What Are Accumulators? A Must-Know for Apache Spark
There are a couple of concepts that make Spark even faster and more reliable when run over large clusters: accumulators and broadcast variables.
What exactly are accumulators? Accumulators are simply variables that are meant to count something—hence the name “accumulator.” You can specify an accumulator with a default value. If you’re starting from scratch, the number would typically be from 0.
Avoiding Mutable Variables
Why would you use accumulators instead of a normal variable? Like a lot of Spark installations, yours is probably running over large clusters, either in your data center or in some cloud provider’s machines.
One of the biggest uses for Spark is also computing a result across nodes and aggregating the results.
Normal variables are mutable, which means that it’s possible to modify them. The ability of slave nodes to change data instead of merely computing the results can cause all kinds of problems and side effects, such as race conditions or comprehension difficulties for programmers. Accumulators solve the problem by making it impossible for slave nodes to change the data. The slave nodes can’t even see the accumulator; they’ll just fetch the data and send it back to the slave node, which can see and change the information in the variables.
Use Case: Log Errors
So what would you use an accumulator for? A good example is for counting items that occur in your data. Searching through text files is another good example. If you’re a sysadmin, you’re probably accustomed to using tools like grep to sift through your log files, looking for things like errors and possible security problems. You might even have created some custom scripts that can look for these errors.
If you manage a large data center, how are you going to look through each node, when there may be hundreds or even thousands of log files? Spark can make this a possibility, but how will you be sure that the number of errors is accurate and that some node didn’t somehow create problems?
Accumulators will come to the rescue here.
We’ll get to see them in action. A similar example for counting in log files is in MapR’s Apache Spark cheat sheet.
We have our log file that contains the terms like “error, warning, info,” etc.
Here’s a contrived example, with just these terms in a text file, each on one line:
This log is named output.log and saved in the home directory. In real life, it could be a web server log, a system log, or any other kind of log with thousands of lines.
At the Scala prompt, we’ll define the accumulator that will count the number of errors and call it nErrors:
scala> val nErrors=sc.accumulator(0.0)
You’ll notice that it’s a floating-point number. We could have easily just used 0 instead of 0.0, as there isn’t really such a thing as a fractional error. This is merely a way to show that you can choose both integers and floating point for your accumulators.
Next, let’s import our log into Spark and convert it to an RDD:
scala> val logs = sc.textFile(“/Users/ddelony/output.log”)
Now we’ll look through the logs.
The slave nodes will look through a line, add 1 if it finds “error” in it, and send the result back to the master, which will then add them all up:
Now let’s see how many errors are in our log:
Result: Int = 2
We could easily modify this to look for warnings and traces, and with much longer files.
A related idea in Spark is the broadcast variable. A broadcast variable, as the name suggests, is broadcast from a master node to its slaves. Broadcast variables avoid the network bottlenecks when aggregating data. These variables let slaves quickly access RDD data and send the results back to the master.
Broadcast variables are frequently used for mapping operations. You create them with the sc.broadcast() command, as with accumulators, the initial value as an argument.
Both accumulators and broadcast variables can make advanced operations on large clusters faster, safer, and more reliable using Apache Spark. Learn more about real-time security log analytics with Spark.