In this Github directory, you can find Jørgen Melstveit's implementation of the consensus algorithm Practical Byzantine Fault Tolerance(PBFT) using the .Net framework Cleipnir. The Cleipnir framework is made by Thomas Sylvest Stidsborg. Information about Cleipnir is presented in the Cleipnir section. Additionally, the official Github repository for Cleipnir can be found here: [https://github.com/stidsborg/Cleipnir].
The PBFT implementation consists of the code found in the folders PBFT and PBFTClient. The source code for the Cleipnir framework is found in the Cleipnir folders. The PBFT.Tests folders consist of the unit tests performed for the PBFT implementation. It is important that the references listed in PBFT.csproj and PBFTClient.csproj are all working before attempting to run the PBFT implementation.
The PBFT directory contains the code needed to perform the PBFT protocol over several servers. Running the executable created from the PBFT directory will result in a single instance of a server participating in the PBFT protocol. This directory is where the majority of the code for the PBFT implementation will be found. This includes messages types, protocol workflow, networking, and handling incoming messages.
This project requires 3 arguments provided by the user in order to run properly. The first argument sets the server id, which is assigned using the parameter id. Example: id=0, will create a server using the identifier 0, and will use information stored for server 0 during its execution. The second argument tells the application whether the application is run on a local machine or over multiple hosts/docker containers. This argument uses the parameter test, where test=true tells the application to use localhost IP addresses for networking. The third argument tells the application whether or not to use Cleipnirs persistency functionality to recover the application's state. This argument uses the parameter per, where per=true tells the application to recover the stored data for the server and attempt to rejoin the rest of the system. We assume that per=true is only used if the server crashed/stopped during runtime and now attempts to connect back to the system again like nothing ever happened. Unfortunately, persistency is not fully supported in this PBFT implementation, and running the application with the per argument will not cause the desired results. The test and per parameters have default values in the case where the user does not list these parameters. Both of these parameters have defaulted to false value.
The PBFTClient directory contains the code needed to create a client application for the PBFT implementation. Running the executable created from the PBFTClient directory will create a single instance of a PBFT client. Similar to the server, the client has 2 arguments that have to be set before the application can run properly. These two arguments are the client id and the test parameter, which essentially works just the same as they do for the server implementation. The client is interactable, meaning the user will be asked to write the message, which will be sent as a request to the servers.
The PBFT implementation is recommended to be run using 4 servers and 1 client. By design, it is possible to run the implementation with more servers and clients than the recommended value. However, the application has not been fully tested for this; therefore, unexpected results may occur.
Running the project locally requires Microsoft Dotnet SDK version 5, this can be downloaded from this page: [https://dotnet.microsoft.com/download/dotnet/5.0]. After installing the correct SDK version for your system:
- Restore dependencies listed in PBFT.csproj and PBFTClient.csproj:
dotnet restore. - Build the dotnet project:
dotnet build.
To start a server:
3a. Move to the PBFT directory cd PBFT
3b. Call dotnet run using the test=true argument. Example running server 0 requires the command: dotent run id=0 test=true per=false
To start a client:
4a. Move to the PBFTClient directory: cd PBFTClient
4b. Call dotnet run using the test=true argument. Example running client 0 requires the command: dotnet run id=0 test=true
Steps for running the PBFT implementation using docker containers is listed under:
- Go to root directory PBFT-Master
- Build the server image:
docker build -t pbftserver -f PBFT/Dockerfile . - Build the client image:
docker build -t pbftclient -f PBFTClient/Dockerfile . - Set up docker network:
docker network create --subnet=192.168.2.0/16 pbftnetworkMake sure the new network does not intersect any other docker network! Alternatively change ip addresses for servers in PBFT/JSONFiles/serverInfo and PBFTClient/JSONFiles/serverInfo - Run Containers: Need atleast 5 terminals: 4 servers and 1 client! Example:
Serv0: docker run -it --name serv0 --net pbftnetwork --ip 192.168.2.0 --rm pbftserver id=0 test=false per=false
Serv1: docker run -it --name serv1 --net pbftnetwork --ip 192.168.2.1 --rm pbftserver id=1 test=false per=false
Serv2: docker run -it --name serv2 --net pbftnetwork --ip 192.168.2.2 --rm pbftserver id=2 test=false per=false
Serv3: docker run -it --name serv3 --net pbftnetwork --ip 192.168.2.3 --rm pbftserver id=3 test=false per=false
Client0: docker run -it --name client0 --net pbftnetwork --ip 192.168.2.5 --rm pbftclient id=0 test=false
Client1: docker run -it --name client1 --net pbftnetwork --ip 192.168.2.6 --rm pbftclient id=1 test=false
A docker-compose file exists within the PBFT folder. However, running the PBFT implementation using docker-compose is currently not supported due to a networking problem between the containers!
Cleipnir is a .NET (still experimental) framework allowing persistent programming on the .NET platform.
As part of my (now failed) PhD I investigated how persistent programming could simplify the implementation of distributed systems and in particular consensus algorithms such as Paxos and Raft. I think there is a potential for persistent programming that has still not been reached in industry. Especially, for the Saga microservice pattern. Hang in there and see if you agree :)
Persistent programming is a programming paradigm where the process state is persisted automatically by the runtime at well-coordinated points in time. Furthermore, the runtime will automatically reinstate the state of the process when it is restarted. Crucially, this occurs without explicitly instructed so in application code.
To clarify, consider the toy example of Pinger and Ponger, where each performs the following:
- Waits a second
- Sends a message “Ping” to Ponger
- Waits for a reply from Ponger afterwards restart form step 1.
- Waits for a “Ping” from Pinger
- Send a “Pong” to Pinger restart from step 1.
The functionality can be implemented using two classes and a main method.
class Pinger : IPropertyPersistable
{
public Source<string> Messages { get; set; }
public int Count { get; set; }
public async CTask Start()
{
while (true)
{
await Sleep.Until(1000);
Messages.Emit($"PING {Count++}");
var msg = await Messages.Where(m => m.StartsWith("PONG")).Next();
Console.WriteLine("PINGER: " + msg);
}
}
}class Ponger : IPropertyPersistable
{
public Source<string> Messages { get; set; }
public int Count { get; set; }
public async CTask Start()
{
while (true)
{
var msg = await Messages.Where(s => s.StartsWith("PING")).Next();
Console.WriteLine($"PONGER: {msg}" );
await Sleep.Until(1000);
Messages.Emit($"PONG {Count++}");
}
}
}public static void Main()
{
var storage = new SimpleFileStorageEngine(@".\PingPong.txt", deleteExisting: true);
//you can also use new SqlServerStorageEngine(...) and new InMemoryStorageEngine()
var engine = ExecutionEngineFactory.StartNew(storage);
engine.Schedule(() =>
{
var messages = new Source<string>();
var pinger = new Pinger { Messages = messages };
var ponger = new Ponger { Messages = messages };
_ = ponger.Start();
_ = pinger.Start();
});
while (true)
{
Console.WriteLine("PRESS ENTER TO STOP PING PONG APP");
Console.ReadLine();
engine.Dispose();
Console.WriteLine("PRESS ENTER TO START PING PONG APP");
Console.ReadLine();
engine = ExecutionEngineFactory.Continue(storage);
}
}When executing the toy example the process state is persisted when hitting enter the first time and subsequently loaded from persistent storage when hitting enter the second time. Thus, after the process state has persisted the first time. You can continue the process execution across restarts by changing the Main-method as follows:
public static void Main()
{
var storage = new SimpleFileStorageEngine(@".\PingPong.txt", deleteExisting: false);
var scheduler = ExecutionEngineFactory.Continue(storage);
while (true)
{
Console.WriteLine("PRESS ENTER TO STOP PING PONG APP");
Console.ReadLine();
scheduler.Dispose();
Console.WriteLine("PRESS ENTER TO START PING PONG APP");
Console.ReadLine();
scheduler = ExecutionEngineFactory.Continue(storage);
}
}Somewhat simplified, we can see from the example that persistent programming is the ability to store the complete state of the executing process automatically by the runtime. By the complete state we mean both the object graph (Pinger, Ponger and Source) and the state of “threads” (sleeping in Pinger or Ponger).
Before explaining how Cleipnir can be used to realize the Saga microservice pattern let us quickly review the pattern. The goto example in my mind is the travel agent who needs to complete the booking of a holiday including both flight and hotel for a customer. The travel agent’s workflow also entails reserving and deducting funds from the customer's credit card. Conceptually, the complete workflow is simple and can be summarized as follows:
- Reserve amount on customer’s credit card
- If it fails abort the workflow
- Otherwise, book hotel
- If it fails cancel the credit card reservation and abort
- Otherwise, book flight
- If it fails cancel the credit card reservation and hotel booking then abort
- Finally, deduct amount from credit card and cancel reservation
As the services required by the workflow are provided by three different companies using an ACID transaction is not an option. Thus, we (the developer) must ensure that any already performed actions are reversed (so called compensating action) if an error occurs at some point in the workflow. The issue is complicated by the fact that the reversed action must be performed despite process crashes. As such the workflow cannot be implemented as an ordinary method without using some orchestration framework or other persistence mechanism. Either way, my limited experience is that the end result is not that simple nor convenient for the developer.
Using persistent programming on the other hand changes the situation. In Cleipnir the workflow can be implemented as follows:
public async CTask Do()
{
var compensatingActions = new CList<Func<CTask>>();
try
{
var reservationId = await BankConnection.ReserveFunds(1_000, "1234-1234-1234-1234");
compensatingActions.Add(() => BankConnection.CancelReservation(reservationId));
var carBookingId = await AirlineConnection.Book("Mazda 2 Sport");
compensatingActions.Add(() => AirlineConnection.CancelBooking(carBookingId));
var hotelBookingId = await HotelConnection.Book("Hotel Dangleterre Suite");
compensatingActions.Add(() => HotelConnection.CancelBooking(hotelBookingId));
await BankConnection.DeductFunds(reservationId);
}
catch (Exception e)
{
compensatingActions.ForEach(a => a());
throw;
}
Console.WriteLine("TRAVEL AGENT: Workflow completed!");
}The source code is pretty much a straightforward implementation of the workflow in C#. If the process fails during the execution of the method Cleipnir ensures that the execution will continue when the process is brought back up again. The example source code is available in our repository if you want to play around with Cleipnir and test the different failure scenarios.
I know from myself that when presented with a software abstraction that I would immediately try to pick it apart and understand how it works underneath its shiny surface. Hopefully, the elevator speech above has sparked your interest enough to hang in there for the nitty gritty details.
Persistent programming in Cleipnir is realized using: Object Store Capable of persisting and retrieving object graphs from a storage engine. Storage Engine Persists and loads object entries to and from persistent storage. Currently, three implementations exist: SQL Server, Single file log and an in memory implementation for testing purposes. Execution Engine Responsible for executing the Cleipnir application and coordinating when to persist the process state and start the process after a restart.
Cleipnir’s object store is a rudimentary object database capable of persisting and fetching object graphs from a storage engine. The benefit of the object store is that it is able to persist delegates and Cleipnir’s custom tasks.
For instance, consider the following example of persisting an action:
public static void Main()
{
var storageEngine = new InMemoryStorageEngine();
var os = new ObjectStore(storageEngine);
var sayer = new Sayer();
sayer.Greeting = "Hello";
Action greet = sayer.Greet;
os.Attach(sayer);
os.Attach(greet);
os.Persist();
os = ObjectStore.Load(storageEngine);
greet = os.Resolve<Action>();
greet(); // Hello
os.Resolve<Sayer>().Greeting = "G'day";
greet(); // G’day
}
public class Sayer : IPropertyPersistable
{
public string Greeting { get; set; }
public void Greet() => Console.WriteLine(Greeting);
}Being able to persist delegate instances is not something new in .NET. Essentially, a delegate is just a method pointer (instance or static). However, it is somewhat frowned upon as the delegate may point to arbitrary code and possibly compiler generated classes. In Cleipnir we jump straight into the deep end and knowingly take the risk. Cleipnir’s object store is capable of persisting compiler generated classes such as display classes and state machines. E.g.
os.Attach((Action) (() => Console.WriteLine("Come join us!")));