Skip to content

Add ability to enforce concurrent query limits #3257

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 4 commits into
base: integration
Choose a base branch
from
Draft

Add ability to enforce concurrent query limits #3257

wants to merge 4 commits into from

Conversation

@lbschanno
Copy link
Collaborator

@lbschanno lbschanno commented Oct 31, 2025
edited
Loading

NOTE: All tests pass during a build, but I have had issues getting queries to run correctly in quickstart, so further integration testing and fixes are needed.

Add the ability to enforce concurrent query limits across a group of webservers. Zookeeper is used to track active queries and the following data:

  • The query ID
  • The user who submitted the query
  • The system the query was submitted on
  • The query logic the query originated from

When the ActiveQueryTracker is instructed to track a query, the following nodes will be created in Zookeeper under the 'ActiveQueries' namespace:

/users/<userDn>/<queryId>
/systems/<systemName>/<queryId>
/queryLogics/<queryLogic>/<queryId>
/queries/<queryId>
/queries/<queryId>/user           [data = byte[] value of userDn]
/queries/<queryId>/system         [data = byte[] value of systemName]
/queries/<queryId>/queryLogic     [data = byte[] value of queryLogic]
/queries/<queryId>/heartbeats

This is done through the use of the ActiveQueryTracker class. In addition to managing the nodes that record information about the query, the ActiveQueryTracker class is also responsible for providing instances of the QueryHeartbeat class.

A QueryHeartbeat is a wrapper around an ephemeral PersistentNode, provided by the Apache Curator library. As long as this node is present in Zookeeper for a particular query, the query will be considered to be active. Should the webservers fail over and the Zookeeper connection drop, these heartbeat nodes will automatically be deleted by Zookeeper.

The ActiveQueryTracker is also responsible for providing instances of the ActiveQuerySnapshot class, which represent a snapshot of total active queries at a point in time that are associated with a particular user, system, or query logic.

Query limit enforcement is done through the QueryLimiter class. Given a user, system, and query logic, it can determine if any of the following limits have been exceeded:

  • The max allowed concurrent queries for the user.
  • The max allowed concurrent queries of the query logic for the user.
  • The max allowed concurrent queries for the system.
  • The max allowed concurrent queries of the query logic for the system.

Limits may be defined and customized on a per-user and per-system basis. They may also be defined for groups of query logics. The classes UserLimitProvider, SystemLimitProvider, and QueryLogicGroupLimitProvider are respectively responsible for identifying the best limits to enforce for a user, system, and query logic. They will be initialized in the QueryLimiter after providing a QueryLimitConfiguration instance. The following can be configured:

On a system-wide basis:

  • The default concurrent user query limit. This applies to the total number of queries a user may run across all systems. May be overridden per user.
  • The default concurrent system query limit. Primarily to avoid a system getting overloaded. May be overridden per system.
  • The default of whether queries submitted to a system are counted towards the user's concurrent query total. This is always true.

On a per-system basis:

  • The system name/ids the configuration targets. Regex matching is supported.
  • The concurrent system query limit. Overrides the system-wide value.
  • Whether queries submitted to the system count towards a user's concurrent query total. Overrides the system-wide value.
  • The concurrent system query limit for different query logic groups. Regex matching against group names is supported.

on a per-user basis:

  • The user DN.
  • The user's concurrent query limit. Overrides the system-wide configuration.
  • The user's concurrent query limit for different query logic groups. Regex matching against group names is supported.

On a per-query-logic-group basis:

  • The group name.
  • The query logics included in the group. Regex matching is supported.
  • The default concurrent user query limit. This applies to the total concurrent queries a user may run that originate from a query logic in the group across all systems.

Given the possibilities for exact matches, partial regex matches, and wildcard regex matches, the determination of the best limit to use for any particular system or query logic is done by sorting matches into the following 'matching buckets' (in best-match priority):

  1. Exact match
  2. Partial regex (non-wildcard-only)
  3. Wildcard-only regex

and then selecting the lowest limit from the best bucket where we first found a match.

Currently the QueryLimiter is used in QueryExecutorBean, along with a QueryHeartbeatCache instance to cache heartbeats and keep them alive when a running query is cached for retrieval later. For the purposes of this feature, a query is considered to start when an Accumulo connection is retrieved from the connection factory, and is considered to end when the connection is returned to the factory.

The following error codes have been added:
412-20 - Concurrent query limit exceeded
500-164 - Error checking concurrent query limits

Closes #3100

@lbschanno lbschanno marked this pull request as draft October 31, 2025 18:15
@lbschanno lbschanno mentioned this pull request Oct 31, 2025
Open
@lbschanno
Add ability to enforce concurrent query limits
9c59e98 
Add the ability to enforce concurrent query limits across a group of
webservers. Zookeeper is used to track active queries and the following
data:
- The query ID
- The user who submitted the query
- The system the query was submitted on
- The query logic the query originated from

When the `ActiveQueryTracker` is instructed to track a query, the
following nodes will be created in Zookeeper under the 'ActiveQueries'
namespace:

```
/users/<userDn>/<queryId>
/systems/<systemName>/<queryId>
/queryLogics/<queryLogic>/<queryId>
/queries/<queryId>
/queries/<queryId>/user           [data = byte[] value of userDn]
/queries/<queryId>/system         [data = byte[] value of systemName]
/queries/<queryId>/queryLogic     [data = byte[] value of queryLogic]
/queries/<queryId>/heartbeats
```

This is done through the use of the `ActiveQueryTracker` class. In
addition to managing the nodes that record information about the query,
the `ActiveQueryTracker` class is also responsible for providing
instances of the `QueryHeartbeat` class.

A `QueryHeartbeat` is a wrapper around an ephemeral PersistentNode,
provided by the Apache Curator library. As long as this node is present
in Zookeeper for a particular query, the query will be considered to be
active. Should the webservers fail over and the Zookeeper connection
drop, these heartbeat nodes will automatically be deleted by Zookeeper.

The `ActiveQueryTracker` is also responsible for providing instances of
the `ActiveQuerySnapshot` class, which represent a snapshot of total
active queries at a point in time that are associated with a particular
user, system, or query logic.

Query limit enforcement is done through the `QueryLimiter` class. Given
a user, system, and query logic, it can determine if any of the
following limits have been exceeded:

- The max allowed concurrent queries for the user.
- The max allowed concurrent queries of the query logic for the user.
- The max allowed concurrent queries for the system.
- The max allowed concurrent queries of the query logic for the system.

Limits may be defined and customized on a per-user and per-system basis.
They may also be defined for groups of query logics. The classes
`UserLimitProvider`, `SystemLimitProvider`, and
`QueryLogicGroupLimitProvider` are respectively responsible for
identifying the best limits to enforce for a user, system, and query
logic. They will be initialized in the `QueryLimiter` after providing a
`QueryLimitConfiguration` instance. The following can be configured:

On a system-wide basis:
- The default concurrent user query limit. This applies to the total
  number of queries a user may run across all systems. May be overridden
  per user.
- The default concurrent system query limit. Primarily to avoid a system
  getting overloaded. May be overridden per system.
- The default of whether queries submitted to a system are counted
  towards the user's concurrent query total. This is always true.

On a per-system basis:
- The system name/ids the configuration targets. Regex matching is
  supported.
- The concurrent system query limit. Overrides the system-wide value.
- Whether queries submitted to the system count towards a user's
  concurrent query total. Overrides the system-wide value.
- The concurrent system query limit for different query logic groups.
  Regex matching against group names is supported.

on a per-user basis:
- The user DN.
- The user's concurrent query limit. Overrides the system-wide
  configuration.
- The user's concurrent query limit for different query logic groups.
  Regex matching against group names is supported.

On a per-query-logic-group basis:
- The group name.
- The query logics included in the group. Regex matching is supported.
- The default concurrent user query limit. This applies to the total
  concurrent queries a user may run that originate from a query logic in
  the group across all systems.

Given the possibilities for exact matches, partial regex matches, and
wildcard regex matches, the determination of the best limit to use for
any particular system or query logic is done by sorting matches into the
following 'matching buckets' (in best-match priority):

1. Exact match
2. Partial regex (non-wildcard-only)
3. Wildcard-only regex

and then selecting the lowest limit from the best bucket where we first
found a match.

Currently the `QueryLimiter` is used in `QueryExecutorBean`, along with a
`QueryHeartbeatCache` instance to cache heartbeats and keep them alive
when a running query is cached for retrieval later. For the purposes of
this feature, a query is considered to start when an Accumulo connection
is retrieved from the connection factory, and is considered to end when
the connection is returned to the factory.

The following error codes have been added:
412-20  - Concurrent query limit exceeded
500-164 - Error checking concurrent query limits

Closes #3100
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Limit the total number of queries a user can run concurrently in the system

2 participants

@lbschanno