mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-11-19 01:31:39 +01:00
Code Issues Projects Releases Wiki Activity
vault/sdk/helper/nonce/benchmark_test.go
Alexander Scheel b1f0d4e495
Add nonce service to sdk/helpers, use in PKI (#20688) 
* Build a better nonce service

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add internal nonce service for testing

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add benchmarks for nonce service

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add statistics around how long tidy took

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Replace ACME nonces with shared nonce service

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add an initialize method to nonce services

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Use the new initialize helper on nonce service in PKI

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add additional tests for nonces

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Format sdk/helper/nonce

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Use default 90s nonce expiry in PKI

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Remove parallel test case as covered by benchmark

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add additional commentary to encrypted nonce implementation

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

* Add nonce to test_packages

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>

---------

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2023-05-23 19:44:05 +00:00

249 lines
5.8 KiB
Go
Raw Blame History

package nonce
import (
"runtime"
"testing"
"time"
"github.com/stretchr/testify/require"
)
const (
benchValidity = 5 * time.Second
logMemStats = true
)
func benchWrapper(helper func(*testing.B, NonceService), b *testing.B, s NonceService) {
err := s.Initialize()
require.NoError(b, err)
var m1, m2 runtime.MemStats
runtime.GC()
runtime.ReadMemStats(&m1)
helper(b, s)
runtime.ReadMemStats(&m2)
if logMemStats {
b.Logf("in-use memory size: %v", m2.Alloc-m1.Alloc)
b.Logf("total alloc size: %v", m2.TotalAlloc-m1.TotalAlloc)
b.Logf("in-use memory count: %v", (m2.Mallocs-m2.Frees)-(m1.Mallocs-m1.Frees))
b.Logf("total alloc count: %v", m2.Mallocs-m1.Mallocs)
}
b.Logf("Tidy output: %v", s.Tidy())
}
func BenchmarkEncryptedNonceServiceGet(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGet, b, s)
}
func BenchmarkSyncMapNonceServiceGet(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGet, b, s)
}
func benchGet(b *testing.B, s NonceService) {
b.ResetTimer()
for i := 0; i < b.N; i++ {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
}
}
func BenchmarkEncryptedNonceServiceGetRedeem(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetRedeem, b, s)
}
func BenchmarkSyncMapNonceServiceGetRedeem(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetRedeem, b, s)
}
func benchGetRedeem(b *testing.B, s NonceService) {
b.ResetTimer()
for i := 0; i < b.N; i++ {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
ok := s.Redeem(token)
require.True(b, ok)
ok = s.Redeem(token)
require.False(b, ok)
}
}
func BenchmarkEncryptedNonceServiceGetRedeemTidy(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetRedeemTidy, b, s)
}
func BenchmarkSyncMapNonceServiceGetRedeemTidy(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetRedeemTidy, b, s)
}
func benchGetRedeemTidy(b *testing.B, s NonceService) {
b.ResetTimer()
for i := 0; i < b.N; i++ {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
ok := s.Redeem(token)
require.True(b, ok)
s.Tidy()
}
}
func BenchmarkEncryptedNonceServiceSequentialTidy(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetRedeemSequentialTidy, b, s)
}
func BenchmarkSyncMapNonceServiceSequentialTidy(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetRedeemSequentialTidy, b, s)
}
func benchGetRedeemSequentialTidy(b *testing.B, s NonceService) {
b.ResetTimer()
for i := 0; i < b.N; i++ {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
ok := s.Redeem(token)
require.True(b, ok)
}
s.Tidy()
}
func BenchmarkEncryptedNonceServiceRandomTidy(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetRedeemRandomTidy, b, s)
}
func BenchmarkSyncMapNonceServiceRandomTidy(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetRedeemRandomTidy, b, s)
}
func benchGetRedeemRandomTidy(b *testing.B, s NonceService) {
b.ResetTimer()
for i := 0; i < b.N; i++ {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
if (i % 3) == 1 {
ok := s.Redeem(token)
require.True(b, ok)
}
}
s.Tidy()
}
func BenchmarkEncryptedNonceServiceParallelGet(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetParallelGet, b, s)
}
func BenchmarkSyncMapNonceServiceParallelGet(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetParallelGet, b, s)
}
func benchGetParallelGet(b *testing.B, s NonceService) {
b.ResetTimer()
b.RunParallel(func(pb *testing.PB) {
for pb.Next() {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
}
})
}
func BenchmarkEncryptedNonceServiceParallelGetRedeem(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetRedeemParallelGetRedeem, b, s)
}
func BenchmarkSyncMapNonceServiceParallelGetRedeem(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetRedeemParallelGetRedeem, b, s)
}
func benchGetRedeemParallelGetRedeem(b *testing.B, s NonceService) {
b.ResetTimer()
b.RunParallel(func(pb *testing.PB) {
for pb.Next() {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
ok := s.Redeem(token)
require.True(b, ok)
}
})
}
func BenchmarkEncryptedNonceServiceParallelGetRedeemTidy(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchGetRedeemParallelGetRedeemTidy, b, s)
}
func BenchmarkSyncMapNonceServiceParallelGetRedeemTidy(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchGetRedeemParallelGetRedeemTidy, b, s)
}
func benchGetRedeemParallelGetRedeemTidy(b *testing.B, s NonceService) {
b.ResetTimer()
b.RunParallel(func(pb *testing.PB) {
for pb.Next() {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
ok := s.Redeem(token)
require.True(b, ok)
s.Tidy()
}
})
}
func BenchmarkEncryptedNonceServiceParallelTidy(b *testing.B) {
s := newEncryptedNonceService(benchValidity)
benchWrapper(benchParallelTidy, b, s)
}
func BenchmarkSyncMapNonceServiceParallelTidy(b *testing.B) {
s := newSyncMapNonceService(benchValidity)
benchWrapper(benchParallelTidy, b, s)
}
func benchParallelTidy(b *testing.B, s NonceService) {
b.ResetTimer()
b.RunParallel(func(pb *testing.PB) {
for pb.Next() {
token, _, err := s.Get()
require.NoError(b, err)
require.NotEmpty(b, token)
ok := s.Redeem(token)
require.True(b, ok)
}
})
b.StopTimer()
time.Sleep(2*time.Second + benchValidity)
runtime.GC()
b.StartTimer()
s.Tidy()
}
Reference in New Issue View Git Blame Copy Permalink