Use gix for cargo package

[Byron]

This should also help fixing these spurious "cannot package because some excluded file is untracked" issues.

Tasks

• step-by-step conversion of vcs.rs
• use proper feature toggle
• cleanup final check by myself
• move split & rename into its own commit. Probably squash all changes except for the gix upgrade.
• upgrade to a gix release including various improvements GitoxideLabs/gitoxide#2016

Notes for the Reviewer

• This implementation is both faster and more correct, thus affects fix(package): detect dirtiness for symlinks to submodule  #15416 and Performance Regression in cargo package on 1.81.0 #14955.
• Maybe this would be an avenue for getting gitoxide to the people, to start on nightly, and then switch it over for everyone with an emergency-switch to use git2, to finally remove the git2 codepath.
  • This might be something we could do more often then, it's also a motivation for me

Related to GitoxideLabs/gitoxide#106.

[weihanglo]

Thanks for kicking of this!

Regardless the approach taken here. I wonder if it is possible to avoid checking repo state completely. In PathSource::list_files we already walked through it. And maybe we can attach extra info in PathEntry. Of course it'll slow down list_files a bit, but with that we could perhaps resolve #14941?.

It is just a bit relevant to this PR though. We can still merge this when ready.

[Byron]

It's about time I get started with this - this setup here is super-hacky, but it's designed to allow a very step-wise conversion, hopefully allowing to work on it 15 minutes at a time.

Regarding #14941, I hope with #14955 I have found a representative issue. Right now I can't tell how that should be solved, so I'd probably go for having a gitoxide alternative for cargo package here and tackle the related issues another time. Ideally, the new implementation will be a bit faster and I hope I can test that on the aws-sdk-rust repository.

[Byron]

I couldn't resist to profile the aws-sdk-rust publishing step in Cargo and here is a picture of the run so far.

I don't know if this will ever finish, and I don't know how they can even get this published, maybe it just takes a very long time.

The culprit, maybe among other things, may be repo.status_file() calls for which there isn't an equivalent in gitoxide anyway. Thus I think this will look very differently when this PR is done and maybe that's an avenue for aws-sdk-rust to publish much faster.

I will definitely test that once it's working and share results :).

[weihanglo]

Oops I linked to the wrong issue. Was meant to say #14955

[Byron]

I just realized that dirty_files_outside_pkg_root is probably the reason for the individual git_status_file calls.
The gitoxide implementation can certainly be backported to the git2 one if there is demand, so potential gains could be available sooner.

[Byron]

Also I realize that even with these improvements, and without --no-vcs-info or similar it will still do one git-status costing about 1s each for each of these 404 crates, wasting nearly 7 minutes. Nonetheless, it's probably acceptable compared to the over three ours that it took otherwise (which would be equivalent to ~10800 git status checks).

[Byron]

And I think #15416 is also properly fixed now, which also means the output is different in 2 tests when using the gitoxide implementation.

[weihanglo]

Nice! Really appreciate the effort here!

We are probably not going to backports, as the backporting process involves a bit more work, and usually reserved for some regression that has no way out.

Also, given the cargo team has agreed that the dirtiness check is best effort and informational only, I think once the PR is ready we can merge it without FCP.

Thanks again, really a great job!

[Byron]

I think this is ready for a first review. Only gitoxide needs a release which is planned for the 22nd, which is when this PR becomes formally mergeable as it can point to the new release instead of the Git repository.

Especially after RustConf where I was quite apologetic and feared gitoxide could be removed again for not making progress, I thought maybe we should instead consider stabilizing the well-working parts earlier, such as in:

• nightly with opt-in
• stable with opt-out
• stable, with git2 codepath removed.

cargo package would be candidate for it as the new implementation is more correct and as fast as it can be.

What do you think?

[Byron]

This will be set to the latest release on the 22nd or 23rd.

[Byron]

Keeping both worlds neatly separated would allow for a staged rollout:

• nightly and opt-in
• stable and opt-out
• stable (with git2 codepath removed)

[weihanglo]

Personally I would lean towards making it insta-stable, as I mentioned the check is a best-effort, though I'll put this in Cargo team meeting agenda next week!

[weihanglo]

Pretty much like this approach

#13696

[weihanglo]

To avoid wasting efforts, let's hold off feature-gate until we hear back from the team :)

[Byron]

I kept the structure and comments as similar as I could, compared to git2, so it's quite straightforward to compare.

[Byron]

It's unclear to me how this could possibly happen - there is no test for it either. From looking at git blame it wasn't obvious what motivated this check.
Probably nothing wrong with keeping it.

[weihanglo]

Maybe only some parts of the package is under git? Like src is a git repo.

[weihanglo]

When merge, I'll recommend we split rename file into a single commit, so Git knows better to track it.

[weihanglo]

Maybe only some parts of the package is under git? Like src is a git repo.

[weihanglo]

Out of curiosity. If we adopt the same optimization in git2 version, how the performance would look like?

[Byron]

Maybe only some parts of the package is under git? Like src is a git repo.

It seemed that what the code really was testing is if the file exists, and not if it was tracked by Git. Thus I made it an explicit 'file exists' check, which seemed strange as Cargo won't function without such a manifest. Removing the whole block doesn't fail CI either, so it's a bit unclear why it's there. There is still no tool I know that could do forensics and find everything that Git knows about it, that would certainly be interesting.

[Byron]

Out of curiosity. If we adopt the same optimization in git2 version, how the performance would look like?

The 'architecture' changes here could all be applied to the git2 implementation, with the same effects. Performance problems should be solved then.

Edit: If the team decides not to fast-track gix here, then I think the AWS team could trivially contribute a port of this to solve their problems. Of course, I vote for gix as I believe it's more correct when dealing with ignored files, which should solve a problem I am having when releasing gitoxide 😅 (it claims an ignored file is dirty, despite it being ignored).

[weihanglo]

Looks like we are mostly doing the same thing except using gitoxide. Do I understand correctly?
Apart from the dirty_files_outside_of_package_root work, have you found any other stuff to optmize?

[Byron]

The driver of these changes is the lack of single-file APIs, and I noticed no other (previously unknown) optimisation opportunities.
tldr; I don't think there are simple optimisations left, except for maybe the N^2 portion, but even there it's hard to make it show up in a profiler.

But now that I am thinking about it, there might be one: I a workspace like aws-sdk-rust I believe this code runs once for each crate, meaning there will be a full git status each time. It would certainly require more complex changes to be able to cache these between the publish calls. Each one takes a little less than a second there, so it's quite some time in aggregate.
But before that, I'd probably optimize the fetch crates stage to run only once, it takes most of the time.

[weihanglo]

While the PR is not ready to merge yet, I am kicking off the process to get a consensus on how we want to merge this.

@rfcbot fcp merge

Proposal: Switch to gix for cargo package VCS dirtiness check completely, without any fallback to libgit2.

Reasons:

• This is mostly a performance fix. Not really something fundamentally changed.
• Unlike Switch to using gitoxide by default for listing files #13696, VCS dirtiness check informational only, as the team have agreed on.
• There is already --allow-dirty users can opt out the functionality completely.

[rfcbot]

Team member @weihanglo has proposed to merge this. The next step is review by the rest of the tagged team members:

• @0xPoe
• @Eh2406
• @Muscraft
• @arlosi
• @ehuss
• @epage
• @joshtriplett
• @weihanglo

No concerns currently listed.

Once a majority of reviewers approve (and at most 2 approvals are outstanding), this will enter its final comment period. If you spot a major issue that hasn't been raised at any point in this process, please speak up!

See this document for info about what commands tagged team members can give me.