fix time_since_epoch different in different os default return precision

[zyfjeff]

Signed-off-by: tianqian.zyf [email protected]

Description: time_since_epoch different in different os default return precision, use abseil time library to use unified timestamp
Risk Level: low
Testing: N/A
Docs Changes:
Release Notes:
[Optional Fixes #Issue] #4278
[Optional Deprecated:]

[zyfjeff]

==21403==ERROR: AddressSanitizer: initialization-order-fiasco on address 0x00000b5e4e20 at pc 0x000003961e2a bp 0x7ffeb6aada40 sp 0x7ffeb6aada38
READ of size 4 at 0x00000b5e4e20 thread T0
    #0 0x3961e29 in std::__atomic_base<unsigned int>::load(std::memory_order) const /usr/bin/../lib/gcc/x86_64-linux-gnu/5.4.0/../../../../include/c++/5.4.0/bits/atomic_base.h:396:9
    #1 0x3961e29 in absl::base_internal::SpinLock::TryLockImpl() /proc/self/cwd/external/com_google_absl/absl/base/internal/spinlock.h:167
    #2 0x395ec13 in absl::base_internal::SpinLock::Lock() /proc/self/cwd/external/com_google_absl/absl/base/internal/spinlock.h:81:10
    #3 0x399291a in absl::GetCurrentTimeNanosSlowPath() /proc/self/cwd/external/com_google_absl/absl/time/clock.cc:393:8
    #4 0x39927cc in absl::GetCurrentTimeNanos() /proc/self/cwd/external/com_google_absl/absl/time/clock.cc:353:10
    #5 0x39911eb in absl::Now() /proc/self/cwd/external/com_google_absl/absl/time/clock.cc:39:15
    #6 0x588fcc in __cxx_global_var_init.49 /proc/self/cwd/external/envoy/test/test_common/utility.cc:37:47
    #7 0x5891c2 in _GLOBAL__sub_I_utility.cc /proc/self/cwd/external/envoy/test/test_common/utility.cc

Look abseil time library cause AddressSanitizer fail

[dnoe]

This looks like the spot where the static initialization fiasco is getting introduced. I'm actually surprised it wasn't an issue before - maybe it was, and the effect is benign if it just perturbs the random seed.

I would try the technique described in https://isocpp.org/wiki/faq/ctors#static-init-order-on-first-use to see if the ASAN error goes away.

[zyfjeff]

Thanks, you are right

[lizan]

I think this direction (introducing absl::Time) is right. Though another thing to consideration is incorporate this better with Envoy::TimeSource, @jmarantz?

[lizan]

const?

[zyfjeff]

Is it necessary to add a const to the return value that is a value type?

[jmarantz]

Is this what we want, to have the seed be static for the binary, as opposed to static for an individual test? Moreover, this may be related to the AddressSanitizer problem you have above.

[jmarantz]

More good reading about the static initialization "fiasco" referenced in the AddressSanitizer report is here:

https://isocpp.org/wiki/faq/ctors#static-init-order-on-first-use

My personal rule of thumb: avoid class statics and pre-main function-calls wherever possible and programs will be easier to reason about and more portable. Compile-time initialized scalars, arrays, and structs are fine.

Re the "const" question; that's covered in https://google.github.io/styleguide/cppguide.html#Use_of_const

[jmarantz]

Can you explain more about why you want to move from std::chrono to absl::time? From the description I don't fully understand what problem this solves.

If we do that I think it should be done pretty broadly over all of Envoy, and might be a bit easier in conjunction with follow-ups to #4257 , with check_format enhancements extending what's in #4248 to ensure we are working with a single coherent time system.

[jmarantz]

Is this what we want, to have the seed be static for the binary, as opposed to static for an individual test? Moreover, this may be related to the AddressSanitizer problem you have above.

[dnoe]

@jmarantz Can you drive this PR to some conclusion that is compatible with your WIP? Thanks.

[zyfjeff]

@jmarantz
There are two main points:

1. std::chrono::system_clock::now().time_since_epoch() the duration unit returned by the default os is different, uniform use of absl::time can avoid this problem, Different unit of timestamp in metrics_service in linux and macos #4278 it is because of this problem that the timestamp units returned by metrics are different in different os.

  metric->set_timestamp_ms(std::chrono::system_clock::now().time_since_epoch().count());

2. Use absl::ToUnixMillis(absl::Now() to increase the readability of the code

-   const auto unix_timestamp = std::chrono::duration_cast<std::chrono::seconds>(
                                  std::chrono::system_clock::now().time_since_epoch())
                                  .count();
+   const auto unix_timestamp = absl::ToUnixSeconds(absl::Now());

[jmarantz]

Would it be possible to solve #4278 by using std::chrono differently, rather than switching to a different time library?

[jmarantz]

I see. The old code was probably only working because it got 'lucky', despite its static-init fiasco. With absl::time you are getting less lucky.

Can you try just removing the 'static' keyword here? It will only get called once (per test) when TestRandomGenerator is constructed, and that should be fine.

[htuch]

@jmarantz I'm reviewing #4314 atm and I tend to think it would be better to make this static. TestRandomGenerator can be constructed more than once per test; it's just a stack or member variable, it seems safer to ensure that it has a consistent seed each time.

[jmarantz]

Actually I followed up in #4314 as that's where the code change is being proposed; hopefully there's enough context there now.

[zyfjeff]

@jmarantz of course, but I still think that replacing std::chrono with absl::time is the right choice.

[jmarantz]

I agree absl::time is the right way to go, but not at just one point in the code. I think you should just fix the bug without introducing an alternate mechanism to measure time. Once there is a strong abstraction in place a global pivot to absl::time should be straightforward and safe.

In particular I would worry about subtle issues of skew.

Of course for a random seed it's probably ok, but seems unrelated to the bug fix and maybe should be split out?

[zyfjeff]

@jmarantz Agree, I am re-editing the code, about the static initialization "fiasco" question, do I need to create an issue and pr?

[jmarantz]

RE 'fiasco' -- I think just putting that getSeed() change into a separate PR would be fine; I'm not sure it needs to fix an issue, since the old code worked (even if just by luck).

[jmarantz]

Looks great; can you factor out this verbose function call -- repeated 3x, into a helper function.

[zyfjeff]

Ok, I can put the helper function on the anonymous namespace in the current file?Or in the common/common/utility?

[jmarantz]

easiest to put it in local anon namespace, I will be moving it into TimeSource anyway.

There's a bit of debt here -- we should be using TimeSource::systemTime() rather than directly reading the system-clock, so that this code can have time-injection, but I'll fix that after you merge.

[jmarantz]

And actually, can you add (near your helper method):
// TODO(#4160): use TimeSource::systemTime() rather than directly reading the system-clock

[zyfjeff]

OK

[jmarantz]

Thanks; looks great.

[zyfjeff]

@dnoe You need to continue to review?

[dnoe]

@lizan Is this ready to go from your perspective?

[dnoe]

I didn't actually intend to approve, just to remove the "changes requested" in UI. Defer to @lizan for initial maintainer review.

[htuch]

The function name suggests that it returns microseconds, but the body is dealing with milliseconds, seems like one of these should change.

[htuch]

@jmarantz what's stopping us switching to this right away? Seems best to avoid exception cases like this if we can given how regular time is now treated in Envoy.

[jmarantz]

nothing, now that you merged the TimeSystem PR; this TODO is addressable.

[htuch]

@zyfjeff post #4257 merge, do you think we can now use this time source?

[jmarantz]

FYI the path to doing this is to plumb Event::TimeSystem& into constructors as needed, up to MainCommon. Note that both ServerImpl and Dispatcher support timeSystem() or timeSource() APIs, so once you go up the constructor stack till you have one of those, you can stop. #4341 is an example of this refactor.

Once we have all the std::chrono removed from everywhere in Envoy we could decide to switch to absl::Time, though I'd want to socialize the benefits of that to envoy-dev on slack first.

[zyfjeff]

@htuch Yes i do, I am going to modify it.

@jmarantz I can try to replace all std::chrono with TimeSystem

[htuch]

Looks great, thanks for iterating on this. I've kicked the failing CI jobs, will merge when they pass.