docs/architecture/schedules.md
[!WARNING]
All documentation pertains to the CHASM-based Scheduler implementation, which is not yet generally available.
This page documents the internal architecture behind Temporal's Schedules feature. The target audience are server developers who are maintaining or operating the Scheduler implementation. Readers should already have an understanding of the feature's functional capabilities and usage.
Scheduler is implemented as a CHASM library, with all related implementation code located in chasm/lib/scheduler. Every schedule is backed by an execution whose root component is a Scheduler, which parents several other key components:
Scheduler).Scheduler).Backfiller per pending request).Only the Invoker makes service calls with side effect tasks; the rest of the scheduler is driven through pure timer tasks. The Scheduler component itself implements required CHASM interfaces for lifecycle management and visibility, request-reply handler functions, and helper functions for mutating state common to the entire scheduler tree.
classDiagram
direction TB
class Scheduler {
Schedule Input
Payloads
Shared State
IdleTask()
}
class Generator {
High Water Mark
...
GeneratorTask()
}
class Invoker {
High Water Mark
Buffered Starts
...
ProcessBufferTask()
ExecuteTask()
}
class Backfiller {
High Water Mark
Backfill Input
...
BackfillerTask()
}
Scheduler --> Generator
Scheduler --> Invoker
Scheduler ..> "0..*" Backfiller
Figure: A scheduler tree showing important state and tasks of the components. Not all state is shown here.
The Generator component buffers automated actions according to the schedule's specification. This is driven through GeneratorTask, a timer task that fires, and re-schedules itself, on the schedule's interval until the schedule is complete. Generator is solely responsible for buffering automated actions, not driving those actions to execution; that work is handed off to the Invoker. The following high-level sequence diagram indicates the Generator's contribution towards firing an action:
sequenceDiagram
participant Generator
participant Invoker
participant FrontendService
loop specification interval
Generator->>Generator: execute GeneratorTask
Generator->>Invoker: enqueue buffered starts
Invoker->>Invoker: schedule ProcessBufferTask
Invoker-->>Generator:
Generator->>Generator: schedule GeneratorTask
end
Invoker->>Invoker: execute ProcessBufferTask
Invoker->>Invoker: resolve buffered starts
Invoker->>Invoker: schedule ExecuteTask
Invoker->>Invoker: execute ExecuteTask
Invoker->>FrontendService: call StartWorkflowExecution
FrontendService-->>Invoker:
Figure: A high-level sequence diagram of how scheduler kicks off actions on interval.
LastProcessedTime: Generator advances this high water mark whenever it has finished buffering all actions up to that point in time. This also includes when periods of time are skipped over, such as when the schedule is updated (all actions prior to update time are discarded), or when an action's schedule latency would exceed the schedule's catchup window.GeneratorTask: Drives the automated actions loop. When a schedule is first created (or updated), a GeneratorTask is scheduled for immediate execution. GeneratorTask will reschedule itself for subsequent execution at the point in time where the next automated action is scheduled to fire. If the schedule has completed (by exceeding its lifetime, or action count), GeneratorTask won't reschedule itself, and will instead schedule the Scheduler's IdleTask. The idle task keeps the schedule open for a retention period before closing it, ensuring the schedule doesn't immediately disappear after completion.
GeneratorTask's primary responsibility is to call EnqueueBufferedStarts on the Invoker, handing off actions for execution (see also Specification Processor in this document):
flowchart TD
A{{GeneratorTask Executes}}
B{New schedule?}
C[Set LastProcessedTime to CreateTime]
D{Schedule updated since LastProcessedTime?}
E[Set LastProcessedTime to UpdateTime]
F[Process time range and buffer starts]
G[Update LastProcessedTime]
H{Is scheduler idle?}
I[Schedule IdleTask]
J{Is scheduler paused?}
K[Reschedule GeneratorTask]
L{{Finish executing}}
A --> B
B -->|Yes| C
B -->|No| D
C --> D
D -->|Yes| E
D -->|No| F
E --> F
F --> G
G --> H
H -->|Yes| I
H -->|No| J
I --> L
J -->|Yes| L
J -->|No| K
K --> L
Figure: GeneratorTask's decision tree for buffering starts (trivial branches omitted).
Note that when the schedule is paused, GeneratorTask finishes without rescheduling itself. Whenever the schedule is updated (including being resumed from a paused state), a new GeneratorTask is scheduled for immediate execution, restarting the loop.
FutureActionTimes is also maintained in Generator's state. This field is a cached view of speculated action times, and is returned as part of describe responses, but is not involved in actual start time calculations, action buffering, or even as assured guarantees of execution (e.g., a listed time may be dropped for having missed catchup window).A Backfiller component is created for every backfill requested through the API (including "trigger immediately" requests). Similar to the GeneratorTask, the BackfillerTask is responsible for driving a backfill to completion by enqueueing buffered actions into the Invoker. Each backfiller acts as a distinct buffer per backfill request, and will avoid monopolizing the Invoker's shared BufferedStarts field, instead backing off and retrying while waiting for the buffer to drain.
The Backfiller component fits into the scheduler sequence diagram similarly to the Generator:
sequenceDiagram
participant Backfiller
participant Invoker
loop until backfill is complete
Backfiller->>Backfiller: execute BackfillerTask
Backfiller->>Invoker: enqueue buffered starts
Invoker->>Invoker: schedule ProcessBufferTask
Invoker-->>Backfiller:
Backfiller->>Backfiller: schedule BackfillerTask
end
Figure: A high-level sequence diagram of how scheduler uses the Backfiller to enqueue manual starts. Invoker details omitted.
LastProcessedTime: Similar to Generator, Backfiller maintains a high water mark that is advanced whenever the backfill makes progress. The high water mark is set to the point in time within the backfill request's specified time range that has been processed, and is therefore moved whenever buffered starts are enqueued.Request: Backfillers are 1:1 with backfill requests, and embed the original request within their state.BackfillId: Every backfiller is assigned a random UUID upon creation.BackfillerTask: Drives the backfill to completion. Whenever a Backfiller is created, a BackfillerTask is scheduled for immediate execution. If the backfill cannot be completed in a single execution (too many actions to comfortably buffer at a time), the BackfillerTask will be rescheduled with an exponential backoff for later retry (unlimited retries). Once the backfill is completely filled, the Backfiller deletes its own component without rescheduling a task.
BackfillerTask works similarly to GeneratorTask, but acts as a buffer for enqueueing starts into the shared queue:
flowchart TD
A{{BackfillerTask executes}}
B{Is buffer full?}
C([Process time range and buffer starts])
D{Is backfill complete?}
E[Delete backfiller]
F[Update LastProcessedTime]
G([Reschedule with backoff time])
H{{Finish executing}}
A --> B
B -->|Yes| G
B -->|No| C
C --> D
D -->|Yes| E
D -->|No| F
E --> H
F --> G
G --> H
Figure: BackfillerTask's decision tree (trivial branches omitted).
TriggerImmediately requests, those which execute only a single action, are always immediately buffered into the Invoker's queue (regardless of queue utilization).Backfiller doesn't make use of completion callbacks as a signal; for example, if after rescheduling BackfillerTask, Invoker managed to drain its queue ahead of the exponential backoff window, Backfiller would sit idle until the timer expires, despite being theoretically able to proceed immediately.The Invoker component is responsible for driving buffered starts to execution, managing backoffs, failures, and retries. Invoker centralizes where service calls are made within the Scheduler, and handles starting, cancelling, and terminating actions/workflows. Much of the Invoker's execution state is set on, and scoped to, individual BufferedStart structs; each buffered start has its own attempt count and backoff time.
BufferedStarts: Invoker manages the scheduler's buffered starts/actions through their entire lifecycle (see BufferedStart Lifecycle below). The Invoker function EnqueueBufferedStarts is used to schedule an action for execution by adding it to this list, setting Attempt to 0. Once added to the list, the ProcessBufferTask will evaluate the schedule's overlap policy, as well as other scheduler state, before bumping Attempt to 1, which makes it eligible for ExecuteTask to drive to completion. Entries remain in BufferedStarts after starting (with RunId set) and after completion (with Completed set), providing computed views for running workflows and recent actions.
BufferedStart entry is itself stateful, maintaining its own Attempt and BackoffTime. Only once Attempt is past 0 will it be eligible for execution (see getEligibleBufferedStarts).CancelWorkflows: Workflows that will be cancelled due to overlap policy. The ProcessBufferTask adds to this list, and the ExecuteTask consumes the list.TerminateWorkflows: Similar to CancelWorkflows.LastProcessedTime: A high water mark used to evaluate when to fire tasks that are pending a retry after execution failure.ProcessBufferTask: Evaluates overlap policies and determines which buffered starts will become eligible for execution via the ExecuteTask. This is the step where actions may be discarded (e.g., BUFFER_ONE policy with a running workflow) or deferred (waiting for a running workflow to complete). ProcessBufferTask itself does not make any service calls to determine the state of running workflows, and instead relies on the computed view of running workflows derived from BufferedStarts (entries with RunId set but not yet completed), which is updated through ExecuteTask and completion callbacks, discussed below.
flowchart TD
A{{ProcessBufferTask executes}}
B([Resolve overlap policies])
C{Need terminate or cancel?}
D[Queue terminate/cancel requests]
E{Starts ready for execution?}
F{Is action manual?}
G{Is schedule paused?}
H{Scheduled actions remaining?}
I{Is start expired?}
J[Discard start]
K[Mark for execution]
L([Schedule ExecuteTask])
M{{Finish executing}}
A --> B
B --> C
C -->|Yes| D
C -->|No| E
D --> E
E -->|Yes| F
E -->|No| L
F -->|Yes| I
F -->|No| G
G -->|Yes| J
G -->|No| H
H -->|No| J
H -->|Yes| I
I -->|Yes| J
I -->|No| K
J --> E
K --> E
L --> M
Figure: ProcessBufferTask's decision tree (trivial branches omitted).
ExecuteTask: Drives all eligible buffered starts and pending cancel/terminate requests to execution by making service calls. ExecuteTask reschedules itself whenever a service call fails and must be retried, as well as when it wants to "checkpoint" a batch of completed executions by flushing to mutable state.
flowchart TD
A{{ExecuteTask executes}}
B([Terminate pending workflows])
C([Cancel pending workflows])
D{Eligible starts remaining?}
E{Already completed?}
F{Retry limit exceeded?}
G([Start workflow])
H{Success?}
I[Record start result]
J{Retryable error?}
K[Apply backoff for retry]
L[Drop start]
M([Record execute results])
N{Starts pending retry?}
O([Reschedule ExecuteTask])
P{{Finish executing}}
A --> B
B --> C
C --> D
D -->|Yes| E
D -->|No| M
E -->|Yes| D
E -->|No| F
F -->|Yes| L
F -->|No| G
G --> H
H -->|Yes| I
H -->|No| J
I --> D
J -->|Yes| K
J -->|No| L
K --> D
L --> D
M --> N
N -->|Yes| O
N -->|No| P
O --> P
Figure: ExecuteTask's decision tree (trivial branches omitted).
The BufferedStart struct is the central data structure for tracking scheduled actions through their entire lifecycle. Each action progresses through distinct states, from initial buffering, through execution, to completion. The Invoker maintains a queue of BufferedStart entries, where each entry tracks its own state independently.
The Attempt field encodes the current state: 0 for newly enqueued (pending processing), -1 for deferred (processed but waiting on overlap policy, e.g., BUFFER_ONE with a running workflow), and ≥1 for ready/retrying execution. When a workflow completes, deferred entries are reset to 0 so the overlap policy can be re-evaluated.
stateDiagram-v2
direction LR
[*] --> Pending: EnqueueBufferedStarts
Pending --> Deferred: ProcessBufferTask (overlap)
Pending --> Ready: ProcessBufferTask
Deferred --> Pending: Workflow completes
Ready --> Started: ExecuteTask succeeds
Ready --> Retrying: ExecuteTask fails
Retrying --> Started: ExecuteTask succeeds
Retrying --> Dropped: Max attempts exceeded
Started --> Completed: Nexus completion callback
Completed --> [*]: Retention applied
Dropped --> [*]
note right of Pending: Attempt = 0
note right of Deferred: Attempt = -1
note right of Ready: Attempt = 1
note right of Retrying: Attempt > 1\nBackoffTime set
note right of Started: RunId set
note right of Completed: ExecutionResult set
Figure: State transitions of a BufferedStart entry.
As a BufferedStart progresses through its lifecycle, different fields become populated:
| Field | Pending | Deferred | Ready/Retrying | Started | Completed |
|---|---|---|---|---|---|
NominalTime | ✓ | ✓ | ✓ | ✓ | ✓ |
ActualTime | ✓ | ✓ | ✓ | ✓ | ✓ |
RequestId | ✓ | ✓ | ✓ | ✓ | ✓ |
WorkflowId | ✓ | ✓ | ✓ | ✓ | ✓ |
Attempt | 0 | -1 | ≥1 | ≥1 | ≥1 |
BackoffTime | - | - | (on retry) | - | - |
RunId | - | - | - | ✓ | ✓ |
StartTime | - | - | - | ✓ | ✓ |
Completed | - | - | - | - | ✓ |
The BufferedStarts queue allows scheduler to compute the following Info block fields on demand (during a Describe call):
RunningWorkflows: Entries where RunId is set but Completed is nil.RecentActions: Entries where RunId is set (includes both running and completed).In order to determine when an action started by a schedule has completed, Scheduler makes use of Nexus completion callbacks. When the Invoker starts an action, a Nexus callback token is generated, and set as part of the StartWorkflowExecution request. Once the action has completed, the callback mechanism will eventually trigger the scheduler's completion handler.
The completion handler has several responsibilities:
LastCompletionResult.BufferedStart entry as completed by setting its Completed field with the execution result.BufferedStarts.ProcessBufferTask, as a completion may make a buffered start eligible for execution.Nexus completion callbacks are the only way that Scheduler can find out about an action's completion (there is no additional synchronous path). When the Invoker's ProcessBufferTask evaluates running workflow status, the computed view of running workflows (derived from BufferedStarts entries with RunId set but not completed) is used instead of making additional describe calls.
The Specification Processor (SpecProcessor in code) is responsible for looping through the action times derived from the schedule's specification for a given range of time. It is used by both the Generator and the Backfiller to generate their BufferedStart structs.
flowchart TD
A{{ProcessTimeRange called}}
B{Is action manual?}
C{Is schedule paused?}
D[Skip time range]
E{Action times remaining?}
F{Is time before update?}
G{Is time outside catchup window?}
H[Skip action]
I[Create BufferedStart]
J{Limit reached?}
K([Return buffered starts])
L{{Finish processing}}
A --> B
B -->|Yes| E
B -->|No| C
C -->|Yes| D
C -->|No| E
D --> K
E -->|Yes| F
E -->|No| K
F -->|Yes| H
F -->|No| G
G -->|Yes| H
G -->|No| I
H --> E
I --> J
J -->|Yes| K
J -->|No| E
K --> L
Figure: SpecProcessor.ProcessTimeRange's decision tree (trivial branches omitted).