Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

hubble/peer: handle burst of change notifications #12024

Merged
merged 2 commits into from Jun 12, 2020
Merged

hubble/peer: handle burst of change notifications #12024

merged 2 commits into from Jun 12, 2020

Conversation

rolinh
Copy link
Member

@rolinh rolinh commented Jun 11, 2020

When a client calls Notify, a change notification is sent for every node
in the cluster which allows the client to discover all nodes in the
cluster. Subsequently, only changes are notified (when a node is updated
or deleted or a new node is added to the cluster).

With a sufficiently large cluster, the initial burst of notifications
can be massive and the previous implementation did not accommodate for
this as it used a default buffer of size 10, assuming it would be large
enough to serialize notifications and send them to the client before
new notifications are being pushed by the node manager. It appears that
the node manager iterates over a hash map while holding a lock when it
calls the notification handler and this process is much faster than
serializing and sending these notifications over to the remote client
via gRPC.

However, as the initial buffer implementation used a channel, increasing
the buffer size to a very large value would dramatically increase memory
usage and most of it would be unused in most cases (in Go, a buffered
channel allocates enough memory to hold every element it has be able to
buffer).

This PR fixes this problem by using a concurrent safe buffer
implementation backed by a slice that is only allowed to grow to a
predefined maximum size. This size defaults to 65_536 entries, which
should be enough to accommodate bursts of notifications for large
clusters in cluster-mesh.

@rolinh rolinh added release-note/bug This PR fixes an issue in a previous release of Cilium. sig/hubble Impacts hubble server or relay labels Jun 11, 2020
@rolinh rolinh requested review from gandro and a team June 11, 2020 11:51
@maintainer-s-little-helper maintainer-s-little-helper bot added this to In progress in 1.8.0 Jun 11, 2020
@maintainer-s-little-helper maintainer-s-little-helper bot added this to Needs backport from master in 1.8.0 Jun 11, 2020
@coveralls
Copy link

coveralls commented Jun 11, 2020
edited

Coverage Status

Coverage increased (+0.04%) to 37.049% when pulling e27ee36 on pr/rolinh/hubble-fix-cn-burst-handling into 477c487 on master.

@rolinh
Copy link
Member Author

rolinh commented Jun 11, 2020

test-me-please

gandro
gandro approved these changes Jun 11, 2020
View reviewed changes
Copy link
Member

@gandro gandro left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good! One optional nit.

There was also an offline discussion about maybe using a CondVar in the implementation instead of the notify channel trick, but I want to run some benchmarks first before changing things prematurely (especially since this is not on a any critical path).

pkg/hubble/peer/buffer.go Outdated Show resolved Hide resolved
@rolinh
hubble/peer: implement a concurrent safe buffer for change notifications
7ad6f1e 
Signed-off-by: Robin Hahling <robin.hahling@gw-computing.net>
@rolinh
hubble/peer: handle burst of change notifications
e27ee36 
When a client calls Notify, a change notification is sent for every node
in the cluster which allows the client to discover all nodes in the
cluster. Subsequently, only changes are notified (when a node is updated
or deleted or a new node is added to the cluster).

With a sufficiently large cluster, the initial burst of notifications
can be massive and the previous implementation did not accommodate for
this as it used a default buffer of size 10, assuming it would be large
enough to serialize notifications and send them to the client before
new notifications are being pushed by the node manager. It appears that
the node manager iterates over a hash map while holding a lock when it
calls the notification handler and this process is much faster than
serializing and sending these notifications over to the remote client
via gRPC.

However, as the initial buffer implementation used a channel, increasing
the buffer size to a very large value would dramatically increase memory
usage and most of it would be unused in most cases (in Go, a buffered
channel allocates enough memory to hold every element it has be able to
buffer).

This commit fixes this problem by using a concurrent safe buffer
implementation backed by a slice that is only allowed to grow to a
predefined maximum size. This size defaults to 65_536 entries, which
should be enough to accommodate bursts of notifications for large
clusters in cluster-mesh.

Signed-off-by: Robin Hahling <robin.hahling@gw-computing.net>
@rolinh rolinh force-pushed the pr/rolinh/hubble-fix-cn-burst-handling branch from f1abeb0 to e27ee36 Compare June 11, 2020 15:37
@rolinh
Copy link
Member Author

rolinh commented Jun 11, 2020

test-me-please

michi-covalent
michi-covalent approved these changes Jun 11, 2020
View reviewed changes
Copy link
Contributor

@michi-covalent michi-covalent left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm a couple of questions.

  1. will there be a corresponding change in command line option / helm template?
  2. i'm always curious to see the actual difference in resource usage whenever we introduce optimization.

@rolinh
Copy link
Member Author

rolinh commented Jun 12, 2020
edited

  1. will there be a corresponding change in command line option / helm template?

This option has never been made configurable.

  1. i'm always curious to see the actual difference in resource usage whenever we introduce optimization.

Good question! The memory allocation for a channel of this type and size would have been in the order of ~1M (verified using pprof). It may not seem like much but this memory would be allocated per request to Notify.

@rolinh
Copy link
Member Author

rolinh commented Jun 12, 2020

K8s-1.17-Kernel-4.19 failure is a known flake (IPv4 fragments)
K8s-1.18-kernel-4.9 failures seem to be a vagrant cache issue
Marking the PR as ready to merge.

@rolinh rolinh added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Jun 12, 2020
@aanm aanm merged commit 20fea0b into master Jun 12, 2020
1.8.0 automation moved this from In progress to Merged Jun 12, 2020
@aanm aanm deleted the pr/rolinh/hubble-fix-cn-burst-handling branch June 12, 2020 09:27
@joestringer joestringer mentioned this pull request Jun 12, 2020
Merged
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Needs backport from master to Backport done to v1.8 in 1.8.0 Jun 16, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gandro gandro gandro approved these changes

@michi-covalent michi-covalent michi-covalent approved these changes

Assignees
No one assigned
Labels
ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/bug This PR fixes an issue in a previous release of Cilium. sig/hubble Impacts hubble server or relay
Projects
No open projects
1.8.0
  
Merged
1.8.0
Backport done to v1.8
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@rolinh @coveralls @gandro @michi-covalent @aanm