Refactor http2_grpc to leverage tail calls #1447
Conversation
rafaelroquetto
requested review from
grcevski,
mariomac and
marctc
as code owners
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #1447 +/- ##
==========================================
+ Coverage 76.86% 80.97% +4.11%
==========================================
Files 149 149
Lines 15252 15267 +15
==========================================
+ Hits 11723 12363 +640
+ Misses 2911 2298 -613
+ Partials 618 606 -12
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
rafaelroquetto
force-pushed
the
grpc_tailcall
branch
from
fc24639 to
d25b57a
Compare
| http2_grpc_request_t prev_info; | ||
| u8 has_prev_info; | ||
|
|
||
| int pos; //FIXME should be size_t equivalent |
There was a problem hiding this comment.
This FIXME will be addressed separately - there are too many other places to check and tweak.
There was a problem hiding this comment.
I don't think we'd ever need 64bit value to keep the position, if that's the case we are doing something wrong. The position is the index inside the buffer we are reading, we'd never read more than 1024. It likely can be reduced to smaller int.
There was a problem hiding this comment.
(copying this here as I commented on the wrong box - sorry about the noise)
With regards to the int usage, my biggest concern is that we have a signed int here - in most APIs (except from a few relics like libc functions such as read(), which will rely on negative values for errors, and anything else for "byte count"), we will encounter size_t, which tends to be the same as uintptr_t because it needs to be able to address the memory space. We do invariably end up mixing these ints up with pointers and alike, which are unsigned by default, so IMHO it's just best to eventually refactor them to become unsigned (and simplify underflow/overflow cases).
Using a smaller unsigned int here is potentially fine, but we have to be careful to not make it appear as an lvalue in an operation involving pointers as rvalues, as it can cause an overflow (because pointers will be 64-bit). It becomes a trade-off between saving a few bytes (or a lot depending on how many of those we have) versus less cognitive load of treating everything as size_t.
| http2_grpc_request_t prev_info; | ||
| u8 has_prev_info; | ||
|
|
||
| int pos; //FIXME should be size_t equivalent |
There was a problem hiding this comment.
I don't think we'd ever need 64bit value to keep the position, if that's the case we are doing something wrong. The position is the index inside the buffer we are reading, we'd never read more than 1024. It likely can be reduced to smaller int.
|
The test failure in integration tests looks related to the change. I can help debug if you need help :) |
rafaelroquetto
force-pushed
the
grpc_tailcall
branch
3 times, most recently
from
a66866e to
1e39e21
Compare
rafaelroquetto
force-pushed
the
grpc_tailcall
branch
from
1e39e21 to
380fbc1
Compare
|
Tests now fixed - caused by a typo (missing Apart from that, I've incorporated most review feedbacks. |
The latest kernel versions have changed the way the verifier deals with scalar spills, reducing its tolerance towards complex programs - for a comprehensive discussion, please refer to
https://lore.kernel.org/bpf/[email protected]/T/
Our http2 code therefore no longer passes the verifier, owing to mostly a complex for loop. This PR splits the code into different bpf programs that are now tail called, and changes the
_for_loop to be a hybrid of a recursive bpf_tail_call and a loop with less iterations. This approach was chosen because neither do we want to bpf_tail_call/recurse for each iteration, nor do we wish to usebpf_loopas constrains our program to kernel versions greater than 5.17.