two phase commit security start
play

two-phase commit / security (start) 1 Changelog Changes made in - PowerPoint PPT Presentation

Jan 29, 2024 •250 likes •1.05k views

two-phase commit / security (start) 1 Changelog Changes made in this version not seen in fjrst lecture: quorum: add note that part of voting is updating other nodes to latest version 1 last time (1) RPC: remote function calls like local

  1. two-phase commit / security (start) 1

  2. Changelog Changes made in this version not seen in fjrst lecture: quorum: add note that part of voting is updating other nodes to latest version 1

  3. last time (1) RPC: remote function calls like local interface description language compiled into stubs (wrapper functions) marshalling (AKA serialization) of arguments/return value into bytes NFS: fjle operations into remote procedure calls NFS is stateless operation server uses fjle IDs — give inode number client remembers fd to fjle ID mapping nothing to recover on server failure nothing for server to forget on client failure 2

  4. last time (2) close-to-open consistency check for updates on open, write fjle on close idea: inconsistent behavior if two processes open fjle at once okay AFS: callbacks on write rather than proactive checks …but server still needs to know about write to callback 3

  5. fjle locking so, your program doesn’t like confmicting writes what can you do? if offmine operation, probably not much… otherwise fjle locking except it often doesn’t work on NFS, etc. 4

  6. advisory fjle locking with fcntl int fd = open(...); struct flock lock_info = { .l_type = F_WRLCK, // write lock; RDLOCK also available // range of bytes to lock: .l_whence = SEEK_SET, l_start = 0, l_len = ... }; int rv = fcntl(fd, F_SETLKW, &lock_info); lock_info.l_type = F_UNLCK; fcntl(fd, F_SETLK, &lock_info); 5 /* set lock, waiting if needed */ if (rv == − 1) { /* handle error */ } /* now have a lock on the file */ /* unlock --- could also close() */

  7. advisory locks fcntl is an advisory lock doesn’t stop others from accessing the fjle… unless they always try to get a lock fjrst 6

  8. POSIX fjle locks are horrible actually two locking APIs: fcntl() and fmock() fcntl: not inherited by fork fcntl: closing any fd for fjle release lock even if you dup2’d it! fcntl: maybe sometimes works over NFS? fmock: less likely to work over NFS, etc. 7

  9. fcntl and NFS seems to require extra state at the server typical implementation: separate lock server not a stateless protocol 8

  10. lockfjles use a separate lockfjle instead of “real” locks e.g. convention: use NOTES.txt.lock as lock fjle lock: create a lockfjle with link() or open() with O_EXCL can’t lock: link()/open() will fail “fjle already exists” for current NFSv3: should be single RPC calls that always contact server some (old, I hope?) systems: link() atomic, open() O_EXCL not unlock: remove the lockfjle annoyance: what if program crashes, fjle not removed? 9

  11. failure models how do machines fail?… well, lots of ways 10

  12. two models of machine failure fail-stop failing machines stop responding or one always detects they’re broken and can ignore them Byzantine failures failing machiens do the worst possible thing 11

  13. dealing with machine failure recover when machine comes back up does not work for Byzantine failures rely on a quorum of machines working requires 1 extra machine for fail-stop 12 requires 3 F + 1 to handle F failures with Byzantine failures

  14. distributed transaction problem distributed transaction two machines both agree to do something or not do something even if a machine fails 13

  15. distributed transaction example course database across many machines machine A and B: student records machine C: course records want to make sure machines agree to add students to course …even if one machine fails no confusion about student is in course 14

  16. the centralized solution one solution: a new machine D decides what to do for machines A-C which store records machine D maintains a redo log for all machines treats them as just data storage problem: we’d like machines to work indepdently not really taking advantage of distributed why did we split student records across two machines anyways? 15

  17. the centralized solution one solution: a new machine D decides what to do for machines A-C which store records machine D maintains a redo log for all machines treats them as just data storage problem: we’d like machines to work indepdently not really taking advantage of distributed why did we split student records across two machines anyways? 15

  18. decentralized solution sketch want each machine to be responsible just for their own data only coordinate when transaction crosses machine e.g. changing course + student records only coordinate with involved machines hopefully, scales to tens or hundreds of machines typical transaction would involve 1 to 3 machines? 16

  19. distributed transactions and failures extra tool: persistent log idea: machine remembers what happen on failure same idea as redo log: record what to do in log preview: whether trying to do/not do action …but need to handle if machine stopped while writing log 17

  20. two-phase commit: setup every machine votes on transaction commit — do the operation (add student A to class) abort — don’t do it (something went wrong require unanimity to commit otherwise, default=abort 18

  21. two-phase commit: phases phase 1: preparing each machine states their intention: commit/abort phase 2: fjnishing gather intentions, fjgure out whether to do/not do it 19

  22. preparing agree to commit promise: “I will accept this transaction” promise recorded in the machine log in case it crashes agree to abort promise: “I will not accept this transaction” promise recorded in the machine log in case it crashes never ever take back agreement! to keep promise: can’t allow interfering operations e.g. agree to add student to class reserve seat in class (even though student might not be added) 20

  23. preparing agree to commit promise: “I will accept this transaction” promise recorded in the machine log in case it crashes agree to abort promise: “I will not accept this transaction” promise recorded in the machine log in case it crashes never ever take back agreement! to keep promise: can’t allow interfering operations (even though student might not be added) 20 e.g. agree to add student to class → reserve seat in class

  24. they can’t change their mind once they tell you fjnishing learn all machines agree to commit: commit transaction actually apply transaction (e.g. record student is in class) record decision in local log learn any machine agreed to abort: abort transaction don’t ever try to apply transaction record decision in local log unsure which? just ask everyone what they agreed to do 21

  25. fjnishing learn all machines agree to commit: commit transaction actually apply transaction (e.g. record student is in class) record decision in local log learn any machine agreed to abort: abort transaction don’t ever try to apply transaction record decision in local log unsure which? just ask everyone what they agreed to do 21 they can’t change their mind once they tell you

  26. two-phase commit: blocking agree to commit “add student to class”? can’t allow confmicting actions… adding student to confmicting class? removing student from the class? not leaving seat in class? …until know transaction globally committed/aborted 22

  27. two-phase commit: blocking agree to commit “add student to class”? can’t allow confmicting actions… adding student to confmicting class? removing student from the class? not leaving seat in class? …until know transaction globally committed/aborted 22

  28. waiting forever? machine goes away, two-phase commit state is uncertain never resolve what happens solution in practice: manual intervention 23

  29. two-phase commit: roles typical two-phase commit implementation several workers one coordinator might be same machine as a worker 24

  30. two-phase-commit messages “will you agree to do this action?” on failure: can ask multiple times! I agree to commit/abort transaction worker records decision in log, returns same result each time I counted the votes and the result is commit/abort only commit if all votes were commit 25 coordiantor → worker: PREPARE worker → coordinator: VOTE-COMMIT or VOTE-ABORT coordinator → worker: GLOBAL-COMMMIT or GLOBAL-ABORT

  31. reasoning about protocols: state machines very hard to reason about dist. protocol correctness each machine is in some state know what every message does in this state avoids common problem: don’t know what message does 26 typical tool: state machine

  32. reasoning about protocols: state machines very hard to reason about dist. protocol correctness each machine is in some state know what every message does in this state avoids common problem: don’t know what message does 26 typical tool: state machine

  33. coordinator state machine (simplifjed) accumulate votes gets COMMIT workers resends vote? gets ABORT worker resends vote? after timeout resend PREPARE send COMMIT INIT receive AGREE-TO-COMMIT from all send ABORT receive any AGREE-TO-ABORT send PREPARE (ask for votes) COMMITTED ABORTED WAITING 27

  34. coordinator state machine (simplifjed) accumulate votes gets COMMIT workers resends vote? gets ABORT worker resends vote? after timeout resend PREPARE send COMMIT INIT receive AGREE-TO-COMMIT from all send ABORT receive any AGREE-TO-ABORT send PREPARE (ask for votes) COMMITTED ABORTED WAITING 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Security / VM (start) 1 last time two-phase commit: doing operation together data is split

Security / VM (start) 1 last time two-phase commit: doing operation together data is split

Security / VM (start) 1 last time two-phase commit: doing operation together data is split across several machines redo logging machines know what message to send when rebooting state machine to describe protocol for proving/testing

1.38k views • 78 slides
Easy Commit: A Non-blocking Two-phase Commit Protocol Suyash Gupta, Mohammad Sadoghi Dept. of

Easy Commit: A Non-blocking Two-phase Commit Protocol Suyash Gupta, Mohammad Sadoghi Dept. of

Warmup Motivation 2PC 3PC EC Implementation Evaluation Conclusions Easy Commit: A Non-blocking Two-phase Commit Protocol Suyash Gupta, Mohammad Sadoghi Dept. of Computer Science University of California Davis March 28, 2018 Suyash

915 views • 62 slides
Network FS / Access Control 1 last time two-phase commit consensus: workers + coordinator agree

Network FS / Access Control 1 last time two-phase commit consensus: workers + coordinator agree

Network FS / Access Control 1 last time two-phase commit consensus: workers + coordinator agree to commit no take-backs via redo-logging at each node blocking on failure idea of majority-vote consensus 2 logistics note last weeks

1.65k views • 132 slides
Two-Phase Commit (2PC) Y Site at which Xact originates is coordinator; other sites at which it

Two-Phase Commit (2PC) Y Site at which Xact originates is coordinator; other sites at which it

Two-Phase Commit (2PC) Y Site at which Xact originates is coordinator; other sites at which it executes are subordinates. Y When an Xact wants to commit: { Coordinator sends prepare msg to each subordinate. | Subordinate force-writes an abort or

493 views • 3 slides
Two-phase commit Implications of Two Generals Cannot get agreement in a distributed system to

Two-phase commit Implications of Two Generals Cannot get agreement in a distributed system to

Two-phase commit Implications of Two Generals Cannot get agreement in a distributed system to perform some action at the same time. What if we want to update data stored in multiple locations? In a linearizable fashion? Perform group of ops at

1.28k views • 54 slides
DATABSE SYSTEMS CONSENSUS ON TRANSACTION COMMIT. TODS06 MADE BY- ARCHIT GARG 1 Agenda

DATABSE SYSTEMS CONSENSUS ON TRANSACTION COMMIT. TODS06 MADE BY- ARCHIT GARG 1 Agenda

ECS 265 DISTRIBUTED DATABSE SYSTEMS CONSENSUS ON TRANSACTION COMMIT. TODS06 MADE BY- ARCHIT GARG 1 Agenda What is the paper about? Two Phase Commit Paxos Commit Conclusion 2 Introduction The distributed transaction commit

620 views • 31 slides
Non-Blocking Two Phase Commit (2PC) Using Blockchain Paul Ezhilchelvan , Amjad Aldweesh and Aad

Non-Blocking Two Phase Commit (2PC) Using Blockchain Paul Ezhilchelvan , Amjad Aldweesh and Aad

Non-Blocking Two Phase Commit (2PC) Using Blockchain Paul Ezhilchelvan , Amjad Aldweesh and Aad van Moorsel School of Computing, Newcastle University, UK Contributions Non-blocking 2PC in a synchronous database system Impossible when the

631 views • 12 slides
Two-phase commit Doug Woos Logistics notes Problem Set 2 out - Due next Friday Next week:

Two-phase commit Doug Woos Logistics notes Problem Set 2 out - Due next Friday Next week:

Two-phase commit Doug Woos Logistics notes Problem Set 2 out - Due next Friday Next week: Paxos - Notoriously difficult topic - Please do the reading! Caching Discussion Complexity as a downside Do the scalability/performance issues

642 views • 51 slides
CS 764: Topics in Database Management Systems Lecture 11: Two-Phase Commit (2PC) Xiangyao Yu

CS 764: Topics in Database Management Systems Lecture 11: Two-Phase Commit (2PC) Xiangyao Yu

CS 764: Topics in Database Management Systems Lecture 11: Two-Phase Commit (2PC) Xiangyao Yu 10/12/2020 1 Announcement Submit a 1-page course project proposal by Oct. 21 A list of project ideas are uploaded to the course website

961 views • 37 slides
access control 1 last time two phase commit and delayed messages simplifjcations in assignment

access control 1 last time two phase commit and delayed messages simplifjcations in assignment

access control 1 last time two phase commit and delayed messages simplifjcations in assignment quorum consensus: not requiring unanimity goal: use nodes for redundancy, but keep them consistent keep operating when suffjciently many nodes are

1k views • 62 slides
COMMUNITY GAME RETURN TO PLAY ROADMAP Phase 1 Phase 2A Phase 2B Phase 3 Phase 4 Phase 5 WRU &

COMMUNITY GAME RETURN TO PLAY ROADMAP Phase 1 Phase 2A Phase 2B Phase 3 Phase 4 Phase 5 WRU &

COMMUNITY GAME RETURN TO PLAY ROADMAP Phase 1 Phase 2A Phase 2B Phase 3 Phase 4 Phase 5 WRU & club Return to Household/ Non-Sanctioned sanctioned Season start - Competition Contact household Group Training Small Group

432 views • 6 slides
CS5412: TWO AND THREE PHASE COMMIT Lecture XI Ken Birman Continuing our consistency saga 2

CS5412: TWO AND THREE PHASE COMMIT Lecture XI Ken Birman Continuing our consistency saga 2

CS5412 Spring 2012 (Cloud Computing: Birman) 1 CS5412: TWO AND THREE PHASE COMMIT Lecture XI Ken Birman Continuing our consistency saga 2 Recall from last lecture: Cloud-scale performance centers on replication Consistency of

663 views • 47 slides
Application Security as a Service: Start Your Application Security Initiative in Less than a Day

Application Security as a Service: Start Your Application Security Initiative in Less than a Day

Application Security as a Service: Start Your Application Security Initiative in Less than a Day David Harper Practice Principal Fortify on Demand #MicroFocusCyberSummit Agenda The Application Security Problem Security Gate Secure DevOps

37.39k views • 30 slides
RPC (fjnish) / two-phase commit 1 Changelog Changes made in this version not seen in fjrst

RPC (fjnish) / two-phase commit 1 Changelog Changes made in this version not seen in fjrst

RPC (fjnish) / two-phase commit 1 Changelog Changes made in this version not seen in fjrst lecture: 19 November 2019: gRPC IDL example: update to be consistent with version of gRPC syntax used in assignment 19 November 2019: gRPC IDL example:

1.79k views • 142 slides
How To Make Your Commit Seen? Marta Rybczyska Akademy 2012, Tallin Commit message? What for?

How To Make Your Commit Seen? Marta Rybczyska Akademy 2012, Tallin Commit message? What for?

How To Make Your Commit Seen? Marta Rybczyska Akademy 2012, Tallin Commit message? What for? KDE Commit Digest Collaborative Effort http://commit-digest.org Open Source base: Enzyme http://enzyme-project.org/ Review Classification

308 views • 29 slides
IoT, SDR, and Car Security Aaron Luo Who am I Aaron Luo Come from Taiwan Start

IoT, SDR, and Car Security Aaron Luo Who am I Aaron Luo Come from Taiwan Start

IoT, SDR, and Car Security Aaron Luo Who am I Aaron Luo Come from Taiwan Start security research since 15 th Community Experience CHROOT/HITCON (security group) - member III,CSIST (government organizations) - training course

1.36k views • 110 slides
Special Purpose Hardware for Factoring: Special Purpose Hardware for Factoring: the NFS Sieving

Special Purpose Hardware for Factoring: Special Purpose Hardware for Factoring: the NFS Sieving

Special Purpose Hardware for Factoring: Special Purpose Hardware for Factoring: the NFS Sieving Step the NFS Sieving Step Adi Shamir Eran Tromer Adi Shamir Eran Tromer Weizmann Institute of Science Weizmann Institute of Science 1

824 views • 47 slides
Filtering and the matrix step in NFS Thorsten Kleinjung Laboratory for Cryptologic Algorithms

Filtering and the matrix step in NFS Thorsten Kleinjung Laboratory for Cryptologic Algorithms

Filtering and the matrix step in NFS Thorsten Kleinjung Laboratory for Cryptologic Algorithms EPFL, Station 14, CH-1015 Lausanne, Switzerland 1 / 17 Contents Overview NFS The matrix step Filtering A modified filtering approach 2 / 17

686 views • 22 slides
NFS over RDMA Brent Callaghan, Theresa Lingutla-Raj, Alex Chiu, Peter Staubach, Omer Asad Sun

NFS over RDMA Brent Callaghan, Theresa Lingutla-Raj, Alex Chiu, Peter Staubach, Omer Asad Sun

SIGCOMM 2003, NICELI Workshop NFS NFS over RDMA Brent Callaghan, Theresa Lingutla-Raj, Alex Chiu, Peter Staubach, Omer Asad Sun Microsystems, Inc. NFS over RDMA 1 of 17 SIGCOMM 2003, NICELI Workshop Why RDMA as a Transport? Nice to

525 views • 17 slides
Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally

Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally

Network File System - NFS NFS Specification NFS is a distributed file system (DFS) originally The NFS specification distinguishes between the implemented by Sun Microsystems. services provided by the mount mechanism and the remote file

105 views • 9 slides
April 3: Access Control Matrix Overview Access Control Matrix Model Boolean Expression

April 3: Access Control Matrix Overview Access Control Matrix Model Boolean Expression

April 3: Access Control Matrix Overview Access Control Matrix Model Boolean Expression Evaluation History April 3, 2017 ECS 235B Spring Quarter 2017 Slide #1 Overview Protection state of system Describes current settings,

310 views • 13 slides
The problem Given an integer N that we want to factor with the number field sieve, find two

The problem Given an integer N that we want to factor with the number field sieve, find two

N ONLINEAR POLYNOMIALS FOR NFS FACTORISATION Nicholas Coxon The problem Given an integer N that we want to factor with the number field sieve, find two homogeneous polynomials f 1 , f 2 Z [ x , y ] such that deg f 1 + deg f 2 = , where

646 views • 45 slides
Module 17: Distributed-File Systems Background Naming and Transparency Remote File

Module 17: Distributed-File Systems Background Naming and Transparency Remote File

Module 17: Distributed-File Systems Background Naming and Transparency Remote File Access Stateful versus Stateless Service File Replication Example Systems Silberschatz, Galvin, and Gagne 1999 Applied Operating System

726 views • 58 slides
CS 135: File Systems General Filesystem Design 1 / 22 Promises Promises Made by Disks (etc.)

CS 135: File Systems General Filesystem Design 1 / 22 Promises Promises Made by Disks (etc.)

CS 135: File Systems General Filesystem Design 1 / 22 Promises Promises Made by Disks (etc.) 1. I am a linear array of blocks 2. You can access any block fairly quickly 3. You can read or write any block independently of any other 4. If you

380 views • 25 slides

More recommend