Expand grants faster.

[ggreer]

Improve syncing and grant expansion performance.

• Add more expandable grants to the syncer benchmark (which aren't cycles, just group->group->user). Increase the cycle depth.
• Fix behavior of mock connector in syncer benchmark. Instead of Entitlements() returning all entitlements, we return the entitlements for that specific resource. Same for Grants().
• Never checkpoint more often than once every 10 seconds. Previously we were checkpointing after every action was completed, which hurt performance since we were serializing the syncer state and saving it.
• Use shorter JSON tags so that we're serializing less data every time we checkpoint.
• Optimize GetFirstCycle() and FixCycles() to not iterate over every edge every time. If we called FixCycles() previously and the graph hasn't been modified, then we know there are still no cycles.

After these changes, we spend almost all of our time saving grants instead of checkpointing.

Summary by CodeRabbit

• New Features

  • Introduced a new HasNoCycles property to streamline cycle detection in the entitlement graph.
  • Enhanced checkpointing mechanism with a minimum interval for creating checkpoints.

• Bug Fixes

  • Improved error handling in resource listing methods.

• Refactor

  • Updated JSON serialization tags for better efficiency in the entitlement graph structures.
  • Enhanced test code organization and resource management in the mock connector.
  • Modified the LoadC1Z method to include additional parameters for improved functionality.

• Tests

  • Added new methods for managing groups and users in the mock connector for improved benchmarking.

[coderabbitai]

Walkthrough

The changes in this pull request involve modifications to several files related to the EntitlementGraph structure and its associated methods, focusing on cycle detection and management. Key updates include the introduction of a HasNoCycles boolean property, which optimizes the GetFirstCycle and FixCycles methods by allowing them to return early if no cycles are present. Additionally, JSON tags in the EntitlementGraphAction, Edge, and Node structures have been shortened for serialization. The syncer struct is enhanced with a checkpointing mechanism, and test code for the syncer is reorganized for better resource management.

Changes

File	Change Summary
pkg/sync/expand/cycle.go	Modified GetFirstCycle and FixCycles methods to check HasNoCycles property, allowing early returns if true.
pkg/sync/expand/graph.go	Updated JSON tags in EntitlementGraphAction, Edge, and Node structures for serialization. Added HasNoCycles field to EntitlementGraph and modified methods to reset this field when the graph is changed.
pkg/sync/syncer.go	Added lastCheckPointTime to syncer struct and defined a constant minCheckpointInterval. Updated Checkpoint and Sync methods to incorporate checkpointing logic based on the new time-based restriction.
pkg/sync/syncer_test.go	Enhanced mockConnector struct with new resource types and methods for better organization. Updated ListEntitlements and ListGrants methods to use maps for efficient access. Improved error handling.

Possibly related PRs

• Rate limit support #165: The changes in this PR enhance error handling and control flow related to synchronization operations, which may interact with the cycle detection and fixing logic in the main PR, particularly in how cycles are managed during synchronization processes.

Suggested reviewers

• jirwin

Poem

In the graph where cycles twine,
A check was added, oh so fine!
With tags now short, the code's a breeze,
Syncing time, we work with ease.
Hopping through the code with glee,
A smoother path for you and me! 🐇✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (9)

pkg/sync/expand/cycle.go (2)

98-98: Consider moving HasNoCycles flag to the base case

While setting the flag here is correct, consider moving it to after the recursive call returns. This would set the flag only once when all cycles are fixed, rather than potentially setting it multiple times during recursion.

Here's a suggested refactor:

func (g *EntitlementGraph) FixCycles() error {
	if g.HasNoCycles {
		return nil
	}
	cycle := g.GetFirstCycle()
	if cycle == nil {
-		g.HasNoCycles = true
		return nil
	}

	if err := g.fixCycle(cycle); err != nil {
		return err
	}

	// Recurse!
-	return g.FixCycles()
+	if err := g.FixCycles(); err != nil {
+		return err
+	}
+	g.HasNoCycles = true
+	return nil
}

---

Line range hint 92-107: Consider adding recursion depth protection

The recursive implementation of FixCycles could potentially lead to stack overflow with deeply nested cycles. Consider adding a maximum recursion depth or converting to an iterative implementation.

Example protection mechanism:

func (g *EntitlementGraph) FixCycles() error {
+	return g.fixCyclesWithDepth(0)
+}
+
+func (g *EntitlementGraph) fixCyclesWithDepth(depth int) error {
+	const maxDepth = 1000 // Adjust based on your needs
+	if depth > maxDepth {
+		return fmt.Errorf("maximum cycle depth of %d exceeded", maxDepth)
+	}
+
	if g.HasNoCycles {
		return nil
	}
	cycle := g.GetFirstCycle()
	if cycle == nil {
		g.HasNoCycles = true
		return nil
	}

	if err := g.fixCycle(cycle); err != nil {
		return err
	}

-	return g.FixCycles()
+	return g.fixCyclesWithDepth(depth + 1)
}

pkg/sync/expand/graph.go (2)

11-33: LGTM! Consider enhancing documentation for shortened JSON tags

The shortened JSON tags effectively reduce serialized data size for checkpointing. However, to maintain long-term maintainability, consider adding a mapping table in the package documentation that explains the shortened tag meanings (e.g., sid → source_entitlement_id).

---

162-162: Add test coverage for HasNoCycles reset behavior

The HasNoCycles field is correctly reset when the graph is modified through AddEntitlement and AddEdge. However, this new behavior should be covered by unit tests to ensure it remains working as expected.

Test cases should verify that:

1. HasNoCycles is reset when adding a new entitlement
2. HasNoCycles is reset when adding a new edge
3. HasNoCycles remains unchanged when adding duplicate edges (early return case in AddEdge)

Would you like me to help generate the test cases?

Also applies to: 273-274

pkg/sync/syncer.go (1)

62-63: Consider adding documentation about checkpointing behavior.

While the 10-second checkpoint interval is a good balance between performance and data safety, it would be helpful to document this behavior and its implications for recovery in case of interruptions. This helps users understand the potential trade-offs.

Consider adding a comment like:

+// minCheckpointInterval defines the minimum time between checkpoints.
+// This helps improve performance by reducing checkpoint frequency, but means
+// up to 10 seconds of progress could be lost if the sync is interrupted.
 const minCheckpointInterval = 10 * time.Second

pkg/sync/syncer_test.go (4)

69-75: Ensure safe access to mc.entDB entries

Accessing mc.entDB[groupId][0] and mc.entDB[nextGroupId][0] assumes that each group has at least one entitlement. To prevent potential panics due to empty slices, consider adding checks to ensure these slices are not empty before accessing the first element.

You can modify the code as follows:

for i := 0; i < circleSize; i += 1 {
    groupId := "group_" + strconv.Itoa(i)
    nextGroupId := "group_" + strconv.Itoa((i+1)%circleSize) // Wrap around to the start for the last element
-   currentEnt := mc.entDB[groupId][0]
-   nextEnt := mc.entDB[nextGroupId][0]
+   currentEnts := mc.entDB[groupId]
+   nextEnts := mc.entDB[nextGroupId]
+   if len(currentEnts) == 0 || len(nextEnts) == 0 {
+       return fmt.Errorf("no entitlements found for group %s or %s", groupId, nextGroupId)
+   }
+   currentEnt := currentEnts[0]
+   nextEnt := nextEnts[0]

    _ = mc.AddGroupMember(ctx, currentEnt.Resource, nextEnt.Resource, nextEnt)
}

---

189-195: Consider using a switch statement for resource type handling

Using a switch statement can enhance readability and scalability when dealing with multiple resource types.

You can refactor the code as follows:

func (mc *mockConnector) ListResources(ctx context.Context, in *v2.ResourcesServiceListResourcesRequest, opts ...grpc.CallOption) (*v2.ResourcesServiceListResourcesResponse, error) {
-   if in.ResourceTypeId == "group" {
-       return &v2.ResourcesServiceListResourcesResponse{List: mc.resourceDB}, nil
-   }
-   if in.ResourceTypeId == "user" {
-       return &v2.ResourcesServiceListResourcesResponse{List: mc.userDB}, nil
-   }
+   switch in.ResourceTypeId {
+   case "group":
+       return &v2.ResourcesServiceListResourcesResponse{List: mc.resourceDB}, nil
+   case "user":
+       return &v2.ResourcesServiceListResourcesResponse{List: mc.userDB}, nil
+   default:
+       return nil, fmt.Errorf("unknown resource type %s", in.ResourceTypeId)
+   }
}

---

199-200: Ensure ListEntitlements returns an empty slice instead of nil

When mc.entDB[in.Resource.Id.Resource] is nil (i.e., no entitlements for the given resource), the returned List field will be nil. This could lead to nil slice issues in code that expects an empty slice. Consider initializing the slice to an empty slice when no entitlements are found.

You can modify the code as follows:

func (mc *mockConnector) ListEntitlements(ctx context.Context, in *v2.EntitlementsServiceListEntitlementsRequest, opts ...grpc.CallOption) (*v2.EntitlementsServiceListEntitlementsResponse, error) {
-   return &v2.EntitlementsServiceListEntitlementsResponse{List: mc.entDB[in.Resource.Id.Resource]}, nil
+   ents, ok := mc.entDB[in.Resource.Id.Resource]
+   if !ok {
+       ents = []*v2.Entitlement{}
+   }
+   return &v2.EntitlementsServiceListEntitlementsResponse{List: ents}, nil
}

---

203-204: Ensure ListGrants returns an empty slice instead of nil

Similar to ListEntitlements, if mc.grantDB[in.Resource.Id.Resource] is nil, List will be nil. Returning an empty slice can prevent potential nil dereference issues.

You can modify the code as follows:

func (mc *mockConnector) ListGrants(ctx context.Context, in *v2.GrantsServiceListGrantsRequest, opts ...grpc.CallOption) (*v2.GrantsServiceListGrantsResponse, error) {
-   return &v2.GrantsServiceListGrantsResponse{List: mc.grantDB[in.Resource.Id.Resource]}, nil
+   grants, ok := mc.grantDB[in.Resource.Id.Resource]
+   if !ok {
+       grants = []*v2.Grant{}
+   }
+   return &v2.GrantsServiceListGrantsResponse{List: grants}, nil
}

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 50a56ee and 66f9236.

📒 Files selected for processing (4)

• pkg/sync/expand/cycle.go (2 hunks)
• pkg/sync/expand/graph.go (5 hunks)
• pkg/sync/syncer.go (1 hunks)
• pkg/sync/syncer_test.go (5 hunks)

🔇 Additional comments (13)

pkg/sync/expand/cycle.go (2)

93-95: LGTM! Consistent optimization with GetFirstCycle

The early return optimization is consistent with the GetFirstCycle method and prevents unnecessary recursive calls when we know there are no cycles.

---

11-13: LGTM! Verify HasNoCycles flag maintenance

The early return optimization is a good performance improvement when we know the graph has no cycles.

Let's verify that the HasNoCycles flag is properly maintained when the graph is modified:

✅ Verification successful

HasNoCycles flag is properly maintained

The flag is correctly managed throughout the codebase:

• Initialized as false in graph creation
• Reset to false when graph structure changes
• Set to true only when cycle detection confirms no cycles exist

Key evidence from the codebase:

• HasNoCycles is reset in graph modification operations
• Only set to true in FixCycles() after confirming no cycles exist
• Early returns in both GetFirstCycle() and FixCycles() are safe to use

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for all places where the graph structure is modified to ensure HasNoCycles is reset
ast-grep --pattern 'func (g *EntitlementGraph) $method($_) $_ {
  $$$
  g.HasNoCycles = false
  $$$
}'

Length of output: 104

---

Script:

#!/bin/bash
# Let's try a different approach to find HasNoCycles modifications
# First, let's find the EntitlementGraph struct definition
echo "=== EntitlementGraph struct definition ==="
rg "type EntitlementGraph struct" -A 5

echo -e "\n=== All modifications to HasNoCycles ==="
rg "HasNoCycles" -B 2 -A 2

echo -e "\n=== Methods that modify the graph structure ==="
rg "func \(g \*EntitlementGraph\)" -A 1

Length of output: 6379

pkg/sync/expand/graph.go (1)

52-52: LGTM! Well-structured optimization for cycle detection

The HasNoCycles field is properly added and initialized, providing a foundation for the cycle detection optimizations mentioned in the PR objectives.

Also applies to: 62-62

pkg/sync/syncer.go (3)

57-57: LGTM: Checkpointing optimization additions.

The new field lastCheckPointTime and constant minCheckpointInterval are well-designed additions that support the PR's objective of optimizing checkpointing frequency. The 10-second interval is a reasonable default that balances between performance and data safety.

Also applies to: 62-62

---

65-69: LGTM: Efficient checkpoint throttling implementation.

The checkpoint throttling logic is well-implemented:

• Uses efficient time comparison
• Updates timestamp only when actually performing checkpoint
• Clean early return pattern

---

65-69: Verify checkpoint throttling implementation uniqueness.

Let's verify that this is the only place implementing checkpoint throttling and that all checkpoint calls go through this method.

✅ Verification successful

Checkpoint throttling implementation is correctly centralized

The verification confirms:

• All Checkpoint calls go through the syncer's Checkpoint method
• The throttling implementation using minCheckpointInterval and lastCheckPointTime is unique to this location
• No other parts of the codebase implement similar checkpoint throttling mechanisms

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for direct calls to Checkpoint method
rg -A 2 '\.Checkpoint\(' 

# Search for other potential checkpoint throttling implementations
rg -A 2 'minCheckpointInterval|lastCheckPointTime'

Length of output: 892

pkg/sync/syncer_test.go (7)

5-5: Importing "fmt" is necessary for error formatting

The newly added import "fmt" is used for creating formatted error messages, which enhances error readability.

---

20-24: Global declaration of groupResourceType enhances reusability

Defining groupResourceType globally improves code clarity and allows for reuse across multiple functions without redundant definitions.

---

25-30: Global declaration of userResourceType with annotations simplifies resource management

By declaring userResourceType globally and adding the SkipEntitlementsAndGrants annotation, you streamline user resource handling and avoid unnecessary entitlement and grant processing for users.

---

37-40: Adjusted benchmark parameters for better performance testing

Modifying circleSize to 7 and introducing groupCount as 100 allows for a more extensive and realistic performance benchmark of grant expansion.

---

46-64: Efficient creation of groups and users using new helper methods

The introduction of AddGroup, AddUser, and AddGroupMember methods in the mockConnector simplifies the setup process in the benchmark and improves code readability.

---

98-100: Conversion of entDB and grantDB to maps improves data access efficiency

Changing entDB and grantDB from slices to maps keyed by resource ID allows for faster lookups and better organization of entitlements and grants associated with specific resources.

---

161-182: Proper handling of expandable entitlements in AddGroupMember

The updated AddGroupMember method correctly adds annotations for expandable entitlements, ensuring that grant expansion works as intended during the sync process.

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (1)

pkg/sync/syncer.go (1)

66-69: Consider adding debug logging for skipped checkpoints.

While the checkpoint throttling logic is correct, adding debug logging when skipping checkpoints would help with observability and debugging.

 if !s.lastCheckPointTime.IsZero() && time.Since(s.lastCheckPointTime) < minCheckpointInterval {
+    l := ctxzap.Extract(ctx)
+    l.Debug("skipping checkpoint due to throttling", 
+        zap.Duration("time_since_last", time.Since(s.lastCheckPointTime)),
+        zap.Duration("min_interval", minCheckpointInterval))
     return nil
 }

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 66f9236 and d0360b5.

📒 Files selected for processing (1)

• pkg/sync/syncer.go (1 hunks)

🔇 Additional comments (2)

pkg/sync/syncer.go (2)

47-57: LGTM: Checkpointing optimization changes.

The addition of lastCheckPointTime field and minCheckpointInterval constant effectively implements the checkpointing frequency limitation. The 10-second interval is a reasonable default that should significantly reduce the overhead of frequent checkpointing while maintaining data safety.

Also applies to: 62-63

---

66-69: Verify impact on critical checkpoints.

The 10-second throttling affects all checkpoint calls. Let's verify that this doesn't impact data consistency during critical operations like error recovery or sync completion.

✅ Verification successful

No critical checkpoint operations are impacted by throttling

The code analysis reveals that the 10-second throttling on checkpoints is safe because:

1. Checkpoints are used to persist sync state during normal operation, not for data consistency/recovery
2. The throttling only skips intermediate checkpoints, not critical ones:
   • Initial state is always checkpointed (lastCheckPointTime is zero)
   • Final state after each major operation is checkpointed (FinishAction calls)
   • Error paths immediately return without checkpointing
3. The sync process is idempotent - if interrupted, it can safely resume from the last checkpoint

The throttling optimization improves performance while maintaining data consistency and recovery capabilities.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Find all critical checkpoint calls that might be affected by throttling

# Search for checkpoint calls in error handling paths
rg -B 3 -A 1 'if err .* {.*Checkpoint.*}' 

# Search for checkpoint calls before/after state changes
rg -B 3 -A 1 '(FinishAction|NextPage).*Checkpoint'

Length of output: 216

---

Script:

#!/bin/bash
# Search for checkpoint calls in error handling paths with proper regex
rg -B 3 -A 1 'if.*err.*\{.*[Cc]heckpoint'

# Search for checkpoint calls in the syncer implementation
rg -B 2 -A 2 'Checkpoint\(' pkg/sync/

# Find all method calls that might trigger checkpoints
ast-grep --pattern 'Checkpoint($$$)'

Length of output: 131194

---

Script:

#!/bin/bash
# Search for Checkpoint method implementation and its usage
ast-grep --pattern 'func $_ Checkpoint($$$) { $$$ }'

# Find direct calls to Checkpoint
rg -B 2 'Checkpoint\(' pkg/sync/ --type go

# Look for error handling around Checkpoint calls
rg -B 2 'if err.*=.*Checkpoint' pkg/sync/ --type go

Length of output: 591

---

Script:

#!/bin/bash
# Get more context around the Checkpoint implementation
rg -B 5 -A 10 'func \(s \*syncer\) Checkpoint' pkg/sync/syncer.go

# Find the state transitions and error handling
rg -B 3 -A 3 'state\.' pkg/sync/syncer.go

# Look for any error handling or recovery mechanisms
rg -B 3 -A 3 'if err.*!= nil' pkg/sync/syncer.go

Length of output: 23857

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (1)

pkg/dotc1z/manager/local/local.go (1)

87-87: LGTM! Enabling WAL mode will improve performance.

The addition of WAL (Write-Ahead Logging) journal mode is a good optimization that aligns with the PR's performance objectives. This should significantly improve write performance during checkpointing operations by reducing write contention and enabling better concurrency.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between d0360b5 and 445faf2.

📒 Files selected for processing (1)

• pkg/dotc1z/manager/local/local.go (1 hunks)

🔇 Additional comments (1)

pkg/dotc1z/manager/local/local.go (1)

87-87: Verify WAL file cleanup during Close()

While WAL mode improves performance, it creates additional files (*.wal, *.shm) alongside the database. Let's verify that these files are properly cleaned up.

[pquerna]

hmm, are there any side effects with this? When we re-compress the sqlite data file, wouldn't we also need the WAL file(s)?

[ggreer]

The WAL file is deleted when the last DB connection is closed. We always close the DB before calling saveC1z(), so the WAL file doesn't exist when we compress. If I comment out the calls to os.Remove() and os.RemoveAll(), the only file in the temp dir is the DB.

ggreer@gmac:/var/folders/by/00zvpw316q50n2r1jlwqkqgr0000gn/T/c1z2968114110% ls -la
total 18880
drwx------    3 ggreer  staff       96 Nov 22 11:16 ./
drwx------@ 570 ggreer  staff    18240 Nov 22 11:16 ../
-rw-r--r--    1 ggreer  staff  9666560 Nov 22 11:16 db

[pquerna]

since we used these previously as a effective pagination token, does this mean ideally for in-place upgades we throw away "old" pagination state, and start over? should "version" the pagination token?

[ggreer]

I'm sure we've broken this before. In an ideal world we'd version this stuff and write migrations, but I think the moneyball solution would be to end the sync if we error unmarshaling the json. I pushed a change that does this.

[pquerna]

I don;'t think we need a migration, we just need to start the specified sync step over from zero