First crack

Author: tylerjl

.gitignore

@@ -0,0 +1,6 @@
+.terraform*
+terraform.tfstate**.json
+*.qcow2
+terraform.tfstate
+terraform.tfstate.backup
+results/

Caddyfile

@@ -0,0 +1,10 @@
+:8080 {
+  handle_path /html {
+    root static
+    file_server
+  }
+
+  handle /synthetic {
+    respond "Hello, world!"
+  }
+}

base.nix

@@ -0,0 +1,18 @@
+{ pkgs, ... }: let
+  sshKey = builtins.readFile ./ssh_pubkey;
+in {
+  # Perf testing tweaks
+  boot.kernel.sysctl = {
+    "net.ipv4.ip_local_port_range" = "1024 65535";
+    "net.ipv4.tcp_tw_reuse"        = 1;
+    "net.ipv4.tcp_timestamps"      = 1;
+  };
+  security.pam.loginLimits = [{
+    domain = "*";
+    type = "soft";
+    item = "nofile";
+    value = "250000";
+  }];
+  system.stateVersion = "22.05";
+  users.users.root.openssh.authorizedKeys.keys = [ sshKey ];
+}

bench.nix

@@ -0,0 +1,62 @@
+{ lib, pkgs, ... }: {
+  environment.systemPackages = with pkgs; [
+    psrecord
+  ];
+
+  system.activationScripts.pristine = ''
+    ${pkgs.systemd}/bin/systemctl stop nginx caddy || true
+  '';
+
+  networking.firewall.allowedTCPPorts = [ 8080 ];
+
+  services.caddy = {
+    enable = true;
+    configFile = pkgs.writeText "Caddyfile" ''
+      :8080 {
+        handle_path /html {
+          root * ${pkgs.static-html}
+          file_server
+        }
+
+        handle /synthetic {
+          respond "Hello, world!"
+        }
+      }
+    '';
+  };
+  systemd.services.caddy = {
+    serviceConfig.LimitNOFILE = "250000:250000";
+    wantedBy = lib.mkForce [];
+  };
+
+  services.nginx = {
+    enable = true;
+    logError = "/dev/null";
+    config = ''
+      events {
+          use epoll;
+      }
+
+      http {
+          access_log off;
+
+          server {
+              server_name localhost;
+              listen 0.0.0.0:8080;
+
+              location = /html {
+                  alias ${pkgs.static-html}/index.html;
+              }
+
+              location = /synthetic {
+                  return 200 "Hello, world!";
+              }
+          }
+      }
+    '';
+  };
+  systemd.services.nginx = {
+    serviceConfig.LimitNOFILE = "250000:250000";
+    wantedBy = lib.mkForce [];
+  };
+}

bench.sh

@@ -0,0 +1,136 @@
+#!/usr/bin/env bash
+
+set -euo pipefail
+IFS=$'\n\t'
+
+test_duration=30
+test_concurrency=${VUS:-200}
+tests=(synthetic html)
+proxies=(caddy nginx)
+
+function ssh_ { ssh -F ssh_config $@; }
+function scp_ { scp -F ssh_config $@; }
+function config {
+    NIX_SSHOPTS="-F ssh_config" \
+               nixos-rebuild \
+               --flake ".#$1" \
+               --target-host root@$2 \
+               --build-host localhost \
+               test
+}
+
+function run_tests {
+    terraform apply -auto-approve
+    dns=$(terraform output -json dns)
+    sut_pri=$(echo $dns | jq -r '.[0][0]')
+    dri_pri=$(echo $dns | jq -r '.[0][1]')
+    sut_pub=$(echo $dns | jq -r '.[1][0]')
+    dri_pub=$(echo $dns | jq -r '.[1][1]')
+
+    echo -n "Waiting for ssh..."
+    for h in $dri_pub $sut_pub
+    do
+        until ssh_ $h id &>/dev/null ; do
+            printf .
+            sleep 1
+        done
+    done
+
+    config aws-bench $sut_pub
+    config aws-driver $dri_pub
+    ssh_ $sut_pub systemctl stop nginx caddy || true
+
+    scp_ test.js $dri_pub:~/
+
+    for svc in ${proxies[@]}
+    do
+        for test_uri in ${tests[@]}
+        do
+            ssh_ $sut_pub systemctl start $svc
+            sleep 3
+            pid=$(ssh_ $sut_pub systemctl show $svc --property=MainPID --value)
+            ssh_ $sut_pub "psrecord $pid \
+                --include-children \
+                --interval 0.1 \
+                --duration $(( $test_duration + 15 )) \
+                --log $svc-$test_uri-$test_concurrency.txt" &
+            record=$!
+            ssh_ $dri_pub \
+                 "TEST_TARGET=http://${sut_pri}:8080/${test_uri} \
+                k6 run \
+                --vus $test_concurrency \
+                --duration ${test_duration}s \
+                test.js"
+            ssh_ $sut_pub systemctl stop $svc
+            scp_ $dri_pub:~/summary.json results/$svc-$test_uri-$test_concurrency.json
+            wait $record
+            scp_ $sut_pub:~/$svc-$test_uri-$test_concurrency.txt results/
+        done
+    done
+
+    terraform apply -destroy -auto-approve
+}
+
+function postprocess_resources {
+    cleanup=()
+    for test_type in ${tests[@]}
+    do
+        for svc in ${proxies[@]}
+        do
+            raw=results/$svc-$test_type-$test_concurrency.txt
+            ready=results/$svc-$test_type-$test_concurrency-formatted.txt
+            cleanup+=($ready)
+
+            sed 1d $raw \
+                | choose 0:2 \
+                | sed '1i Time "'$svc' CPU %" "'$svc' Memory"' \
+                      > $ready
+        done
+
+        gnuplot \
+            -e "test_type='${test_type}'" \
+            -e "par='${test_concurrency}'" \
+            -e "caddy='results/caddy-$test_type-$test_concurrency-formatted.txt'" \
+            -e "nginx='results/nginx-$test_type-$test_concurrency-formatted.txt'" \
+            resources.gp \
+            > results/resources-${test_type}-${test_concurrency}c-$(date +%s).svg
+    done
+    rm ${cleanup[@]}
+}
+
+function postprocess_metrics {
+    plots=()
+    for test_type in ${tests[@]}
+    do
+        to_join=()
+        for svc in ${proxies[@]}
+        do
+            raw=results/$svc-$test_type-$test_concurrency.json
+            processed=results/$svc-$test_type-duration-$test_concurrency.tsv
+            jq --arg var http_req_duration -r -f metric.jq $raw \
+                | sed "1i metric ${svc}-${test_type}" \
+                        > $processed
+            to_join+=($processed)
+        done
+        plot=results/$test_type-duration-plot.txt
+        join ${to_join[@]} > $plot
+        rm ${to_join[@]}
+        plots+=($plot)
+    done
+
+    join ${plots[@]} > results/plot.txt
+    rm ${plots[@]}
+    gnuplot \
+            -e "data='results/plot.txt'" \
+            -e "test_type='duration'" \
+            metrics.gp > results/metrics-duration-${test_concurrency}c-$(date +%s).svg
+    rm results/plot.txt
+}
+
+function postprocess_tests {
+    postprocess_resources
+    postprocess_metrics
+}
+
+run_tests
+postprocess_tests

cloud-init.nix

@@ -0,0 +1,10 @@
+### https://nixos.org/channels/nixos-22.05 nixos
+
+{ modulesPath, ... }:
+{
+  imports = [ "$${modulesPath}/virtualisation/amazon-image.nix" ];
+
+  users.users.root.openssh.authorizedKeys.keys = [
+    "${deploy-key}"
+  ];
+}

driver.nix

@@ -0,0 +1,5 @@
+{ pkgs, ... }: {
+  environment.systemPackages = with pkgs; [
+    k6
+  ];
+}