fernet token validation is slow
Bug #1489061 reported by
Matt Fischer
This bug affects 5 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Expired
|
Medium
|
Unassigned |
Bug Description
keystone token validation operations are much slower than uuid operations. The performance is up to 4x slower which makes other openstack API calls slower too.
Numbers from Dolph:
Token validation performance
Response time Requests per second
UUID 18.8 ms (baseline) 256.7 (baseline)
Fernet 93.8 ms (400% slower) 48.3 (81% slower)
My numbers running on a basic setup running keystone in a VM without a load balancer:
Tokens per second (serial):
UUID: 14.97
Fernet: 3.66
Tokens per second (concurrent 20 threads):
UUID: 46.18
Fernet: 12.92
Our numbers are similarly bad in production and its impacting OpenStack performance when we're under load.
tags: | added: fernet performance |
Changed in keystone: | |
assignee: | nobody → Grzegorz Grasza (xek) |
Changed in keystone: | |
assignee: | Grzegorz Grasza (xek) → Lance Bragstad (lbragstad) |
status: | Confirmed → In Progress |
Changed in keystone: | |
assignee: | Lance Bragstad (lbragstad) → Morgan Fainberg (mdrnstm) |
Changed in keystone: | |
assignee: | Morgan Fainberg (mdrnstm) → Dolph Mathews (dolph) |
To post a comment you must log in.
related fix - https:/ /review. openstack. org/#/c/ 215212/