about summary refs log tree commit diff
path: root/users
diff options
context:
space:
mode:
authorFlorian Klink <flokli@flokli.de>2024-11-24T07·42+0200
committerclbot <clbot@tvl.fyi>2024-11-24T18·34+0000
commitae76eaa76133c089ad9b0779b4b3bd61a70c0d23 (patch)
treee9bff080a3b2ce275d4ebd623fab449edbf10b7c /users
parentf6aee3534b87f114a884065da82e3b4f36f8802e (diff)
feat(users/flokli/nixos-tvix-cache): re-enable http2 r/8962
With nar-bridge supporting zstd content-encoding, we don't need the
nginx zstd module and can re-enable http2.

We also need to propagate the Accept-Encoding sent by the client to
nar-bridge, so it actually knows it can send zstd.

This reduces the time measured in the microbenchmark from ~13s to this:

```
hyperfine 'rm -rf /tmp/cache; nix copy --from https://nixos.tvix.store/ --to "file:///tmp/cache?compression=none" /nix/store/jlkypcf54nrh4n6r0l62ryx93z752hb2-firefox-132.0'
Benchmark 1: rm -rf /tmp/cache; nix copy --from https://nixos.tvix.store/ --to "file:///tmp/cache?compression=none" /nix/store/jlkypcf54nrh4n6r0l62ryx93z752hb2-firefox-132.0
  Time (mean ± σ):      4.880 s ±  0.207 s    [User: 4.661 s, System: 2.377 s]
  Range (min … max):    4.700 s …  5.274 s    10 runs
```

Change-Id: Id092307423636163ae95ef87ec8fa558b83ce0bb
Reviewed-on: https://cl.tvl.fyi/c/depot/+/12835
Reviewed-by: Jörg Thalheim <joerg@thalheim.io>
Autosubmit: flokli <flokli@flokli.de>
Tested-by: BuildkiteCI
Reviewed-by: Ilan Joselevich <personal@ilanjoselevich.com>
Diffstat (limited to 'users')
-rw-r--r--users/flokli/nixos/nixos-tvix-cache/nar-bridge.nix25
1 files changed, 5 insertions, 20 deletions
diff --git a/users/flokli/nixos/nixos-tvix-cache/nar-bridge.nix b/users/flokli/nixos/nixos-tvix-cache/nar-bridge.nix
index e87189da2a89..f8aa8a7b42e6 100644
--- a/users/flokli/nixos/nixos-tvix-cache/nar-bridge.nix
+++ b/users/flokli/nixos/nixos-tvix-cache/nar-bridge.nix
@@ -4,25 +4,9 @@
 
   # Microbenchmark
   # hyperfine --warmup 1 'rm -rf /tmp/cache; nix copy --from https://nixos.tvix.store/ --to "file:///tmp/cache?compression=none" /nix/store/jlkypcf54nrh4n6r0l62ryx93z752hb2-firefox-132.0'
-  # From a different hetzner machine with 1Gbps uplink:
-  # - with zstd: 13.384s
-  # - with gzip: 11.130s
-  # - with brotli: ~18s
-  # - without compression: 15.6s
-
-  # From a 1Gbit link in TUM:
-  # - with zstd: 32.292s
-  # - with gzip: 51s
-  # - cache.nixos.org from the same connection: 36.559s
   services.nginx = {
-    package = pkgs.nginxStable.override {
-      modules = [ pkgs.nginxModules.zstd ];
-    };
+    package = pkgs.nginxStable;
     virtualHosts.${config.machine.domain} = {
-      # when using http2 we actually see worse throughput,
-      # because it only uses a single tcp connection,
-      # which pins nginx to a single core.
-      http2 = false;
       locations."=/" = {
         tryFiles = "$uri $uri/index.html =404";
         root = pkgs.runCommand "index"
@@ -42,6 +26,10 @@
             # nar bridge allows to upload nars via PUT
             deny all;
           }
+
+          # Propagate content-encoding to the backend
+          proxy_set_header Accept-Encoding $http_accept_encoding;
+
           # Enable proxy cache
           proxy_cache nar-bridge;
           proxy_cache_key "$scheme$proxy_host$request_uri";
@@ -49,9 +37,6 @@
           proxy_cache_valid 404 1m;  # Cache 404 responses for 1 minute
           proxy_cache_min_uses 2;  # Cache only if the object is requested at least twice
           proxy_cache_use_stale error timeout updating;
-
-          zstd on;
-          zstd_types application/x-nix-nar;
         '';
       };
     };