Build complex automatons more efficiently #66724
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This change substantially reduces the CPU and Heap usage of
StringMatcher when processing large complex patterns.
The improvement is achieved by switching the order in which we
perform concatenation and union for common styles of wildcard patterns.
Given a set of wildcard strings:
- "*-logs-*"
- "*-metrics-*"
- "web-*-prod-*"
- "web-*-staging-*"
The old implementation would perform steps roughly like:
minimize {
union {
concatenate { MATCH_ANY, "-logs-", MATCH_ANY }
concatenate { MATCH_ANY, "-metrics-", MATCH_ANY }
concatenate { "web-", MATCH_ANY, "prod-", MATCH_ANY }
concatenate { "web-", MATCH_ANY, "staging-", MATCH_ANY }
}
}
The outer minimize would require determinizing the automaton, which
was highly inefficient
The new implementation is:
minimize {
union {
concatenate {
MATCH_ANY ,
minimize {
union { "-logs-", "-metrics"- }
}
MATCH_ANY
}
concatenate {
minimize {
union {
concatenate { "web-", MATCH_ANY, "prod-" }
concatenate { "web-", MATCH_ANY, "staging-" }
}
}
MATCH_ANY
}
}
}
By performing a union of the inner strings before concatenating the
MATCH_ANY ("*") the time & heap space spent on determinizing the
automaton is greatly reduced.
tvernum
added
>enhancement
:Security/Security
Collaborator
|
Pinging @elastic/es-security (Team:Security) |
Contributor
Author
|
To give an indication of the improvement... If a user has this role: Then in current versions (7.11 snapshot), even with After this PR, that role will work correctly, using the defaults ( |
ywangd
approved these changes
Dec 24, 2020
Member
ywangd
left a comment
ywangd
left a comment
There was a problem hiding this comment.
LGTM with a few minor comments.
The efficiency improvement is outstanding. Great job!
Comment on lines
+121
to
+122
| final char first = p.charAt(0); | ||
| final char last = p.charAt(p.length() - 1); |
Member
There was a problem hiding this comment.
Shoud we guard these with a check for p.length() == 0?
| } else if (first == '*') { | ||
| if (last == '*') { | ||
| // *something* | ||
| infix.add(p.substring(1, p.length() - 1)); |
Member
There was a problem hiding this comment.
It is possible that the pattern is **. As such the infix is an empty string and can be skipped. But as discussed, it is probably better handled as part of compacting all consecutive *, which can be done in a separate PR.
| // But, that's not true if the string has an embedded '*' in it - in that case, we should handle them in this special way. | ||
| prefix.add(p.substring(0, p.length() - 1)); | ||
| } else { | ||
| // some*thing / some?thing / etc |
Member
There was a problem hiding this comment.
I think the pattern like something* should also reach here and should be part of the comment.
| // some*thing* | ||
| // For simple prefix patterns ("something*") it's more efficient to do a single pass | ||
| // Lucene handles the shared trailing '*' on an accept state well, | ||
| // and performing 2 minimizes (on for the union of strings, then on again after concatenating MATCH_ANY) is slower. |
Member
There was a problem hiding this comment.
This sentence reads weird to me. Should it be something like ... (one for the union of strings, and another one after ...)
| return minimize(pattern(patterns.iterator().next())); | ||
| } | ||
|
|
||
| final Function<Collection<String>, Automaton> build = strings -> { |
Member
There was a problem hiding this comment.
Nit: I'd prefer to name this variable with a noun, something like buildFunc.
Contributor
|
I am with Yang on comment on the line 122 ^^ |
BigPandaToo
approved these changes
Dec 27, 2020
tvernum
added a commit
to tvernum/elasticsearch
that referenced
this pull request
Dec 31, 2020
This change substantially reduces the CPU and Heap usage of
StringMatcher when processing large complex patterns.
The improvement is achieved by switching the order in which we
perform concatenation and union for common styles of wildcard patterns.
Given a set of wildcard strings:
- "*-logs-*"
- "*-metrics-*"
- "web-*-prod-*"
- "web-*-staging-*"
The old implementation would perform steps roughly like:
minimize {
union {
concatenate { MATCH_ANY, "-logs-", MATCH_ANY }
concatenate { MATCH_ANY, "-metrics-", MATCH_ANY }
concatenate { "web-", MATCH_ANY, "prod-", MATCH_ANY }
concatenate { "web-", MATCH_ANY, "staging-", MATCH_ANY }
}
}
The outer minimize would require determinizing the automaton, which
was highly inefficient
The new implementation is:
minimize {
union {
concatenate {
MATCH_ANY ,
minimize {
union { "-logs-", "-metrics"- }
}
MATCH_ANY
}
concatenate {
minimize {
union {
concatenate { "web-", MATCH_ANY, "prod-" }
concatenate { "web-", MATCH_ANY, "staging-" }
}
}
MATCH_ANY
}
}
}
By performing a union of the inner strings before concatenating the
MATCH_ANY ("*") the time & heap space spent on determinizing the
automaton is greatly reduced.
Backport of: elastic#66724
tvernum
added a commit
that referenced
this pull request
Dec 31, 2020
This change substantially reduces the CPU and Heap usage of
StringMatcher when processing large complex patterns.
The improvement is achieved by switching the order in which we
perform concatenation and union for common styles of wildcard patterns.
Given a set of wildcard strings:
- "*-logs-*"
- "*-metrics-*"
- "web-*-prod-*"
- "web-*-staging-*"
The old implementation would perform steps roughly like:
minimize {
union {
concatenate { MATCH_ANY, "-logs-", MATCH_ANY }
concatenate { MATCH_ANY, "-metrics-", MATCH_ANY }
concatenate { "web-", MATCH_ANY, "prod-", MATCH_ANY }
concatenate { "web-", MATCH_ANY, "staging-", MATCH_ANY }
}
}
The outer minimize would require determinizing the automaton, which
was highly inefficient
The new implementation is:
minimize {
union {
concatenate {
MATCH_ANY ,
minimize {
union { "-logs-", "-metrics"- }
}
MATCH_ANY
}
concatenate {
minimize {
union {
concatenate { "web-", MATCH_ANY, "prod-" }
concatenate { "web-", MATCH_ANY, "staging-" }
}
}
MATCH_ANY
}
}
}
By performing a union of the inner strings before concatenating the
MATCH_ANY ("*") the time & heap space spent on determinizing the
automaton is greatly reduced.
Backport of: #66724
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This change substantially reduces the CPU and Heap usage of
StringMatcher when processing large complex patterns.
The improvement is achieved by switching the order in which we
perform concatenation and union for common styles of wildcard patterns.
Given a set of wildcard strings:
"*-logs-*""*-metrics-*""web-*-prod-*""web-*-staging-*"The old implementation would perform steps roughly like:
The outer minimize would require determinizing the automaton, which
was highly inefficient
The new implementation is:
By performing a union of the inner strings before concatenating the
MATCH_ANY ("*") the time & heap space spent on determinizing the
automaton is greatly reduced.
Resolves: #36062