pk/zeek
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
zeek/auxil/broker/ci/benchmark.sh
Patrick Kelley 8fd444092b initial
2025-05-07 15:35:15 -04:00

49 lines
2.0 KiB
Bash
Executable File
Raw Blame History

#! /usr/bin/env bash
BROKER_BENCHMARK_ENDPOINT="/broker"
# Setting this causes any command failures to immediately cause the script to fail.
set -e
# Don't do this unless the user has access to the encrypted variables. This will
# basically exclude any PR that doesn't come from the main zeek repo.
if [ "${CIRRUS_USER_PERMISSION}" != "admin" -a "${CIRRUS_USER_PERMISSION}" != "write" ]; then
echo "Benchmarks are skipped for repositories outside of the main Broker project"
exit 0
fi
if [ "${CIRRUS_REPO_FULL_NAME}" != "zeek/broker" ]; then
echo "Benchmarks skipped for non-zeek repo"
exit 0
fi
BUILD_URL="https://api.cirrus-ci.com/v1/artifact/build/${CIRRUS_BUILD_ID}/${CIRRUS_TASK_NAME}/upload_binary/build.tgz"
# Generate an md5 hash of the build file. We can do this here because the path to the
# file still exists from the prior scripts.
BUILD_HASH=$(sha256sum build.tgz | awk '{print $1}')
# Generate an HMAC digest for the path plus a timestamp to send as an authentication
# header. Openssl outputs a hex string here so there's no need to base64 encode it.
TIMESTAMP=$(date -u +'%s')
HMAC_DIGEST=$(echo "${BROKER_BENCHMARK_ENDPOINT}-${TIMESTAMP}-${BUILD_HASH}" | openssl dgst -sha256 -hmac ${BROKER_BENCHMARK_HMAC_KEY} | awk '{print $2}')
TARGET="https://${BROKER_BENCHMARK_HOST}:${BROKER_BENCHMARK_PORT}${BROKER_BENCHMARK_ENDPOINT}"
# Turn this back off because we want to be able to capture the output from curl if
# it fails.
set +e
# Make a request to the benchmark host.
RESULTS=$(curl -sS --stderr - --fail --insecure -X POST -H "Zeek-HMAC: ${HMAC_DIGEST}" -H "Zeek-HMAC-Timestamp: ${TIMESTAMP}" "${TARGET}?branch=${CIRRUS_BRANCH}&build=${BUILD_URL}&build_hash=${BUILD_HASH}")
STATUS=$?
# If we got a bad status back from the host, we want to make sure to mask the host
# and port from the output.
if [ $STATUS -ne 0 ]; then
RESULTS=$(echo "${RESULTS}" | sed "s/${BROKER_BENCHMARK_HOST}/<secret>/g" | sed "s/:${BROKER_BENCHMARK_PORT}/:<secret>/g")
fi
echo "$RESULTS"
exit $STATUS
Reference in New Issue View Git Blame Copy Permalink