevant info) was maybe a little more accurate, but I fully admit I'm bikeshedding. Carry on as you see fit.

[bcully]

can this be null? I know we have a shard reference here but I'm not sure whether that ensures that an index isn't deleted in cluster state.

[ankikuma]

Index delete/close are supposed to acquire all permits before proceeding. I think TransportVerifyShardBeforeCloseAction#acquirePrimaryOperationPermit is responsible for this ?

[bcully]

ok, thanks

[bcully]

if this is being called for a target shard, does that mean that the coordinator has already determined that the target shard is ready?

[ankikuma]

Yes. The reason is that we already have target state checks for routing requests at the coordinator level. The fact that a request is routed to the target shard means that it must be ready.

[ankikuma]

I have added more details to the method description

[bcully]

this state feels like it should be illegal. The query doesn't really make sense, since a shard in CLONE state is by definition not ready to accept operations.

[ankikuma]

The getReshardSplitShardCount is agnostic to the semantics of the operation. Given an input shard and a target shard state (that which is required for targets to be ready for the operation), it returns the "ReshardSplitShardCount" observed based on the IndexMetadata. For example, search will pass in the required state as SPLIT while indexing will pass in HANDOFF.
I will try to make it more clear in the API comments.

[bcully]

I mean, I think it would be nice if the public API were harder to misuse. My feeling is that supplying CLONE to this function is an indication of a logical mistake, so we shouldn't allow it. One way we could do that is to make getReshardSplitShardCount private and have two wrappers, e.g., getReshardSplitShardCountForIndexing and getReshardSplitShardCountForSearch that call getReshardSplitShardCount with HANDOFF and SPLIT respectively.

[ankikuma]

Yes sure, that will make the code more readable too I think. We will need a wrapper for refresh and flush as well. I guess we can add wrappers as and when needed.

[bcully]

I was thinking more like "index" and "search" were friendly names for HANDOFF and SPLIT. I'm not sure whether we need wrappers per operation - it seems like they would just be synonyms, and having multiple functions that do the same thing seems noisy?

[ankikuma]

Ya we can just use these names or rename them later to something more generic

[lkts]

I think we referred to this value as a "checksum of resharding state" in the design document. I wonder if calling it some kind of checksum will resolve the naming dispute.

[lkts]

Is this because some inheritors do not have shardId (i guess IndexRequest is an example)?

[lkts]

You need to re-read reshardingMetadata here.

[ankikuma]

Thanks!

[lkts]

This is not a number of target shards, right? This is total.

[ankikuma]

Yes. I renamed this to numShardsAfterReshard so it's not confusing.

[bcully]

double checking: my understanding is this is always safe - 0 means that the receiving shard will always inspect the bulk item request and decide whether it needs to resplit, which may not be optimal but won't ever be wrong. Right?

[ankikuma]

No, actually I was thinking of 0 as being the case where we do not care what the reshardSplitShardCount is. This is so we don't have to change all the tests that were written pre-autoshardingtosharding.
In this particular instance, where we are creating the BulkShardRequest, it is 0 if the indexMatadata is null. But thinking about this now, I wonder if this could lead to wrong results. Perhaps I should reserve 0 for the case where we always inspect the request and modify the tests.

[bcully]

Ok, I've skimmed #56209 that introduced thin serialization, apparently to save redundant shard ID serialization since shard IDs are large. It looks like the expected case is that shard ID is not null so we can do the thin read, but that the request may override the shard ID even if it is not null (lines 113-121 below, on the right side of the diff).

I suppose it's the case that if we can omit the shard ID in serialization because we're getting it from somewhere else then we can probably also save 4 bytes per request on reshardSplitShardCount, so we can provide it to the constructor instead of reading it over the wire. But as I read the code below, that's not what we're doing. We're just using a provided value if the transport version isn't recent enough. I don't think that's a thin serialization concern. I think if we want to be thin, then we use the provided value and don't serialize it at all? Unless there's a case where we need to override the provided value, as with index. Then we need to do a boolean to signal the presence of the shard ID and I think the savings isn't worth it.

Overall, my feeling is that given this is only a 4 byte field, it would be simpler right now to not provide the shard count to the constructor and always deserialize it if the transport version is new enough, or supply 0 in line if it isn't. Thoughts?

[bcully]

ok, thanks

[bcully]

I mean, I think it would be nice if the public API were harder to misuse. My feeling is that supplying CLONE to this function is an indication of a logical mistake, so we shouldn't allow it. One way we could do that is to make getReshardSplitShardCount private and have two wrappers, e.g., getReshardSplitShardCountForIndexing and getReshardSplitShardCountForSearch that call getReshardSplitShardCount with HANDOFF and SPLIT respectively.

[jxie-1]

Small nit but seems like there's extra parentheses? Also for getReshardSplitShardCountChecksumForSearch

[ankikuma]

Yup, will fix it.

[bcully]

just one question on this version

[bcully]

Is this being executed on the source shard? If so, could this assertion fire when the coordinator's checksum is stale vs the source?