22
Fri, Nov
1 New Articles

Performance Testing: Best Practices

General
Typography
  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times

Prerequisite #1: Quantify Performance Requirements

The most important prerequisite is to have defined service-level agreements (SLAs) systematically examined by key stakeholders after a deep problem analysis. An SLA item has three main properties:

 

First, it is specific. It is an exact value that quality assurance personnel can test with before moving the application to production.

 

Second, it is flexible in the context of its distributed variance. The use case must adhere to the specific SLA value for a predefined percentage of time, allowing for a measurable degree of flexibility in anticipation of unexpected conditions.

 

Third, it must also be realistic. You can ensure this by requiring the SLA to be defined by both the application business owner and the application technical owner.

Prerequisite #2: Know Your Users

The most difficult part of writing user-representative load-testing scripts is the process of discovering how your users are using your applications. One useful first step is to look at your access logs. I would not recommend doing this by hand, though, because the task is insurmountable for even a Web application of medium size. There are plenty of commercial or free tools that will analyze your access logs for you.

 

Regardless of the software that you choose to analyze your access logs, it is important that you perform the analysis and then use this information as a starting point for building your test scripts. However, access logs are somewhat limited in what they report and may give you only part of the solution. You will need to have a deeper understanding of the application itself. There are tools that can capture a more holistic view of actual end-user activity on your application.

 

For example, one of the biggest mistakes I saw one of my clients making was to assume that users logged out of the system when they finished their tasks. In my experience, around 20 percent of users don't log out, for whatever reason. This assumption led to having to reboot application servers every few days because of too many lingering sessions. This scenario had never been tested.

Performance Testing Phases

Performance testing must be conducted at the following specific points in the development lifecycle:

 

·        Unit Test

·        Application Integration Test

·        Application Integration Load Test

·        Production Staging Test

·        Production Staging Load Test

·        Capacity Assessment

 

Most of us break the development effort into iterations. Each iteration specifies a set of use cases that must be implemented. Typically, the first iteration implements the framework of the application and ensures that the communication pathways between components are functional. Subsequent iterations add functionality to the application and build upon the framework established during the first iteration.

 

Because iterations are defined by the use cases (or sections of use cases) that they implement, each iteration naturally offers specific criteria for performance testing. The use cases define additional test steps and test variations to the SLAs that quality assurance personnel should test against. Therefore, all of the following performance test phases should be applied to each iteration, for each iteration's use cases.

Unit Test

Performance unit testing must be performed by all developers against their own components before submitting them for integration. Traditional unit tests exercise functionality but neglect performance.

 

Performance unit testing means that the component needs to be analyzed during its unit test by a memory, code, and coverage profiler. The memory profiler shows us the memory impact of the use case and the list of specific objects left in memory by the use case. The developer needs to review those objects to ensure that they are supposed to stay in memory after the use case terminates.

 

One common potential memory issue is "object cycling." If an object is created and deleted rapidly, it could be placing too much demand on the JVM. Each object that is created and deleted can only be reclaimed by a garbage collection, and object cycling dramatically increases the frequency of garbage collection.

 

For example, consider the following:

 

for( int i=0; i<object.size(); i++ ) {

 

    for( int j=0; j<object2.size(); j++ ) {

 

        Integer threshold = system.getThreshold();

 

        if( object.getThing() – object2.getOtherThing() >
            threshold.intValue() ) {

 

            // Do something

 

        }

 

    }

 

}

 

The outer loop iterates over all of the items in object, and the inner loop iterates over the collection of object2's items. If object contains 1000 items and object2 contains 1000 items, then the code defined in the inner loop will be executed one million times (1000 * 1000). In this code, the threshold variable is allocated and destroyed every time the inner loop runs (it is destroyed as its reference goes out of scope).

 

The code could be rewritten to remove this condition:

 

Integer threshold = system.getThreshold();

 

for( int i=0; i<object.size(); i++ ) {

 

    for( int j=0; j<object2.size(); j++ ) {

 

        if( object.getThing() – object2.getOtherThing() >
            threshold.intValue() ) {

 

            // Do something

 

        }

 

    }

 

}

 

Now, the threshold variable is allocated once for all one million iterations. The impact of the threshold variable goes from being significant to being negligible.

Application Integration Test

After components have been through unit tests and deemed satisfactory to add to the application, the next step is to integrate them into a single application. After functional integration testing is complete and the application satisfies the functional aspects of the use cases, the next step is to run performance tests against the integrated whole.

 

This test is not a load test, but rather a small-scale set of virtual users. The virtual users are performing the functionality that we defined earlier: attempting to simulate end users through balanced and representative service requests. The purpose of this test is not to break the application, but to identify application issues such as contention, excessive loitering objects, object cycling, and poor algorithms, which can occur in any application when it is first exposed to multiple users. This test is the first one that holds the use case to its SLAs. If the application cannot satisfy its use case under a light load, then there is no point in subjecting it to a load test.

Application Integration Load Test

This test is a full load test with the number of projected users that the application is expected to eventually support in production. It should be performed in two stages:

 

1.      Executed with minimal monitoring

2.      Executed with detailed monitoring

 

In the first test, the goal is to see if the code holds up to its SLAs while under real levels of load. With minimal monitoring enabled, akin to production, we give the application every chance to succeed.

 

In the second test, we enable detailed monitoring, either for the entire application or in a staged approach (with filters to capture only a subset of service requests) so that we can identify performance bottlenecks. If we identify and fix them at this stage, then they do not have the opportunity to grow larger in subsequent iterations.

 

This phase is our first opportunity to tune the performance of the application—quite a change from the traditional approach of waiting to tune until the application is finished.

Production Staging Test

Due to the expense of hardware and software licenses, we must deploy to a shared environment. This means that while our integration load tests helped us tune our applications, we still need a real-world testing environment that will mimic a production deployment.

 

Just as with the application integration test, this is not a load test, but rather a test to identify resources that applications may be competing for. The load is minimal and is defined in the performance test plan. If contention issues arise, deep analysis is required to identify the problem. But this is the very reason that the test is automated and performed by adding one component at a time, on a known-working test bed.

Production Staging Load Test

When your application has successfully integrated into the shared environment, it is time to turn up the user load to reflect production traffic. If your application holds up through this test and meets its SLAs, you can have confidence that you are headed in the right direction.

 

If it fails here, you need to enable deeper monitoring, filter on your application's service requests, and identify new bottlenecks. You may also need to retune the new environment to account for the existing applications and load; this may mean resizing shared resources such as the heap, thread pools, JDBC connection pools, etc.

Capacity Assessment

When you've finally made it to this stage, you have a very competent application iteration in your hands. This final stage of performance testing captures the capacity of your application. In this stage, you generate a load test on the entire environment, combining the expected usage of your application with the observed production behavior of the existing environment. In other words, you start with the environment load test and then start scaling the usage up in the same proportion as the environment load test. All the while, you are testing for all SLAs.

 

The capacity assessment gives you the total picture of your application (and environment) so you can assess new architectural considerations.

Formal Capacity Assessment

Rather than reactively buying additional hardware, I advocate a proactive approach to capacity planning that systematically determines the actual capacity of your environment. Often, additional hardware is not the right solution to capacity issues (although it's an effective one if you have the funds). Formal capacity assessment will help you make more educated decisions; it's more than a load test. Capacity assessment requires the following components:

 

·        Balanced Representative Service Requests—You need to know your users, specifically what they do and in what percentage (balance) they do it.

·        Hard SLAs—This is self-explanatory.

·        Expected Load—This is the number of simultaneous users (and their typical behaviors) that your application needs to support.

·        Graduated Load Generator—A load generation application will climb up to your expected load in a reasonable amount of time and then slowly crawl up.

·        SLA Evaluation—This functionality can be built into your load generator or be accomplished through synthetic transactions, but the focus is on monitoring the response time of your service requests against their respective SLAs.

·        Resource Utilization Monitor—Capture the performance of application server and operating system resource utilizations to determine saturation points and identify which resources give out first.

 

With all of these in hand, it is time to start loading your application. Configure your load generator to generate your expected usage in a reasonable amount of time. While you are increasing load to the expected usage, capture the response time of your service requests and evaluate them against their SLAs.

 

Once you reach your expected user load, it is time to determine the size of the steps that you want to monitor. The size of a step is the measurable increase in user load between sampling intervals; it defines the granularity of accuracy of your capacity assessment. Pick a time interval in which to increase steps and record the response times of your service requests at these intervals.

 

Continue this pattern for each service request until the response time of each exceeds its SLA . Note this time and start recording response times at a tighter interval. The purpose for increasing the sampling interval is to better identify how a service request degrades after it has reached its capacity.

 

For each service request, compile your information and note the capacity of your application at the lowest common denominator: the service request that first consistently misses its SLA . The next section in the capacity analysis report describes the behavior of the degrading application. From this report, business owners can determine when they require additional resources.

 

While this is going on, you need to monitor the utilization of your application server and operating system resources. You need to know the utilizations of your thread pools, heap, JDBC connection pools, other back-end resource connection pools (e.g. JCA and JMS), and caches, as well as CPU, physical memory, disk I/O, and network activity.

 

A formal capacity assessment report includes the following:

 

·        The current/expected user load against the application

·        The capacity of the application under balanced and representative service requests

·        The performance of key service requests under current load

·        The degradation patterns of each service request

·        The system saturation point

·        Recommendations

 

After you have gathered this data and identified the key points (e.g., met SLA , exceeded SLA , degradation pattern, saturation point), it is time to perform deeper analysis and generate recommendations. Try to classify your application into one of the following categories:

 

·        Extremely Under-utilized System—The system can support more than 50 percent additional load.

·        Under-utilized System—The system is under current/expected load, all service requests are meeting their SLAs, and the system can easily support more than 25 percent additional load. 

·        Nearing Capacity—The application is meeting its SLAs, but its capacity is less than 25 percent above current load.

·        Over-utilized System—The application is not meeting its SLAs.

·        Extremely Over-utilized System—The system is saturated at the current/expected load.

 

Performing a capacity assessment on your environment should be required for all of your application deployments and should occur at the end of significant application iterations. Without a capacity assessment, you are running blind, hoping that your applications won't fall over with the next promotion or during the holiday season.

 

I hope this methodology shows that ensuring successful enterprise application performance takes more than tools. It takes an intelligent application of strategy, testing, and analysis to the stages of development. Urge your management to permit this exercise. I can assure you that the resulting calm nights of sleep will more than make up for it.
BLOG COMMENTS POWERED BY DISQUS

LATEST COMMENTS

Support MC Press Online

$

Book Reviews

Resource Center

  • SB Profound WC 5536 Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application. You can find Part 1 here. In Part 2 of our free Node.js Webinar Series, Brian May teaches you the different tooling options available for writing code, debugging, and using Git for version control. Brian will briefly discuss the different tools available, and demonstrate his preferred setup for Node development on IBM i or any platform. Attend this webinar to learn:

  • SB Profound WP 5539More than ever, there is a demand for IT to deliver innovation. Your IBM i has been an essential part of your business operations for years. However, your organization may struggle to maintain the current system and implement new projects. The thousands of customers we've worked with and surveyed state that expectations regarding the digital footprint and vision of the company are not aligned with the current IT environment.

  • SB HelpSystems ROBOT Generic IBM announced the E1080 servers using the latest Power10 processor in September 2021. The most powerful processor from IBM to date, Power10 is designed to handle the demands of doing business in today’s high-tech atmosphere, including running cloud applications, supporting big data, and managing AI workloads. But what does Power10 mean for your data center? In this recorded webinar, IBMers Dan Sundt and Dylan Boday join IBM Power Champion Tom Huntington for a discussion on why Power10 technology is the right strategic investment if you run IBM i, AIX, or Linux. In this action-packed hour, Tom will share trends from the IBM i and AIX user communities while Dan and Dylan dive into the tech specs for key hardware, including:

  • Magic MarkTRY the one package that solves all your document design and printing challenges on all your platforms. Produce bar code labels, electronic forms, ad hoc reports, and RFID tags – without programming! MarkMagic is the only document design and print solution that combines report writing, WYSIWYG label and forms design, and conditional printing in one integrated product. Make sure your data survives when catastrophe hits. Request your trial now!  Request Now.

  • SB HelpSystems ROBOT GenericForms of ransomware has been around for over 30 years, and with more and more organizations suffering attacks each year, it continues to endure. What has made ransomware such a durable threat and what is the best way to combat it? In order to prevent ransomware, organizations must first understand how it works.

  • SB HelpSystems ROBOT GenericIT security is a top priority for businesses around the world, but most IBM i pros don’t know where to begin—and most cybersecurity experts don’t know IBM i. In this session, Robin Tatam explores the business impact of lax IBM i security, the top vulnerabilities putting IBM i at risk, and the steps you can take to protect your organization. If you’re looking to avoid unexpected downtime or corrupted data, you don’t want to miss this session.

  • SB HelpSystems ROBOT GenericCan you trust all of your users all of the time? A typical end user receives 16 malicious emails each month, but only 17 percent of these phishing campaigns are reported to IT. Once an attack is underway, most organizations won’t discover the breach until six months later. A staggering amount of damage can occur in that time. Despite these risks, 93 percent of organizations are leaving their IBM i systems vulnerable to cybercrime. In this on-demand webinar, IBM i security experts Robin Tatam and Sandi Moore will reveal:

  • FORTRA Disaster protection is vital to every business. Yet, it often consists of patched together procedures that are prone to error. From automatic backups to data encryption to media management, Robot automates the routine (yet often complex) tasks of iSeries backup and recovery, saving you time and money and making the process safer and more reliable. Automate your backups with the Robot Backup and Recovery Solution. Key features include:

  • FORTRAManaging messages on your IBM i can be more than a full-time job if you have to do it manually. Messages need a response and resources must be monitored—often over multiple systems and across platforms. How can you be sure you won’t miss important system events? Automate your message center with the Robot Message Management Solution. Key features include:

  • FORTRAThe thought of printing, distributing, and storing iSeries reports manually may reduce you to tears. Paper and labor costs associated with report generation can spiral out of control. Mountains of paper threaten to swamp your files. Robot automates report bursting, distribution, bundling, and archiving, and offers secure, selective online report viewing. Manage your reports with the Robot Report Management Solution. Key features include:

  • FORTRAFor over 30 years, Robot has been a leader in systems management for IBM i. With batch job creation and scheduling at its core, the Robot Job Scheduling Solution reduces the opportunity for human error and helps you maintain service levels, automating even the biggest, most complex runbooks. Manage your job schedule with the Robot Job Scheduling Solution. Key features include:

  • LANSA Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.

  • LANSAWhen it comes to creating your business applications, there are hundreds of coding platforms and programming languages to choose from. These options range from very complex traditional programming languages to Low-Code platforms where sometimes no traditional coding experience is needed. Download our whitepaper, The Power of Writing Code in a Low-Code Solution, and:

  • LANSASupply Chain is becoming increasingly complex and unpredictable. From raw materials for manufacturing to food supply chains, the journey from source to production to delivery to consumers is marred with inefficiencies, manual processes, shortages, recalls, counterfeits, and scandals. In this webinar, we discuss how:

  • The MC Resource Centers bring you the widest selection of white papers, trial software, and on-demand webcasts for you to choose from. >> Review the list of White Papers, Trial Software or On-Demand Webcast at the MC Press Resource Center. >> Add the items to yru Cart and complet he checkout process and submit

  • Profound Logic Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application.

  • SB Profound WC 5536Join us for this hour-long webcast that will explore:

  • Fortra IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn: