switch HA-proxy tests to h1load client

[Sashan]

This change simplifies current HA-proxy test set up. Testing no longer requires apache/nginx server as backend. Instead of using siege as a client the test uses
h1load [1].

The pull request also install httpterm [2] http/1.1 server. It's unused currently.

The HA-proxy configuration for testing matches the configuration used in 'State of SSL stacks' write up.

The h1load client currently runs with options as follows :
h1load
-l \ # long results, output expected by h1load shell script
-P \ # report also percentiles for gathared data
-d ${TEST_TIME} \ # test duration, TEST_TIME is 10secs
-c 500 \ # 500 concurrent connections
-t ${THREAD_COUNT} \ # gather data for 1, 2, 4, 8, 16, 32, 64 threads
-u \ # use runtime instead of system time
${BASE_URL}${PORT} # url where to connect to

The options above is just the initial version.

[1] https://github.com/wtarreau/h1load

[2] https://github.com/wtarreau/httpterm

[3] https://www.haproxy.com/blog/state-of-ssl-stacks

[nhorman]

This looks fine to me, but I'm a bit confused as to how h1load gets setup with this test. Is it meant to be run by hand independently?

[Sashan]

This looks fine to me, but I'm a bit confused as to how h1load gets setup with this test. Is it meant to be run by hand independently?

it's run by bench_run_haproxy.sh this comes from run_test() function:

    RESULT=${RESULT_DIR}/h1load-dh-rsa-noreuse-${THREAD_COUNT}-${SSL_LIB}.out
    PORT=$(( ${PORT_RSA} + ${PROXY_CHAIN}  ))
    LD_LIBRARY_PATH=${OPENSSL_DIR}/lib ${H1LOAD} \
        -l \
        -P \
        -d ${TEST_TIME} \
        -c 500 \
        -t ${THREAD_COUNT} \
        -u \
        ${BASE_URL}${PORT} > ${RESULT} || exit 1

it's the H1LOAD variable which holds the path to h1load client. the client is linked with desired SSL library. I'm still verifying set up and figuring out the command line options to use. I've added also ability to use the siege [1] client just to cross check the results with other kind of tests.

the part up to collecting results is mostly done. I'm still working on gnuplot scripts to post-process data. I will include them to separate PR.

[wtarreau]

Sasha, before you spend too much time on gnuplot scripts, I'll share you some hints to ease your job (e.g. using -ll instead of -l to have raw numbers instead of human-friendly ones). I'm also finalizing a few small changes that ease selecting relevant lines if you want to compute averages. I'll ping you soon about this.

[Sashan]

Walter, thanks a lot. I will be also happy for tips on how to set the h1load arguments. to run benchmark tests.
What I'm looking for is to have a test which will run for certain period of time (let's say 10secs) trying to do as many requests/handshakes as possible using 1, 2, 4, 8, 16, 32, 64 threads. The more requests handled within the period of time the better. This is just very gross benchmark to get some basic metric. Once again thank you.

[wtarreau]

Agreed, that's what I want to show you because it's not quite hard. With -d you can set the duration of the test, with -s you can configure a slow ramp-up period (absolutely necessary to avoid measurement errors), and I'll also show you how to pick the relevant values to provide a meaningful measure. On the haproxy side, using taskset is an easy and convenient way to select the number of threads you want. I'll try to dedicate you some time next week to work on this. Today I'm busy chasing a few bugs.

[jogme]

First iteration - only cosmetics

[t-j-h]

You comment that you aren't using siege as a client - but I still see a pile of references there - is this expected? Is it still actually used? If so the PR comment should be updated.

[Sashan]

You comment that you aren't using siege as a client - but I still see a pile of references there - is this expected? Is it still actually used? If so the PR comment should be updated.

I will fix the comment. I think it is useful to keep both tools working just for a cross check.

[mbroz]

Why are you referencing own repo? Is there h1load upstream PR for changes you have?

[Sashan]

I was using the fork because I had to modify the gnuplot scripts. but it looks like there is no reason to keep those modifications around.

[wtarreau]

BTW @Sashan, when you're forced to change stuff in h1load, do not hesitate to ping me for merging it. The program receives few modifications and most of them are totally relevant and more than welcome, because generally we all face similar limitations/difficulties that we all painfully work around using scripts. So don't be shy!

[Sashan]

I think those ended up in the update to README. I'm going to give try the new h1load. And see how it will go. There will be follow up PR which will let gnuplot to generate charts. It will be gathering date from h1load output and also from siege. The h1load data are more detailed the siege is just for cross-check.

[npajkovsky]

fatal: Remote branch float not found in upstream origin

[jogme]

this looks like a leftover after sashan changed the repo from his fork to upstream

[npajkovsky]

-u seems to be gone.

[npajkovsky]

Should we do plot_result here?

[Sashan]

this is a follow up PR

[jogme]

LGTM, thanks!

[jogme]

note: I can't install siege on manjaro, but that's not an issue of this script.

It can't properly detect string.h - even the config says it founds it (fails on HAVE_STRCMP)

[Sashan]

thanks, for review. I think ?Nikola? reported the siege does not build on ?suse? if I remember correct. Let's get it working on Ubuntu first.

[npajkovsky]

It cannot be built anywhere. The last version is pretty broken.

[jogme]

ubuntu works fine