[statsd] Fix buffer operation thread-safety

[sgnn7]

What does this PR do?

Old code did not have locking around its open_buffer() and
close_buffer() operations which made those two methods not
thread-safe. This change fixes this and aligns this module with the
documentation.

Fixes #439
Fixes #601

Description of the Change

We now have an RLock around buffer operations that prevents threads
from changing the buffer owned by another thread.

Overall performance decrease when sending 2+ metrics is within the +/- 5% margin of error:

$ /time_buffer_ops.py 
Using Python3
baseline: 6.19679 (baseline)
mod     : 6.02907 (97.29%, 2.78% perf increase)
baseline: 6.20096 (baseline)
mod     : 6.04097 (97.42%, 2.65% perf increase)
baseline: 6.05407 (baseline)
mod     : 6.12549 (101.18%, -1.17% perf increase)
baseline: 6.16327 (baseline)
mod     : 6.16413 (100.01%, -0.01% perf increase)
baseline: 5.94379 (baseline)
mod     : 6.18436 (104.05%, -3.89% perf increase)

$ ./time_buffer_ops.py 
Using Python2
baseline: 5.24699 (baseline)
mod     : 5.25159 (100.09%, -0.09% perf increase)
baseline: 5.17050 (baseline)
mod     : 5.27538 (102.03%, -1.99% perf increase)
baseline: 5.46608 (baseline)
mod     : 5.56813 (101.87%, -1.83% perf increase)
baseline: 5.10800 (baseline)
mod     : 5.41473 (106.01%, -5.66% perf increase)
baseline: 5.06513 (baseline)
mod     : 5.27768 (104.20%, -4.03% perf increase)

Alternate Designs

Possible Drawbacks

Verification Process

Unit tests cover the full scope of changes

Additional Notes

Release Notes

Review checklist (to be filled by reviewers)

• Feature or bug fix MUST have appropriate tests (unit, integration, etc...)
• PR title must be written as a CHANGELOG entry (see why)
• Files changes must correspond to the primary purpose of the PR as described in the title (small unrelated changes should have their own PR)
• PR must have one changelog/ label attached. If applicable it should have the backward-incompatible label attached.
• PR should not have do-not-merge/ label attached.
• If Applicable, issue must have kind/ and severity/ labels attached at least.

[jd]

That might be correct though it looks like a different change.

[sgnn7]

The edge case was found during the test writing. It's a separate commit but it can be split out into a separate PR if you want.

[jd]

Does this mean you can have multiple open_buffer from the same thread and only one close_buffer?
That sounds like trying to circumvent programming errors.

[sgnn7]

Does this mean you can have multiple open_buffer from the same thread and only one close_buffer?
That sounds like trying to circumvent programming errors.

Hey @jd, there was no real guidance to our users that an open_buffer should match a close_buffer. Even if we did have that guidance, it's not technically a programming error - the following code gets into the tricky territory of "what's the correct behavior expected" that ends up being ambiguous as to what it should do/allow:

statds.open_buffer()
# do something to the buffer

statsd.open_buffer()
# do something else
statsd.close_buffer()

The second open_buffer in the strictest of terms (which is what you were pointing out I think) seems like it should just throw an exception as it's out-of-order but given the former behavior and its user friendliness it could be interpreted as a "just give me a new buffer to write". We've discussed this a bit on slack before the PR was implemented and chose the latter as a more-appropriate behavior.

As a sidenote, both open_buffer and close_buffer are getting deprecated soon since we want buffering by default so they will effectively be noops in the future.

[ogaca-dd]

Did you consider setting self.buffer at None in the constructor as an alternative solution?

[sgnn7]

Great point and I did consider that as an alternative but that option has the unintended effect of ignoring blatantly erroneous behavior when the user does not call open_buffer even a single time before trying to close the buffer. While we might not care from the logic point of view if the buffer was created or not beforehand, it made more sense here to notify the user that their code is likely very wrong.

[ogaca-dd]

Consider the following code:

d = DogStatsd()
# ...
with d as batch:
       with d as other_batch:
             other_batch.gauge("users.online", 123)
       # As the lock was released at the previous line, another thread can call `d.open_buffer()` and update buffer at the same time as `batch.gauge("users.online", 123)`
       batch.gauge("users.online", 123)

As a sidenote, both open_buffer and close_buffer are getting deprecated soon since we want buffering by default so they will effectively be noops in the future

Note: I am not sure it worth handling the case in the previous code as these functions are getting deprecated.

[sgnn7]

That's an interesting edge case for sure! Let me think about this some more when I get time and I'll get back to you on it.

[sgnn7]

After some thinking about this particular example and other edge use cases, I think it might be just better to make the lock not explicitly re-entrant from the same thread which should fix your and @jd's concerns.

[ogaca-dd]

LGTM