Fix group-level vulnerabilities GraphQL performance issue (!163950) · Merge requests · GitLab.org / GitLab

Mehmet Emin INAC requested to merge minac_479353_fix_vulnerabilities_graphql_performance_issue into master Aug 26, 2024

What does this MR do and why?

This fixes the performance issue of paginated vulnerabilities GraphQL query which was caused due to an interesting behavior of PostgreSQL. Basically, if you have a predicate like the following, PostgreSQL does not cancel the query and uses too many shared buffers to find a matching record;

WHERE severity = 7 AND (severity, id) < ROW(6, 21321321);

In this query, the DBMS returns 0 records because severity = 7 AND severity < 6 predicates won't match any record but it uses too many shared buffers for such a query.

The solution is to remove severities greater than the one used in the ROW predicate.

Execution plan for the old query: https://console.postgres.ai/gitlab/gitlab-production-main/sessions/31036/commands/96363
Execution plan for the new query: https://console.postgres.ai/gitlab/gitlab-production-main/sessions/31036/commands/96364

Edited Aug 27, 2024 by Mehmet Emin INAC

Fix group-level vulnerabilities GraphQL performance issue

What does this MR do and why?

Merge request reports