Refactor cache to support storing resources in memory#52210
Merged
rosstimothy merged 1 commit intomasterfrom Apr 10, 2025
Merged
Refactor cache to support storing resources in memory#52210rosstimothy merged 1 commit intomasterfrom
rosstimothy merged 1 commit intomasterfrom
Conversation
rosstimothy
added
the
no-changelog
rosstimothy
force-pushed
the
tross/refactor_cache
branch
4 times, most recently
from
3be09f7 to
9baa177
Compare
fspmarshall
reviewed
Feb 18, 2025
rosstimothy
force-pushed
the
tross/refactor_cache
branch
from
fe33466 to
b28680c
Compare
rosstimothy
force-pushed
the
tross/refactor_cache
branch
2 times, most recently
from
ab060e3 to
63618f5
Compare
fspmarshall
reviewed
Feb 20, 2025
Comment on lines
+96
to
+60
| for idx, transform := range s.indexes { | ||
| s.cache.Delete(idx, transform(t)) | ||
| } |
Contributor
There was a problem hiding this comment.
nit: SortCache deletes the item across all indexes if it is deleted on any index, so only one call to Delete is required (though maybe just leaving as-is is easier than deciding which one to use lol).
Contributor
There was a problem hiding this comment.
Does it make sense to have a primary index and secondary, non-unique indices? As it is we're basically requiring the secondary indices to include the "primary key" as a tail all the time anyway.
Contributor
There was a problem hiding this comment.
I considered adding support for non-unique indices when I initially implemented the sortcache. I decided that it was simpler not to bother. It sounds good in theory, but pagination that works across restarts is actually tricky to do with non-unique indices. Appending the primary key makes pagination trivial and preserves the standard sort order within groups of colliding values, which is especially nice when dealing with low cardinality indices such as access request state. Seemed like non-unique indices would be a big headache for little payoff.
rosstimothy
force-pushed
the
tross/refactor_cache
branch
from
970ff84 to
39d9934
Compare
fspmarshall
reviewed
Feb 21, 2025
rosstimothy
force-pushed
the
tross/refactor_cache
branch
4 times, most recently
from
a82d3b3 to
8240ca5
Compare
rosstimothy
commented
Feb 27, 2025
Contributor
Author
There was a problem hiding this comment.
These tests were moved unaltered from cache_test.go.
rosstimothy
force-pushed
the
tross/refactor_cache
branch
from
1ba6511 to
927fb94
Compare
rosstimothy
force-pushed
the
tross/refactor_cache
branch
from
236d981 to
21748c5
Compare
fspmarshall
approved these changes
Mar 27, 2025
espadolini
reviewed
Mar 28, 2025
Comment on lines
+96
to
+60
| for idx, transform := range s.indexes { | ||
| s.cache.Delete(idx, transform(t)) | ||
| } |
Contributor
There was a problem hiding this comment.
Does it make sense to have a primary index and secondary, non-unique indices? As it is we're basically requiring the secondary indices to include the "primary key" as a tail all the time anyway.
rosstimothy
force-pushed
the
tross/refactor_cache
branch
from
21748c5 to
aad2514
Compare
rosstimothy
added a commit
that referenced
this pull request
Apr 28, 2025
Moves join tokens to the new cache collection scheme that was introduced in #52210. No additional functionality changes have been made here. This should be a purely mechanical translation to the new internal caching machinery.
rosstimothy
added a commit
that referenced
this pull request
Apr 28, 2025
Moves authe preference, cluster name, session recording config, audit config, and networking config to the new cache collection scheme that was introduced in #52210. No additional functionality changes have been made here. This should be a purely mechanical translation to the new internal caching machinery.
rosstimothy
added a commit
that referenced
this pull request
Apr 28, 2025
Moves auto update config, version and agent rollout to the new cache collection scheme that was introduced in #52210. No additional functionality changes have been made here. This should be a purely mechanical translation to the new internal caching machinery.
rosstimothy
added a commit
that referenced
this pull request
Apr 28, 2025
Moves auto update config, version and agent rollout to the new cache collection scheme that was introduced in #52210. No additional functionality changes have been made here. This should be a purely mechanical translation to the new internal caching machinery.
rosstimothy
added a commit
that referenced
this pull request
Apr 28, 2025
Moves auto update config, version and agent rollout to the new cache collection scheme that was introduced in #52210. No additional functionality changes have been made here. This should be a purely mechanical translation to the new internal caching machinery.
rosstimothy
added a commit
that referenced
this pull request
Apr 28, 2025
Moves auto update config, version and agent rollout to the new cache collection scheme that was introduced in #52210. No additional functionality changes have been made here. This should be a purely mechanical translation to the new internal caching machinery.
This was referenced Apr 28, 2025
This was referenced May 6, 2025
This was referenced May 14, 2025
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
While the current cache storage is also in memory, it leverages the memory backend which requires converting resources to and from json. Marshaling json is suboptimal and is often a source of CPU and memory consumption. The biggest problem with json marshaling though is that it requires calling CheckAndSetDefaults. When validations enforced in CASD become stricter it can leave caches unable to become healthy when there are mixed versions within a cluster as they all might have a slightly different view of what should be allowed.
As a means to solve both problems, this changes the cache to store resources received from the upstream directly in memory without doing any conversion to json. There are two gotchas with this approach, caching is no longer "free" and cloning of resources must be done diligently to avoid races. Historically the cache relied on the storage implementation in
services/localto manage persisting resources in the cache'sbackend.Memory. However, that will no longer be the case as the cache needs to support storage directly in memory. In order to reduce the burden this may pose on developers the new collection machinery is simpler, and helpers will be added on top ofsortcache.SortCacheto make a second storage implementation trivial.The changes here are two fold, mark the existing collections machinery as legacy and introduce new machinery to operate entirely in memory. This includes an initial implementation of caching for static tokens, users, and cert authorities that leverages the new collection machinery. Additionally, all of the new resource specific code was moved to
lib/cache/static_tokens.go,lib/cache/users.go, andlib/cache/cert_authority.go. This follows the blue print some of the newer cached resources use to make it easier to identify where code for a specific resource lives and to reduce the size of the cache.go and collections.go files.Once this lands I plan to copy the same pattern used on other cached resource until all of the legacy collections are gone.