spdx-utils: Very poor performance within ResolvedLicenseInfo.effectiveLicense()
#9902
Assignees
Labels
evaluator
About the evaluator tool
reporter
About the reporter tool
spdx-utils
About the SPDX utility library
Comments
fviernau
added
bug
evaluator
fviernau
changed the title
ResolvedLicenseInfo.effectiveLicense()ResolvedLicenseInfo.effectiveLicense()
fviernau
added a commit
that referenced
this issue
Feb 7, 2025
31b9be8 introduced an `equals()` into `SpdxCompoundExpression::and`. For packages with large amounts of detected licenses including ones with `OR` operators, the performance of the `and` function becomes so poor that the evaluator runs for 3 days (with the open source `ort-config` rules, without terminating. Also the reporter performance degrades from less than 30 seconds to 3 hours. Unfortunately the call tree involved is so complicated that there is no simple fix for this. `equals()` involves recursive `validChoices()` calls which in turn call `equals()` again when computing distinctness or inserting further `SpdxExpressions` into sets. Revert the change to fix the problem in a timely manner. Note that it makes sense to bring back the now reverted functionaliy, but the code should be refactored first to produce more managable call trees. Fixes: #9902. This reverts commit 31b9be8. Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 7, 2025
31b9be8 introduced an `equals()` into `SpdxCompoundExpression::and`. For packages with large amounts of detected licenses including ones with `OR` operators, the performance of the `and` function becomes so poor that the evaluator runs for 3 days (with the open source `ort-config` rules, without terminating. Also the reporter performance degrades from less than 30 seconds to 3 hours. Unfortunately the call tree involved is so complicated that there is no simple fix for this. `equals()` involves recursive `validChoices()` calls which in turn call `equals()` again when computing distinctness or inserting further `SpdxExpressions` into sets. Revert the change to fix the problem in a timely manner. Note that it makes sense to bring back the now reverted functionality, but the code should be refactored first to produce more managable call trees. Fixes: #9902. This reverts commit 31b9be8. Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 10, 2025
There are multiple code locations which use `reduce` together with `and()` to concatenate a given collection of expressions to a compound SPDX expression. If `n` expressions are given, then `n - 1` SPDX compound expressions instances get constructed via `n - 1` `and()` calls. As of [1] each `and()` execution started to invoke `equals()` at the very beginning. Dependening on the expression this can be very expensive. For example if the expression is contains OR operator(s) and is bit larger, then the call tree becomes quite heavy-weight. It's comprised of recursive `validChoices()` calls which insert expressions into sets which in turn leads to further `equals()` calls and so forth. When upgrading ORT from version 28.0.0 to 45.0.0 a performance the evaluator hadn't finished after running for 3 days, while the reporter took about 3 hours to finish for some real world scan. This issue has been introduced by [1], because reverting that (on top of `main`) does fix the performance problem. Reduce the mentioned `n - 1` `and()` calls to just a single one to relax the issue. This makes the evaluator finish in 1.8 seconds and reporter in 3 seconds again, for the real world scan mentioned above. Fixes: #9902. [1]: 31b9be8 Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 10, 2025
There are multiple code locations which use `reduce` together with `and()` to concatenate a given collection of expressions to a compound SPDX expression. If `n` expressions are given, then `n - 1` SPDX compound expressions instances get constructed via `n - 1` `and()` calls. As of [1] each `and()` execution started to invoke `equals()` at the very beginning. Dependening on the expression this can be very expensive. For example if the expression contains OR operators and is bit larger, then the call tree becomes quite heavy-weight. It's comprised of recursive `validChoices()` calls which insert expressions into sets which in turn leads to further `equals()` calls and so forth. When upgrading ORT from version 28.0.0 to 45.0.0 a performance the evaluator hadn't finished after running for 3 days, while the reporter took about 3 hours to finish for some real world scan. This issue has been introduced by [1], because reverting that (on top of `main`) does fix the performance problem. Reduce the mentioned `n - 1` `and()` calls to just a single one to relax the issue. This makes the evaluator finish in 1.8 seconds and reporter in 3 seconds again, for the real world scan mentioned above. Fixes: #9902. [1]: 31b9be8 Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 10, 2025
There are multiple code locations which use `reduce` together with `and()` to concatenate a given collection of expressions to a compound SPDX expression. If `n` expressions are given, then `n - 1` SPDX compound expressions instances get constructed via `n - 1` `and()` calls. As of [1] each `and()` execution started to invoke `equals()` at the very beginning. Dependening on the expression this can be very expensive. For example if the expression contains OR operators and is bit larger, then the call tree becomes quite heavy-weight. It's comprised of recursive `validChoices()` calls which insert expressions into sets which in turn leads to further `equals()` calls and so forth. After upgrading ORT from version 28.0.0 to 45.0.0 the execution of the evaluator took more than 3 days finishing, and the reporter took about 3 hours to finish for some real world scan. That issue has been introduced by [1], because reverting [1] (on top of `main`) does fix the performance problem. Reduce the mentioned `n - 1` `and()` calls to just a single one to relax the issue. This makes the evaluator finish in 1.8 seconds and the reporter in 3 seconds again, for the real world scan mentioned above. Fixes: #9902. [1]: 31b9be8 Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 10, 2025
There are multiple code locations which use `reduce` together with `and()` to concatenate a given collection of expressions to a compound SPDX expression. If `n` expressions are given, then `n - 1` SPDX compound expressions instances get constructed via `n - 1` `and()` calls. As of [1] each `and()` execution started to invoke `equals()` at the very beginning. Dependening on the expression this can be very expensive. For example, if the expression contains OR operators and is a bit larger, then the call tree becomes quite heavy-weight. It's comprised of recursive `validChoices()` calls which insert expressions into sets which in turn leads to further `equals()` calls and so forth. After upgrading ORT from version 28.0.0 to 45.0.0 the execution of the evaluator took more than 3 days without finishing, and the reporter took about 3 hours to finish for some real world scan. That issue has been introduced by [1], because reverting [1] (on top of `main`) does fix the performance problem. Reduce the mentioned `n - 1` `and()` calls to just a single one to relax the issue. This makes the evaluator finish in 1.8 seconds and the reporter in 3 seconds again, for the real world scan mentioned above. Fixes: #9902. [1]: 31b9be8 Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 10, 2025
There are multiple code locations which use `reduce` together with `and()` to concatenate a given collection of expressions to a compound SPDX expression. If `n` expressions are given, then `n - 1` SPDX compound expressions instances get constructed via `n - 1` `and()` calls. As of [1] each `and()` execution started to invoke `equals()` at the very beginning. Dependening on the expression this can be very expensive. For example, if the expression contains OR operators and is a bit larger, then the call tree becomes quite heavy-weight. It's comprised of recursive `validChoices()` calls which insert expressions into sets which in turn leads to further `equals()` calls and so forth. After upgrading ORT from version 28.0.0 to 45.0.0 the execution of the evaluator took more than 3 days without finishing, and the reporter took about 3 hours to finish for some real world scan. That issue has been introduced by [1], because reverting [1] (on top of `main`) does fix the performance problem. Reduce the mentioned `n - 1` `and()` calls to just a single one to relax the issue. This makes the evaluator finish in 1.8 seconds and the reporter in 3 seconds again, for the real world scan mentioned above. Fixes: #9902. [1]: 31b9be8 Signed-off-by: Frank Viernau <[email protected]>
fviernau
added a commit
that referenced
this issue
Feb 10, 2025
There are multiple code locations which use `reduce` together with `and()` to concatenate a given collection of expressions to a compound SPDX expression. If `n` expressions are given, then `n - 1` SPDX compound expressions instances get constructed via `n - 1` `and()` calls. As of [1] each `and()` execution started to invoke `equals()` at the very beginning. Dependening on the expression this can be very expensive. For example, if the expression contains OR operators and is a bit larger, then the call tree becomes quite heavy-weight. It's comprised of recursive `validChoices()` calls which insert expressions into sets which in turn leads to further `equals()` calls and so forth. After upgrading ORT from version 28.0.0 to 45.0.0 the execution of the evaluator took more than 3 days without finishing, and the reporter took about 3 hours to finish for some real world scan. That issue has been introduced by [1], because reverting [1] (on top of `main`) does fix the performance problem. Reduce the mentioned `n - 1` `and()` calls to just a single one to relax the issue. This makes the evaluator finish in 1.8 seconds and the reporter in 3 seconds again, for the real world scan mentioned above. Fixes: #9902. [1]: 31b9be8 Signed-off-by: Frank Viernau <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Scenario
ORoperator and 200 distinct expressions in total
observation
effectiveLicense()joins all expression using theandfunction here:https://github.com/oss-review-toolkit/ort/blame/c96f2e8707c74b5929ab870de4149c41460b23d5/model/src/main/kotlin/licenses/ResolvedLicenseInfo.kt#L70-L73
andfunction as a duplicate elimination which callsequals().The text was updated successfully, but these errors were encountered: