perf: Skip validation for registered query cache hits

[jwils]

Summary

Skip graphql-ruby's StaticValidation pipeline for registered queries that hit the cache in ForRegisteredClient#prepare_query_for_execution. These queries were already validated at CI time via the QueryValidator Rake task, so re-validating at runtime on every request is redundant.

The prepare_query_for_execution method already passes the cached document: to skip re-parsing (~10ms on large queries). This extends that optimization by also passing validate: false, avoiding the validation pipeline cost on every cache-hit request.

Safety

• Only applies to the cache-hit path — queries that exactly match a registered form (or a previously-matched canonical form)
• Unregistered queries and first-time queries still go through full validation via the yield path in build_and_validate_query
• allow_any_query_for_clients queries that don't hit the cache also go through full validation
• Schema and registered queries are deployed as a single artifact, validated together in CI
• validate: false only disables static (query-string) validation. Variable validation still runs unconditionally in GraphQL::Query::ValidationPipeline via @query.variables.errors (which coerces and validates each provided variable against its declared type), so invalid variable values are still reported on every request. There is a regression test covering this.

Benchmark

benchmarks/query_registry/skip_validation.rb measures the cost of GraphQL::Query.new(document:) + query.valid? with validate: true (prior behavior) vs validate: false (new cache-hit behavior). The skip cost is a flat ~13 μs; the validate: true cost scales with query complexity:

Size	Query bytes	validate: true	validate: false	Speedup	Savings/request
small	~280 B	178 μs	13 μs	13.6×	~165 μs
medium	~4 KB	1.83 ms	13 μs	137×	~1.8 ms
large	~60 KB	26 ms	14 μs	1,858×	~26 ms
xlarge	~416 KB	163 ms	14 μs	11,922×	~163 ms

Full results: benchmarks/query_registry/skip_validation.results.txt.

Test plan

• elasticgraph-query_registry specs pass (112 examples, 0 failures) with 100% line and branch coverage
• New unit tests directly assert the validation-skip behavior:
  • query.validate is false for byte-for-byte cache hits and true for the yield path (differing / first-time alternate form)
  • GraphQL::StaticValidation::BaseVisitor.including_rules is not called for cache-hit registered queries but is called for unregistered (yielded) queries — without the validate: false change these assertions flip
  • Invalid variable values on a cache-hit query still produce static errors (safety test confirming variable validation is unaffected)
• script/lint clean
• script/type_check clean

[myronmarston]

👍 Nice find! I do, however, have a potential concern: do we know if validate: false only turns off the validation of the query string, or does it also disable the validation of variables? If it only disables the former this seems safe, but if it also disables variable validation (e.g. verifying that values have been provided for non-null variables w/o defaults, that the variable values align with the variable types, etc), then this doesn't seem safe. Would be good to confirm that with validate: false, we still get the same validation errors as before when invalid variable values are provided.

In addition, there are two things that would be nice to do before we merge:

• Can we quantify the benefit this provides? e.g. can you use benchmark-ips and do a before/after comparison on different sizes of queries and report back about it? (That's how I got the prior 10ms estimate on parsing a large query).
• It would be nice to include some kind of test coverage for this. I'm not sure the best way to do that--is there some kind of class method which we can mock and assert that it's called when given an unregistered query but not called for a registered query? (And verify that without your code change, the test fails indicating that it would have been called without passing validate: false)?

[myronmarston]

It occurs to me that validation will only happen at CI time if the EG project has set that up. It's possible to use elasticgraph-query_registry without setting that up and, until this change, there wasn't a risk that queries would be unvalidated.

I think we should update the elasticgraph-query_registry README to mention that using the registry means that registered queries will not be validated at runtime and that the validation task must be used on CI. Also, it's probably worth mentioning (in the README) the additional benefits elasticgraph-query_registry provides where query performance is better due to eliminating the parsing and validition.

[myronmarston]

What does "yield path" refer to?

Edit: I also see that term used below in a few places; please update them as well.

[myronmarston]

Suggested change

	context "when skipping redundant static validation for cache-hit registered queries" do
	describe "query validation" do

when skipping redundant static validation for cache-hit registered queries isn't accurate for all the examples in here--you've got some examples which do not skip the static validation.

[myronmarston]

Wow, this matters more than I would have thought! Thanks for providing the benchmark results.

[myronmarston]

If I'm reading this right, it means we still pay the cost of validation the first time we encounter a query that differs slightly but is cannonically the same. Can we solve that? e.g. would this do the trick?

diff --git a/elasticgraph-query_registry/lib/elastic_graph/query_registry/query_validators/for_registered_client.rb b/elasticgraph-query_registry/lib/elastic_graph/query_registry/query_validators/for_registered_client.rb
index 644174e4..62b13f3e 100644
--- a/elasticgraph-query_registry/lib/elastic_graph/query_registry/query_validators/for_registered_client.rb
+++ b/elasticgraph-query_registry/lib/elastic_graph/query_registry/query_validators/for_registered_client.rb
@@ -90,7 +90,7 @@ module ElasticGraph
             (_ = cached_client_data).with_updated_last_query(query_string, cachable_query)
           end

-          [query, [], registration_status]
+          [prepare_query_for_execution(query, variables: variables, operation_name: operation_name, context: context), [], registration_status]
         end

         private

[myronmarston]

The elasticgraph-query_registry tests are relatively slow. As such, we should avoid duplicating test coverage. Can we consolidate some number of these tests? On the surface, it seems like there's some duplication here...

[myronmarston]

These tests are tightly coupled to current GraphQL gem internals (e.g. since they spy on ::GraphQL::StaticValidation::BaseVisitor which could be refactored away in a future GraphQL gem release). It's not clear to me that we need these tests given the tests above which check query.validate. But if you want these tests to run the validation for real (which has merit in general), an alternate idea: use a query which fails validation. Demonstrate that query.valid? is false when the query is unregistered and true when its registered even though it's not actually valid.

[myronmarston]

Also: I'm remembering now that I recommended this approach in my prior review ("is there some kind of class method which we can mock and assert that it's called...?"). Sorry about changing my mind here but seeing the test helped me realize the potential better approach!

[myronmarston]

👍 thanks for adding a test for this! This one is worth keeping for sure, IMO.