ip tagging: level compressed trie implementation

[ccaraman]

Implementation of the Level Compressed Trie as described by the paper IP address lookup using LC-tries by Stefan Nelson and Gunnar Karlsson.

For this implementation, I referenced https://github.com/beevek/libkrb/blob/master/krb/lc_trie.hpp which is based off of the C implementation found at http://www.csc.kth.se/~snilsson/software/router/C/

Note: This doesn't support nested prefixes. I've added a TODO to add support in the next PR.

Risk Level: Medium - This will be the core logic behind the Ip Tagging Filter.

Testing: Unit Tests. A todo has been added for performance benchmark.

Docs Changes: Docs will be updated when the filter consumes this implementation.
Release Notes: I'll update the release notes when the filter consumes this implementation.

Related to #1001

Next Pr's will do the following:

• Consume the LC-Trie in the Ip Tagging filter and update the IP Tagging filter to consume V2.
• Add Prefix support
• Performance benchmark testing.

[mattklein123]

@ccaraman do you mind just marking down the notes we just went over so they don't get duplicated by other reviewers? Awesome stuff!

[ccaraman]

@brian-pane Do you have any insight as to why 2000000 was chosen? Is there a better way to compute a buffer given the fill_factor?

[brian-pane]

In the original implementation, I think the author just picked 2000000 as a really big number that they thought would be big enough to handle any situation. And then, after populating the buffer, they resized it down to the amount of space they actually ended up using.

I don't have a good way to compute the buffer size in advance, since it depends on the exact shape of the tree. However, I think it's okay to not pre-size the buffer. I think std::vector uses a power-of-two allocator internally, so the number of resize operations will be O(log(N)) for N prefixes. So my proposal is to just use std::vector, see how fast it is, and then optimize if needed.

[ccaraman]

That sounds good! I prefer your suggestion. I'll change the comment to say how this diverged from the reference implementation.

[ccaraman]

I decided to not remove the resizing due to the accessing pattern used across the code base. Once there are performance benchmark tests, the resizing the vector can be something we look to improve if needed.

[ccaraman]

@junr03 Please take a first pass.

[brian-pane]

It's called position in the comment but p in the declaration.

[ccaraman]

Fixed.

[brian-pane]

... "IP address from which to extract the bits," maybe?

[ccaraman]

Thank you for catching that. I'll update.

[brian-pane]

I think this may be unsafe. C doesn't specify whether a right shift is logical (high order bits get filled with zeros) or arithmetic (high order bits get filled with a copy of whatever the input high order bit was).

It's probably safest to bitwise-and the result of these shifts with a mask consisting of n ones in the low order bits.

[ccaraman]

I double checked the c++ standard and for unsigned left/right shifting is safe and produces the values we expect. In this version of the pr, they were int's. I've change the methods to be uint32_t.

[brian-pane]

Should this struct be named "IpPrefix," singular, since it holds just one prefix?

[ccaraman]

Yes, that is clearer. I've updated it to be IpPrefix.

[brian-pane]

Would you be open to making this unlimited? The global routing table currently contains 700,000 prefixes, so it won't fit within the 2^19 limit. I know Envoy itself is unlikely to ever have that many prefixes configured; but if this implementation can support more nodes, it could be useful to people working on other projects someday.

[brian-pane]

I should note, though, that making this unlimited would require using a uint64_t instead of uint32_t for LcNode, so the LC trie would take up more cache space.

[ccaraman]

I'm am open to it. I don't think we need it now. I've added a comment to change the data structure for LcNode to be uint64_t if any consumer requires it.

[ccaraman]

To summarize our offline conversation, the code will stay with uint32_t as the underlying LcNode structure.

To avoid getting an out of range exception, I'll add a check at the beginning of every buildRecursive call to ensure the size is > the position being accessed in the Lc-Trie that way if the number of trie_ nodes required is greater than 2^20 the code will throw an exception. If this case is it, then the uint64_t conversation should be revisited.

Once there are larger data sets and perf tests, there can be an effort to see if using uint64_t is worth supporting larger set of prefixes. Another benefit is then there can be some experimentation in determining what the buffer can be.

[brian-pane]

The max branching factor is just 31 rather than 2^31, right?

[ccaraman]

Yes, that is another typo (and compression of the logic 2^5-1 = 31).

[brian-pane]

If I'm counting right, it seems like there are only 20 remaining bits. 32 bits minus 5 for the branching factor, minus 7 for the skip count.

[ccaraman]

Yes, that is a typo. I'll fix that.

[brian-pane]

In order to make code like this less error-prone, the mechanism I usually use is:

struct LcNode {
  uint32_t branch:5;
  uint32_t skip:7;
  uint32_t address:20;
};

Then you can just refer to fields in the struct by name, and let the compiler deal with all the bit shifting.

I don't know if bitfield structs like that are encouraged or discouraged in Envoy, though.

[mattklein123]

this is fine, SGTM.

[ccaraman]

Thank you for the suggestion. This is cleaner. I've updated the code to use your proposed structure.

[brian-pane]

I think it might be possible for a trie built from 2^19 prefixes to end up with more than 2^20 nodes, if the fill_factor is set to something less than 0.5. Hmmm, maybe the safe limit is 2^20 * fill_factor, but I haven't thought through it fully, so please don't take my word for it. :)

[brian-pane]

Does the original LC trie code work with nested prefixes? I know the corresponding paper didn't use any nested prefixes in its examples, but it isn't clear to me if the design can handle nested prefixes without modifications.

[ccaraman]

I'll update the comment here and for the class and method definition. Currently, the code will throw an exception if there are nested prefixes. I have a todo to make the exception show which prefixes are nested.

The future implementation for nested prefixes won't modify the algorithm or the underlying LcNode. There are two options to handle it:

1. Have a sorted list of the nested prefixes
2. Use another lc-trie for the nested prefixes
   The most general prefix will have a way of accessing one of those options once it is implemented.

[mattklein123]

FWIW, I would do the implementation that was done in the original C implementation. IMO it's very easy to understand and will perform very well (linked list of prefixes, accessed from trie node). It will also perform well for our case where 0 prefixes will be by far the most common case and 1 prefix will be the next most common case by a huge margin.

[brian-pane]

In practice, will IPv4 and IPv6 need separate trees? I'm thinking about the case where a user has configured an IPv4 prefix with length 24, and then they get a request from an IPv6 address whose first 24 bits happen to match the prefix. In that scenario, the user will probably want the IPv6 address to not match the IPv4 prefix.

[brian-pane]

Oops, never mind; I just realized the LCTrie maintains two separate LCTrieInternal objects, so it won't accidentally match v6 addresses against v4 prefixes.

[ccaraman]

I'll improve the comments for the LcTrie to make this clearer. Thank you for the feedback.

[brian-pane]

Thanks for implementing this!

In case it's useful for unit tests, I computed the IPv4 CIDR prefixes corresponding to the examples in the original paper. These prefixes probably don't exercise 100% of the trie-building code paths, but they do result in a trie with a mix of different branching factors (figure 3 from the paper).

0.0.0.0/4
16.0.0.0/4
40.0.0.0/5
64.0.0.0/3
96.0.0.0/4
112.0.0.0/4
128.0.0.0/3
160.0.0.0/6
164.0.0.0/6
168.0.0.0/5
176.0.0.0/5
184.0.0.0/5
192.0.0.0/3
232.0.0.0/8
233.0.0.0/8

[mattklein123]

drive by quick comment: const Network::Address::Instance&.

Will let you get through @brian-pane and @junr03 reviews before looking more in-depth. Looks great though!

[ccaraman]

fixed.

[brian-pane]

Do the unit tests currently cover both this and its "else" case? I ask because the handling of the "k==0" situation (which requires interpolating the values for new child nodes that have to be created when the number of children for a node is less than 2^branch_) seems like one of the trickiest parts of the LC Trie construction.

[ccaraman]

I double checked. The sample input provided in the paper covers all of the if/else cases in buildRecursive.

[ccaraman]

I'm going to restructure these tests. There is lots of duplicate in logic, take in a list of strings for cidr range, build trie, search for an input.

[ccaraman]

Synced with Jose offline - i'll add a comment that the skip value is the number of bits between the last prefix at prefix and the output.prefix . (Mention that it is the number of bits)

[ccaraman]

I'll add note that this is total number of bits that have the same prefix for a range of data.

[junr03]

I have more comments but I have to leave for now. Will put out more tonight

[junr03]

nit: space between 'ip_address'or

[junr03]

can we make the number of bits in a byte a constant?

[brian-pane]

I was curious, so I just looked it up, and there's standardized CHAR_BIT in C and C++. (Documentation)

[junr03]

I know the paper is below. But it might be useful to cite the paper up top and let the reader know from the beginning that this is based on the paper?

[junr03]

Might be worth it to spell out why. Reference the comment in the build method?

[junr03]

Make a constant of the supported size

[junr03]

overload ==?

[junr03]

rewrite

[junr03]

this comment doesnt flow

[junr03]

compute the number of bits required for branching by checking for all patterns are covered in the set?

[junr03]

explain that this is kept because you need to make sure that you've got a match. I know this is based on the paper, but it might be worth it to spell that here.

[junr03]

I would rename this method. computeBranchAndSkip?

[junr03]

some more comments

[junr03]

I am a little concerned about the default fill factor of 0. That would mean that any count would keep increasing the branch going up and collapsing the trie

[ccaraman]

fill factor will be validated in the config to have this range (0, 1]

[junr03]

comment on the -1

[junr03]

I know this is not the responsibility of the throwing code. But given we own both the throwing code and the code that receives the exception, I want to make sure this is caught at config time, which I am 99% sure it does.

[ccaraman]

Yes, this will get thrown during config parsing The call chain is LcTrie()->LcTrieInternal<>-> build()->buildRecursive

[junr03]

s/base/ip_prefixes_

[ccaraman]

fixed

[junr03]

I think this section lacks in explanation compared to the rest of the code, and it is a pretty crucial set of operations. I'll leave it up to you if you want to spell it out more. At the very least to explain what each case is.

[ccaraman]

Added more comments

[mattklein123]

Looks great! Just a few comments.

[mattklein123]

nit: missing space after "by". Please also provide direct link to paper/article if possible.

[ccaraman]

Fixed. Found a free version of the paper hosted by the author.

[mattklein123]

Should we just make the default 16 for root_branching_factor?

[brian-pane]

I think it may be better to use a much smaller default, like 6 or 8. Or maybe auto-compute the root branching factor based on the number of prefixes submitted to the build function.

Here's my rationale...

With a root_branching factor of 16, each trie will use at least 256KB of memory: 2^16 nodes at the first level below the root, times 4 bytes per node.

When Nilsson et al recommended 16 bits of branching at the root in their original paper, their target use case was a router with at least tens of thousands of prefixes. In that scenario, dedicating 256KB of memory to shard the trie into 2^16 buckets seems like a reasonable tradeoff of memory for speed.

But proxy applications, if my own experience is representative, will usually have a much smaller number of prefixes configured: often dozens of prefixes, sometimes hundreds, rarely tens of thousands. For such configurations, 256KB strikes me as too much overhead, especially relative to the L1D and even L2 cache sizes of contemporary server CPUs.

[mattklein123]

SGTM. Whatever you all think is best. Was mostly just wondering if the default should not be 0.

[ccaraman]

I'll leave it at zero for now.

[mattklein123]

For these can you just construct an Ipv4Instance or Ipv6Instance and return the string from that? Seems simpler.

[ccaraman]

Good idea. Fixed.

[mattklein123]

nit: extra space before ip_prefixes

[mattklein123]

Can we just do that now? It doesn't seem that hard and seems like it would clean up a bunch of stuff. You could do another PR and just merge that into this?

[ccaraman]

I'll do this in a separate PR and merge it into here.

[mattklein123]

two small nits. Nice work!

[mattklein123]

nit: const Network::Address::InstanceConstSharedPtr&

[mattklein123]

nit: del