Skip to content

feat: Make settings not thread-local #1444

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 77 commits into
base: main
Choose a base branch
from
Open

feat: Make settings not thread-local #1444

wants to merge 77 commits into from
+1,546 −724

Conversation

scouten-adobe
Copy link
Collaborator

@scouten-adobe scouten-adobe commented Sep 24, 2025
edited
Loading

Settings are now snapshotted at public API surfaces and passed through all layers below.

Note related work from @ok-nick in #1447 and further work likely in #1454.

@scouten-adobe
Spike: Retrofit io_utils call sites
44d8faa
@scouten-adobe
Spike: Adapt verify_cose
e509d31
@scouten-adobe
Spike: Retrofit Store::handle_remote_manifest
2a39a23
@scouten-adobe
Spike: Retrofit sign_claim
73aead9
@scouten-adobe
Spike: Push farther up the Store API chain
296aa51
@scouten-adobe
Spike: Push Settings up through Ingredient API chain
ffd8015
@scouten-adobe
Spike: Push settings up through Reader API
de83d42
@scouten-adobe
Spike: Push settings farther up Builder and Ingredient API chains
5e638e8
@scouten-adobe
Spike: Push settings up through thumbnail utils
b5093a4
@scouten-adobe
Switch check_ingredient_trust to passed settings
023fde2
@scouten-adobe
Plumb settings through core OCSP logic
427c7e1
@scouten-adobe
Plumb settings through Store's OCSP logic
d3a078f
@scouten-adobe
One more reference in ingredient
eb40a9f
@scouten-adobe
Plumb settings through add_auto_actions_assertions_settings
ae3aee6
@scouten-adobe
Plumb settings through more of Builder
929a396
@scouten-adobe
Remove last references to get_settings_value in Builder
899b0ab
@scouten-adobe
Remove remaining references to get_settings_value in Store
fbe8976
@scouten-adobe
Remove remaining references to get_settings_value in Reader
c4e255c
@scouten-adobe
Remove remaining references to get_settings_value in Claim
3a4d500
@scouten-adobe
Remove remaining references to get_settings_value from IdentityAssertion
68ba524
@scouten-adobe
Remove remaining get_settings_value references from time_stamp code
fce4aa8
@scouten-adobe
Remove remaining references to get_settings_value outside Settings mod
beecb93
@scouten-adobe
Move Settings::get_value to private
81efbdc
@scouten-adobe
Move Settings::reset to private
3da6b20
@scouten-adobe
Merge branch 'main' into scouten/settings-not-thread-local
c3de5a0
@scouten-adobe scouten-adobe self-assigned this Sep 24, 2025
@codecov Codecov
Copy link

codecov bot commented Sep 24, 2025
edited
Loading

Codecov Report

❌ Patch coverage is 92.93478% with 26 lines in your changes missing coverage. Please review.
✅ Project coverage is 77.98%. Comparing base (c4fc7a6) to head (9be45f6).

Files with missing lines Patch % Lines
sdk/src/reader.rs 60.00% 10 Missing ⚠️
sdk/src/builder.rs 92.15% 8 Missing ⚠️
sdk/src/assertions/bmff_hash.rs 50.00% 2 Missing ⚠️
sdk/src/claim.rs 90.47% 2 Missing ⚠️
sdk/src/identity/identity_assertion/assertion.rs 87.50% 2 Missing ⚠️
sdk/src/crypto/time_stamp/http_request.rs 75.00% 1 Missing ⚠️
sdk/src/ingredient.rs 98.36% 1 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1444      +/-   ##
==========================================
- Coverage   78.41%   77.98%   -0.43%     
==========================================
  Files         162      162              
  Lines       39515    40058     +543     
==========================================
+ Hits        30986    31240     +254     
- Misses       8529     8818     +289

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@codspeed-hq CodSpeed HQ
Copy link

codspeed-hq bot commented Sep 24, 2025
edited
Loading

CodSpeed Performance Report

Merging #1444 will improve performances by 12.26%

Comparing scouten/settings-not-thread-local (9be45f6) with main (c4fc7a6)

Summary

⚡ 16 improvements
⏩ 2 skipped1

Benchmarks breakdown

Benchmark BASE HEAD Change
read 100kb-signed.gif (with manifest) 6.1 ms 4.6 ms +32.42%
read 100kb-signed.jpg (with manifest) 13.5 ms 12 ms +12.26%
read 100kb-signed.mp3 (with manifest) 6.5 ms 5 ms +29.57%
read 100kb-signed.mp4 (with manifest) 6.4 ms 4.9 ms +30.95%
read 100kb-signed.png (with manifest) 13.6 ms 12.1 ms +12.41%
read 100kb-signed.svg (with manifest) 10.2 ms 8.6 ms +17.72%
read 100kb-signed.tiff (with manifest) 4.3 ms 2.8 ms +54.21%
read 100kb-signed.wav (with manifest) 6.3 ms 4.8 ms +31.48%
sign 100kb gif 6.5 ms 3.9 ms +65.54%
sign 100kb jpeg 7.2 ms 4.9 ms +48.1%
sign 100kb mp3 7 ms 4.6 ms +52.51%
sign 100kb mp4 9.9 ms 5.7 ms +73.62%
sign 100kb png 7.8 ms 6 ms +30.48%
sign 100kb svg 19.8 ms 17.3 ms +14.79%
sign 100kb tiff 4.8 ms 2.1 ms ×2.3
sign 100kb wav 7 ms 4.8 ms +45.05%

Footnotes

  1. 2 benchmarks were skipped, so the baseline results were used instead. If they were deleted from the codebase, click here and archive them to remove them from the performance reports.

@scouten-adobe
Retrofit Store::start_save_bmff_fragmented
fd4edee
@scouten-adobe
Retrofit Store::save_to_strema(_async) and ::save_to_bmff_fragmented
118640d
@scouten-adobe
Retrofit Store::start_save_stream
2fed088
@scouten-adobe
Retrofit Store::verify_from_path
434938a
@scouten-adobe
Retrofit Store::from_manifest_data_and_stream
1c7cb74
@scouten-adobe
Retrofit Store::load_from_file_and_fragments
3607330
@scouten-adobe
Retrofit Store::load_ingredient_to_claim
3ac02b0
@scouten-adobe
Clippy
d603795
@scouten-adobe
Retrofit Store::test_async_dynamic_assertions
1d4f8d6
@scouten-adobe
Retrofit BmffHash::create_merkle_map_for_mdat_box
924af31
@scouten-adobe
Retrofit verify_time_stamp
263e13d
@scouten-adobe
Retrofit Store::get_store_validation_info
0268023
@scouten-adobe
TO REVIEW: Can we avoid passing settings into the BmffIO implementati…
98222b5 
…ons? 🤞🏻🤞🏻🤞🏻
@scouten-adobe
Retrofit Ingredient::add_to_claim
45e165f
@scouten-adobe
Retrofit parse_and_validate_sigtst
f3352bf
@scouten-adobe
TO REVIEW: I don't think default_rfc3161_request needs to have Settin…
b0bf042 
…gs passed in
@scouten-adobe
Clippy
1653c4f
@scouten-adobe scouten-adobe marked this pull request as ready for review October 1, 2025 02:45
@scouten-adobe scouten-adobe added the check-release Add this label to any PR to invoke a larger suite of tests. label Oct 1, 2025
tmathern
tmathern reviewed Oct 1, 2025
View reviewed changes
sdk/src/asset_handlers/bmff_io.rs
let mut validation_log = StatusTracker::default();

let settings = Settings::default();
// ^^ TO REVIEW: Is there a reason we'd need non-default settings here?
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there actually a setting already that changes things in here? If so, it could be useful to investigate why that setting came to be - might answer the question as side-effect.

Copy link
Contributor

@ok-nick ok-nick Oct 2, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think this will be a problem, see here:
#1444 (comment)

sdk/src/builder.rs
// "builder.auto_opened_action.source_type",
// );
//
// ... which omits the ".actions" node after "builder"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My 2 cents: It would be good to keep the settings structured. The missing actions node feels like a typo to me?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree. What I don't know is how to repair the test in question. @gpeacock?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The source type is only necessary for the c2pa.created action. We can safely remove this from the test_settings.toml that the test uses.

scouten-adobe
scouten-adobe commented Oct 1, 2025
View reviewed changes
sdk/tests/test_builder.rs
use common::test_signer;

#[test]
#[ignore = "See discussion in builder.rs near line 1190"]
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@gpeacock please review this before we merge.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#1444 (comment)

@ok-nick ok-nick mentioned this pull request Oct 1, 2025
Draft
ok-nick
ok-nick requested changes Oct 2, 2025
View reviewed changes
Copy link
Contributor

@ok-nick ok-nick left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Leaving lots of reviews to track progress.

sdk/src/reader.rs
Comment on lines +162 to +163
// TO DO (https://github.com/contentauth/c2pa-rs/issues/1454):
// Make this the official API?
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd defer this work to #1465.

sdk/src/reader.rs
Comment on lines +186 to +187
// TO DO (https://github.com/contentauth/c2pa-rs/issues/1454):
// Make this the official API?
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd defer this work to #1465.

sdk/src/reader.rs
Comment on lines +165 to +166
// TO DO BEFORE MERGE: Passing `verify` may be redundant now that we're
// passing settings.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TODO: internal

sdk/src/reader.rs
Comment on lines +189 to +190
// TO DO BEFORE MERGE: Passing `verify` may be redundant now that we're
// passing settings.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TODO: internal

sdk/src/reader.rs
Comment on lines +283 to +284
// TO DO (https://github.com/contentauth/c2pa-rs/issues/1454):
// Add a Settings argument here?
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd defer this work to #1465.

sdk/src/crypto/time_stamp/http_request.rs
Comment on lines +59 to +60
// TO REVIEW: I think in this case, we're doing structural validation of
// time stamps but not trust validation. If so, the below is correct. (I think.)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TODO: internal

sdk/src/crypto/cose/sigtst.rs
Comment on lines +44 to +45
let settings = crate::settings::get_settings().unwrap_or_default();
// TO DO BEFORE MERGE? Pass Settings in here?
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TODO: internal

sdk/src/asset_handlers/bmff_io.rs
Comment on lines +1696 to +1699
let settings = Settings::default();
// ^^ TO REVIEW: Is there a reason we'd need non-default settings here?
// If so, that means we hae to rework CAIReader and CAIWriter traits
// to take a &Settings arg and that is a pretty huge change.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think Settings in the Store constructors are only used for configuring trust. In this scenario we are only using the Store to reconstruct the split manifest stores in BMFF, the trust is validated with a higher-level Store. It does feel wrong to create default settings and pass it in as a parameter here, but I don't think it'll be a problem for the time being.

cc @mauricefisher64 to confirm.

sdk/src/asset_handlers/bmff_io.rs
let mut validation_log = StatusTracker::default();

let settings = Settings::default();
// ^^ TO REVIEW: Is there a reason we'd need non-default settings here?
Copy link
Contributor

@ok-nick ok-nick Oct 2, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think this will be a problem, see here:
#1444 (comment)

sdk/src/assertions/bmff_hash.rs
Comment on lines +1048 to +1049
// TO DO (https://github.com/contentauth/c2pa-rs/issues/1454):
// Add a Settings argument here?
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TODO: internal

@ok-nick ok-nick mentioned this pull request Oct 2, 2025
Open
10 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ok-nick ok-nick ok-nick requested changes

@tmathern tmathern tmathern left review comments

@gpeacock gpeacock Awaiting requested review from gpeacock

Requested changes must be addressed to merge this pull request.

Assignees

@ok-nick ok-nick

Labels
check-release Add this label to any PR to invoke a larger suite of tests.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@scouten-adobe @TrevorChristman @ok-nick @tmathern