Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve suma authentication concurrency #2531

Merged
merged 8 commits into from
Apr 23, 2024
Merged

Improve suma authentication concurrency #2531

merged 8 commits into from
Apr 23, 2024

Conversation

arbulu89
Copy link
Contributor

Description

Change the SUMA interaction module to use the GenServer only to handle the authentication, not the whole sequence of queries. This way, only the authentication is a "locked" process, and all the other requests can happen concurrently.

The other "small" improvement is that the when we do a "batch" discovery (on saving SUMA settings for instance), we just authenticate once, and use that data for the rest. Otherwise, as the auth is still sequential, it would've been tried for each individual host, and when the user/password are wrong for instance, this could take a lot (5-10 seconds per host).

It is just an improvement of performance in reality, nothing else.
As things happen in the background the user might not even notice things (except, some toast are happening faster, etc).

How was this tested?

Unit tests updated, and I have tested manually with our own SUMA instance.

Next:
The discovery when we save the settings must happen async, so the patch is not holded there for a while (which can even create timeout issues)

@arbulu89 arbulu89 added the enhancement New feature or request label Apr 18, 2024
@arbulu89 arbulu89 force-pushed the improve-suma-authentication-concurrency branch 2 times, most recently from 2a0bcd0 to c5a4d30 Compare April 18, 2024 09:43
@arbulu89 arbulu89 marked this pull request as ready for review April 18, 2024 09:51
@arbulu89 arbulu89 force-pushed the improve-suma-authentication-concurrency branch from c5a4d30 to 12a60cc Compare April 18, 2024 09:52
@arbulu89 arbulu89 mentioned this pull request Apr 18, 2024
Merged
@nelsonkopliku nelsonkopliku mentioned this pull request Apr 19, 2024
Merged
gagandeepb
gagandeepb reviewed Apr 19, 2024
View reviewed changes
Copy link
Contributor

@gagandeepb gagandeepb left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I brought this up during a chat with @nelsonkopliku earlier today, but I wonder if it would be interesting at some point to have something like Cachex available to enable caching of certain frequently accessed state ? We would also get a nice interface for TTL, expiry/refresh, warming etc. This would also mean not having to rely on a GenServer for frequent state reads from different execution contexts (I'm not fully sure if that is the case with the state of the GenServer here, though).

@arbulu89
Copy link
Contributor Author

Thank you for you comment @gagandeepb
I guess that we could use any k/v store for such a things, but keep in mind that the purpose of the genserver is not only that. It plays the role of having a centralized authentication entry point, so we can keep this "locked/sequential", and as it is an operation that can take some few seconds, we still need to handle it.
At the end, we are doing OS level operations writing/changing files, which we don't want to run in parallel.

nelsonkopliku
nelsonkopliku reviewed Apr 22, 2024
View reviewed changes
Copy link
Member

@nelsonkopliku nelsonkopliku left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey @arbulu89 thanks for this!

Besides some cosmetics my main comment is about keeping what you have extracted as authenticated = setup() inside the auth flow.

lib/trento/infrastructure/software_updates/auth/gen.ex Outdated Show resolved Hide resolved
lib/trento/infrastructure/software_updates/auth/gen.ex Outdated Show resolved Hide resolved
lib/trento/infrastructure/software_updates/auth/suma_auth.ex Show resolved Hide resolved
lib/trento/infrastructure/software_updates/auth/suma_auth.ex Show resolved Hide resolved
lib/trento/infrastructure/software_updates/auth/suma_auth.ex Show resolved Hide resolved
lib/trento/infrastructure/software_updates/auth/suma_auth.ex Show resolved Hide resolved
lib/trento/software_updates/discovery.ex Outdated Show resolved Hide resolved
@arbulu89 arbulu89 force-pushed the improve-suma-authentication-concurrency branch from 12a60cc to 7fcfbb2 Compare April 22, 2024 14:07
nelsonkopliku
nelsonkopliku approved these changes Apr 22, 2024
View reviewed changes
Copy link
Member

@nelsonkopliku nelsonkopliku left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM @arbulu89, thanks!

dottorblaster
dottorblaster approved these changes Apr 22, 2024
View reviewed changes
Copy link
Contributor

@dottorblaster dottorblaster left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great work! I really like this approach 👍

@arbulu89 arbulu89 merged commit e670fb2 into main Apr 23, 2024
26 checks passed
@arbulu89 arbulu89 deleted the improve-suma-authentication-concurrency branch April 23, 2024 06:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gagandeepb gagandeepb gagandeepb left review comments

@nelsonkopliku nelsonkopliku nelsonkopliku approved these changes

@dottorblaster dottorblaster dottorblaster approved these changes

@jamie-suse jamie-suse Awaiting requested review from jamie-suse

Assignees
No one assigned
Labels
enhancement New feature or request
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@arbulu89 @dottorblaster @nelsonkopliku @gagandeepb