Lots of small writes to TLS transport use a lot of CPU

[itamarst]

Describe the incorrect behavior you saw

If you do lots of small writes to a TLS transport, it uses a really significant amount of CPU and bandwidth compared to larger writes. The impact seems far more significant in TLS than it would be in TCP, e.g. TCP would combine the writes due to Nagle and therefore usually won't have 23× bandwidth increase!

Describe how to cause this behavior

See upstream pyOpenSSL issue for reproducer and numbers (10× CPU and 23× bandwidth): pyca/pyopenssl#1250

I discovered this in the wild in Foolscap, which writes many things one byte at a time... with code basically copy/pasted from Twisted: https://github.com/twisted/twisted/blob/trunk/src/twisted/spread/banana.py#L31 and later code.

Describe the correct behavior you'd like to see

Fixing this in pyOpenSSL is likely difficult; there is the upstream bug but it's not clear to me an extra buffering layer there makes sense. In contrast, twisted/protocols/tls.py already has a buffering layer, albeit for other use cases (wantread/wantwrite errors from OpenSSL).

The solution I'm imagining is having the TLS protocol register as a pull producer with the underlying TCP transport and aggregate small writes until it gets a pull message.

Another alternative is to just document this behavior, and fix upstream protocol implementations to be less chatty.

Testing environment

• Twisted checkout as of Sep 12, 2023
• Ubuntu 22.04

[glyph]

Thanks for the detailed report! It seems like we could easily batch writes once per reactor tick at the very least, and then do something nagle-ish if we want to be more sophisticated about it?

We could overload ITransport.setTcpNoDelay or have a separate method to control the buffering behavior…

[itamarst]

Oh I guess that's simpler than a producer yeah. I'll try implementing that. If it's every reactor tick, it won't really add much latency (certainly much less than Nagle) so not sure if setTcpNoDelay() is a requirement.

[itamarst]

I read TLSMemBIOProtocol and... adding this is going to be complicated: it has an implicit state machine already that relies on 4-5 different attributes, and this adds a bunch more state. So possibly I will need to refactor the class first to have an explicit state machine.

[itamarst]

Another alternative is having current code be a LowLevelTLSMemBioProtocol and then there's a new TLSMemBIOProtocol that wraps it and adds buffering.

[exarkun]

Another alternative is having current code be a LowLevelTLSMemBioProtocol and then there's a new TLSMemBIOProtocol that wraps it and adds buffering.

Would the buffering layer on top even be specific to TLS? Or could it be a generic "buffer all writes until condition X" layer for any protocol?

[itamarst]

Might be reusable, not sure.

[itamarst]

One business logic subtlety with buffering writes until next iteration: loseConnection() needs to cause the buffered writes to be flushed immediately.

[itamarst]

My proof of concept with wrapper (https://github.com/twisted/twisted/compare/11989-lots-of-small-writes-to-tls-transport-use-a-lot-of-cpu) fixes the problem when run with the benchmark I linked in upstream pyOpenSSL issue.

Trunk:

$ time python tls_benchmark.py small

real    0m4.436s
user    0m4.322s
sys     0m0.058s

My branch:

$ time python tls_benchmark.py small

real    0m0.451s
user    0m0.352s
sys     0m0.037s

The impact on bigger writes seems negligible for this benchmark, so it hopefully won't affect throughput much.