add benchmark tests

Author: ndyakov

.github/workflows/bench.yml

@@ -0,0 +1,43 @@
+name: Benchmark Performance
+on:
+    pull_request:
+        branches:
+            - master
+            - main
+    push:
+        branches:
+            - master
+            - main
+jobs:
+  benchmark:
+    name: Performance regression check
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-go@v4
+        with:
+          go-version: "stable"
+      - name: Install dependencies
+        run: go mod tidy
+      - name: Run benchmark
+        run: go test ./... -bench=. -benchmem -count 2 -timeout 1m | tee benchmarks.txt
+      # Download previous benchmark result from cache (if exists)
+      - name: Download previous benchmark data
+        uses: actions/cache@v4
+        with:
+          path: ./cache
+          key: ${{ runner.os }}-benchmark
+      # Run `github-action-benchmark` action
+      - name: Store benchmark result
+        uses: benchmark-action/github-action-benchmark@v1
+        with:
+          name: Go Benchmark
+          tool: 'go'
+          output-file-path: benchmarks.txt
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          auto-push: true
+          # Show alert with commit comment on detecting possible performance regression
+          alert-threshold: '200%'
+          comment-on-alert: true
+          fail-on-alert: true
+          alert-comment-cc-users: '@ndyakov'

internal/idp_response_test.go

@@ -300,3 +300,65 @@ func TestNewIDPResp(t *testing.T) {
 func stringPtr(s string) *string {
 	return &s
 }
+
+func BenchmarkIDPResp_Type(b *testing.B) {
+	resp := &IDPResp{
+		resultType: "AuthResult",
+	}
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		resp.Type()
+	}
+}
+
+func BenchmarkIDPResp_AuthResult(b *testing.B) {
+	now := time.Now()
+	authResult := &public.AuthResult{
+		AccessToken: "test-token",
+		ExpiresOn:   now,
+	}
+	resp := &IDPResp{
+		authResultVal: authResult,
+	}
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		resp.AuthResult()
+	}
+}
+
+func BenchmarkIDPResp_AccessToken(b *testing.B) {
+	now := time.Now()
+	accessToken := &azcore.AccessToken{
+		Token:     "test-token",
+		ExpiresOn: now,
+	}
+	resp := &IDPResp{
+		accessTokenVal: accessToken,
+	}
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		resp.AccessToken()
+	}
+}
+
+func BenchmarkIDPResp_RawToken(b *testing.B) {
+	resp := &IDPResp{
+		rawTokenVal: "test-raw-token",
+	}
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		resp.RawToken()
+	}
+}
+
+func BenchmarkNewIDPResp(b *testing.B) {
+	now := time.Now()
+	authResult := &public.AuthResult{
+		AccessToken: "test-token",
+		ExpiresOn:   now,
+	}
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		_, _ = NewIDPResp("AuthResult", authResult)
+	}
+}

internal/utils_test.go

@@ -31,3 +31,28 @@ func TestIsClosedWithClosedChannel(t *testing.T) {
 		t.Error("expected closed channel to be closed")
 	}
 }
+
+func BenchmarkIsClosedWithNilChannel(b *testing.B) {
+	var ch chan struct{}
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		IsClosed(ch)
+	}
+}
+
+func BenchmarkIsClosedWithEmptyChannel(b *testing.B) {
+	ch := make(chan struct{})
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		IsClosed(ch)
+	}
+}
+
+func BenchmarkIsClosedWithClosedChannel(b *testing.B) {
+	ch := make(chan struct{})
+	close(ch)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		IsClosed(ch)
+	}
+}

manager/token_manager_test.go

@@ -1262,3 +1262,122 @@ func testAuthResult(expiersOn time.Time) *public.AuthResult {
 	r.IDToken.Oid = "test"
 	return r
 }
+
+func BenchmarkTokenManager_GetToken(b *testing.B) {
+	idp := &mockIdentityProvider{}
+	mParser := &mockIdentityProviderResponseParser{}
+	tokenManager, err := NewTokenManager(idp,
+		TokenManagerOptions{
+			IdentityProviderResponseParser: mParser,
+		},
+	)
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	rawResponse, err := shared.NewIDPResponse(shared.ResponseTypeRawToken, "test")
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	idp.On("RequestToken").Return(rawResponse, nil)
+	mParser.On("ParseResponse", rawResponse).Return(testTokenValid, nil)
+
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		_, _ = tokenManager.GetToken(false)
+	}
+}
+
+func BenchmarkTokenManager_Start(b *testing.B) {
+	idp := &mockIdentityProvider{}
+	listener := &mockTokenListener{}
+	mParser := &mockIdentityProviderResponseParser{}
+	tokenManager, err := NewTokenManager(idp,
+		TokenManagerOptions{
+			IdentityProviderResponseParser: mParser,
+		},
+	)
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	rawResponse, err := shared.NewIDPResponse(shared.ResponseTypeRawToken, "test")
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	idp.On("RequestToken").Return(rawResponse, nil)
+	mParser.On("ParseResponse", rawResponse).Return(testTokenValid, nil)
+	listener.On("OnTokenNext", testTokenValid).Return()
+
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		_, _ = tokenManager.Start(listener)
+	}
+}
+
+func BenchmarkTokenManager_Close(b *testing.B) {
+	idp := &mockIdentityProvider{}
+	listener := &mockTokenListener{}
+	mParser := &mockIdentityProviderResponseParser{}
+	tokenManager, err := NewTokenManager(idp,
+		TokenManagerOptions{
+			IdentityProviderResponseParser: mParser,
+		},
+	)
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	rawResponse, err := shared.NewIDPResponse(shared.ResponseTypeRawToken, "test")
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	idp.On("RequestToken").Return(rawResponse, nil)
+	mParser.On("ParseResponse", rawResponse).Return(testTokenValid, nil)
+	listener.On("OnTokenNext", testTokenValid).Return()
+
+	_, err = tokenManager.Start(listener)
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		_ = tokenManager.Close()
+	}
+}
+
+func BenchmarkTokenManager_durationToRenewal(b *testing.B) {
+	idp := &mockIdentityProvider{}
+	tokenManager, err := NewTokenManager(idp, TokenManagerOptions{
+		LowerRefreshBoundMs: 1000 * 60 * 60, // 1 hour
+	})
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	tm, ok := tokenManager.(*entraidTokenManager)
+	if !ok {
+		b.Fatal("failed to cast to entraidTokenManager")
+	}
+
+	expiresAfterlb := testAuthResult(time.Now().Add(tm.lowerBoundDuration + time.Hour).UTC())
+	idpResponse, err := shared.NewIDPResponse(shared.ResponseTypeAuthResult, expiresAfterlb)
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	idp.On("RequestToken").Return(idpResponse, nil)
+	_, err = tm.GetToken(false)
+	if err != nil {
+		b.Fatal(err)
+	}
+
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		tm.durationToRenewal()
+	}
+}

token/token_test.go

@@ -111,3 +111,70 @@ func TestTokenCompare(t *testing.T) {
 	assert.False(t, token1.compareToken(token4))
 	assert.True(t, token1.compareCredentials(token4))
 }
+
+func BenchmarkNew(b *testing.B) {
+	now := time.Now()
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		New("username", "password", "rawToken", now, now, 3600)
+	}
+}
+
+func BenchmarkBasicAuth(b *testing.B) {
+	token := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token.BasicAuth()
+	}
+}
+
+func BenchmarkRawCredentials(b *testing.B) {
+	token := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token.RawCredentials()
+	}
+}
+
+func BenchmarkExpirationOn(b *testing.B) {
+	token := New("username", "password", "rawToken", time.Now().Add(1*time.Hour), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token.ExpirationOn()
+	}
+}
+
+func BenchmarkCopyToken(b *testing.B) {
+	token := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token.Copy()
+	}
+}
+
+func BenchmarkCompareCredentials(b *testing.B) {
+	token1 := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	token2 := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token1.compareCredentials(token2)
+	}
+}
+
+func BenchmarkCompareRawCredentials(b *testing.B) {
+	token1 := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	token2 := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token1.compareRawCredentials(token2)
+	}
+}
+
+func BenchmarkCompareToken(b *testing.B) {
+	token1 := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	token2 := New("username", "password", "rawToken", time.Now(), time.Now(), 3600)
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		token1.compareToken(token2)
+	}
+}