perf(core): eliminate avoidable per-call allocation in hot logging/config paths#36150
Open
swicken wants to merge 3 commits into
Open
perf(core): eliminate avoidable per-call allocation in hot logging/config paths#36150swicken wants to merge 3 commits into
swicken wants to merge 3 commits into
Conversation
…nfig paths Allocation profiling (Pyroscope, TLAB profiles) attributed several hotspots to four mechanical issues in core utility code; Config.get* subtrees alone accounted for ~19% of sampled allocation in a mixed-load window. - Logger: lazy Supplier overloads (debug/info) no longer evaluate the message supplier when the level is disabled. ~900 call sites use suppliers specifically to avoid message-building cost, and all of them evaluated eagerly (including reflectionToString on Contentlets via PermissionBitFactoryImpl debug logging on the reindex path). - Config: getInt/getLong/getFloat/getBoolean env-alias probes are now guarded with containsKey instead of throwing and discarding a NoSuchElementException on every read of a non-env-overridden key (same guard getBooleanProperty(name, default) already had). - Logger.isVelocityMessage: memoized per class name; previously allocated a lowercased class name on every Class-keyed log call. - LeakyTokenBucketImpl: isEnabled/getMaximumBucketSize/getRefillPerSecond return the values resolved at construction instead of walking Config on every request-cost increment. Fixes #36145
…ization Returning constructor-captured values from the application-scoped LeakyTokenBucketImpl meant RATE_LIMIT_ENABLED / RATE_LIMIT_REFILL_PER_SECOND / RATE_LIMIT_MAX_BUCKET_SIZE changes (system table or config refresh) were ignored until restart - enabling rate limiting during an incident would silently do nothing. Memoize the Config lookups with a 30s TTL instead: runtime overrides still take effect (bounded staleness) while the per-request-cost-increment Config walk is gone. Refs #36145
- Pin the runtime-override contract with a test: a TTL-injectable constructor lets the new LeakyTokenBucketImplTest assert that a runtime Config change reaches a running bucket and that reads within the TTL serve the cached value (guards against a future cleanup reverting the suppliers to the constructor-captured fields). - Cover Config.getLongProperty missing-key default and pin the env-alias-present-but-unparseable fallback for int/long/float. - Memoize the RATE_LIMIT_ADD_HEADER_INFO read in getHeaderInfo(): it runs unconditionally per request via RequestCostFilter, same hot path. - Make the allow() debug message lazy via the new Supplier overload. - Replace the name-keyed Caffeine cache in Logger.isVelocityMessage with a ClassValue: allocation-free lookups (the capturing lambda allocated per call), per-Class keying (no FQN conflation across OSGi classloaders), and entries released with their class. Refs #36145
5 tasks
Contributor
❌ Codex Review failed —
|
Contributor
|
Claude finished @swicken's task in 1m 8s —— View job Rollback Safety Analysis
Result: ✅ Safe To RollbackThe label AnalysisAll six changed files were reviewed against every category in the rollback-unsafe reference. The changes are purely behavioral / in-memory — no database schema, no Elasticsearch mapping, no data migration, no API contract, no OSGi interface, no VTL viewtool surface change.
No matches against any rollback-unsafe category (C-1 through C-4, H-1 through H-8, M-1 through M-4). |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Proposed Changes
Supplieroverloads are now actually lazy — the threedebug(…, Supplier)and twoinfo(…, Supplier)overloads calledmessage.get()unconditionally; they now check the level first. ~900 call sites use suppliers specifically to skip message building, including ones that didreflectionToStringon Contentlets viaPermissionBitFactoryImpldebug logging on the reindex path.Configint/long/float/boolean getters no longer throw per read — theDOT_*env-alias probe used commons-configuration's throwing 1-arg getter wrapped in vavrTry, so every read of a non-env-overridden key allocated and discarded aNoSuchElementException(with full stack trace). Applied thecontainsKeyguard thatgetBooleanProperty(name, default)already had.Logger.isVelocityMessagememoized viaClassValue— previously allocated a lowercased class name on every Class-keyed log call;ClassValuelookups are allocation-free, keyed per actual Class (no FQN conflation across OSGi classloaders), and entries are released with their class.LeakyTokenBucketImplno longer walks Config per request-cost increment — the four config reads (enabled,refill,max bucket,add-header-info) are TTL-memoized (30s). Runtime overrides via system table / config refresh still take effect within the TTL, preserved deliberately so rate limiting can be toggled during an incident; a test with an injectable TTL pins that contract.Why
Allocation profiling of a running instance (Pyroscope TLAB profiles under mixed REST/GraphQL/page-render load) attributed the
Throwable.fillInStackTrace,Method.copy/Field.copy, andStringLatin1.toLowerCaseallocation hotspots to these four spots;Config.get*subtrees alone were ~19% of sampled allocation in a mixed window (e.g. one full Config walk — exception included — per expired session viaClickstreamListener, per 250ms reindex-pause iteration, per request-cost increment). Expected effect is reduced allocation → less GC pressure, not a single-endpoint latency win.Checklist
Additional Info
New/extended unit tests:
LoggerTest(suppliers not evaluated when level disabled),LeakyTokenBucketImplTest(runtime config override reaches a running bucket; reads within TTL stay cached),ConfigTest(getLongPropertymissing-key default; env-alias-present-but-unparseable falls back to default for int/long/float). The deprecated no-defaultConfiggetters still throwNoSuchElementExceptionfor missing base keys — that documented contract is unchanged (and pinned by existing tests).Closes #36145