HeapStatData with a distinct allocation mechanism for RawStatData #3710
Conversation
Signed-off-by: Joshua Marantz <jmarantz@google.com>
…em in the .h Also simplifies the prometheus tests in admin_test.cc for readability, which seemed natural to me as I removed the references to CounterImpl and GaugeImpl. Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
…cator, factoring out the truncation to the base class. Committed for mainly for @ambuc's consideration. Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
|
@dnoe please take a first pass on this |
|
@mattklein123 @dnoe I mainly issued this to share the ideas here with @ambuc -- current thinking is we want his #3629 to go in first, I think. |
|
This pull request has been automatically marked as stale because it has not had activity in the last 7 days. It will be closed in 7 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions! |
stale
bot
added
the
stale
|
This pull request has been automatically closed because it has not had activity in the last 14 days. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions! |
|
does pinging this re-open the PR? Now that #3629 is in I want to resolve conflicts & get this rolling. |
stale
bot
removed
the
stale
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
jmarantz
changed the title
|
I think this is ready for a look, but note that I may have regressed the behavior of IsolatedStore. See comments at the relevant line. |
source/common/stats/stats_impl.h
Outdated
| // https://github.com/envoyproxy/envoy/pull/3629, which removed the shadowing | ||
| // of option size in a static. | ||
|
|
||
| /* explicit */ IsolatedStoreImpl(/*Stats::StatsOptions& stats_options*/) |
There was a problem hiding this comment.
Note behavior regression here:
- prior to Refactor Stats::RawStatData into a StatsOptions struct #3629 : truncated the same as other stats due to shared static max length
- after Refactor Stats::RawStatData into a StatsOptions struct #3629 : not truncated at all (AFAICT)
- with this PR : truncated to default length (127 chars).
If someone (@ambuc @mattklein123 @mrice32) can share the desired behavior (not truncated at all vs truncated with the other stats) I will fix.
There was a problem hiding this comment.
I think this comes down to the question of whether or not we expect an IsolatedStore to have stats which are interoperable with other stats. My instinct is no, due to its isolated nature -- in which case this behavior is not something anyone relies upon. Thoughts?
There was a problem hiding this comment.
Per discussion, I force the truncation at 1M bytes, so effectively we are not truncating in this PR.
| @@ -478,40 +478,26 @@ TEST(TagProducerTest, CheckConstructor) { | |||
| "No regex specified for tag specifier and no default regex for name: 'test_extractor'"); | |||
| } | |||
|
|
|||
| // Check consistency of internal stat representation | |||
| TEST(RawStatDataTest, Consistency) { | |||
There was a problem hiding this comment.
Note: moved to hot_restart_impl_test.cc, which allocates RawStatData*. stats_impl.cc no longer provides an allocator that allocates RawStatData*.
There was a problem hiding this comment.
This test -- still in hot_restart_impl_test.cc -- no longer covers truncation. That's covered in a separate new test in thread_local_store_test.cc, which is solely responsible for truncation.
This test's sole purpose is to make sure that the bit-pattern of a shared-memory stat allocation remains unchanged across releases, unless we also update SharedMemory::VERSION.
test/test_common/utility.h
Outdated
| @@ -371,6 +374,27 @@ class TestAllocator : public RawStatDataAllocator { | |||
| std::unordered_map<std::string, CSmartPtr<RawStatData, freeAdapter>> stats_; | |||
| }; | |||
|
|
|||
| class MockedTestAllocator : public RawStatDataAllocator { | |||
There was a problem hiding this comment.
Note: this mocked allocator was previously repeated 3x in the codebase, all as part of multiple inheritance with a test class. What motivated the refactor in this PR, though, was the need to pass a StatsOptions& to the constructor, which is annoying to do for a test-class.
If desired I could split that out as a separate PR.
Signed-off-by: Joshua Marantz <jmarantz@google.com>
source/common/stats/stats_impl.h
Outdated
| * in a shared memory block without internal pointers. | ||
| */ | ||
| class RawStatDataAllocator : public StatDataAllocator { | ||
| // Partially implements a StaDataAllocator, leaving alloc & free for subclasses. |
source/common/stats/stats_impl.h
Outdated
| RawStatData* alloc(const std::string& name) override; | ||
| void free(RawStatData& data) override; | ||
| explicit HeapStatDataAllocator(const StatsOptions& options) : StatDataAllocatorImpl(options) {} | ||
| // HeapStatDataAllocator() {} |
…inheritance for StatData. Signed-off-by: Joshua Marantz <jmarantz@google.com>
source/common/stats/stats_impl.cc
Outdated
|
|
||
| HeapStatData* HeapStatDataAllocator::alloc(const std::string& name) { |
There was a problem hiding this comment.
I mentioned this earlier, but the comment got buried under some other changes. I'm relatively confident that adding truncation in HeapStatDataAllocator is a user-facing change. Previous to this change we did not truncate stats in non hot restart mode. This behavior change should be documented in the release notes. I'm also not sure it makes sense to change this behavior if we ultimately do not want non hot restart stats to be truncated as is suggested in #3965 (since I believe that this is the existing behavior). I could be wrong about the behavior changing, but if so, please point out where they are currently being truncated on master.
There was a problem hiding this comment.
Reading again I think you are right; it's pretty subtle though. In current master, we truncate when making a RawStatData in RawStatData::truncateAndInit(), but asymmetrically, we truncate at the call-site in ThreadLocalStoreImpl::safeMakeStat() only when calling the fallback. OK let me fix that; it's a little cleaner to just do this right.
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
|
I restored the previous functionality, and added explicit tests for it. I made all stat-name truncation happen only in ThreadLocalStore, and added a Stat interface for determining whether an allocator requires truncation. This changed a bunch of things -- including some changes I had previously made reverting back to the state they were in 'master'. But some interface changes, such as std::string --> absl::string_view and making the mock test allocator a separate class -- means the file-count is still 19. I think it's easiest to review this as changes from master, rather than reviewing the incremental commits. |
…ge, rather than asserting, as thi is easier to test in release mode. Signed-off-by: Joshua Marantz <jmarantz@google.com>
source/common/stats/stats_impl.h
Outdated
| * @param stats_options The stat optinos, which must live longer than the allocator. | ||
| */ | ||
| explicit StatDataAllocatorImpl(/*const StatsOptions& stats_options*/) {} | ||
| //: stats_options_(stats_options) {} |
source/common/stats/stats_impl.h
Outdated
| public: | ||
| /** | ||
| * @param stats_options The stat optinos, which must live longer than the allocator. |
source/common/stats/stats_impl.h
Outdated
| /** | ||
| * @param stats_options The stat optinos, which must live longer than the allocator. | ||
| */ | ||
| explicit StatDataAllocatorImpl(/*const StatsOptions& stats_options*/) {} |
There was a problem hiding this comment.
Nit: empty arg default constructor and explicit..
| name = absl::string_view(name.data(), max_length); | ||
| } | ||
| } | ||
| return name; |
There was a problem hiding this comment.
Random thought that is unrelated to this PR (existing issue). How confident are we that two truncated stats won't conflict, e.g. if I truncated a.b.c.d and a.b.c.e to 5 characters, we get overlap.. it seems this is double bad, since we're both truncating and conflating..
There was a problem hiding this comment.
Yeah...in the past if I wanted to truncate to 'n' I'd actually truncate to n-k, and use a k-character base64 hash of the untruncated string to disambiguate. That would still be pretty awful for stats as you'd have no idea which one you were looking at. Basically, truncation is bad and should be avoided.
| @@ -178,18 +198,13 @@ StatType& ThreadLocalStoreImpl::ScopeImpl::safeMakeStat( | |||
| if (!central_ref) { | |||
| std::vector<Tag> tags; | |||
| std::string tag_extracted_name = parent_.getTagsForName(name, tags); | |||
There was a problem hiding this comment.
Can you add a comment explaining why it's not necessary to use the truncated name for tag extraction?
test/test_common/utility.h
Outdated
|
|
||
| class MockedTestAllocator : public RawStatDataAllocator { | ||
| public: | ||
| MockedTestAllocator(const StatsOptions& stats_options) : alloc_(stats_options) { |
There was a problem hiding this comment.
Nit: constructor/destructor for mocks should live in .cc. See https://github.com/google/googlemock/blob/master/googlemock/docs/v1_6/CookBook.md#making-the-compilation-faster
Signed-off-by: Joshua Marantz <jmarantz@google.com>
source/common/stats/stats_impl.h
Outdated
| /** | ||
| * @param stats_options The stat options, which must live longer than the allocator. | ||
| */ | ||
| StatDataAllocatorImpl() {} |
There was a problem hiding this comment.
nit: Is this default constructor needed? Doc comment seems out of date also.
There was a problem hiding this comment.
oops; not needed; in an earlier rev I needed a 1-arg constructor and removing the arg, I forgot to remove the whole thing.
|
|
||
| // Note that the heap-allocator does not truncate itself; we have to | ||
| // truncate here if we are using heap-allocation as a fallback due to an | ||
| // exahusted shared-memroy block |
source/server/hot_restart_impl.cc
Outdated
| key.remove_suffix(key.size() - options_.statsOptions().maxNameLength()); | ||
| // The name is truncated in ThreadLocalStore before this is called. | ||
| size_t max_length = options_.statsOptions().maxNameLength(); | ||
| if (name.length() > max_length) { |
There was a problem hiding this comment.
Can this happen then? Should this just be an assert? The comment is a bit confusing.
There was a problem hiding this comment.
It should not happen in production. It can happen in a unit test. It could be an ASSERT, but then it can't be tested. It could be a RELEASE_ASSERT, and be tested with a DEATH_TEST.
I'm happy to go with whatever is the best practice of those for the project.
I'll try to clarify the comment.
There was a problem hiding this comment.
I would probably just do a normal ASSERT as this seems like a programming error. If you feel strongly that it should be a RELEASE_ASSERT w/ a test that's fine also.
Signed-off-by: Joshua Marantz <jmarantz@google.com>
Signed-off-by: Joshua Marantz <jmarantz@google.com>
There was a problem hiding this comment.
🤞 😉
@mrice32 can you approve the most recent changes? Thank you for powering through this review!
source/server/hot_restart_impl.h
Outdated
| void free(Stats::RawStatData& data) override; | ||
| bool requiresBoundedStatNameSize() const override { return true; } |
There was a problem hiding this comment.
Why is this overridden here and in RawStatDataAllocator? Also why even have the RawStatDataAllocator intermediate class?
There was a problem hiding this comment.
Good catch - I didn't need this extra impl of requiresBoundedStatNameSize here, but I do need RawStatDataAllocator as it is used as a base class for test allocators as well as this.
| @@ -319,47 +320,28 @@ TagProducerImpl::addDefaultExtractors(const envoy::config::metrics::v2::StatsCon | |||
| return names; | |||
| } | |||
|
|
|||
| void HeapRawStatDataAllocator::free(RawStatData& data) { | |||
| // TODO(jmarantz): move this below HeapStatDataAllocator::alloc. | |||
There was a problem hiding this comment.
Normally it makes sense to group alloc/free together of a single class, but these got separated in a prior PR; leaving this here now for easier diffs. Will fix later in a follow-up.
There was a problem hiding this comment.
I see. It seemed so trivial, I was a little confused as to why you didn't just do it now. Easier review is a good reason. That makes sense.
source/common/stats/stats_impl.cc
Outdated
|
|
||
| HeapStatData* HeapStatDataAllocator::alloc(absl::string_view name) { | ||
| // Do not truncate here for non-hot-restart case; truncate at the call-site in |
There was a problem hiding this comment.
This is probably a weird nit, but I think this comment is adding confusion. If we want to delegate truncation to the callsite, I think we can just make the comment (or something similar) since the truncation logic isn't really relevant here:
// Any expected truncation of name is done at the callsite. No truncation is
// required to use this allocator.
source/common/stats/stats_impl.h
Outdated
|
|
||
| // An unordered set of RawStatData pointers which keys off the key() | ||
| // TODO(jmarantz): See https://github.com/envoyproxy/envoy/pull/3927 which can |
There was a problem hiding this comment.
Sounds like more of a TODO for @ambuc :)
There was a problem hiding this comment.
In my experience, TODO's are generally signed by the author of the TODO, not necessarily by the person who is expected to do it.
| absl::string_view ThreadLocalStoreImpl::truncateStatNameIfNeeded(absl::string_view name) { | ||
| // If the main allocator requires stat name truncation, warn and truncate, before | ||
| // attempting to allocate. | ||
| if (alloc_.requiresBoundedStatNameSize()) { |
There was a problem hiding this comment.
nit: as I mentioned in person, I think the encapsulation would be cleaner if the allocators were constructed with their truncation settings and then they could handle any necessary truncation themselves (the fallback heap allocator would be set up to truncate, while the non-hot restart heap allocator would be set up to not truncate). Here, it seems like we're half delegating that responsibility by giving them a method to communicate whether they require truncation, but not giving them the responsibility to read the settings and do that truncation within alloc().
However, I think we should just try to get this PR in as is rather than making more interface changes, so this seems fine for now.
There was a problem hiding this comment.
Yeah I think that's a follow-up change.
source/common/stats/stats_impl.h
Outdated
| HeapStatData* alloc(absl::string_view name) override; | ||
| void free(HeapStatData& data) override; | ||
|
|
||
| // StatsDataAllocator |
There was a problem hiding this comment.
This typo seems to still be here :)
Signed-off-by: Joshua Marantz <jmarantz@google.com>
source/common/stats/stats_impl.h
Outdated
|
|
||
| class RawStatDataAllocator : public StatDataAllocatorImpl<RawStatData> { | ||
| public: | ||
| // StatsDataAllocator |
There was a problem hiding this comment.
nit: typo here, too: StatDataAllocator
source/common/stats/stats_impl.h
Outdated
| HeapStatData* alloc(absl::string_view name) override; | ||
| void free(HeapStatData& data) override; | ||
|
|
||
| // StatsDataAllocator |
There was a problem hiding this comment.
This typo seems to still be here :)
…sure... Signed-off-by: Joshua Marantz <jmarantz@google.com>
There was a problem hiding this comment.
OK let's do this. Agree with @mrice32 that this code has become incredibly complicated with the different permutations of heap/hot-restart, size limits, etc. If there is anything we can do in followups to help with readability that would be awesome.
Description:
in hot_restart_impl.cc
it from being multi-inherited with the testing framework to being instantiated. This was needed because stat-allocators now require StatOptions in their constructor.
This is another step toward addressing #3585
Risk Level: Medium
Testing: //test/...
Docs Changes: N/A
Release Notes: N/A