Skip to content

vendor changes from pyroscope #90

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
yaseenisolated merged 2 commits into from
Dec 2, 2025
Merged

vendor changes from pyroscope #90

yaseenisolated merged 2 commits into from
Dec 2, 2025

Conversation

@yaseenisolated
Copy link
Contributor

@yaseenisolated yaseenisolated commented Dec 1, 2025
edited
Loading

@yaseenisolated yaseenisolated mentioned this pull request Dec 1, 2025
Merged
@yaseenisolated yaseenisolated deleted the yaseenisolated/stack/3 branch December 1, 2025 17:41
@yaseenisolated
go mod vendor
3281175 
stack-info: PR: #90, branch: yaseenisolated/stack/3
@yaseenisolated yaseenisolated restored the yaseenisolated/stack/3 branch December 1, 2025 17:43
@yaseenisolated yaseenisolated reopened this Dec 1, 2025
@yaseenisolated yaseenisolated changed the base branch from yaseenisolated/stack/1 to release-1.18-cerebrium December 1, 2025 17:43
@claude
Copy link

claude bot commented Dec 1, 2025

PR Review: go mod vendor

Summary

This PR vendors the dependencies added in PR #82 (Pyroscope continuous profiling). The changes are exclusively in the vendor/ directory, adding:

  • github.com/grafana/pyroscope-go - Main Pyroscope Go SDK
  • github.com/klauspost/compress - Compression library (dependency)

Code Quality: ✅ APPROVED

Positive Aspects:

  1. Clean vendoring: All changes are properly contained in the vendor/ directory
  2. Legitimate dependencies: Pyroscope is a well-known profiling tool from Grafana
  3. Stacked PR pattern: Properly depends on PR feat: add pyrocope continuous profiling to activator #82 which adds the actual profiling integration
  4. No custom code changes: This is purely dependency vendoring

Analysis by Category

1. Dependency Management

  • ✅ Vendors match the Pyroscope Go SDK and its transitive dependencies
  • ✅ No modifications to go.mod or go.sum (those should be in PR feat: add pyrocope continuous profiling to activator #82)
  • ✅ Standard vendoring practice for Go projects
  • ✅ Apache 2.0 licensed (compatible with Knative's Apache 2.0 license)

2. Security

  • ✅ Pyroscope is from Grafana (reputable organization)
  • ✅ No unusual network dependencies or credential handling exposed in vendored code
  • ⚠️ Recommendation: Ensure PR feat: add pyrocope continuous profiling to activator #82 properly configures:
    • Authentication credentials (BasicAuthUser/BasicAuthPassword) via secure mechanisms
    • Server address configuration via environment variables
    • Tags don't expose sensitive information

3. Performance

  • ✅ Pyroscope is designed for continuous profiling with minimal overhead
  • ✅ Compression library (klauspost/compress) is a performant alternative to stdlib
  • ⚠️ Note: The actual performance impact depends on the configuration in PR feat: add pyrocope continuous profiling to activator #82:
    • ProfileTypes selected (CPU, heap, etc.)
    • UploadRate frequency
    • DisableGCRuns setting for heap profiling

4. Test Coverage ⚠️

  • ⚠️ This PR only vendors dependencies, so no tests are expected here
  • ⚠️ Action Required: Verify PR feat: add pyrocope continuous profiling to activator #82 includes tests for:
    • Profiler initialization and shutdown
    • Graceful degradation if Pyroscope server is unavailable
    • Feature gate integration (if profiling is optional)

5. Integration Concerns 🔍

Based on the CLAUDE.md context and activator architecture:

  • 🔍 Verify in PR feat: add pyrocope continuous profiling to activator #82: Where is Pyroscope initialized?

    • Activator main entry point (cmd/activator/main.go)
    • Proper lifecycle management (Start during init, Stop during shutdown)
    • Error handling if profiling fails to start

  • 🔍 Tags Configuration: Ensure profiling tags include:

    • Revision information
    • Activator instance ID
    • Operating mode (hybrid/QP authority/quarantine flags)
    • Avoid: IP addresses or sensitive pod details

  • 🔍 Resource Usage: Monitor activator memory overhead

    • Pyroscope maintains internal buffers for profiles
    • Consider DisableGCRuns: true if heap profiling causes GC overhead
    • Watch for increased activator memory footprint in production

Recommendations

For this PR (#90): ✅ Ready to Merge

For PR #82 (Parent PR): 🔍 Review Required

  1. Configuration Validation:

    // Ensure profiling can be disabled via feature gate
if !enableProfiling {
    return nil
}

// Validate required config
if cfg.ServerAddress == "" {
    logger.Warn("Pyroscope server address not configured, profiling disabled")
    return nil
}

  2. Lifecycle Management:

    // In main.go shutdown handler
if profiler != nil {
    profiler.Stop() // Ensure final profile upload
}

  3. Error Handling:

    profiler, err := pyroscope.Start(cfg)
if err != nil {
    // Don't fail activator startup if profiling fails
    logger.Warnf("Failed to start profiling: %v", err)
    profiler = nil
}

  4. Testing Checklist for PR feat: add pyrocope continuous profiling to activator #82:

    • Test activator starts successfully without Pyroscope server
    • Test profiler initialization failure doesn't crash activator
    • Test graceful shutdown flushes remaining profile data
    • Test tags include relevant activator context
    • Test profiling can be disabled via feature gate/config

Alignment with CLAUDE.md Guidelines ✅

  • Follows fork conventions: Adding observability for Cerebrium infrastructure
  • No breaking changes: Purely additive functionality
  • Enhances existing metrics: Complements existing Prometheus metrics with profiling
  • Production-ready pattern: Pyroscope is battle-tested for production use

Final Verdict: ✅ APPROVED WITH CONDITIONS

This PR (#90): Ready to merge (vendoring is clean)

Conditional on PR #82:

  • Profiling must be optional (feature gate or config)
  • Graceful degradation if Pyroscope unavailable
  • Proper lifecycle management (shutdown)
  • Test coverage for failure scenarios

Questions for Clarification

  1. Is Pyroscope profiling enabled by default or behind a feature gate?
  2. What ProfileTypes are being collected? (CPU only, or CPU + heap + goroutines?)
  3. What's the configured UploadRate? (recommendation: 10-60 seconds)
  4. Is the Pyroscope server address configurable via environment variable?
  5. Are there any production capacity concerns with the activator running continuous profiling?

Great work on adding observability! Continuous profiling will be invaluable for debugging activator performance issues, especially with the complex pod state management and quarantine systems. 🔥

@yaseenisolated
feat: add pyrocope continuous profiling to activator (#82)
57637a3 
add dependencies

feat: add pyrocope continuous profiling to activator

add dependencies

stack-info: PR: #82, branch: yaseenisolated/stack/1

feat: Add feature gates for debug dashboard, event persistence, and r… (#78)

feat: add command line args for pyroscope tags
@yaseenisolated yaseenisolated changed the title go mod vendor vendor changes from pyroscope Dec 2, 2025
@CerebriumAI CerebriumAI deleted a comment from claude bot Dec 2, 2025
@CerebriumAI CerebriumAI deleted a comment from claude bot Dec 2, 2025
@claude
Copy link

claude bot commented Dec 2, 2025

PR Review: Pyroscope Continuous Profiling Integration

Summary

This PR adds Grafana Pyroscope continuous profiling support to the Knative activator component. The implementation is well-structured and production-ready, with proper error handling and configurability.

✅ Code Quality & Best Practices

Strengths:

  1. Optional Feature: Profiling is opt-in via environment variables - won't impact existing deployments
  2. Proper Error Handling: Pyroscope initialization failures are logged but don't crash the activator
  3. Clean Code Organization: New functionality isolated in dedicated functions
  4. Clear Documentation: Inline comments explain configuration format
  5. Flexible Configuration: Support for basic auth, custom tags, and profile type selection

Code-Specific Observations:

parsePyroscopeTags function (lines 494-515):

  • ✅ Handles edge cases well (empty strings, whitespace, missing values)
  • ✅ Uses strings.Cut (Go 1.18+) - efficient approach
  • ✅ Robust parsing with proper trimming and validation

Profiler Setup (lines 172-211):

  • ✅ Sets mutex/block profile rates before starting profiler
  • ✅ Automatically adds hostname tag from PodName
  • ✅ Comprehensive profile types (CPU, memory, goroutines, mutexes, blocks)
  • ✅ Conditional basic auth configuration

⚠️ Potential Issues & Concerns

1. Missing Unit Tests (Critical)

  • Issue: No tests for parsePyroscopeTags function
  • Risk: Tag parsing bugs could cause silent failures or incorrect tagging
  • Recommendation: Add test coverage for:
    • Empty string input
    • Malformed tags (key=, =value, keyonly)
    • Multiple semicolons
    • Whitespace handling
    • Special characters in keys/values

Suggested test cases:

func TestParsePyroscopeTags(t *testing.T) {
    tests := []struct {
        input    string
        expected map[string]string
    }{
        {"", map[string]string{}},
        {"env=prod", map[string]string{"env": "prod"}},
        {"env=prod;cluster=canary", map[string]string{"env": "prod", "cluster": "canary"}},
        {"  key = value  ", map[string]string{"key": "value"}},
        {"key=;=value;;", map[string]string{}}, // edge cases
    }
    // ...
}

2. Performance Impact (Medium)

  • Issue: Continuous profiling adds CPU/memory overhead
  • Typical Impact: 1-5% CPU overhead, ~5-10MB memory
  • Mitigation: Already optional via config, but consider:
    • Documenting performance impact in CLAUDE.md
    • Adding metrics for profiling overhead (if available from pyroscope-go)
    • Testing under high load scenarios

3. Security Considerations (Medium)

  • Issue: Basic auth credentials passed via environment variables
  • Risk: Credentials visible in pod specs, logs (if logged)
  • Current State: ✅ Credentials NOT logged in success message (line 209)
  • Recommendation:
    • Document secure credential management (Kubernetes secrets)
    • Consider warning if credentials provided but HTTPS not used

4. Dependency Management (Low)

  • Addition: github.com/grafana/pyroscope-go v1.2.7 (+13,732 lines, 71 files)
  • Observation: Large vendor addition but from reputable source (Grafana)
  • Recommendation:
    • Ensure regular dependency updates for security patches
    • Consider adding to dependency scanning tools

5. Configuration Validation (Low)

  • Issue: No validation of PyroscopeServerAddress format
  • Risk: Malformed URLs could cause startup delays or errors
  • Recommendation: Add basic URL validation:
if !strings.HasPrefix(env.PyroscopeServerAddress, "http://") && 
   !strings.HasPrefix(env.PyroscopeServerAddress, "https://") {
    logger.Warn("Pyroscope server address should start with http:// or https://")
}

6. Logging Consistency (Minor)

  • Issue: Mix of log.Printf (lines 207, 209) and structured logger usage elsewhere
  • Recommendation: Use the structured logger for consistency:
logger.Errorw("Failed to start Pyroscope profiler", zap.Error(err))
logger.Infow("Pyroscope profiler started", zap.String("server", env.PyroscopeServerAddress))

🔒 Security Assessment

✅ No Critical Security Issues

  • No injection vulnerabilities
  • No exposed secrets (credentials handled properly)
  • Optional feature with safe defaults

Recommendations:

  1. Document that PYROSCOPE_BASIC_AUTH_PASSWORD should use K8s secrets
  2. Consider validating ServerAddress is not localhost/internal-only in production
  3. Add note about firewall rules for Pyroscope server access

📊 Test Coverage

Current State: ❌ No Tests

Required Coverage:

  1. Unit Tests:

    • parsePyroscopeTags function (various inputs)
    • Environment variable parsing
    • Error handling paths

  2. Integration Tests:

    • Activator startup with/without Pyroscope configured
    • Graceful handling of Pyroscope server unavailability
    • Profile upload verification (if feasible)

📝 Documentation Needs

Missing from CLAUDE.md:

  1. Pyroscope Integration Section:

    • Environment variables reference
    • Example deployment configuration
    • Performance impact guidance
    • Troubleshooting tips

  2. Suggested Addition:

## Continuous Profiling (Pyroscope)

The activator supports optional continuous profiling via Grafana Pyroscope.

**Environment Variables**:
- `PYROSCOPE_SERVER_ADDRESS`: Pyroscope server URL (e.g., `http://pyroscope:4040`)
- `PYROSCOPE_BASIC_AUTH_USER`: Basic auth username (optional)
- `PYROSCOPE_BASIC_AUTH_PASS`: Basic auth password (optional, use K8s secret)
- `PYROSCOPE_TAGS`: Custom tags (format: `key1=value1;key2=value2`)
- `MUTEX_PROFILE_RATE`: Mutex profile fraction (default: 100)
- `BLOCK_PROFILE_RATE`: Block profile rate in nanoseconds (default: 10000)

**Profile Types Collected**:
- CPU, memory allocations (objects/space), in-use memory, goroutines, mutex/block contention

**Performance Impact**: ~1-5% CPU overhead, ~5-10MB memory

🎯 Recommendations Summary

Before Merge (Blockers):

  1. Add unit tests for parsePyroscopeTags
  2. 🟡 Use structured logger instead of log.Printf

Follow-up (Non-blocking):

  1. Add documentation to CLAUDE.md
  2. Add integration tests for activator startup scenarios
  3. Document performance benchmarks under load
  4. Add URL validation for server address

✅ Final Verdict

APPROVE with minor changes recommended

This is a solid implementation of a valuable observability feature. The code is production-ready with proper error handling and optional configuration. The main gap is test coverage, which should be addressed before merge.

Risk Level: Low - Optional feature with safe defaults and proper error handling.

Alignment with CLAUDE.md Guidelines:

  • ✅ Follows Go conventions
  • ✅ Proper error propagation
  • ✅ Clean code organization
  • ⚠️ Missing comprehensive tests (violates testing requirements)
  • ✅ No over-engineering (minimal, focused change)

@yaseenisolated yaseenisolated merged commit cb6f011 into release-1.18-cerebrium Dec 2, 2025
46 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@yaseenisolated