Reviewing RavenDB app: ReleaseCandidateTracker
ReleaseCandidateTracker is a new RavenDB based application by Szymon Pobiega. I reviewed version 5f7e42e0fb1dea70e53bace63f3e18d95d2a62dd. At this point, I don’t know anything about this application, including what exactly it means, Release Tracking.
I downloaded the code and started VS, there is one project in the solution, which is already a Good Thing. I decided to randomize my review approach and go and check the Models directory first.
Here is how it looks:
This is interesting for several reasons. First, it looks like it is meant to keep a record of all deployments to multiple environments, and that you can lookup the history of each deployment both on the environment side and on the release candidate side.
Note that we use rich models, which have collections in them. In fact, take a look at this method:
Which calls to this method:
You know what the really fun part about this?
It ain’t relational model. There is no cost of actually making all of these calls!
Next, we move to the Infrastructure folder, where we have a couple of action results and the RavenDB management stuff. Here it how RCT uses RavenDB:
public static class Database { private static IDocumentStore storeInstance; public static IDocumentStore Instance { get { if (storeInstance == null) { throw new InvalidOperationException("Document store has not been initialized."); } return storeInstance; } } public static void Initialize() { var embeddableDocumentStore = new EmbeddableDocumentStore {DataDirectory = @"~\App_Data\Database"}; embeddableDocumentStore.Initialize(); storeInstance = embeddableDocumentStore; } }
It is using an embedded database to do that, which makes it very easy to use the app. Just hit F5 and go. In fact, if we do, we see the fully functional website, which is quite awesome 
.
Let us move to seeing how we are managing the sessions:
public class BaseController : Controller { public IDocumentSession DocumentSession { get; private set; } public CandidateService CandidateService { get; private set; } public ScriptService ScriptService { get; private set; } protected override void OnActionExecuting(ActionExecutingContext filterContext) { if (filterContext.IsChildAction) { return; } DocumentSession = Database.Instance.OpenSession(); CandidateService = new CandidateService(DocumentSession); ScriptService = new ScriptService(DocumentSession); base.OnActionExecuting(filterContext); } protected override void OnActionExecuted(ActionExecutedContext filterContext) { if (filterContext.IsChildAction) { return; } if(DocumentSession != null) { if (filterContext.Exception == null) { DocumentSession.SaveChanges(); } DocumentSession.Dispose(); } base.OnActionExecuted(filterContext); } }
This is all handled inside the base controller, and it is very similar to how I am doing that in my own apps.
However, ScriptService and CandidateService seems strange, let us explore them a bit.
public class ScriptService { private readonly IDocumentSession documentSession; public ScriptService(IDocumentSession documentSession) { this.documentSession = documentSession; } public void AttachScript(string versionNumber, Stream fileContents) { var metadata = new RavenJObject(); documentSession.Advanced.DatabaseCommands.PutAttachment(versionNumber, null, fileContents, metadata); } public Stream GetScript(string versionNumber) { var attachment = documentSession.Advanced.DatabaseCommands.GetAttachment(versionNumber); return attachment != null ? attachment.Data() : null; } }
So this is using RavenDB attachment to store stuff, I am not quite sure what yet, so let us track it down.
This is being used like this:
[HttpGet] public ActionResult GetScript(string versionNumber) { var candidate = CandidateService.FindOneByVersionNumber(versionNumber); var attachment = ScriptService.GetScript(versionNumber); if (attachment != null) { var result = new FileStreamResult(attachment, "text/plain"); var version = candidate.VersionNumber; var product = candidate.ProductName; result.FileDownloadName = string.Format("deploy-{0}-{1}.ps1", product, version); return result; } return new HttpNotFoundResult("Deployment script missing."); }
So I am assuming that the scripts are deployment scripts for different versions, and that they get uploaded on every new release candidate.
But look at the CandidateService, it looks like a traditional service wrapping RavenDB, and I have spoken against it multiple times.
In particular, I dislike this bit of code:
public ReleaseCandidate FindOneByVersionNumber(string versionNumber) { var result = documentSession.Query<ReleaseCandidate>() .Where(x => x.VersionNumber == versionNumber) .FirstOrDefault(); if(result == null) { throw new ReleaseCandidateNotFoundException(versionNumber); } return result; } public void Store(ReleaseCandidate candidate) { var existing = documentSession.Query<ReleaseCandidate>() .Where(x => x.VersionNumber == candidate.VersionNumber) .Any(); if (existing) { throw new ReleaseCandidateAlreadyExistsException(candidate.VersionNumber); } documentSession.Store(candidate); }
From looking at the code, it looks like the version number of the release candidate is the primary way to look it up. More than that, in the entire codebase, there is never a case where we load a document by id.
When I see a VersionNumber, I think about things like “1.0.812.0”, but I think that in this case the version number is likely to include the product name as well, “RavenDB-1.0.812.0”, otherwise you couldn’t have two products with the same version.
That said, the code above it wrong, because it doesn’t take into account RavenDB’s indexes BASE nature. Instead, the version number should actually be the ReleaseCandidate id. This way, because RavenDB’s document store is fully ACID, we don’t have to worry about index update times, and we can load things very efficiently.
Pretty much all of the rest of the code in the CandidateService is only used in a single location, and I don’t really see a value in it being there.
For example, let us look at this one:
[HttpPost] public ActionResult MarkAsDeployed(string versionNumber, string environment, bool success) { CandidateService.MarkAsDeployed(versionNumber, environment, success); return new EmptyResult(); }
As you can see, it is merely loading the appropriate release candidate, and calling the MarkAsDeployed method on it.
Instead of doing this needless, forwarding, and assuming that we have the VersionNumber as the id, I would write:
[HttpPost] public ActionResult MarkAsDeployed(string versionNumber, string environment, bool success) { var cadnidate = DocumentSession.Load<ReleaseCandidate>(versionNumber); if (cadnidate == null) throw new ReleaseCandidateNotFoundException(versionNumber); var env = DocumentSession.Load<DeploymentEnvironment>(environment); if (env == null) throw new InvalidOperationException(string.Format("Environment {0} not found", environment)); cadnidate.MarkAsDeployed(success, env); return new EmptyResult(); }
Finally, a word about the error handling, this is handled via:
protected override void OnException(ExceptionContext filterContext) { filterContext.Result = new ErrorResult(filterContext.Exception.Message); filterContext.ExceptionHandled = true; } public class ErrorResult : ActionResult { private readonly string message; public ErrorResult(string message) { this.message = message; } public override void ExecuteResult(ControllerContext context) { context.HttpContext.Response.Write(message); context.HttpContext.Response.StatusCode = 500; } }
The crazy part is that OnException is overridden only on some of the controllers, rather than in the base controller, and even worse. This sort of code leads to error details loss.
For example, let us say that I get a NullReferenceException. This code will dutifully tell me all about it, but will not tell me where it happened.
This sort of thing make debugging extremely hard.
Non overlapping time periods–because I like the pain of 2 AM wakeup calls
This post is partly in response for this post, discussing the Azure problem with leap year. But it is actually a bit more general than that.
In my code, here is how I define “one year from now”:
DateTime.Today.AddYears(1).AddDays(3);
As it turned out, this tend to have a lot of implications on your business, most of them are actually pretty good ones.
For a start, you will never get hit with a leap year bug, but more importantly, you are never going to have to deal with an immediate cutoff. This is important because it gives you time. Mostly, it gives you time to screw up, but having the time to do so without having an egg all of your face is a really nice thing.
For example, all of our subscriptions are using a similar method of calculation, and this is why we can take the ordering system down for a few hours or even a day or two and no one will actually notice. We have a big grace period in which we can work things out.
Sure, a user gets 3 “extra” days for free out of this, but frankly, I don’t give a damn. It is more important that I get the buffer, and most users like it much better when you don’t slam the doors in their faces on the first chance.
One of the things that is important is style, and giving a grace period for those sort of things is crucial.
Rotten Scheduling: Don’t roll your own
“We need to run a specific task every 72 hours, I thought about this approach…”
public class TimedTask { public static Timer Timer; public static void Init() { Timer = new Timer(ExecuteEvery72Hours, null, TimeSpan.FromHours(72), TimeSpan.FromHours(72)); } public static void ExecuteEvery72Hours() { // do something important } }
This is a bloody rotten idea, let us see why…
- What happens if your application is recycled every 29 hours?
- What happens if your application is always on, but during that 72 hour call, it was offline?
- What happens if your task actually takes more than 72 hours to run?
- What happens if the task fails?
- How do you report errors, warnings, etc?
Scheduling is a hard problem. There are a lot of things that you actually need to consider. And the code above is really considering none of them. I would be very surprised if something like that ever run. in production. It most certainly can’t be made to run reliably.
Things that run every X time, where X is a long time (hours / days) tend to be pretty important. In some of the systems that we wrote, that include doing things like updating VAT and interest rates, pulling from external source, generating the weekly report, etc.
You do not want this to be messed up.
If you need to do anything like that, make use of the builtin scheduling features of the OS you are running on (Windows Task Scheduler is an amazingly full featured, and cron isn’t bad if you are running on Linux). If you still insist on doing this in code, at the very least do something like this:
public class TimedTask { public static Timer Timer; public static void Init() { Timer = new Timer(()=> { if( (DateTime.UtcNow - GetLastExecutedTime()) > 72) ExecuteEvery72Hours(); }, null, TimeSpan.FromMinutes(1), TimeSpan.FromMinutes(1)); } public static void ExecuteEvery72Hours() { // do something important } }
This still has a lot of problems, but at least it it solving some crucial problems for you (note that GetLastExecutedTime has to be a persisted value).
Of course, if you need something like this in your code, you have better use something like Quartz, instead. Don’t roll your own. Sure, this is ten lines of code to do so, but as I said, this is the very basics, and it gets complex really fast.
Rotten Scheduling
“We need to run a specific task every 72 hours, I thought about this approach…”
public class TimedTask { public static Timer Timer; public static void Init() { Timer = new Timer(ExecuteEvery72Hours, null, TimeSpan.FromHours(72), TimeSpan.FromHours(72)); } public static void ExecuteEvery72Hours() { // do something important } }
Let us assume that this code is being called properly. Why is this a bloody rotten idea?
Reviewing Xenta and wishing I hadn’t
Xenta Framework is the extensible enterprise n-tier application framework with multilayered architecture.
I was asked by the coordinator for the project to review it.
This isn’t going to take long. I looked at the code, and I got this:
I am sure you remember the last time when I run into something like this, except that the number of projects at that solution was a quarter of what we had here, and I already had to hold my nose.
Looking a bit deeper:
Here is a hint, you are allowed to have more than one class per project.
Having that many project is a nightmare in trying to manage them. Finding things, actually making use of how things work. Not to mention that the level of abstractness required to support that is giving me a headache.
This is still without looking at the code, mind.
Now, let us look at the actual code. I like to start the controllers. The following code is from ForumController:
[HttpPost, ValidateInput(false)] public ActionResult Update(int forumID, FormCollection form) { ForumModel m = new ForumModel() { ForumID = forumID }; if(!m.Load()) { return HttpNotFound(); } if(TryUpdateModel<ForumModel>(m, "Model", form)) { try { m.Update(); } catch(Exception ex) { ModelState.AddModelError("API", ex); } } if(!ModelState.IsValid) { TempData.OperationStatus("Failed"); TempData.PersistObject("Model", m); TempData.PersistModelState(ModelState); } else { TempData.OperationStatus("Success"); } return RedirectToAction("Edit", new { ForumID = m.ForumID }); }
Seriously, I haven’t seen this style of architecture in a while. Let us dig deeper:
public bool Update() { using(ForumApiClient api = new ForumApiClient()) { var dto = api.UpdateForum(ForumID, ParentForumID, DisplayOrder, Flags); return Load(dto); } } public bool Load() { using(ForumApiClient api = new ForumApiClient()) { var dto = api.GetForum(ForumID); return Load(dto); } }
In case you are wondering, those are on the ForumModel class.
This piece of code is from the ForumPostModel class, it may look familiar:
public bool Load() { using(ForumApiClient api = new ForumApiClient()) { var dto = api.GetPost(PostID); return Load(dto); } }
This ForumApiClient is actually a WCF Proxy class, which leads us to this interface:
I won’t comment on this any further, but will go directly to ForumApiService, where we actually update a forum using the following code:
public ForumDto UpdateForum(int forumID, int parentForumID, int displayOrder, ForumFlags flags) { ForumService forumService = Infrastructure.Component<ForumService>(); if(forumService == null) { throw new FaultException(new FaultReason("forum service"), new FaultCode(ErrorCode.Infrastructure.ToString())); } try { ForumEntity entity = forumService.UpdateForum(forumID, parentForumID, displayOrder, flags, DateTime.UtcNow); return Map(entity); } catch(XentaException ex) { throw new FaultException(new FaultReason(ex.Message), new FaultCode(ex.Code.ToString())); } }
Infrastructure.Component represent a home grown service locator. Note that we have manual exception handling for absolutely no reason whatsoever (you can do this in a behavior once, and since this is repeated for each and every one of the methods…).
I apologize in advance, but here is the full UpdateForum method:
public ForumEntity UpdateForum(int forumID, int parentForumID, int displayOrder, ForumFlags flags, DateTime updatedOn) { ForumEntity oldForum = GetForum(forumID); if(oldForum == null) { throw new XentaException(ErrorCode.NotFound, "forum"); } ForumEntity parentForum = null; if(parentForumID != 0) { parentForum = GetForum(parentForumID); if(parentForum == null) { throw new XentaException(ErrorCode.NotFound, "forum"); } ForumEntity tmp = parentForum; HierarchyCheck: if(tmp.ForumID == forumID) { throw new XentaException(ErrorCode.InvalidArgument, "parentForumID"); } if(tmp.ParentForumID != 0) { tmp = tmp.Parent; goto HierarchyCheck; } } ForumEntity newForum = null; bool res = Provider.UpdateForum(forumID, parentForumID, oldForum.LastTopicID, oldForum.TopicCount, oldForum.PostCount, displayOrder, flags, oldForum.CreatedOn, updatedOn); if(res) { if(Cache != null) { Cache.Remove("ForumService_GetForum_{0}", oldForum.ForumID); } newForum = GetForum(forumID); if(EventBroker != null) { EventBroker.Publish<PostEntityUpdate<ForumEntity>>(this, new PostEntityUpdate<ForumEntity>(newForum, oldForum)); } } return newForum; }
Yes, it is a goto there, for the life of me I can’t figure out why.
Note that there is also this Provider in here, which is an IForumProvider, which is implemented by… ForumProvider, which looks like this:
public bool UpdateForum(int forumID, int parentForumID, int lastTopicID, int topicCount, int postCount, int displayOrder, ForumFlags flags, DateTime createdOn, DateTime updatedOn) { bool res = false; using(DbCommand cmd = DataSource.GetStoredProcCommand("fwk_Forums_Update")) { SqlServerHelper.SetInt32(DataSource, cmd, "ForumID", forumID); SqlServerHelper.SetInt32(DataSource, cmd, "ParentForumID", parentForumID); SqlServerHelper.SetInt32(DataSource, cmd, "LastTopicID", lastTopicID); SqlServerHelper.SetInt32(DataSource, cmd, "TopicCount", topicCount); SqlServerHelper.SetInt32(DataSource, cmd, "PostCount", postCount); SqlServerHelper.SetInt32(DataSource, cmd, "DisplayOrder", displayOrder); SqlServerHelper.SetInt32(DataSource, cmd, "Flags", (int)flags); SqlServerHelper.SetDateTime(DataSource, cmd, "CreatedOn", createdOn); SqlServerHelper.SetDateTime(DataSource, cmd, "UpdatedOn", updatedOn); res = DataSource.ExecuteNonQuery(cmd) > 0; } return res; }
And… this is about it guys.
I checked the source control, and the source control history for this goes back only to the beginning of February 2012. I assume that this is older than this, because the codebase is pretty large.
But to summarize, what we actually have is a highly abstracted project, a lot of abstraction. A lot of really bad code even if you ignore the abstractions, seemingly modern codebase that still uses direct ADO.Net for pretty much everything, putting a WCF service in the middle of the application just for the fun of it.
Tons of code dedicated to error handling, caching, etc. All of which can be handled as cross cutting concerns.
This is the kind of application that I would expect to see circa 2002, not a decade later.
And please note, I actually got the review request exactly 34 minutes ago. I didn’t review the entire application (nor do I intend to). I merely took a reprehensive* vertical slide of the app and followed up on that.
*Yes, this is intentional.
The best multi threading debugging tool is Microsoft Excel
In any system that gets to a certain size, especially one that is multi threaded, there are a certain class of bugs that are really a bitch to figure out.
They are usually boil down to some sort of a race condition. I have been doing that recently, trying to fix a bunch of race conditions in RavenDB. The problem with race conditions is that they are incredibly hard to reproduce, and even when you can reproduce them, you can’t really debug them.
I came up with the following test harness to try to narrow things down. Basically, create a test case that sometimes fails, and run it a thousand times.
Odds are that you’ll get the failure, but that isn’t the important bit. The important bit is that you setup logging properly. In my case, I set things up so the logging output to CSV and each test run had a different file.
This gives me output that looks like this:
23:54:34.5952,Raven.Database.Server.HttpServer,Debug,Request # 10: GET - 12 ms - <default> - 200 - /indexes/dynamic/Companies?query=&start=0&pageSize=1&aggregation=None,,11
23:54:34.5952,Raven.Client.Document.SessionOperations.QueryOperation,Debug,"Stale query results on non stale query '' on index 'dynamic/Companies' in 'http://reduction:8079/', query will be retried, index etag is: bcf0fed1-d975-43b4-bfb7-65221ef06b99",,1
23:54:34.5952,Raven.Database.Indexing.WorkContext,Debug,"No work was found, workerWorkCounter: 10, for: TasksExecuter, will wait for additional work",,6
23:54:34.5952,Raven.Database.Indexing.WorkContext,Debug,Incremented work counter to 11 because: WORK BY IndexingExecuter,,12
23:54:34.5952,Raven.Database.Indexing.WorkContext,Debug,"No work was found, workerWorkCounter: 11, for: TasksExecuter, will wait for additional work",,6
23:54:34.5952,Raven.Database.Indexing.WorkContext,Debug,"No work was found, workerWorkCounter: 11, for: ReducingExecuter, will wait for additional work",,21
23:54:34.5952,Raven.Database.Indexing.WorkContext,Debug,"No work was found, workerWorkCounter: 11, for: IndexingExecuter, will wait for additional work",,12
23:54:34.6952,Raven.Client.Document.SessionOperations.QueryOperation,Debug,Executing query '' on index 'dynamic/Companies' in 'http://reduction:8079/',,1
23:54:34.8172,Raven.Database.Indexing.Index.Querying,Debug,Issuing query on index Temp/Companies for all documents,,11
23:54:34.8172,Raven.Storage.Esent.StorageActions.DocumentStorageActions,Debug,Document with key 'companies/1' was found,,11
Not really helpful in figure out what is going on, right? Except for one tiny thing, we load them to Excel, and we use conditional formatting to get things to look like this:
The reason this is so helpful? You can actually see the threads interleaving. This usually help me get to roughly the right place, and then I can add additional logging so I can figure out better what is actually going on.
I was able to detect and fix several race conditions using this approach.
And yes, I know that this is basically printf() debugging. But at least it is printf() debugging with pretty colors.
Answering customer questions
This made me laugh:
And yes, I am aware that laughing at my own action is… strange.
Testing Rhino Service Bus applications
One of the really nice things about Rhino Service Bus applications is that we have created a structured way to handle inputs and outputs. You have messages coming in and out, as well as the endpoint local state to deal with. You don’t have to worry about how to deal with external integration points, because those are already going over messages.
And when you have basic input/output figured out, you are pretty much done.
For example, let us see the code that handles extending trail licenses in our ordering system:
public class ExtendTrialLicenseConsumer : ConsumerOf<ExtendTrialLicense> { public IDocumentSession Session { get; set; } public IServiceBus Bus { get; set; } public void Consume(ExtendTrialLicense message) { var productId = message.ProductId ?? "products/" + message.Profile; var trial = Session.Query<Trial>() .Where(x => x.Email == message.Email && x.ProductId == productId) .FirstOrDefault(); if (trial == null) return; trial.EndsAt = DateTime.Today.AddDays(message.Days); Bus.Send(new NewTrial { ProductId = productId, Email = trial.Email, Company = trial.Company, FullName = trial.Name, TrackingId = trial.TrackingId }); } }
How do we test something like this? As it turns out, quite easily:
public class TrailTesting : ConsumersTests { protected override void PrepareData(IDocumentSession session) { session.Store(new Trial { Email = "you@there.gov", EndsAt = DateTime.Today, ProductId = "products/nhprof" }); } [Fact] public void Will_update_trial_date() { Consume<ExtendTrialLicenseConsumer, ExtendTrialLicense>(new ExtendTrialLicense { ProductId = "products/nhprof", Days = 30, Email = "you@there.gov", }); using (var session = documentStore.OpenSession()) { var trial = session.Load<Trial>(1); Assert.Equal(DateTime.Today.AddDays(30), trial.EndsAt); } } // more tests here }
All the magic happens in the base class, though:
public abstract class ConsumersTests : IDisposable { protected IDocumentStore documentStore; private IServiceBus Bus = new FakeBus(); protected ConsumersTests() { documentStore = new EmbeddableDocumentStore { RunInMemory = true, Conventions = { DefaultQueryingConsistency = ConsistencyOptions.QueryYourWrites } }.Initialize(); IndexCreation.CreateIndexes(typeof(Products_Stats).Assembly, documentStore); Products.Create(documentStore); using (var session = documentStore.OpenSession()) { PrepareData(session); session.SaveChanges(); } } protected T ConsumeSentMessage<T>() { var fakeBus = ((FakeBus)Bus); object o = fakeBus.Messages.Where(x => x.GetType() == typeof(T)).First(); fakeBus.Messages.Remove(o); return (T) o; } protected void Consume<TConsumer, TMsg>(TMsg msg) where TConsumer : ConsumerOf<TMsg>, new() { var foo = new TConsumer(); using (var documentSession = documentStore.OpenSession()) { Set(foo, documentSession); Set(foo, Bus); Set(foo, documentStore); foo.Consume(msg); documentSession.SaveChanges(); } } private void Set<T,TValue>(T foo, TValue value) { PropertyInfo firstOrDefault = typeof(T).GetProperties().FirstOrDefault(x=>x.PropertyType==typeof(TValue)); if (firstOrDefault == null) return; firstOrDefault.SetValue(foo, value, null); } protected virtual void PrepareData(IDocumentSession session) { } public void Dispose() { documentStore.Dispose(); } }
And here are the relevant details for the FakeBus implementation:
public class FakeBus : IServiceBus { public List<object> Messages = new List<object>(); public void Send(params object[] messages) { Messages.AddRange(messages); } }
Now, admittedly, this is a fairly raw approach and we can probably do better. This is basically hand crafted auto mocking for consumers, and I don’t like the Consume<TConsumer,TMsg>() syntax very much. But it works, it is simple and it doesn’t really gets in the way.
I won’t say it is the way to go about it, but it is certainly easier than many other efforts that I have seen. We just need to handle the inputs & outputs and have a way to look at the local state, and you are pretty much done.
Strange production errors
The following code cause a really strange error in production:
new MailAddress("test@gmail.com");
The specified string is not in the form required for an e-mail address.
Huh?!
Obviously it is!
After immediately leaping to the conclusion that .NET is crap and I should immediately start writing my own virtual machine, I decided to dig a little deeper:
| Character | Code |
|---|---|
| t | 116 |
| e | 101 |
| s | 115 |
| t | 116 |
| @ | 64 |
| g | 103 |
| m | 109 |
| a | 97 |
| i | 105 |
| l | 108 |
| . | 46 |
| ? | 8203 |
| c | 99 |
| o | 111 |
| m | 109 |
8203 stands for U+200B or zero width space.
I guess that someone with a software testing background decided to get medieval on one of our systems.
I hate this code
I really hate this code, it is so stupid it makes my head hurt, and it have so much important factors in it. In particular, there is a lot of logic in here.
You might not see it as such, but a lot of this is actually quite important, default values, config parsing, decisions.
This is important. And it is all handled in a a few methods that goes on forever and hide important details in the tediousness of parameter unpacking.
This approach works if you have 5 parameters, not when you have 50.
Thou shall not delete
Ouch!
public ActionResult DeleteComment(int id) { var userComment = RavenSession.Load<UserComment>(id); if (userComment == null) return new HttpStatusCodeResult(204); var user = RavenSession.GetUser(User.Identity.Name); if(user == null || (user.Role != UserRole.Moderator && user.Role != UserRole.Admin)) return new HttpStatusCodeResult(403, "You must be logged in as moderator or admin to be able to delete comments"); RavenSession.Delete(user); return new HttpStatusCodeResult(204); }
And sometimes Things Just Works
I am in the process of writing an article about RavenDB, and I just wrote the following code to demonstrate RavenDB schema less nature:
using (var session = documentStore.OpenSession()) { session.Store(new Customer { Name = "Joe Smith", Attributes = { {"IsAnnoyingCustomer", true}, {"SatisfactionLevel", 8.7}, {"LicensePlate", "B7D-12JA"} } }); session.SaveChanges(); } using (var session = documentStore.OpenSession()) { var customers = session.Query<Customer>() .Where(x => x.Attributes["IsAnnoyingCustomer"].Equals(true)) .ToList(); Console.WriteLine(customers.Count); session.SaveChanges(); }
This worked, flawlessly.
The amount of work that we have put into RavenDB to make such things work is really scary when you sit down to think about it.
But it works, it does what I expect it to do and it doesn’t get in my way, woohoo!
Multi Threading Insanity
Insanity: doing the same thing over and over again and expecting different results.
Albert Einstein
You obviously never done any multi threading work, dude!
Relational searching sucks, don’t try to replicate it
This question on Stack Overflow is a fairly common one. Here is the data:
And the question was about how to get RavenDB to create an index that would have the following results:
|
|
|
Now, if you try really hard, you can probably try to get something like that, but that is the wrong way to go about this in RavenDB.
Instead, we can write the following index:
Note that this index is a simple multi map index, it isn’t a multi map/reduce index. There is no need.
This index can return one of three types.
- Car – just show the car to the user
- Person – now that we have a person, we have the id, and we can query for that:
- Unit – now that we have a unit, we have the id, and we can query for that:
This method means that we have to generate an additional query for some cases, but it has a lot of advantages. It is simple. It requires very little work from both client and server and it doesn’t suffer from the usual issues that you run into when you attempt to query over multiple disjointed data sets.
Now, the bad thing about this is that this won’t allow me to query for cross entity values, so it would be hard for me to query for the cars in Hadera owned by Ayende. But in most cases, that isn’t really a requirement. We just want to be able to search by either one of those, not all of them.
As the user’s put it: Insight into the RavenDB design mindset
I have been blogging for a long time now, and I am quite comfortable in expressing myself, but I was still blown away by this post to the RavenDB mailing list. Mostly because this thread sums up a lot of the core points that led me to design RavenDB the way it is today.
Rasmus Schultz has been able to put a lot of the thought processes behind the RavenDB design into words.
Back when I took my education in systems development, basically, I was taught to build aggregates as large, as complete and as connected as possible. But that was 14 years ago, and I'm starting to think, what they taught me back then was based on the kind of thinking that works for single-user, typically desktop applications, where the entire model was assumed to be in-memory, and therefore had to be traversible, since there was no "engine" you could go back to and ask for another piece of the model.
I can see now why that doesn't make sense for concurrent applications with large models persisted in the background. It just never occurred to me, and looked extremely wrong to me, because that's not how I was taught to think.
Yes. That is the exact problem that I see people run into over and over. The create highly connected object model, without regards to how they are persisted, and then they run into problems using them. And the assumption that everything is equally costly to read from memory is hugely expensive.
Furthermore, I'm starting to see why NHibernate doesn't really work well for me. So here's the main thing that's starting to dawn on me, and please confirm or correct me on this:
It seems that the idea behind NH is to configure the expected data-access strategies for the model itself. You write configuration-files that define the expected data-access strategies, but potentially, you're doing this based on assumptions about how you might access the data in this or that scenario.
The problem I'm starting to see, is that you're defining these assumptions statically - and while it is possible to deviate from these defined patterns, it's easy to think that once you've defined your access strategies, you're "done", and the model "just works" and you can focus on writing business logic, which too frequently turns out to be untrue in practice.
To be fair, you can specify those things in place, with full context. And I have been recommending to do just that for years, but yeah, that is a very common issue.
This contrasts with RavenDB, where you formally define the access strategies for specific scenarios - rather than for the model itself. And of course the same access strategy may work in different scenarios, but you're not tempted to assume that a single access strategy is going to work for all scenarios.
You're encouraged to think and make choices about what you're accessing and updating in each scenario, rather than just defining one overriding strategy and charging ahead blindly on the assumption that it'll always just work, or always perform well, or always make updates that are sufficiently small to not cause concurrency problems.
Am I catching on?
Precisely.
Lazy’s Man comprehensive search with RavenDB
RavenDB supports many types of searches, and in this case, I want to show something that belongs to the cool parts of the pile, but also on the “you probably don’t really want to do this”.
First, let me explain why this is cool, then we will talk about why you probably don’t want to do that (and finally, about scenarios where you actually do want this).
Here is an index that will allow you to search over all of the values of all of the properties in the user entity:
public class Users_AllProperties : AbstractIndexCreationTask<User, Users_AllProperties.Result> { public class Result { public string Query { get; set; } } public Users_AllProperties() { Map = users => from user in users select new { Query = AsDocument(user).Select(x => x.Value) }; Index(x=>x.Query, FieldIndexing.Analyzed); } }
This can be easily query for things like:
s.Query<Users_AllProperties.Result, Users_AllProperties>()
.Where(x=>x.Query == "Ayende") // search first name
.As<User>()
.ToList()
s.Query<Users_AllProperties.Result, Users_AllProperties>()
.Where(x=>x.Query == "Rahien") // search last name
.As<User>()
.ToList()
The fun part is that because we are actually going to index all the properties values into the Query field, which then allow us to easily query for every one of the values without any trouble.
The problem with that is that this is also quite wasteful and likely to lead to bad results down the road. Why?
For two major reasons. First, because this is going to index everything, and would result in larger index, more IO, etc. The second reason is that it is going to lead to bad results because you are now searching over everything, including the “last login date” and the “password hint”. That means that your search results relevancy is going to be poor.
So why would you ever want to do something like that if it is bad?
Well, there are a few scenarios where this is applicable. You need to do that if you want to be able to search over completely / mostly dynamic entities. And you want to do that if you have entities which are specifically generated for the purpose of being searched.
Both cases are fairly rare (the first case is usually covered by dynamic indexing, anyway), so I wanted to point this out, and also point out that it is usually far better to just specify what are the fields that actually matter for you.
The RavenDB indexing process: Optimization–Tuning? Why, we have auto tuning
The final aspect of RavenDB’s x7 jump in indexing performance is the fact that we made it freakishly smart.
During standard operation, most indexes only update when new information comes in, we are usually talking about a small number of documents for every indexing run. The problem is what happens when you have a sudden outpour of documents into RavenDB? For example, during nightly ETL batch, or just if you suddenly have a flood of users doing write operations.
The problem here is that we actually have to balance a lot of variable at the same time:
- The number of documents that we have to index*.
- The current memory utilization**.
- How any cores I have available to do the index work with?
- How much time do I have to do this?
Basically, the idea goes like this, if I have a small batch size, I am able to index more quickly, ensuring that we have fresher results. If I have big batch size, I am able to index more documents, and my overall indexing times goes down.
There is a non trivial cost associated with every indexing run, so reducing the number of indexing run is good, but the more documents I shove into a single run, the more memory will I use, and the more time it will take before the results are visible to the users.
* It is non trivial because there is no easy way for us to even know how many documents we have left to index (to find out is costly).
** Memory utilization is hard to figure out in a managed world. I don’t actually have a way to know how much memory I am using for indexing and how much for other stuff, and there is no real way to say “free the memory from the last indexing run”, or even estimate how much memory that took.
What we have decided on doing is to start from a very small (low hundreds) indexing batch size, and see what is actually going on live. If we see that we have more documents to index than the current batch size, we will slowly double the size of the batch. Slowly, because bigger batches requires more memory, and we also have to take into account current utilization, memory usage, and a bunch of other factors as well. We also go the other way around, able to reduce the indexing batch size on demand based on how much work we have to do right now.
We also provide an upper limit, because at some point it make sense to just do a big batch and make the indexing results visible than to try to do everything all at once.
The fun part in all of that is that once we have found the appropriate algorithm for this, it means that RavenDB will automatically adjust itself based on real production load. If you have an low update rate, it will favor small indexing batches and immediately execute indexing on the new documents. However, if you suddenly have a spike in traffic and the update rate goes up, RavenDB will adjust the indexing batch size so it will be able to keep up with your rate.
We have done some (read, a huge amount) testing with regards to this new optimization, and it turns out that under slow update frequency, we are seeing an average of 15 – 25 ms between a document update and it showing up in the indexes. That is pretty good, but what is going on when we have data just pouring in?
We tested this with a 3 million documents and 3 indexes. And it turn out that under this scenario, where we are trying to shove data into RavenDB as fast as it can accept it, we do see an increase in index latency. Under those condition, latency rose all the way to 1.5 seconds.
This is actually something that I am very happy about, because we were able to automatically adjust to the changing conditions, and were still able to index things at a reasonable rate (note that under this scenario, the batch size was usually 8 – 16 thousands documents, vs. the 128 – 256 that it is normally).
Because we were able to adjust the batch size on the fly, we could handle sustained writes at this rate with no interruption in service and no real need to think about this from the users perspective.. Exactly what the RavenDB philosophy calls for.
The RavenDB indexing process: Optimization–Getting documents from disk
As I noted in my previous post, we have done major optimizations for RavenDB. One of the areas where we improved the performance was reading the documents from the disk for indexing.
In Pseudo Code, it looks like this:
while database_is_running:
stale = find_stale_indexes()
lastIndexedEtag = find_last_indexed_etag(stale)
docs_to_index = get_documents_since(lastIndexedEtag, batch_size)
As it turned out, we had a major optimization option here, because of the way the data is actually structured on disk. In simple terms, we have an on disk index that lists the documents in the order in which they were updated, and then we have the actual documents themselves, which may be anywhere on the disk.
Instead of loading the documents in the orders in which they were modified, we decided to try something different. We first query the information we need to find the document on disk from the index, then we sort them based on the optimal access pattern, to reduce disk movement and ensure that we have as sequential reads as possible. Then we take those results in memory and sort them based on their last update time again.
This seems to be a perfectly obvious thing to do, assuming that you are aware of such things, but it is actually something that is very easy not to notice. The end result is quite promising, and it contributed to the 7+ times improvements in perf that we had for indexing costs.
But surprisingly, it wasn’t the major factor, I’ll discuss a huge perf boost in this area tomorrow.
RavenDB 1.2 work has started (and a road map)
Two years after the launch of RavenDB 1.0, (preceded by several years of working on 1.0, of course). We are now starting to actually plan and work on RavenDB 1.2.
You can read the planned roadmap here. RavenDB 1.2 is a big release, for several reasons.
- We are going to break RavenDB into several distinct editions, from the RavenDB Basic, suitable for small apps to RavenDB Standard which is the current version and all the way up to RavenDB enterprise, which is going to get some awesome features (windows clustering, index encryption, etc). We are also going to have plans for ISVs, which will allow them royalty free distribution of RavenDB for their customers.
- We are going to update our pricing structure. You’ll hear more about this when we have finalized pricing.
Because I am well aware of the possible questions, I suggest reading the thread discussing both editions and pricing in the mailing list:
- http://groups.google.com/group/ravendb/browse_thread/thread/f737cb1fe1420dc6/07734a5c7957a564
- http://groups.google.com/group/ravendb/browse_thread/thread/da5e15a75f3f6cb2/c17ff91a23f403dc
I will repeat again that we haven’t yet made final pricing decisions, so don’t take the numbers thrown around in those threads as gospel, but they are pretty close to what we will have.
This is the boring commercial stuff, but I am much more interested in talking about the new RavenDB roadmap. In fact, you can actually read all of our plans here. The major components for RavenDB 1.2 are:
- Better integration with C# 5.0 – much better support for async in general, async replicaiton, async sharding, etc.
- Enterprise level features – Windows Clustering, Full Database Encryption, Indexing Priorities, Compression, etc.
- Installer and server console - so you can manage your RavenDB installation more easily.
- Better Admin support – scheduled backups, S3 Backups, live restores, etc.
- Internalizing commonly used bundles – you shouldn’t have to take additional steps to make use of common functionality.
There are other stuff, of course, but those are the main pillars.
As mentioned, you can read all of that yourself, and we would welcome feedback on our current plans and suggestions for the new version.
The RavenDB indexing process: Optimization–De-parallelizing work
One of the major dangers in doing perf work is that you have a scenario, and you optimize the hell out of that scenario. It is actually pretty easy to do without even noticing it. The problem is that when you do things like that, you are likely to be optimizing a single scenario to perform really well, but you are hurting the overall system performance.
In this example, we have moved heaven and earth to make sure that we are indexing things as fast as possible, and we tested with 3 indexes, on an 4 cores machine. As it turned out, we actually had improved things, for that particular scenario.
Using the same test case on a single core machine was suddenly far more heavy weight, because we were pushing a lot of work at the same time. More than the machine could process. The end result was that it actually got there, but much more slowly than if we would have run things sequentially.
Of course, I give you the outliers, but those are good indicators for what we found out. Initially, we thought that we could resolve that by using the TPL’s MaxDegreeOfParallelism, but it turned out to be more complex than that. We have IO bound and we have CPU bound tasks that we need to execute, and trying to execute IO heavy tasks with this would actually cause issues in this scenario.
We had to manually throttle things ourselves, both to ensure limited number of parallel work, and because we have a lot more information about the actual tasks than the TPL have. We can schedule them in a way that is far more efficient because we can tell what is actually going on.
The end result is that we are actually using less parallelism, overall, but in a more efficient manner.
In my next post, I’ll discuss the auto batch tuning support, which allows us to do some really amazing things from the point of view of system performance.
The RavenDB indexing process: Optimization–Parallelizing work
One of the things that we are doing during the index process for RavenDB is applying triggers and deciding what, if and how a document will be indexed. The actual process is a bit more involved, because we have to do additional things (like figure out which indexes have already indexed those particular documents).
At any rate, the interesting thing is that this is a process which is pretty basic:
for doc in docs: matchingIndexes = FindIndexesFor(doc) if matchingIndexes.Count > 0: doc = ExecuteTriggers(doc) if doc != null: yield doc
The interesting thing about this is that this is a set of operations that only works on a single document at a time, and the result is the modified documents.
We were able to gain significant perf boost by simply moving to a Parallel.ForEach call. This seems simple enough, right? Parallelize the work, get better benefits.
Except that there are issues with this as well, which I’ll touch on my next post.
The RavenDB indexing process: Optimization
The actual process done by RavenDB to index documents is a fairly complex one. In order to understand what exactly happened, I decided to break it apart to pseudo code.
It looks something like this:
while database_is_running: stale = find_stale_indexes() lastIndexedEtag = find_last_indexed_etag(stale) docs_to_index = get_documents_since(lastIndexedEtag, batch_size) filtered_docs = execute_read_filters(docs_to_index) indexing_work = [] for index in stale: index_docs = select_matching_docs(index, filtered_docs) if index_docs.empty: set_indexed(index, lastIndexedEtag) else indexing_work.add(index, index_docs) for work in indexing_work: work.index(work.index_docs)
And now let me show you the areas in which we did some perf work:
while database_is_running: stale = find_stale_indexes() lastIndexedEtag = find_last_indexed_etag(stale) docs_to_index = get_documents_since(lastIndexedEtag, batch_size) filtered_docs = execute_read_filters(docs_to_index) indexing_work = [] for index in stale: index_docs = select_matching_docs(index, filtered_docs) if index_docs.empty: set_indexed(index, lastIndexedEtag) else indexing_work.add(index, index_docs) for work in indexing_work: work.index(work.index_docs)
All of which gives us a major boost in the system performance. I’ll discuss each part of that work in detail, don’t worry 
RavenDB & FreeDB: An optimization story
So, as I noted in a previous post, we loaded RavenDB with all of the music CDs in existence (or nearly so). A total of 3.1 million disks and 43 million tracks. And we had some performance problems. But we got over them, and I am proud to give you the results:
| Old | New | |
| Importing Data | Couple of hours | 42 minutes |
| Raven/DocumentsByEntityName | And hour and a half | 23.5 minutes |
| Simple index over disks | Two hours and twenty minutes | 24.1 minutes |
| Full text index over disks and tracks | More than seven hours | 37.5 minutes |
Tests were run on the same machine, and the database HD was a single 300 GB 7200 RPM drive.
I then decided to take this one step further, and check what would happen when we already had the indexes. So we created three indexes. One Raven/DocumentsByEntityName, one for doing simple querying over disks and one for full text searches on top of all disks and tracks.
With 3.1 million documents streaming in, and three indexes (at least one of them decidedly non trivial), the import process took an hour and five minutes. Even more impressive, the indexing process was fast enough to keep up with the incoming data so we only had about 1.5 seconds latency between inserting a document and having it indexed. (Note that we usually seem much lower times for indexing latencies, usually in the low tens of milliseconds, when we aren’t being bombarded with documents).
Next up, and something that we did not optimize, was figuring out how costly it would be to query this. I decided to go for the big guns, and tested querying the full text search index.
Testing “Query:Adele” returned a result (from a cold booted database) in less than 0.8 seconds. But remember, this is after a cold boot. So let us see what happen when we issue a few other queries?
- Query:Pearl - 0.65 seconds
- Query:Abba – 0.67 seconds
- Query:Queen – 0.56 seconds
- Query:Smith – 0.55 seconds
- Query:James – 0.77 seconds
Note that I am querying radically different values, so I force different parts of the index to load.
Querying for “Query:Adele” again? 32 milliseconds.
Let us see a few more:
- Query:Adams – 0.55 seconds
- Query:Abrahams – 0.6 seconds
- Query:Queen – 85 milliseconds
- Query:James – 0.1 seconds
Now here are a few things that you might want to consider:
- We have done no warm up to the database, just started it up from cold boot and started querying.
- I actually think that we can do better than this, and this is likely to be the next place we are going to focus our optimization efforts.
- We are doing a query here over 3.1 million documents, using full text search.
- There is no caching involved in the speed increases.
More goodies are coming in.
RavenDB & FreeDB: An optimization opportunity
Update: The numbers in this post are not relevant. I include them here solely so you would have a frame of reference. We have done a lot of optimization work, and the numbers are orders of magnitude faster now. See the next post for details.
The purpose of this post is to setup a scenario, see how RavenDB do with it, and then optimize the parts that we don’t like. This post is scheduled to go about two months after it was written, so anything that you see here is likely already fixed. In future posts, I’ll talk about the optimizations, what we did, and what was the result.
System note: I run those tests on a year old desktop, with all the database activity happening on a single 7200 RPM 300GB disk with 8 GB of RAM. Please don’t get to hung up on the actual numbers, I include them for reference, but real hardware on production system should kick this drastically higher. Another thing to remember is that this was an active system, while all of those operations were running, I was actively working and developing on the machine. The main point is to give us some sort of a metric about where we are, and to see whatever we like this or not.
We keep looking at additional things that we can do with RavenDB, and having large amount of information to tests things with is awesome. Having non fake data is even awesomer, because fake data is predictable data, while real data tend to be much more… interesting.
That is why I decided to load the entire freedb database into RavenDB and see what is happening.
What is freedb?
freedb is a database to look up CD information using the internet. This is done by a client (a freedb aware application) which calculates a (nearly) unique disc ID for a CD in your CD-Rom and then queries the database. As a result, the client displays the artist, CD-title, tracklist and some additional info.
The nice thing about freedb is that you can download their data* and make use of it yourself.
* The not so nice thing is that the data is in free form text format. I wrote a parser for it if you really want to use it, which you can find here: https://github.com/ayende/XmcdParser
So I decided to push all of this data into RavenDB. The import process took a couple of hours (didn’t actually measure, so I am not sure exactly how much), and we ended up with a RavenDB database with: 3,133,903 documents. Memory usage during the import process was ~100 MB – 150 MB (no indexes were present).
The actual size in RavenDB is 3.59 GB with 3.69 GB reserved on the file system.
Starting the database from cold boot takes about 4 seconds.
This is what the document looks like:
A full backup of the database took about 3 minutes, with all of the time dedicate for pure I/O.
Doing an export, using smuggler (on the local machine, 128 document batches) took about 18 minutes and resulted in a 803MB file (not surprising, smuggler output is a compressed file).
Note that we created this in a completely empty database, so the next step was to actually create an index and see how the database behaves. We create the default Raven/DocumentsByEntityName index, and got 5,870 seconds, so just over an hour and a half. For what it worth, this resulted in on disk index with a size of 125MB.
I then tried a much more complex index:
Just to give you some idea, this index gives you full text search support over just about every music cd that was ever made. To be frank, this index scares me, because it means that we have to have index entry for every single track in the world.
After indexing was completed, we ended up with a 700 MB on disk presence. Indexing took about 7 hours to complete. That is a lot, but remember what we are dealing with, we indexed 3.1 million documents, but we actually indexed, 52,561,894 values (remember, we index each and every track). The interesting bit is that while it took a lot of CPU (full text indexing usually does) memory usage was relatively low, it peaked about 300 MB and usually was around the 180MB).
Searching over this index is not as fast as I would like, taking about a second to complete. Then again, the results are quite impressive:
Well, given that this is the equivalent of a 52 million records (in this case, literally records 
) , and we are performing full text search, quite nice.
Let us see what happens when do something a little simpler, shall we?
In this case, we are only indexing 3.1 millions documents, and we don’t do full text searches. This index took 2.3 hours to run.
Queries on that are a much more satisfactory rate of starting out at 75 ms and dropping to 5 ms very quickly.
re: Kiip’s MongoDB’s experience
We got asked several times to respond to this post, about the reason Kiip moved away from MongoDB:
On the surface, RavenDB and MongoDB are really similar, looking at the Good parts of the Kiip post, we have schemalessness, easy replication, rich query langauge and we can be access from multiple languages.
But under the hood, RavenDB operates in a completely different way than MongoDB does. A vast majority of the issues that Kiip run into are actually low level (really low level, is some cases) issues that shouldn’t really be visible to the user.
Non-counting B-Trees
The fact that MongoDB uses non counting B-Trees? The only reason that the user care about that is that it actually impacts performance, but the Kiip blog mentions a bunch of other issues related to that.
In RavenDB, we use Lucene as the indexing format, and we really don’t care about the actual format of the indexes. We natively support Count() and limit / skip, because we feel that those are actually core parts of what most users need. In fact, our API allows us to get the total count of results of a paged query as a by product of actually making the query. There isn’t any additional cost for doing this.
Poor Memory Management
MongoDB relies on the OS to do the memory management, by letting the OS memory manager to do its work. That is actually quite a smart decision, because I can guarantee that more work has gone into optimizing the OS memory manager than could have been invested by the MongoDB project. But that is just part of the work.
In RavenDB, we are actually a managed application, so we don’t have directly control over memory. That doesn’t mean that we don’t actually manage it. We have several layers of caching in place, exactly because we know more than the OS about our own usage scenarios. In many cases, even if you are making a totally new request, it would never hit the disk, because we are keeping track on hot data and making sure that it resides in memory. This applies to both indexes and documents, mind. And during the indexing process we are very careful about memory management.
Sure, the OS memory manager is more optimized, but the database knows what is going on, and can predict its own usage patterns. That is how RavenDB does a lot of magic relating to auto configuration.
Uncompressed field names
In MongoDB, it is considered good practice to shorten field names for space optimization. But MongoDB doesn’t do it for you automatically.
RavenDB doesn’t compress field names, but at the same time, it isn’t a good practice to do so. In fact, I think that this is a horrible little mess. There are a lot of arguments against compressing field names, not the least of which is that it makes it pretty hard to figure out what it is that you are actually trying to do. Looking at the raw data, something that is done fairly frequently when debugging and troubleshooting becomes harder to work with and manage:
{
"a2": "nathan ",
"d3": "",
"a2": "2012-05-17T00:00:00.0000000",
"h3": "2012-04-15T00:00:00.0000000",
"r2": "archanid@sample.com",
"o2": "8169cd4a-babf-4015-a3c7-4d503642e021",
"o1": "products/NHProf"
}
Anyone wants to figure out what this document is about? And at least in this one, the data itself tells you a lot about the actual content.
There are far better alternatives in place. In RavenDB, we do full response / request compression, and we allow to do document compression on disk as well. If we were ever to get to the point where this would be a serious problem (and so far, it isn’t, even on large data sets), it would be less than a week of work to implement string interning inside RavenDB, so we would use the same string references for field values.
Global write lock
MongoDB (as of the current version at the time of writing: 2.0), has a process-wide write lock. … At this point, all other operations including reads are blocked because of the write lock.
Now, to be fair, also have a write lock, but it isn’t nearly as bad as it is in MongoDB. RavenDB write lock is actually for… writes, and it doesn’t interfere with the either reads or indexes. It is on the list of things to remove, but the crazy part is. So far, and we have really demanding users, no one cares. The reason that no one cares is that this is really small lock, and it only affects writes, it is not Stop the World type of thing.
Safe off by default
I am just going to let Kiip’s words stand for themselves (emphasis mine):
This is a crazy default, although useful for benchmarks. As a general analogy: it’s like a car manufacturer shipping a car with air bags off, then shrugging and saying “you could’ve turned it on” when something goes wrong.
RavenDB entire philosophy is around Safe by Default. That is the only thing that really make sense, because otherwise… Well… here is what happenned at Kiip:
We lost a sizable amount of data at Kiip for some time before realizing what was happening and using safe saves where they made sense (user accounts, billing, etc.).
Offline table compaction
Every now and then, you need to take down MongoDB and let it compact its on disk data. This is another Stop the World operation, and the only way to keep up when you do so is to have a hot standby ready.
RavenDB does all maintenance task while the server is up and serving requests. You don’t need any downtime just because RavenDB need to arrange some data on disk, we take care of that live, and with no interruption in service.
Secondaries do not keep hot data in RAM
As Kiip explains it:
The primary doesn’t relay queries to secondary servers, preventing secondaries from maintaining hot data in memory. This severely hinders the “hot-standby” feature of replica sets, since the moment the primary fails and switches to a secondary, all the hot data must be once again faulted into memory.
RavenDB doesn’t do so either, but for a drastically different reason. As I mentioned earlier, the way RavenDB works is quite different. When you are running a hot standby node, it will get the new data from the server and index it. We keep the index open, so for a lot of the data, it is already going to be in memory. For the rest, as I mentioned, we have several layers of caches that would help prevent needing to page gigabytes on data into memory.
Conclusion
As an utterly unbiased observer (
), I can say that RavenDB rocks.
What we are actually seeing here is that RavenDB put different emphasis on different things. I really care for making the common application level scenarios easy and nice to work with. And I had enough time supporting production level apps that I tried very hard to make sure that RavenDB can take care of itself for most scenarios without any hand holding.