zacbrown
commented
6 years ago Hmmm good observation. Could you make a PR that includes the usage of string_view for us to discuss?
Thanks so much for your insight and help!
Open wmatw opened 6 years ago
zacbrown
commented
6 years ago Hmmm good observation. Could you make a PR that includes the usage of string_view for us to discuss?
Thanks so much for your insight and help!
swannman
commented
6 years ago Would the fluent predicates be faster if we updated them to work with string_view as well?
wmatw
commented
6 years ago For the explicit specialization for string arrays of the property_is predicate, string_view removes the need of temporary string allocation in the operator ().
swannman
commented
6 years ago Cool. That could be a nice performance boost for high-event-rate producers.
swannman
commented
5 years ago @wmatw are you able to produce a PR or point us to an example demonstrating your proposed change?
wmatw
commented
5 years ago I think I will be able to work on it soon, c++ 17 will break support of older compilers, what will the approach? Macro or direct implementation?
swannman
commented
5 years ago Looking forward to it!
I’m okay with introducing C++ 17 language features into the codebase as long as we are still able to build using the latest version of Visual Studio 2017.
zacbrown
commented
5 years ago @wmatw - regarding implementation approach, unless absolutely necessary, I think avoiding macros would be ideal. Perhaps something modeled after the view_of method on the parser type?
zacbrown
commented
5 years ago @swannman - I don't see any examples of its use publicly, but I seem to recall @kallanreed added view_of for use internally at MSFT. If possible, is there anything useful to share there on its actual usage? Mainly, an implementation of that Adapter type would be helpful. Something we can build an example out of will do.
wmatw
commented
5 years ago /std:c++17 option is not enabled by default on vs2017, adding include to
kylereedmsft
commented
5 years ago I don't love string_view and requiring c++17 mode for basically a pair of pointers seems like overkill.
You could use a template alias for collection_view<T> which is essentially a "span" type. https://github.com/Microsoft/krabsetw/blob/16580008afeeed887b4f2e61b523fb089f76a9df/krabs/krabs/collection_view.hpp
you could using ansi_string = collection_view<const char*>; then use the view overload that takes a pointer and length.
Or, I just noticed there's generic_string which is basically a string_view.
What you'd need to watch out for is that you don't break the type-dispatch in the parser (it relies on the specialization of the overloads).
swannman
commented
4 years ago Revisiting this since it has been open for a year -- @kylereedmsft @wmatw any new thoughts on how best to implement this? Is collection_view<T> still the best approach, or is it an appropriate time for us to take a C++17 dependency?
Hi, I am using ETW (and krabs) very intensively in my code, I am parsing different events at a very high rate (filesystem, registry...) To increase the performance of the parsing I am using the helpful
propery_iteratorinstead of calls tofind_propertyto eliminate theparser.propertyCache_population. (to not use thefind_propertyfunction, I am caching the result ofsize_provider::get_property_sizetoo, then I am using pointer arithmetic to access the data in UserData) I changed the membername_in the classpropertyinproperty.hppused by the classproperty_iteratorto be aconst wchar_t*instead of astd::wstring. That permits me to reduce drastically the allocation rate of my code. I think this low-level infrastructure should postpone such conversion and give the choice to the consumer to transform it (in my case with c++17 string_view give me a way to modernly work without reallocation by example) What do you think? Mathieu