Skip to content

wyfo/split-histogram

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
.github/workflows
.github/workflows
 
 
benches
benches
 
 
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
README.md
README.md
 
 

Repository files navigation

split-histogram

This repository is an experimental implementation of an optimized Prometheus histogram. The algorithm achieves the following key properties:

  • Lock-Free Critical Path: Requires only three atomic RMW (Read-Modify-Write) operations per observation.
  • Cache Locality: Groups all atomic counters within the same cache line.

Table of Contents

State of the Art

A histogram consists of multiple counters that must be incremented to ensure consistent metric collection, as if all counters were updated in a single atomic operation.

The simplest approach is to protect all counters with a mutex, as implemented in the current Rust Prometheus client. However, mutexes suffer significant performance degradation under contention. While collection performance is less critical due to Prometheus’s low-frequency scraping interval, the observe operation is a critical path, as metrics should minimally impact instrumented code. Thus, a lock-free alternative is highly desirable.

Contention between observations can be reduced by combining a read-write mutex with atomic counter increments, as observations acquire the read lock and execute in parallel. However, this approach still allows collection to interfere with observations.

In contrast, early versions of the Go client and the unofficial Rust TiKV client relied solely on atomic operations without synchronization, leading to potentially inconsistent collections. A significant improvement was introduced in prometheus/client_golang#457, which ensures consistency using a hot/cold shard mechanism.
Histogram counters are duplicated across a “hot” and a “cold” shard. An observation counter, incremented before each observation, includes a bit flag to determine the hot shard. During collection, the bit flag is flipped to switch shards, and the previously hot shard’s _count is compared to the observation count before the flip in a loop. When these counts match, no further observations occur on the newly cold shard, enabling consistent collection.

The current Go implementation, also adopted by the Rust TiKV client, represents the state of the art. It achieves lock-free observations with consistent collections. Since atomic RMW are relatively expensive, their count is a key indicator of efficiency in lock-free algorithms; Go implementation requires four atomic RMW1.

It’s worth noting that both the Go and Rust TiKV implementations use spin loops for collection instead of waiting primitives — TiKV client doesn’t even use std::hint::spin_loop! Unbounded spin loops are considered harmful, and runtime.Gosched introduces issues similar to those described for sched_yield by Linus Torvalds2.

In addition to using a proper waiting mechanism, the algorithm presented here requires only three atomic RMW for observation, one fewer than the Go implementation.

Algorithm

Reading a Consistent State

The algorithm stems from the question: Can the redundancy between the _count counter and the bucket counters ensure consistent reads, including _sum? The answer is yes, using the following sequence:

  • Observation:
    • Increment the bucket counter (relaxed ordering).
    • Increment the _sum counter (release ordering).
    • Increment the _count counter (release ordering).
  • Collection:
    • Read the _count counter (acquire ordering).
    • Read the _sum counter (acquire ordering).
    • Read and sum all bucket counters (relaxed ordering).
    • Compare the bucket sum to _count; return if they match, otherwise repeat.

Release ordering ensures observation increments are not reordered and synchronize with acquire reads during collection. Since _count is read first, _sum and bucket counters are at least as recent as _count. If bucket counters include a more recent observation, their sum will not match _count, triggering a loop. Similarly, if _sum includes a more recent observation, bucket counters will also be more recent due to ordering, causing a loop.

Breaking the Reading Loop

While the sequence ensures consistent reads, continuous observations may cause collection to loop indefinitely. The solution also uses hot/cold sharding: observations occur on the hot shard, and collection switches shards. A mutex prevents concurrent collections.

Unlike the Go client’s algorithm, this approach does not wait for all observations to complete on a shard; it ensures only reading consistency. Thus, resetting the read shard and merging its content into the other is not feasible. Instead, both shards are read separately, starting from the cold one, and their results are summed, splitting the histogram state across shards rather than replicating it.

Avoiding Unbounded Spinning

As noted in the State of the Art section, unbounded spin loops are problematic. If a collection is blocked by an incomplete observation, the algorithm uses a proper waiting mechanism after a brief spin loop. The implementation employs futures::task::AtomicWaker with futures::executor::block_on, though alternatives like Mutex<Thread> with thread parking would work.

To notify an observation that a collection is blocked, _count includes a “waiting flag” bit. After spinning unsuccessfully, collection registers a waker in AtomicWaker, sets the waiting flag while reading _count atomically, and attempts a new consistent read. If successful, the waker is unregistered, and the result is returned; otherwise, it waits for the waker to be called and repeats.
On the observation side, incrementing _count with the waiting flag set triggers the registered waker. The additional cost is just three assembly instructions, one of which is a 100% predictable branch so completely negligible.

Cache Locality

Unlike the Go implementation, which increments a shared observation counter across shards, this algorithm performs all atomic increments within a single shard. Grouping a shard’s counters in the same cache line improves cache locality, beneficial for atomic RMW that require exclusive cache line access, as exclusivity acquisition is relatively costly.

Cache lines are typically 64B3, allowing the first 6 buckets to fit in the same cache line as _count and _sum.

While not trivial in safe Rust, as Vec alignment cannot be modified, this is achieved using a two-dimensional array with the inner array aligned.

Testing

The algorithm’s correctness is validated under the C++11 memory model using both miri and loom.

Benchmark results highlight both the impact of reducing the number of atomic RMW and cache locality.

NaN Support

NaN values are supported via a dedicated NaN bucket placed after +Inf, removed from the collection result.

Discussion

The Go implementation could be improved by computing _count as the sum of all buckets (and using the NaN bucket trick presented above). This eliminates the _count atomic, reducing observation to three atomic RMW — matching this algorithm.

However, it lacks cache locality, which benchmarks show has a significant impact under contention.

Additionally, avoiding unbounded spinning here relies on a flag in the _count atomic. Removing _count to save one atomic RMW prevents using the waiting flag, making proper waiting harder.

Context

This implementation was motivated by a project requiring millions of observations per second, where I needed to assess histogram latency impact. Reviewing the Rust Prometheus client source revealed a TODO linking to the Go client’s pull request. So I started to implement the Go algorithm into the Rust client, but I had the feeling doing it that there should be a way to use the redundancy between the bucket counters and the total counter. I have some experience in high-performance atomic algorithms, and the hot/cold sharding algorithm is quite similar to the one I use in swap-buffer-queue. I was influenced by the sharding idea, but I managed to turn it differently by splitting the counters across shards instead of replicating them. Cache locality then came as an added benefit.

Footnotes

  1. There is no atomic FAA (Fetch-and-Add) defined for floats, so it’s implemented using a CAS (Compare-and-Swap) loop with an integer atomic field to store the float bytes. For the sake of simplicity, CAS failures and retries are ignored in the rest of the document.

  2. Although the Go scheduler differs from the Linux scheduler and goroutines are often more numerous than threads, Linus Torvalds’ arguments still apply. The runtime.Gosched function doesn’t seem to be designed for spin-lock mechanisms but rather for yielding in long-running, low-priority goroutines. A mechanism like this implementation’s, using a flag on the _count counter and a channel for notification, avoids these issues.

  3. Modern ARM architectures use 128B cache lines, while Intel CPUs often handle 64B lines in pairs. For details, see crossbeam_utils::CachePadded source.

About

A Prometheus histogram implementation using only 3 atomic RMW for observation

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages