fix(notifier)!: Stop retaining durable publish kit values in RAM #7459
Conversation
There was a problem hiding this comment.
This all looks quite sensible to me, but it's far enough outside my wheelhouse that I'm not comfortable giving it a thumbs up (or down) just on my own. So consider this a kinda-sorta approval conditional on someone whose promise-fu is greater than mine giving it their blessing.
| assert(status === 'live'); | ||
| return tail; | ||
| } | ||
| if (status === 'live' || status === 'finished') { |
There was a problem hiding this comment.
Maybe use switch (status) here?
There was a problem hiding this comment.
Considered, but rejected because I want provideCurrentP and provideDurablePublishKitEphemeralData to remain compact.
| const { status } = state; | ||
| let tailP; | ||
| let tailR; | ||
| if (status === 'live') { |
There was a problem hiding this comment.
I admittedly do not grok enough the publisher/subscribers to consider my review authoritative, but I have concerns about the handling of non-durable finish values and fail reasons. Arguably this was a problem before, but I have a hard time figuring out the state in which it leaves the ephemeral data.
On the memory usage, an empirical test seem to indicate we no longer hold virtual objects through the ephemeral data, so that's good! Of course we do still have a bunch of heap promise per publisher, but not much to do about this until we implement pseudo-promises.
packages/notifier/src/publish-kit.js
Outdated
| * @property {Promise<*> | undefined} currentP The current-result promise | ||
| * (undefined unless resolved with unrecoverable ephemeral data) | ||
| * @property {Promise<*>} tailP The next-result promise | ||
| * @property {import('@endo/promise-kit').PromiseKit<*>['resolve'] | undefined} tailR The next-result resolver |
There was a problem hiding this comment.
Why import the resolve definition? It's pretty standard:
| * @property {import('@endo/promise-kit').PromiseKit<*>['resolve'] | undefined} tailR The next-result resolver | |
| * @property {((value: *) => void) | undefined} tailR The next-result resolver |
packages/notifier/src/publish-kit.js
Outdated
| const makeTooFarRejection = () => | ||
| makeQuietRejection(new Error('Cannot read past end of iteration.')); |
There was a problem hiding this comment.
So I actually found one more leak, at least in v8. Apparently the Errors structured stack keeps references to each call site, including in this case the context object of the finish call. That object is the {state, facets} context of the notifier exo kit. While this is most likely not a problem in XS, and likely applies to other Exo class based patterns, I figured it'd be easy enough to fix in this case since I don't believe there is much value in capturing the stack of when the publisher was finished.
| const makeTooFarRejection = () => | |
| makeQuietRejection(new Error('Cannot read past end of iteration.')); | |
| const tooFarRejection = harden( | |
| makeQuietRejection(new Error('Cannot read past end of iteration.')), | |
| ); |
There was a problem hiding this comment.
So the reason I suggested to harden was because the rejection would be shared instead of built for each publisher when reaching a terminal state.
There was a problem hiding this comment.
Yep, makes sense. And makeQuietRejection already hardens the returned promise.
Reduces memory leakage, cf. #7459 (comment)
gibson042
force-pushed
the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
from
c4f17bd to
ac1d604
Compare
Reduces memory leakage, cf. #7459 (comment)
gibson042
added
the
automerge:no-update
gibson042
force-pushed
the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
from
ac1d604 to
c5b950b
Compare
Reduces memory leakage, cf. #7459 (comment)
gibson042
force-pushed
the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
from
c5b950b to
af34ebb
Compare
Reduces memory leakage, cf. #7459 (comment)
gibson042
force-pushed
the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
from
af34ebb to
e5372b3
Compare
Reduces memory leakage, cf. #7459 (comment)
gibson042
force-pushed
the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
from
e5372b3 to
2fd53e6
Compare
Reduces memory leakage, cf. #7459 (comment)
Fixes #7298 This change is breaking only because the identity of promises and `head` objects is no longer preserved.
good hygiene and avoids leaking some memory
Reduces memory leakage, cf. #7459 (comment)
gibson042
force-pushed
the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
from
2fd53e6 to
7764e36
Compare
deploy-script-support can't have nice things
mergify
bot
deleted the
gibson-7298-reduce-durable-publish-kit-ram-footprint
branch
Fixes #7298
Description
Refactor ephemeral data to retain a promise resolved to the current value only when that value is ephemeral, which is currently prohibited by the restriction of valueDurability to 'mandatory'.
Security Considerations
n/a
Scaling Considerations
This PR reduces RAM consumption by allowing durable promise kit resolution values to be paged out.
Documentation Considerations
This change is breaking only because the identity of promises and
headobjects is no longer preserved, but I don't believe we ever promised such preservation and it isn't observable across vat boundaries anyway.Testing Considerations
I still want a test that verifies lack of retention, and am open to ideas regarding the best pattern for that.