Memory management dev1 final (#2944)

* README: improve instruction on how to push images to Docker Hub

* Change in requestsOfNonPrimary field from raw ptr ClientRequestMsg to unique

* add incoming messages buffers allocations and releases monitor:

- MessageBase: add structures and functionality to gather stats about incoming msgs
- Every time an external incoming message arrives and a buffer is allocated, monitoring structures are updated
- Every time an external incoming message buffer is released, monitoring structures are updated
- A user can get the information in real time from diagnostics server:
- Run "./concord-ctl status get messages_communicator" from inside concord container

---------

Co-authored-by: tbierwiaczon <tbierwiaczon@vmware.com>
Co-authored-by: hshomroni <hshomroni@vmware.com>

Author: 3 people

README.md

@@ -141,7 +141,7 @@ The CI builds and runs tests in a docker container. To add a new dependency or t
   [Makefile](https://github.com/vmware/concord-bft/blob/master/Makefile#L5)
   and
   [Makefile](https://github.com/vmware/concord-bft/blob/master/Makefile#L10)
-* Tag the new images:
+* Tag the new images (at least one):
   * For release: `docker tag concord-bft:latest concordbft/concord-bft:<version>`
   * For debug: `docker tag concord-bft-debug:latest concordbft/concord-bft-debug:<version>`
   <br>where version is `current version + 1`.
@@ -150,7 +150,9 @@ The CI builds and runs tests in a docker container. To add a new dependency or t
   clean build test`
 * Ask one of the maintainers for a temporary write permission to Docker Hub
   repository(you need to have a [Docker ID](https://docs.docker.com/docker-id/))
-* Push the image: `docker push concordbft/concord-bft:<version>`
+* Push the images (at least one):
+  * For release: `docker push concordbft/concord-bft:<version>`
+  * For debug: `docker push concordbft/concord-bft-debug:<version>`
 * Create a PR for the update:
     * The PR must contain only changes related to the updates in the image
     * PR's summary has to be similar to `Docker update to version release=<new version> debug=<new version>`

bftengine/src/bcstatetransfer/BCStateTran.cpp

@@ -1138,6 +1138,9 @@ void BCStateTran::setReconfigurationEngineImpl(std::shared_ptr<ClientReconfigura
 template <typename MSG>
 void BCStateTran::freeStateTransferMsg(const MSG *m) {
   const char *p_to_delete = (reinterpret_cast<const char *>(m) - sizeof(MessageBase::Header));
+  if (m->isIncomingMsg_) {
+    MessageBase::Statistics::updateDiagnosticsCountersOnBufRelease(MsgCode::StateTransfer);
+  }
   std::free(const_cast<char *>(p_to_delete));
 }
 
@@ -1148,6 +1151,7 @@ void BCStateTran::handleStateTransferMessageImpl(char *msg,
                                                  LocalTimePoint incomingEventsQPushTime) {
   // msgHeader is now the owner of msg. after getting true type of msg, the ownership will be of onMessage functions.
   auto msgHeader = STMessageUptr<BCStateTranBaseMsg>(reinterpret_cast<BCStateTranBaseMsg *>(msg));
+  msgHeader.get()->isIncomingMsg_ = true;
   if (!running_) {
     return;
   }

bftengine/src/bcstatetransfer/Messages.hpp

@@ -40,8 +40,12 @@ class MsgType {
 };
 
 struct BCStateTranBaseMsg {
-  BCStateTranBaseMsg(uint16_t type) : type(type) {}
+  BCStateTranBaseMsg(uint16_t type, bool isIncomingMsg = false) : type(type), isIncomingMsg_(isIncomingMsg) {}
+
   uint16_t type;
+  // this flag is for monitoring messages buffer allocs and releases so it's mutable even though incoming ST msgs objs
+  // are const during handling
+  mutable uint8_t isIncomingMsg_;
   // This struct and its derived structs are used to de/serialize message buffers sent over communication channels.
   // Since virtual methods modify the memory layout of a struct, there cannot be any for both this base struct and its
   // inheritors.
@@ -134,7 +138,7 @@ struct CheckpointSummaryMsg : public BCStateTranBaseMsg {
   }
 
   static bool equivalent(const CheckpointSummaryMsg* a, const CheckpointSummaryMsg* b) {
-    static_assert((sizeof(CheckpointSummaryMsg) - sizeof(requestMsgSeqNum) == 87),
+    static_assert((sizeof(CheckpointSummaryMsg) - sizeof(requestMsgSeqNum) == 88),
                   "Should newly added field be compared below?");
     bool cmp1 =
         ((a->maxBlockId == b->maxBlockId) && (a->checkpointNum == b->checkpointNum) &&
@@ -152,7 +156,7 @@ struct CheckpointSummaryMsg : public BCStateTranBaseMsg {
   }
 
   static bool equivalent(const CheckpointSummaryMsg* a, uint16_t a_id, const CheckpointSummaryMsg* b, uint16_t b_id) {
-    static_assert((sizeof(CheckpointSummaryMsg) - sizeof(requestMsgSeqNum) == 87),
+    static_assert((sizeof(CheckpointSummaryMsg) - sizeof(requestMsgSeqNum) == 88),
                   "Should newly added field be compared below?");
     if ((a->maxBlockId != b->maxBlockId) || (a->checkpointNum != b->checkpointNum) ||
         (a->digestOfMaxBlockId != b->digestOfMaxBlockId) ||

bftengine/src/bftengine/IncomingMsgsStorage.hpp

@@ -20,6 +20,7 @@
 
 #include <functional>
 #include <memory>
+#include <string>
 
 namespace bftEngine::impl {
 
@@ -30,6 +31,8 @@ class IncomingMsgsStorage {
 
   virtual void start() = 0;
   virtual void stop() = 0;
+  // returns a string with status. To be used by diagnostics server
+  virtual std::string status() const = 0;
 
   virtual bool isRunning() const = 0;
 

bftengine/src/bftengine/IncomingMsgsStorageImp.cpp

@@ -13,9 +13,11 @@
 
 #include "IncomingMsgsStorageImp.hpp"
 #include "messages/InternalMessage.hpp"
-#include <future>
 #include "log/logger.hpp"
 
+#include <future>
+#include <sstream>
+
 using std::queue;
 using namespace std::chrono;
 using namespace concord::diagnostics;
@@ -199,4 +201,17 @@ void IncomingMsgsStorageImp::dispatchMessages(std::promise<void>& signalStarted)
   }
 }
 
+std::string IncomingMsgsStorageImp::status() const {
+  std::ostringstream oss;
+
+  bool is_running = isRunning();
+
+  oss << KVLOG(is_running) << std::endl;
+  oss << MessageBase::Statistics::getNumBuffsAllocatedForExtrnIncomingMsgs() << std::endl;
+  oss << MessageBase::Statistics::getNumBuffsFreedForExtrnIncomingMsgs() << std::endl;
+  oss << MessageBase::Statistics::getNumAliveExtrnIncomingMsgsObjsPerType() << std::endl;
+
+  return oss.str();
+}
+
 }  // namespace bftEngine::impl

bftengine/src/bftengine/IncomingMsgsStorageImp.hpp

@@ -26,6 +26,7 @@
 #include <condition_variable>
 #include <future>
 #include <utility>
+#include <string>
 
 namespace bftEngine::impl {
 
@@ -38,6 +39,8 @@ class IncomingMsgsStorageImp : public IncomingMsgsStorage {
 
   void start() override;
   void stop() override;
+  // returns a string with status. To be used by diagnostics server
+  std::string status() const override;
 
   // Can be called by any thread
   bool pushExternalMsg(std::unique_ptr<MessageBase> msg) override;

bftengine/src/bftengine/MsgReceiver.cpp

@@ -36,8 +36,8 @@ void MsgReceiver::onNewMessage(NodeNum sourceNode,
 
   auto *msgBody = (MessageBase::Header *)std::malloc(messageLength);
   memcpy(msgBody, message, messageLength);
-  auto pMsg = std::make_unique<MessageBase>(sourceNode, msgBody, messageLength, true);
-
+  auto pMsg = std::make_unique<MessageBase>(sourceNode, msgBody, messageLength, true, true);
+  MessageBase::Statistics::updateDiagnosticsCountersOnBufAlloc(static_cast<MsgCode::Type>(pMsg->type()));
   incomingMsgsStorage_->pushExternalMsg(std::move(pMsg));
 }
 

bftengine/src/bftengine/MsgsCommunicator.cpp

@@ -12,6 +12,7 @@
 #include "MsgsCommunicator.hpp"
 #include "util/assertUtils.hpp"
 #include "communication/CommDefs.hpp"
+#include "diagnostics.h"
 
 namespace bftEngine::impl {
 
@@ -21,7 +22,14 @@ using namespace bft::communication;
 MsgsCommunicator::MsgsCommunicator(ICommunication* comm,
                                    shared_ptr<IncomingMsgsStorage> incomingMsgsStorage,
                                    shared_ptr<IReceiver> msgReceiver)
-    : incomingMsgsStorage_(incomingMsgsStorage), msgReceiver_(msgReceiver), communication_(comm) {}
+    : incomingMsgsStorage_(incomingMsgsStorage), msgReceiver_(msgReceiver), communication_(comm) {
+  auto& registrar = concord::diagnostics::RegistrarSingleton::getInstance();
+
+  concord::diagnostics::StatusHandler handler(
+      "messages_communicator", "Msg Comm", [this]() { return incomingMsgsStorage_->status(); });
+
+  registrar.status.registerHandler(handler);
+}
 
 int MsgsCommunicator::startCommunication(uint16_t replicaId) {
   replicaId_ = replicaId;

bftengine/src/bftengine/ReplicaImp.cpp

@@ -500,10 +500,7 @@ void ReplicaImp::onMessage<ClientRequestMsg>(std::unique_ptr<ClientRequestMsg> m
         auto m = msg.get();
         // Adding the message to a queue for future retransmission.
         if (requestsOfNonPrimary.size() < NonPrimaryCombinedReqSize) {
-          if (requestsOfNonPrimary.count(msg->requestSeqNum())) {
-            delete std::get<1>(requestsOfNonPrimary.at(msg->requestSeqNum()));
-          }
-          requestsOfNonPrimary[m->requestSeqNum()] = std::make_pair(getMonotonicTime(), msg.release());
+          requestsOfNonPrimary[m->requestSeqNum()] = std::make_pair(getMonotonicTime(), std::move(msg));
         }
 
         send(m, currentPrimary());
@@ -1121,7 +1118,6 @@ void ReplicaImp::onMessage<PrePrepareMsg>(PrePrepareMsgUPtr message) {
         if (clientsManager->canBecomePending(req.clientProxyId(), req.requestSeqNum()))
           clientsManager->addPendingRequest(req.clientProxyId(), req.requestSeqNum(), req.getCid());
         if (requestsOfNonPrimary.count(req.requestSeqNum())) {
-          delete std::get<1>(requestsOfNonPrimary.at(req.requestSeqNum()));
           requestsOfNonPrimary.erase(req.requestSeqNum());
         }
       }
@@ -2984,11 +2980,6 @@ void ReplicaImp::MoveToHigherView(ViewNum nextView) {
   ConcordAssert(viewChangeProtocolEnabled);
   ConcordAssertLT(getCurrentView(), nextView);
 
-  // Once we move to higher view we would prefer tp avoid retransmitting clients request from previous view
-  for (auto &[_, msg] : requestsOfNonPrimary) {
-    (void)_;
-    delete std::get<1>(msg);
-  }
   requestsOfNonPrimary.clear();
 
   const bool wasInPrevViewNumber = viewsManager->viewIsActive(getCurrentView());
@@ -3210,11 +3201,6 @@ void ReplicaImp::onNewView(const std::vector<PrePrepareMsg *> &prePreparesForNew
 
   clientsManager->clearAllPendingRequests();
 
-  // Once we move to higher view we would prefer tp avoid retransmitting clients request from previous view
-  for (auto &[_, msg] : requestsOfNonPrimary) {
-    (void)_;
-    delete std::get<1>(msg);
-  }
   requestsOfNonPrimary.clear();
 
   // clear requestsQueueOfPrimary
@@ -3313,9 +3299,6 @@ void ReplicaImp::onTransferringCompleteImp(uint64_t newStateCheckpoint) {
   TimeRecorder scoped_timer(*histograms_.onTransferringCompleteImp);
   time_in_state_transfer_.end();
   LOG_INFO(GL, KVLOG(newStateCheckpoint));
-  for (auto &req : requestsOfNonPrimary) {
-    delete std::get<1>(req.second);
-  }
   requestsOfNonPrimary.clear();
   if (ps_) {
     ps_->beginWriteTran();
@@ -4612,7 +4595,7 @@ void ReplicaImp::addTimers() {
           if (timeout > (3 * config_.clientRequestRetransmissionTimerMilli)) {
             LOG_INFO(GL, "retransmitting client request in non primary due to timeout" << KVLOG(sn, timeout));
             requestsOfNonPrimary[sn].first = getMonotonicTime();
-            send(std::get<1>(msg), currentPrimary());
+            send(std::get<1>(msg).get(), currentPrimary());
           }
         }
       });

bftengine/src/bftengine/ReplicaImp.hpp

@@ -117,7 +117,7 @@ class ReplicaImp : public InternalReplicaApi, public ReplicaForStateTransfer {
   std::queue<std::unique_ptr<ClientRequestMsg>> requestsQueueOfPrimary;  // only used by the primary
   size_t primaryCombinedReqSize = 0;                                     // only used by the primary
 
-  std::map<uint64_t, std::pair<Time, ClientRequestMsg*>>
+  std::map<uint64_t, std::pair<Time, std::unique_ptr<ClientRequestMsg>>>
       requestsOfNonPrimary;  // used to retransmit client requests by a non primary replica
   size_t NonPrimaryCombinedReqSize = 1000;
   //

bftengine/src/bftengine/messages/MessageBase.cpp

@@ -9,14 +9,14 @@
 // these subcomponents is subject to the terms and conditions of the subcomponent's license, as noted in the LICENSE
 // file.
 
-#include <cstring>
-
 #include "MessageBase.hpp"
-
 #include "log/logger.hpp"
 #include "util/assertUtils.hpp"
 #include "ReplicaConfig.hpp"
 
+#include <cstring>
+#include <sstream>
+
 #ifdef DEBUG_MEMORY_MSG
 #include <set>
 
@@ -46,11 +46,66 @@ void MessageBase::printLiveMessages() {
 namespace bftEngine {
 namespace impl {
 
+// static class members for diagnostics server
+std::array<std::atomic<size_t>, MsgCode::LastMsgCodeVal> MessageBase::Statistics::AliveIncomingExtrnMsgsBufs{};
+static_assert(MsgCode::LastMsgCodeVal < 2000,
+              "MessageBase AliveIncomingExtrnMsgsBufs array too big (above 2000), check MsgCode enum definition");
+Bitmap MessageBase::Statistics::IncomingExtrnMsgReceivedAtLeastOnceFlags{MsgCode::LastMsgCodeVal};
+std::mutex MessageBase::Statistics::messagesStatsMonitoringMutex_{};
+std::atomic<size_t> MessageBase::Statistics::numIncomingExtrnMsgsBufAllocs{0};
+std::atomic<size_t> MessageBase::Statistics::numIncomingExtrnMsgsBufFrees{0};
+// End of static class members for diagnostics server
+
 MessageBase::~MessageBase() {
 #ifdef DEBUG_MEMORY_MSG
   liveMessagesDebug.erase(this);
 #endif
-  if (owner_) std::free((char *)msgBody_);
+
+  // if this obj is not the owner of the buf (owner_ is false), the buf may have already be freed - hence access to it
+  // is prohibited
+  if (owner_) {
+    if (isIncomingMsg_) {
+      MsgCode::Type msg_code = static_cast<MsgCode::Type>(msgBody_->msgType);
+      MessageBase::Statistics::updateDiagnosticsCountersOnBufRelease(msg_code);
+    }
+    std::free((char *)msgBody_);
+  }
+}
+
+void MessageBase::Statistics::updateDiagnosticsCountersOnBufAlloc(MsgCode::Type msg_code) {
+  if (!MessageBase::Statistics::IncomingExtrnMsgReceivedAtLeastOnceFlags.get(msg_code)) {
+    // here is a very rare event - first time ever receiving msg of type msg_code, hence
+    // using a lock here shouldn't affect performnce. in other places we avoid locks where possible.
+    // It is possible that two threads will call the "set" function but it's ok since it's
+    // just a flag telling us if the message was received at least once. setting the bit twice causes
+    // no damage.
+    std::lock_guard<std::mutex> lock(MessageBase::Statistics::messagesStatsMonitoringMutex_);
+    MessageBase::Statistics::IncomingExtrnMsgReceivedAtLeastOnceFlags.set(msg_code);
+  }
+
+  // use "++" operator to ensure atomicity
+  MessageBase::Statistics::numIncomingExtrnMsgsBufAllocs++;
+  MessageBase::Statistics::AliveIncomingExtrnMsgsBufs[msg_code]++;
+}
+
+void MessageBase::Statistics::updateDiagnosticsCountersOnBufRelease(MsgCode::Type msg_code) {
+  if (MessageBase::Statistics::AliveIncomingExtrnMsgsBufs[msg_code] == 0) {
+    LOG_ERROR(GL, "Trying to dec a counter of a msg that hasn't been inserted yet, msg code: " << (msg_code));
+    return;
+  } else {
+    // use "--" operator to ensure atomicity
+    MessageBase::Statistics::AliveIncomingExtrnMsgsBufs[msg_code]--;
+  }
+  // use "++" operator to ensure atomicity
+  MessageBase::Statistics::numIncomingExtrnMsgsBufFrees++;
+}
+
+void MessageBase::releaseOwnership() {
+  if (!owner_) {
+    LOG_ERROR(GL, "Trying to release ownership of a MessageBase obj that is already not the buffer owner");
+  } else {
+    owner_ = false;
+  }
 }
 
 void MessageBase::shrinkToFit() {
@@ -102,13 +157,17 @@ MessageBase::MessageBase(NodeIdType sender, MsgType type, SpanContextSize spanCo
 #endif
 }
 
-MessageBase::MessageBase(NodeIdType sender, MessageBase::Header *body, MsgSize size, bool ownerOfStorage) {
-  msgBody_ = body;
-  msgSize_ = size;
-  storageSize_ = size;
-  sender_ = sender;
-  owner_ = ownerOfStorage;
-
+MessageBase::MessageBase(NodeIdType sender, MessageBase::Header *body, MsgSize size, bool ownerOfStorage)
+    : MessageBase(sender, body, size, ownerOfStorage, false) {}
+
+MessageBase::MessageBase(
+    NodeIdType sender, MessageBase::Header *body, MsgSize size, bool ownerOfStorage, bool isIncoming)
+    : msgBody_(body),
+      msgSize_(size),
+      storageSize_(size),
+      sender_(sender),
+      owner_(ownerOfStorage),
+      isIncomingMsg_(isIncoming) {
 #ifdef DEBUG_MEMORY_MSG
   liveMessagesDebug.insert(this);
 #endif
@@ -235,5 +294,38 @@ MessageBase *MessageBase::deserializeMsg(char *&buf, size_t bufLen, size_t &actu
   return msg;
 }
 
+// Start methods for diagnostics server:
+std::string MessageBase::Statistics::getNumBuffsAllocatedForExtrnIncomingMsgs() {
+  return (std::string(" Num buffer allocations for external incoming messages: " +
+                      std::to_string(MessageBase::Statistics::numIncomingExtrnMsgsBufAllocs)));
+}
+std::string MessageBase::Statistics::getNumBuffsFreedForExtrnIncomingMsgs() {
+  return (std::string(" Num buffer frees for external incoming messages: " +
+                      std::to_string(MessageBase::Statistics::numIncomingExtrnMsgsBufFrees)));
+}
+std::string MessageBase::Statistics::getNumAliveExtrnIncomingMsgsObjsPerType() {
+  std::ostringstream oss;
+  oss << " Alive extrnal incoming message objects per type: " << std::endl;
+  oss << " --------------------------------------- " << std::endl;
+
+  for (int i = 0; i < MsgCode::LastMsgCodeVal; ++i) {
+    bool wasMsgEverRecieved;
+
+    {
+      std::lock_guard<std::mutex> lock(messagesStatsMonitoringMutex_);
+      wasMsgEverRecieved = MessageBase::Statistics::IncomingExtrnMsgReceivedAtLeastOnceFlags.get(i);
+    }
+
+    if (wasMsgEverRecieved) {
+      oss << " " << static_cast<MsgCode::Type>(i) << ": " << MessageBase::Statistics::AliveIncomingExtrnMsgsBufs[i]
+          << std::endl;
+    }
+  }
+
+  oss << " ** All messages not on the list were never received by replica ** ";
+  return oss.str();
+}
+// End methods for diagnostics server ^
+
 }  // namespace impl
 }  // namespace bftEngine