Skip to content

[ssw][ha] add doc for dpu restart #2175

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
zjswhhh wants to merge 15 commits into
base: master
Choose a base branch
from
Open

[ssw][ha] add doc for dpu restart #2175

Changes from all commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
d12076f
..
zjswhhh Jan 7, 2026
3a87bc2
..
zjswhhh Jan 7, 2026
5cff490
..
zjswhhh Jan 13, 2026
fc67ab7
address commetns
zjswhhh Jan 15, 2026
83485ac
address comments
zjswhhh Jan 26, 2026
7adee42
Update FRR maintainer responsibilities (#2179)
eddieruan-alibaba Jan 16, 2026
83fd937
update per offline
zjswhhh Jan 26, 2026
3b14c1b
fix rebase issue
zjswhhh Jan 26, 2026
4f8ff91
udpat4e
zjswhhh Jan 27, 2026
1b6d9ce
per offline
zjswhhh Jan 27, 2026
61feba2
typo
zjswhhh Jan 27, 2026
155ce92
minor update
zjswhhh Jan 28, 2026
74cb003
udpate table name
zjswhhh Jan 28, 2026
8c89156
udpate fields
zjswhhh Jan 28, 2026
abf7af0
remove dash in the table name
zjswhhh Jan 30, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
68 changes: 68 additions & 0 deletions doc/smart-switch/high-availability/dpu_reboot.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,68 @@
# DPU Restart – Solution for database out of sync
## Problem Statement
When DPU restarts (either as a planned or an unexpected event), DPU_[APPL|STATE] _DB that are hosted on NPU will not be restarted along with DPU. This causes some states to be out of sync and leads to unexpected behaviors in HA scenarios. Today's [SmartSwitch reboot HLD](https://github.com/sonic-net/SONiC/blob/master/doc/smart-switch/reboot/reboot-hld.md) does not cover database cleanup.

We observed a couple of issues with this problem:
1. BFD passive sessions (on DPUs) are created once only by hamgrd (when “DPU” table in NPU’s CONFIG_DB is consumed). When DPU is restarted, these BFD sessions are removed and will never be added again.
2. DPU_STATE_DB still holds stale entries/values for HA objects.
3. Even if we clean up DPU_[APPL|STATE] _DB, NPU’s APPL_DB and STATE_DB will still have stale “HA_SCOPE_CONFIG_TABLE” and “HA_SET_CONFIG_TABLE”.

## Solutions
The following are the proposed actions during DPU reboot.

1. Cleanup `DPU_*_DB` instances when DPU boots up.
Copy link

@yue-fred-gao yue-fred-gao Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cleanup happens when swss is restarted. It covers both DPU reboot and critical processes restart

Copy link
Contributor Author

@zjswhhh zjswhhh Jan 28, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done.

Note that database is cleaned up when swss is restarted, so both DPU reboot and critical process restart scenarios should be covered.
1. SDN controller needs to monitor NPU `STATE_DB` entries below:

1. `DPU_RESET_INFO_TABLE|DPU<dpu_index>: {'reset_status': 'true|false', 'timestamp': timestamp, 'dpu_id': dpu_id, 'vdpu_id': vdpu_id}`
This table will be updated by hamgrd based on `CHASSIS_STATE_DB|DPU_STATE`. Either `dpu_control_plane_state` or `dpu_midplane_link_state` being down will trigger hamgrd to set `reset_status` to `true`.
Controller will update the status to `false` when it finishes the service provision and HA programming after DPU is up.

1. `CHASSIS_MODULE_TABLE|DPU<dpu_index>: {'admin_status': 'up|down', 'oper_status': 'up|down', 'dpu_ready': 'true|false'}`
`admin_status` and `oper_status` will be updated by [SmartSwitch pmon](https://github.com/sonic-net/SONiC/blob/master/doc/smart-switch/pmon/smartswitch-pmon.md).

`dpu_ready` indicates if dpu is ready to be provisioned. Hamgrd will set the value to `false` when `dpu_control_plane_state` or `dpu_midplane_link_state` goes down, and set the value back to `true` when both states are up.

1. SDN controller will then
1. Delete stale HA_SET_CONFIG and HA_SCOPE_CONFIG
Copy link

@yue-fred-gao yue-fred-gao Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add the timing, when reset_status changes to true

Copy link
Contributor Author

@zjswhhh zjswhhh Jan 28, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Included already in last bullet point.

1. Re-program DASH objects, HA_SET_CONFIG and HA_SCOPE_CONFIG
Copy link

@yue-fred-gao yue-fred-gao Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

add condition when dpu_ready changes to true

Copy link
Contributor Author

@zjswhhh zjswhhh Jan 28, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Included already in last bullet point.

1. Once services are provisioned, HA is programmed, SDN controller will set `reset_status` to `false`
1. Hamgrd needs to change the passive BFD session creation logic, today the sessions are created statically. We need this change to avoid hamgrd restart. Hamgrd needs to create BFD session if `dpu_control_plane_state` changes from down to up or `dpu_midplane_state` from down to up, both states needs to be up for BFD to be created.

Note that DashHaOrch should cache the BFD session parameters, remove and create the sessions accordingly in planned shutdown.

## Workflow

```mermaid
sequenceDiagram
participant SDN Controller
participant hamgrd
participant pmon
participant NPU APPL_DB
participant NPU STATE_DB
participant NPU CHASSIS_STATE_DB
participant DPU_APPL_DB
participant DPU_STATE_DB
participant DPU

DPU->>DPU: 1. DPU shutdown
pmon->>NPU CHASSIS_STATE_DB: 2. Update dpu state to down
hamgrd->>NPU STATE_DB: 3. update local vdpu state in `DASH_HA_SCOPE_STATE` table, update `DPU_RESET_INFO_TABLE` and `CHASSIS_MODULE_TABLE`
NPU STATE_DB->>SDN Controller: 4. DPU_RESET_INFO_TABLE|DPU0: {"reset_status": "true", timestamp: <timestamp>, dpu_id: <dpu_id>, vdpu_id: <vdpu_id>} CHASSIS_MODULE_TABLE|DPU0: {"dpu_ready": "false"}
hamgrd->>DPU_APPL_DB: 5. hamgrd remove passive BFD sessions
SDN Controller->>hamgrd: 6. Delete HA_SCOPE_CONFIG and HA_SET_CONFIG
hamgrd->>DPU_APPL_DB: 7. Delete HA_SET, HA_SCOPE
hamgrd->>NPU STATE_DB: 8. Delete HA_SCOPE_STATE_TABLE, delete VNet routes.
DPU->>DPU: 9. DPU boots up
DPU->>DPU_APPL_DB: 10. Cleanup Database
DPU->>DPU_STATE_DB: 11. Cleanup Database
pmon->>NPU CHASSIS_STATE_DB: 12. Update DPU state to Up
hamgrd->>DPU_APPL_DB: 13. Create BFD passive sessions.
hamgrd->>NPU STATE_DB: 14. CHASSIS_MODULE_TABLE|DPU0: {"dpu_ready": "true"}

NPU STATE_DB->>SDN Controller: 15. CHASSIS_MODULE_TABLE|DPU0: {"dpu_ready": "true", 'admin_status':'up', 'oper_status':'up'}


SDN Controller->>hamgrd: 16. Create DASH objects, HA_SCOPE_CONFIG and HA_SET_CONFIG
SDN Controller->>NPU STATE_DB: 17. Set value DPU_RESET_INFO_TABLE|DPU0: {"reset_status": "false", timestamp:<timestamp>}
```