10k

System Design Interview and beyond Note6 - Data store Internals

Published on

Log

Memory vs Disk

Log segment

Message position(offset)

  1. For broker, keeping message in memory makes gets and puts fast; but the memory are limited.

  2. When there is spike(producer send more messages), or message is too big or consumers gets slower. -> we need to drop the failed messages or store them somewhere else.

  3. If some of the messages are kept in memory, when it crashes or quit, messages are lost.

  4. RabbitMQ and ActiveMQ keep messages in both memory and disk, while Kafka store memory solely on disk.

  5. Log: (like a queue in memory): a file in the disk and append only; messages have id and append to the file. -> append-only and ordered.

  6. Difference between application logs and data logs/journal -> application logs are for human (human readable) while data logs are a sequence of bytes for program to read;

  7. Log operations

    1. Adding: append to file

    2. Deletion: when the message is consumed, we want to release the space, a message will be split into chunk/segment and stores into many files.(so they are smaller and easy/take less time to handle)

    3. Retrieval:

      1. Naive : iterate segments

      2. Better : keep the position of the segments file;

        image-20240304075842332

      3. Where and how to store this mapping? -> in memory so it's quick to access

      4. For how, see below section.

Index

How to implement an efficient index for a messaging system?

  1. Indices in database are similar to the thoughts above;

  2. Index: a lookup table that database search engines used to speed up data retrieval.

  3. Implementing index in a messaging system :

    1. One index(hash table) for all segments : (message id, segment id + position)
    2. Index for each segment: (message id, position) -> allows to load only active used indexes into memory (not all) and make it easy to drop indices along with segments.

  4. How to find the message index by message id? -> iterate all segment indices or -> another index table that stores the index info.

  5. (This is how Kafka do) e.g. we want retrieve a message with id 2;

    1. We binary search the id range index and find the segment ;
    2. Then look up segment by the segment index to find the position of the message;
    3. Then go to the segment and retrieve the message.

    image-20240304082228709

  6. Are the indices as vulnerable as before (in memory) -> no

    1. They can be re-created using original data/logs;
    2. If option1 is slow or complicated, indices can be stored in disk and retrieved.

Time series data

How to store and retrieve time series data at scale with low latency.

  1. Time series data: a sequence of data collected over time intervals.

  2. Data needs to collect, view and analyze over time;

    1. IoT: signals from devices;
    2. Monitoring : app perf metrics
    3. Social media: view stream data(views, likes...)
    4. Stock trading: capture the price change;

  3. Two types : measurement get at regular/irregular time intervals

    1. Regular: system health metrics,
    2. Irregular: views on Youtube

  4. Messages are time series data

  5. In a single machine, the memory store the segment indexes and disk stores the segment files

  6. Move to distributed system

    1. Data log file -> S3
    2. Indexes -> DynamoDB(low latency)

  7. When times series data comes, the write service store indexes into in-mem database and store bytes into object storage.

  8. we create a new S3 when the objects grows over the limit;

  9. When user retrieve particular time range objects, the read service query the index to identify the positions of objects and fetch data from object storage S3.

  10. This pattern is useful when design a solution for retrieving and storing time series data at scale and low latency.

    image-20240305080027304

Simple Key-value database

How to build a simple k-v database

Log compaction

  1. CRUD
    1. C: append records (key, v, timestamp, len....)
    2. R: in mem index to accelerate read;
    3. U: append record->duplicate key->index update position to the latest version;
    4. D:
      1. In messaging system, we don't delete segment until all messages in the segment are consumed; -> assume or precondition is the message in the segment will all be deleted eventually(messaging system);
      2. Here in the db is different: some are deleted, some stays forever, -> so we cannot rely on the all records delete so to delete the segment
      3. Tombstone : (same key with the record deleted) indicate the record is deleted, when a retrieve request comes, it checks the tombstone, find the record deleted and return nothing.
    5. Constantly append : Limited disk space ; indexes are too big and stores in the disk(not enough memory for index) -> high latency ; poor support to range query.
    6. To additive first concern(append only) -> log compaction
    7. Log companion ensure the newest records are retained and old records with the same key are deleted;
    8. A background thread ->
      1. Copy all segments from old to the new one;
      2. If there tombstone for record, the record is abandoned;(during copying)
      3. If there are duplicated keys for record, only newest one will be kept.
    9. Compaction makes segments smaller; and smaller segments can be combined for faster access since less segments has less index -> it's faster
    10. The default storage engine in Risk, a distributed NoSQL k-v store is based on this idea. ->
      1. Write: fast because append only and query index in memory .
      2. Read: single disk seek to retrieve the value.

B-tree index

How db and messaging system use B-tree

  1. Hash works well when we can hold all the keys in memory; when the # of keys grows and no memory to hold them ->

  2. One approach is split the hash into smaller pieces and store them in the disk; then hold the index of indexes in memory which is smaller comparing to original hash; (binary search for looking up)

  3. e.g. if we want to load the record5, here is the process:

    image-20240306074950814

  4. B-tree: self balance tree structure

    1. Widely used in DB and file system
    2. Self-balanced: means when the nodes are added or deleted, the tree modifies its structure to keep its height low. -> Log(n) operation

  5. Pages: basic fixed size blocks in b-tree

  6. Leaf pages either contain data or contain reference to data files where data can be retrieved.

  7. Non-leaf pages contains keys and reference to the child pages. (Range data)

  8. Root: when looking for a page, start with a root.

  9. The b-tree is used in almost all relational databases; e.g.

    image-20240306075935775

    1. For the above table we have generated a column key, and it's indexed, so when we are fetching the data by key, we can use the b-tree index to find the data;
    2. But if we want find the data by some other columns, for example, last name, we don't have index on it so the data will be check in sequence, which is pretty slow;
    3. To address this, we can add one more index on this column. And all the node keeps the reference to the PK, the search the tree find the last name, then search the first index by the PK, then the get the whole node(all information).

  10. In messaging system, KahaDB, file-based message store in ActiveMQ.

  11. Three parts:

    1. Data logs on diskI(messages)
    2. Metadata cache in memory as B-tree to accelerate the data query; when message comes in or consumed, the tree will rebalance itself.
    3. Metadata store to 1. hold the cache that cannot be put in memory due to size limit(pages will be swapped in and out); 2. Help rebuild the metadata cache(instead of iterate over all data logs)

    image-20240306081046884

Embedded database

Embedded vs remote database

  1. Normally when we are referring database, we are talking about remote database, database that runs one a dedicated server. SQL or NoSQL
  2. Clients make remote call to the server.
  3. There may be multiple servers -> distributed database
  4. Remote database -> live outside the application that use them.
  5. Issues:
    1. latency -> network, I/O to another server increase the processing time. -> message insertion and retrieve results in a remote call
    2. Failure mode
      1. Database is down/or slow
      2. Traffic burst -> Network partition
      3. Cache is full -> Flush cache to database immediately
    3. Cost big database is expensive -> cache ?
      1. Ineffective in messaging system read and write once
  6. Embedded database : integrated with the application that uses it.
    1. They are fine-tuned to be lightweight and resources it uses.
    2. They are fast and no need to make remote calls
    3. SQL andNp-SQL
    4. They support store in-memory, on-disk, and hybrid.
  7. Usage
    1. Many distributed system use them as a backend storage engine;
    2. Mobile devices and IoT devices used ;
    3. Good fit for a replacement for ad hoc disk files.
    4. As local cache: data enrichment/real-time analytics, ML

RockDB

Memtable

Write-ahead log

Sorted string table (SSTable)

  1. RockDB three basic constructs:

    1. Memtable:
      1. in memory buffer that takes incoming writes.
      2. Default implementation: SkipList(sorted set data structure)-> can be other implementations like self-balancing tree(R-B tree)
    2. Log file
      1. WAL(write ahead log): append only that capture writes
      2. Used to restore memtable after database crash.
    3. Sorted strings table
      1. File of k-v Paris sorted by keys
      2. To persist the data from memtable when memtable is full

  2. Workflow of database

    1. There is a write request , then data write to the memtable;
    2. Meanwhile log is appended to the write ahead log in disk;
    3. When memtable is full, it becomes immutable-> read only;
    4. then we write the data to the sorted string table -> Memtable has sorted keys(binary tree), by doing in-order traversal, data can be written to SSTable efficiently.
    5. Meanwhile, a new active memtable is allocated and all writes go to it. When it's full, the same things happens here->the background thread add the meltable to flush pipeline to flush all the memtables to the disk

    image-20240307073805609

  3. So at any time point, there may be several memtables, one accepting writes and others waiting to be flushed, each of them is associated with a WAL.

  4. When memtable are flushed, the log WALs are archived; after sometime, it's purged from disk.

  5. Reads: it goes active memtable, if no desired data, goto read only memtable; if no desired data goto SSTable.

    image-20240307074443880

  6. Why database stores keys in sorted order -> speed reads and writes.

    1. Keys are stored as a range in another level;(subset)
    2. Block(grouped data) are compressed to minimize the disk scan/IO -> keys point to the start of the block, whole block is read from a disk scan.

    image-20240307075017932

  7. If key does not exists? -> full scan is slow -> bloom filter -> memory efficient data structure that can quick check if a data exists in database.

  8. Memtable can also apply to memtables to reduce CPU when memtable if large

  9. SSTables are compacted periodically by background thread -> to reduce delete and duplicate keys -> can be done efficiently since keys are sorted. -> merge sort

LSM-tree vs B-tree

Log-structured merge-tree data structure

Write amplification and read amplification

  1. The data structure described above is called LSM-tree;
  2. Google Bigtable ,Hbases, Cassandra, LevelDB, InfluxDB
  3. b-tree-> MySQL, postgreSQL, CouchDB.
  4. LSM-tree are fast in writes since writes are buffered in memory and flushed to disk sequentially. B-tree is slow because when there is update or insert, it needs to rebalance the whole tree->multiple writes to the disk.
    1. write amplification: a single write to database result multiple writes;
    2. Read amplification: a single read to database result multiple reads;
  5. B-tree can be quick since it's balanced ; while LSM-tree can be slow if it scans many SSTable.
  6. But don't judge that LSM-tree is only good for wire heavy and B-tree is good for read heavy database.
  7. LSM-tree optimization to speed up reads -> bloom filter and in memory cache; and if system mostly queries recently inserted data, such data may still in memory and can be fetched pretty fast.
  8. Sharding is applicable to increate write throughput for both kinds of trees;
  9. A distributed cache can increase read throughput and reduce latency.
  10. There are ways of improving the read and write efficiency so the engine level algorithm becomes less relevant.
  11. B-trees has more predictable performance since LSM-tree has background threads to do flush and compaction -> may be in trouble and increase latency.
  12. LSM-trees has compaction that help to avoid disk fragment which increate the disk utilization. B-tree split can exceeds the limit of the space or when the segment is deleted, there will be unused spaces.

image-20240307082825374

Page cache

How to increase disk throughput (batching, zero-copy read)

  1. To increase throughput , typically we need to a address two questions

    1. Too many small I/Os -> batching
    2. Excessive byte copy -> zero-copy read

  2. batching: avoid to write to disk one by one, we buffer a batch of them in memory and send all at once

    1. Messaging sending to avoid disk I/Os
    2. Messaging sending to avoid network I/O

  3. Where and how to buffer ? -> OS page cache (a disk cache)

  4. Page is a fixed-length block of virtual memory. Smallest unit of memory management.

  5. When application write data to file, the data is firstly write to the page cache, then stays there until it must be written to the disk :

    1. Application explicitly request to flush
    2. OS decides to flush based on its own policy

  6. When application reads data, it will load from disk and adds to cache, when read again, it read from cache.

  7. All physical memory not directly allocated to applications is typically use by the operating system for page cache.

  8. In messaging system, when storing messages

    1. Records are are write to segment ,

    2. Then the data write to page cache (OS do some optimization by batching consecutive small write into bigger physical writes, and reorder the writes to minimize the movements of disk head)

    3. Then page cache flush to disk after a few seconds or a number of messages accumulated.

    4. We can use any local in-mem cache to buffering messages. (Page cache is a alternative cache provided by the OS)

      image-20240307092040874

  9. When reading messages from disk :

    1. Kennel space and applications space : kernel space for running OS and application space for running application

    2. In Linux:

      1. OS read data from disk to page cache in kernel space;
      2. Application read data from page to from kernel to user space;
      3. Application writes data to socket buffer in kernel space;
      4. OS copy data from socket buffer to the NIC buffer to send the data

      image-20240307092716135

    3. Data copied four times

  10. To avoid this -> Zero copy read

  11. Zero copy read: disk send data to page cache -> then send to NIC buffer directly. -> fast

    image-20240307092735694

  12. This happens when we don't need any data manipulation(like filtering messages) in application, otherwise the data must need to be loaded from kernel to application.

  13. Risk : broker accepted the message and added it to the page cache , then send ack to the producer. What if flush failed or the page cache crashed? The data is lost while the producer received a successful ack. -> the pain of in-memory buffer -> flush after every write may cause performance issue. -> message replication.

  14. Kafka uses this way page cache in write and reads.

Thoughts? Leave a comment