[INDY-1680] Ability to switch off (remove) replicas with no changes of F value - Hyperledger JIRA

XML

Word

Printable

Details

Type: Task
Status: Complete
Priority: Medium
Resolution: Done
Affects Version/s: None
Fix Version/s: 1.6.78
Component/s: None
Labels:
- GA-0

Epic Link:
Switch off replicas
Sprint:
EV 18.18 Service Pack 2, EV 18.19
Documentation Impact:
Unset

Description

If a backup primary node is malicious (for example, disconnected), all replicas on this backup instance store all new requests and other replicas can't remove already ordered messages.
For solve this problem we should have ability to switch off (remove) replicas with no changes value F:

Acceptance criteria

add function to remove a replica (and cleaning client requests for this replica)
It should not lead to change of F value
re-evaluate requests queue once replica is removed to check if we can clear some requests
correctly process messages for switched off replicas
- discarding them may be fine for this version
make sure monitor works as expected
add tests for check this function and check the correct work of other systems (like a monitor, requests removing)

Attachments

Issue Links

blocks

INDY-1681 Switch off a replica that stopped because disconnected from a backup primary

Complete

INDY-1685 Start View Change if more than M replicas switched off.

To Develop

relates to

INDY-1248 [Design] Fix memory leaks when primary on backup instance is disconnected

Complete

Activity

People

Assignee:: Vladimir Shishkin

Reporter:: Renata Toktar

Watchers:: Olga Zheregelya, Renata Toktar, Vladimir Shishkin

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 05/Sep/18 8:40 AM

Updated:: 29/Mar/19 8:32 PM

Resolved:: 29/Mar/19 8:32 PM