feat(scaletest): replace bash with dd in ssh/rpty traffic and use pseudorandomness (#10821)

mafredri · web-flow · commit 99151183bc27 · 2023-11-30T19:30:12.000+02:00
Fixes #10795 Refs #8556
diff --git a/cli/exp_scaletest.go b/cli/exp_scaletest.go
@@ -10,6 +10,7 @@ import (
 	"math/rand"
 	"net/http"
 	"os"
+	"os/signal"
 	"strconv"
 	"strings"
 	"sync"
@@ -173,11 +174,12 @@ func (s *scaletestStrategyFlags) attach(opts *clibase.OptionSet) {
 
 func (s *scaletestStrategyFlags) toStrategy() harness.ExecutionStrategy {
 	var strategy harness.ExecutionStrategy
-	if s.concurrency == 1 {
+	switch s.concurrency {
+	case 1:
 		strategy = harness.LinearExecutionStrategy{}
-	} else if s.concurrency == 0 {
+	case 0:
 		strategy = harness.ConcurrentExecutionStrategy{}
-	} else {
+	default:
 		strategy = harness.ParallelExecutionStrategy{
 			Limit: int(s.concurrency),
 		}
@@ -244,7 +246,9 @@ func (o *scaleTestOutput) write(res harness.Results, stdout io.Writer) error {
 		err := s.Sync()
 		// On Linux, EINVAL is returned when calling fsync on /dev/stdout. We
 		// can safely ignore this error.
-		if err != nil && !xerrors.Is(err, syscall.EINVAL) {
+		// On macOS, ENOTTY is returned when calling sync on /dev/stdout. We
+		// can safely ignore this error.
+		if err != nil && !xerrors.Is(err, syscall.EINVAL) && !xerrors.Is(err, syscall.ENOTTY) {
 			return xerrors.Errorf("flush output file: %w", err)
 		}
 	}
@@ -871,9 +875,13 @@ func (r *RootCmd) scaletestWorkspaceTraffic() *clibase.Cmd {
 		Middleware: clibase.Chain(
 			r.InitClient(client),
 		),
-		Handler: func(inv *clibase.Invocation) error {
+		Handler: func(inv *clibase.Invocation) (err error) {
 			ctx := inv.Context()
 
+			notifyCtx, stop := signal.NotifyContext(ctx, InterruptSignals...) // Checked later.
+			defer stop()
+			ctx = notifyCtx
+
 			me, err := requireAdmin(ctx, client)
 			if err != nil {
 				return err
@@ -965,6 +973,7 @@ func (r *RootCmd) scaletestWorkspaceTraffic() *clibase.Cmd {
 					ReadMetrics:  metrics.ReadMetrics(ws.OwnerName, ws.Name, agentName),
 					WriteMetrics: metrics.WriteMetrics(ws.OwnerName, ws.Name, agentName),
 					SSH:          ssh,
+					Echo:         ssh,
 				}
 
 				if err := config.Validate(); err != nil {
@@ -990,6 +999,11 @@ func (r *RootCmd) scaletestWorkspaceTraffic() *clibase.Cmd {
 				return xerrors.Errorf("run test harness (harness failure, not a test failure): %w", err)
 			}
 
+			// If the command was interrupted, skip stats.
+			if notifyCtx.Err() != nil {
+				return notifyCtx.Err()
+			}
+
 			res := th.Results()
 			for _, o := range outputs {
 				err = o.write(res, inv.Stdout)
diff --git a/scaletest/workspacetraffic/config.go b/scaletest/workspacetraffic/config.go
@@ -25,6 +25,12 @@ type Config struct {
 	WriteMetrics ConnMetrics `json:"-"`
 
 	SSH bool `json:"ssh"`
+
+	// Echo controls whether the agent should echo the data it receives.
+	// If false, the agent will discard the data. Note that setting this
+	// to true will double the amount of data read from the agent for
+	// PTYs (e.g. reconnecting pty or SSH connections that request PTY).
+	Echo bool `json:"echo"`
 }
 
 func (c Config) Validate() error {
diff --git a/scaletest/workspacetraffic/conn.go b/scaletest/workspacetraffic/conn.go
@@ -2,122 +2,261 @@ package workspacetraffic
 
 import (
 	"context"
+	"encoding/json"
+	"errors"
 	"io"
 	"sync"
+	"time"
 
 	"github.com/coder/coder/v2/codersdk"
 
 	"github.com/google/uuid"
-	"github.com/hashicorp/go-multierror"
 	gossh "golang.org/x/crypto/ssh"
 	"golang.org/x/xerrors"
 )
 
-func connectPTY(ctx context.Context, client *codersdk.Client, agentID, reconnect uuid.UUID) (*countReadWriteCloser, error) {
+const (
+	// Set a timeout for graceful close of the connection.
+	connCloseTimeout = 30 * time.Second
+	// Set a timeout for waiting for the connection to close.
+	waitCloseTimeout = connCloseTimeout + 5*time.Second
+
+	// In theory, we can send larger payloads to push bandwidth, but we need to
+	// be careful not to send too much data at once or the server will close the
+	// connection. We see this more readily as our JSON payloads approach 28KB.
+	//
+	// 	failed to write frame: WebSocket closed: received close frame: status = StatusMessageTooBig and reason = "read limited at 32769 bytes"
+	//
+	// Since we can't control fragmentation/buffer sizes, we keep it simple and
+	// match the conservative payload size used by agent/reconnectingpty (1024).
+	rptyJSONMaxDataSize = 1024
+)
+
+func connectRPTY(ctx context.Context, client *codersdk.Client, agentID, reconnect uuid.UUID, cmd string) (*countReadWriteCloser, error) {
+	width, height := 80, 25
 	conn, err := client.WorkspaceAgentReconnectingPTY(ctx, codersdk.WorkspaceAgentReconnectingPTYOpts{
 		AgentID:   agentID,
 		Reconnect: reconnect,
-		Height:    25,
-		Width:     80,
-		Command:   "sh",
+		Width:     uint16(width),
+		Height:    uint16(height),
+		Command:   cmd,
 	})
 	if err != nil {
 		return nil, xerrors.Errorf("connect pty: %w", err)
 	}
 
 	// Wrap the conn in a countReadWriteCloser so we can monitor bytes sent/rcvd.
-	crw := countReadWriteCloser{ctx: ctx, rwc: conn}
+	crw := countReadWriteCloser{rwc: newPTYConn(conn)}
 	return &crw, nil
 }
 
-func connectSSH(ctx context.Context, client *codersdk.Client, agentID uuid.UUID) (*countReadWriteCloser, error) {
+type rptyConn struct {
+	conn io.ReadWriteCloser
+	wenc *json.Encoder
+
+	readOnce sync.Once
+	readErr  chan error
+
+	mu     sync.Mutex // Protects following.
+	closed bool
+}
+
+func newPTYConn(conn io.ReadWriteCloser) *rptyConn {
+	rc := &rptyConn{
+		conn:    conn,
+		wenc:    json.NewEncoder(conn),
+		readErr: make(chan error, 1),
+	}
+	return rc
+}
+
+func (c *rptyConn) Read(p []byte) (int, error) {
+	n, err := c.conn.Read(p)
+	if err != nil {
+		c.readOnce.Do(func() {
+			c.readErr <- err
+			close(c.readErr)
+		})
+		return n, err
+	}
+	return n, nil
+}
+
+func (c *rptyConn) Write(p []byte) (int, error) {
+	c.mu.Lock()
+	defer c.mu.Unlock()
+
+	// Early exit in case we're closing, this is to let call write Ctrl+C
+	// without a flood of other writes.
+	if c.closed {
+		return 0, io.EOF
+	}
+
+	return c.writeNoLock(p)
+}
+
+func (c *rptyConn) writeNoLock(p []byte) (n int, err error) {
+	// If we try to send more than the max payload size, the server will close the connection.
+	for len(p) > 0 {
+		pp := p
+		if len(pp) > rptyJSONMaxDataSize {
+			pp = p[:rptyJSONMaxDataSize]
+		}
+		p = p[len(pp):]
+		req := codersdk.ReconnectingPTYRequest{Data: string(pp)}
+		if err := c.wenc.Encode(req); err != nil {
+			return n, xerrors.Errorf("encode pty request: %w", err)
+		}
+		n += len(pp)
+	}
+	return n, nil
+}
+
+func (c *rptyConn) Close() (err error) {
+	c.mu.Lock()
+	if c.closed {
+		c.mu.Unlock()
+		return nil
+	}
+	c.closed = true
+	c.mu.Unlock()
+
+	defer c.conn.Close()
+
+	// Send Ctrl+C to interrupt the command.
+	_, err = c.writeNoLock([]byte("\u0003"))
+	if err != nil {
+		return xerrors.Errorf("write ctrl+c: %w", err)
+	}
+	select {
+	case <-time.After(connCloseTimeout):
+		return xerrors.Errorf("timeout waiting for read to finish")
+	case err = <-c.readErr:
+		if errors.Is(err, io.EOF) {
+			return nil
+		}
+		return err
+	}
+}
+
+//nolint:revive // Ignore requestPTY control flag.
+func connectSSH(ctx context.Context, client *codersdk.Client, agentID uuid.UUID, cmd string, requestPTY bool) (rwc *countReadWriteCloser, err error) {
+	var closers []func() error
+	defer func() {
+		if err != nil {
+			for _, c := range closers {
+				if err2 := c(); err2 != nil {
+					err = errors.Join(err, err2)
+				}
+			}
+		}
+	}()
+
 	agentConn, err := client.DialWorkspaceAgent(ctx, agentID, &codersdk.DialWorkspaceAgentOptions{})
 	if err != nil {
 		return nil, xerrors.Errorf("dial workspace agent: %w", err)
 	}
-	agentConn.AwaitReachable(ctx)
+	closers = append(closers, agentConn.Close)
+
 	sshClient, err := agentConn.SSHClient(ctx)
 	if err != nil {
 		return nil, xerrors.Errorf("get ssh client: %w", err)
 	}
+	closers = append(closers, sshClient.Close)
+
 	sshSession, err := sshClient.NewSession()
 	if err != nil {
-		_ = agentConn.Close()
 		return nil, xerrors.Errorf("new ssh session: %w", err)
 	}
-	wrappedConn := &wrappedSSHConn{ctx: ctx}
+	closers = append(closers, sshSession.Close)
+
+	wrappedConn := &wrappedSSHConn{}
+
 	// Do some plumbing to hook up the wrappedConn
 	pr1, pw1 := io.Pipe()
+	closers = append(closers, pr1.Close, pw1.Close)
 	wrappedConn.stdout = pr1
 	sshSession.Stdout = pw1
+
 	pr2, pw2 := io.Pipe()
+	closers = append(closers, pr2.Close, pw2.Close)
 	sshSession.Stdin = pr2
 	wrappedConn.stdin = pw2
-	err = sshSession.RequestPty("xterm", 25, 80, gossh.TerminalModes{})
-	if err != nil {
-		_ = pr1.Close()
-		_ = pr2.Close()
-		_ = pw1.Close()
-		_ = pw2.Close()
-		_ = sshSession.Close()
-		_ = agentConn.Close()
-		return nil, xerrors.Errorf("request pty: %w", err)
+
+	if requestPTY {
+		err = sshSession.RequestPty("xterm", 25, 80, gossh.TerminalModes{})
+		if err != nil {
+			return nil, xerrors.Errorf("request pty: %w", err)
+		}
 	}
-	err = sshSession.Shell()
+	err = sshSession.Start(cmd)
 	if err != nil {
-		_ = sshSession.Close()
-		_ = agentConn.Close()
 		return nil, xerrors.Errorf("shell: %w", err)
 	}
+	waitErr := make(chan error, 1)
+	go func() {
+		waitErr <- sshSession.Wait()
+	}()
 
 	closeFn := func() error {
-		var merr error
-		if err := sshSession.Close(); err != nil {
-			merr = multierror.Append(merr, err)
+		// Start by closing stdin so we stop writing to the ssh session.
+		merr := pw2.Close()
+		if err := sshSession.Signal(gossh.SIGHUP); err != nil {
+			merr = errors.Join(merr, err)
 		}
-		if err := agentConn.Close(); err != nil {
-			merr = multierror.Append(merr, err)
+		select {
+		case <-time.After(connCloseTimeout):
+			merr = errors.Join(merr, xerrors.Errorf("timeout waiting for ssh session to close"))
+		case err := <-waitErr:
+			if err != nil {
+				var exitErr *gossh.ExitError
+				if xerrors.As(err, &exitErr) {
+					// The exit status is 255 when the command is
+					// interrupted by a signal. This is expected.
+					if exitErr.ExitStatus() != 255 {
+						merr = errors.Join(merr, xerrors.Errorf("ssh session exited with unexpected status: %d", int32(exitErr.ExitStatus())))
+					}
+				} else {
+					merr = errors.Join(merr, err)
+				}
+			}
+		}
+		for _, c := range closers {
+			if err := c(); err != nil {
+				if !errors.Is(err, io.EOF) {
+					merr = errors.Join(merr, err)
+				}
+			}
 		}
 		return merr
 	}
 	wrappedConn.close = closeFn
 
-	crw := &countReadWriteCloser{ctx: ctx, rwc: wrappedConn}
+	crw := &countReadWriteCloser{rwc: wrappedConn}
+
 	return crw, nil
 }
 
 // wrappedSSHConn wraps an ssh.Session to implement io.ReadWriteCloser.
 type wrappedSSHConn struct {
-	ctx       context.Context
 	stdout    io.Reader
-	stdin     io.Writer
+	stdin     io.WriteCloser
 	closeOnce sync.Once
 	closeErr  error
 	close     func() error
 }
 
 func (w *wrappedSSHConn) Close() error {
 	w.closeOnce.Do(func() {
-		_, _ = w.stdin.Write([]byte("exit\n"))
 		w.closeErr = w.close()
 	})
 	return w.closeErr
 }
 
 func (w *wrappedSSHConn) Read(p []byte) (n int, err error) {
-	select {
-	case <-w.ctx.Done():
-		return 0, xerrors.Errorf("read: %w", w.ctx.Err())
-	default:
-		return w.stdout.Read(p)
-	}
+	return w.stdout.Read(p)
 }
 
 func (w *wrappedSSHConn) Write(p []byte) (n int, err error) {
-	select {
-	case <-w.ctx.Done():
-		return 0, xerrors.Errorf("write: %w", w.ctx.Err())
-	default:
-		return w.stdin.Write(p)
-	}
+	return w.stdin.Write(p)
 }
diff --git a/scaletest/workspacetraffic/countreadwriter.go b/scaletest/workspacetraffic/countreadwriter.go
@@ -13,7 +13,6 @@ import (
 
 // countReadWriteCloser wraps an io.ReadWriteCloser and counts the number of bytes read and written.
 type countReadWriteCloser struct {
-	ctx          context.Context
 	rwc          io.ReadWriteCloser
 	readMetrics  ConnMetrics
 	writeMetrics ConnMetrics
diff --git a/scaletest/workspacetraffic/run.go b/scaletest/workspacetraffic/run.go
diff --git a/scaletest/workspacetraffic/run_test.go b/scaletest/workspacetraffic/run_test.go
