Step 29: Managing Performance

Managing Performance

Premature optimization is the root of all evil.

Maybe you have already read this quotation before. But I like to cite it in full:

We should forget about small efficiencies, say about 97% of the time: premature optimization is the root of all evil. Yet we should not pass up our opportunities in that critical 3%.

—Donald Knuth

Even small performance improvements can make a difference, especially for e-commerce websites. Now that the guestbook application is ready for prime time, let’s see how we can check its performance.

The best way to find performance optimizations is to use a profiler. The most popular option nowadays is Blackfire (full disclaimer: I am also the founder of the Blackfire project).

Introducing Blackfire

Blackfire is made of several parts:

  • A client that triggers profiles (the Blackfire CLI tool or a browser extension for Google Chrome or Firefox);
  • An agent that prepares and aggregates data before sending them to blackfire.io for display;
  • A PHP extension (the probe) that instruments the PHP code.

To work with Blackfire, you first need to sign up.

Install Blackfire on your local machine by running the following quick installation script:

  1. $ curl https://installer.blackfire.io/ | bash

This installer downloads the Blackfire CLI Tool and then installs the PHP probe (without enabling it) on all available PHP versions.

Enable the PHP probe for our project:

patch_file

  1. --- a/php.ini
  2. +++ b/php.ini
  3. @@ -7,3 +7,7 @@ session.use_strict_mode=On
  4.  realpath_cache_ttl=3600
  5.  zend.detect_unicode=Off
  6.  xdebug.file_link_format=vscode://file/%f:%l
  7. +
  8. +[blackfire]
  9. +# use php_blackfire.dll on Windows
  10. +extension=blackfire.so

Restart the web server so that PHP can load Blackfire:

  1. $ symfony server:stop
  2. $ symfony server:start -d

The Blackfire CLI Tool needs to be configured with your personal client credentials (to store your project profiles under your personal account). Find them at the top of the Settings/Credentials page and execute the following command by replacing the placeholders:

  1. $ blackfire config --client-id=xxx --client-token=xxx

Note

For full installation instructions, follow the official detailed installation guide. They are useful when installing Blackfire on a server.

Setting Up the Blackfire Agent on Docker

The last step is to add the Blackfire agent service in the Docker Compose stack:

patch_file

  1. --- a/docker-compose.yaml
  2. +++ b/docker-compose.yaml
  3. @@ -12,3 +12,8 @@ services:
  4.      mailer:
  5.          image: schickling/mailcatcher
  6.          ports: [1025, 1080]
  7. +
  8. +    blackfire:
  9. +        image: blackfire/blackfire
  10. +        env_file: .env.local
  11. +        ports: [8707]

To communicate with the server, you need to get your personal server credentials (these credentials identify where you want to store the profiles – you can create one per project); they can be found at the bottom of the Settings/Credentials page. Store them in a local .env.local file:

  1. BLACKFIRE_SERVER_ID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
  2. BLACKFIRE_SERVER_TOKEN=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

You can now launch the new container:

  1. $ docker-compose stop
  2. $ docker-compose up -d

Fixing a non-working Blackfire Installation

If you get an error while profiling, increase the Blackfire log level to get more information in the logs:

patch_file

  1. --- a/php.ini
  2. +++ b/php.ini
  3. @@ -10,3 +10,4 @@ zend.detect_unicode=Off
  4.  [blackfire]
  5.  # use php_blackfire.dll on Windows
  6.  extension=blackfire.so
  7. +blackfire.log_level=4

Restart the web server:

  1. $ symfony server:stop
  2. $ symfony server:start -d

And tail the logs:

  1. $ symfony server:log

Profile again and check the log output.

Configuring Blackfire in Production

Blackfire is included by default in all SymfonyCloud projects.

Set up the server credentials as environment variables:

  1. $ symfony var:set BLACKFIRE_SERVER_ID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
  2. $ symfony var:set BLACKFIRE_SERVER_TOKEN=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

And enable the PHP probe like any other PHP extension:

patch_file

  1. --- a/.symfony.cloud.yaml
  2. +++ b/.symfony.cloud.yaml
  3. @@ -4,6 +4,7 @@ type: php:7.4
  5.  runtime:
  6.      extensions:
  7. +        - blackfire
  8.          - xsl
  9.          - pdo_pgsql
  10.          - apcu

Configuring Varnish for Blackfire

Before you can deploy to start profiling, you need a way to bypass the Varnish HTTP cache. If not, Blackfire will never hit the PHP application. You are going to authorize the bypass of Varnish only for profiling requests coming from your local machine.

Find your current IP address:

  1. $ curl https://ifconfig.me/

And use it to configure Varnish:

patch_file

  1. --- a/.symfony/config.vcl
  2. +++ b/.symfony/config.vcl
  3. @@ -1,3 +1,11 @@
  4. +acl profile {
  5. +   # Authorize the local IP address (replace with the IP found above)
  6. +   "a.b.c.d";
  7. +   # Authorize Blackfire servers
  8. +   "46.51.168.2";
  9. +   "54.75.240.245";
  10. +}
  11. +
  12.  sub vcl_recv {
  13.      set req.backend_hint = application.backend();
  14.      set req.http.Surrogate-Capability = "abc=ESI/1.0";
  15. @@ -8,6 +16,16 @@ sub vcl_recv {
  16.          }
  17.          return (purge);
  18.      }
  19. +
  20. +    # Don't profile ESI requests
  21. +    if (req.esi_level > 0) {
  22. +        unset req.http.X-Blackfire-Query;
  23. +    }
  24. +
  25. +    # Bypass Varnish when the profile request comes from a known IP
  26. +    if (req.http.X-Blackfire-Query && client.ip ~ profile) {
  27. +        return (pass);
  28. +    }
  29.  }
  31.  sub vcl_backend_response {

You can now deploy.

Profiling Web Pages

You can profile traditional web pages from Firefox or Google Chrome via their dedicated extensions.

On your local machine, don’t forget to disable the HTTP cache in config/packages/framework.yaml when profiling: if not, you will profile the Symfony HTTP cache layer instead of your own code:

patch_file

  1. --- a/config/packages/framework.yaml
  2. +++ b/config/packages/framework.yaml
  3. @@ -16,4 +16,4 @@ framework:
  4.      php_errors:
  5.          log: true
  7. -    http_cache: true
  8. +    #http_cache: true

To get a better picture of the performance of your application in production, you should also profile the “production” environment. By default, your local environment is using the “development” environment, which adds a significant overhead (mainly to gather data for the web debug toolbar and the Symfony profiler).

Switching your local machine to the production environment can be done by changing the APP_ENV environment variable in the .env.local file:

  1. APP_ENV=prod

Or you can use the server:prod command:

  1. $ symfony server:prod

Don’t forget to switch it back to dev when your profiling session ends:

  1. $ symfony server:prod --off

Profiling API Resources

Profiling the API or the SPA is better done on the CLI via the Blackfire CLI Tool that you have installed previously:

  1. $ blackfire curl `symfony var:export SYMFONY_PROJECT_DEFAULT_ROUTE_URL`api

The blackfire curl command accepts the exact same arguments and options as cURL.

Comparing Performance

In the step about “Cache”, we added a cache layer to improve the performance of our code, but we did not check nor measure the performance impact of the change. As we are all very bad at guessing what will be fast and what is slow, you might end up in a situation where making some optimization actually makes your application slower.

You should always measure the impact of any optimization you do with a profiler. Blackfire makes it visually easier thanks to its comparison feature.

Writing Black Box Functional Tests

We have seen how to write functional tests with Symfony. Blackfire can be used to write browsing scenarios that can be run on demand via the Blackfire player. Let’s write a scenario that submits a new comment and validates it via the email link in development, and via the admin in production.

Create a .blackfire.yaml file with the following content:

.blackfire.yaml

  1. scenarios: |
  2.     #!blackfire-player
  4.     group login
  5.         visit url('/login')
  6.         submit button("Sign in")
  7.             param username "admin"
  8.             param password "admin"
  9.             expect status_code() == 302
  11.     scenario
  12.         name "Submit a comment on the Amsterdam conference page"
  13.         include login
  14.         visit url('/fr/conference/amsterdam-2019')
  15.             expect status_code() == 200
  16.         submit button("Submit")
  17.             param comment_form[author] 'Fabien'
  18.             param comment_form[email] '[email protected]'
  19.             param comment_form[text] 'Such a good conference!'
  20.             param comment_form[photo] file(fake('image', '/tmp', 400, 300, 'cats'), 'awesome-cat.jpg')
  21.             expect status_code() == 302
  22.         follow
  23.             expect status_code() == 200
  24.             expect not(body() matches "/Such a good conference/")
  25.             # Wait for the workflow to validate the submissions
  26.             wait 5000
  27.         when env != "prod"
  28.             visit url(webmail_url ~ '/messages')
  29.                 expect status_code() == 200
  30.                 set message_ids json("[*].id")
  31.             with message_id in message_ids
  32.                 visit url(webmail_url ~ '/messages/' ~ message_id ~ '.html')
  33.                     expect status_code() == 200
  34.                     set accept_url css("table a").first().attr("href")
  35.                 include login
  36.                 visit url(accept_url)
  37.                     # we don't check the status code as we can deal
  38.                     # with "old" messages which do not exist anymore
  39.                     # in the DB (would be a 404 then)
  40.         when env == "prod"
  41.             visit url('/admin/?entity=Comment&action=list')
  42.                 expect status_code() == 200
  43.                 set comment_ids css('table.table tbody tr').extract('data-id')
  44.             with id in comment_ids
  45.                 visit url('/admin/comment/review/' ~ id)
  46.                     # we don't check the status code as we scan all comments,
  47.                     # including the ones already reviewed
  48.         visit url('/fr/')
  49.             wait 5000
  50.         visit url('/fr/conference/amsterdam-2019')
  51.             expect body() matches "/Such a good conference/"

Download the Blackfire player to be able to run the scenario locally:

  1. $ curl -OLsS https://get.blackfire.io/blackfire-player.phar
  2. $ chmod +x blackfire-player.phar

Run this scenario in development:

  1. $ ./blackfire-player.phar run --endpoint=`symfony var:export SYMFONY_PROJECT_DEFAULT_ROUTE_URL` .blackfire.yaml --variable "webmail_url=`symfony var:export MAILER_WEB_URL 2>/dev/null`" --variable="env=dev"

Or in production:

  1. $ ./blackfire-player.phar run --endpoint=`symfony env:urls --first` .blackfire.yaml --variable "webmail_url=NONE" --variable="env=prod"

Blackfire scenarios can also trigger profiles for each request and run performance tests by adding the --blackfire flag.

Automating Performance Checks

Managing performance is not only about improving the performance of existing code, it is also about checking that no performance regressions are introduced.

The scenario written in the previous section can be run automatically in a Continuous Integration workflow or in production on a regular basis.

SymfonyCloud also allows to run the scenarios whenever you create a new branch or deploy to production to check the performance of the new code automatically.

Going Further

This work, including the code samples, is licensed under a Creative Commons BY-NC-SA 4.0 license.