rgw/notification: Fix the caching issues of notification brokers, where the cache was not invalidated if topic attributes were changed

[kchheda3]

Fixes https://tracker.ceph.com/issues/66036

Checklist

• Tracker (select at least one)
  • References tracker ticket
  • Very recent bug; references commit where it was introduced
  • New feature (ticket optional)
  • Doc update (no ticket needed)
  • Code cleanup (no ticket needed)
• Component impact
  • Affects Dashboard, opened tracker ticket
  • Affects Orchestrator, opened tracker ticket
  • No impact that needs to be tracked
• Documentation (select at least one)
  • Updates relevant documentation
  • No doc update is appropriate
• Tests (select at least one)
  • Includes unit test(s)
  • Includes integration test(s)
  • Includes bug reproducer
  • No tests

Show available Jenkins commands

• jenkins retest this please
• jenkins test classic perf
• jenkins test crimson perf
• jenkins test signed
• jenkins test make check
• jenkins test make check arm64
• jenkins test submodules
• jenkins test dashboard
• jenkins test dashboard cephadm
• jenkins test api
• jenkins test docs
• jenkins render docs
• jenkins test ceph-volume all
• jenkins test ceph-volume tox
• jenkins test windows
• jenkins test rook e2e

[yuvalif]

nit: const RGWPubSubEndpoint* push_endpoint

[kchheda3]

done.

[yuvalif]

why passing a pointer to a unique_ptr?
you can just pass the bare pointer from the unique_ptr

[yuvalif]

or even better. since the caller ignore the return value from this function, you can return the unique_ptr.
you can return a unique_ptr initialized with nullptr in case of error

[kchheda3]

the caller does honor the return value, we do not process the entries if we cannot create the push_endpoint.
and i am passing the unique_ptr by ref and its created inside the function.
i do not want to verify based on whether the function returned nullptr

[yuvalif]

ok. so please pass by ref, not a pointer. IMO, pointer to a unique_ptr is too confusing.

[kchheda3]

remove the code to pass unique_ptr

[yuvalif]

this means that you stop processing of the queue. i think we should continue queue processing unless we lose ownership of queue is removed.
this will alllow users to fix conf errors

[kchheda3]

i mean how can we continue processing the queue (entries) as we were not able to create the endpoint.
since no entries are processed, we just exit from the function ?

[yuvalif]

if you exit from the function, nothing will reschedule the processing of the queue and the rgw will release ownership.
handling should be similar to the other error cases (="continue"), and wait for the problem to be resolved.
note that we will not be scheduling the coroutine too often in this case, with the timer we have in line 426.

[kchheda3]

done

[yuvalif]

why changing the amqp code?

[kchheda3]

coz amqp too faces same issue, if for some reason there is typo in the username and password, coz the connection is pooled, the new connection never uses the new userid and passwd

[yuvalif]

amqp code needs a major rewrite (there are several issues fixed for kafka that still exist in amqp).
also, we would need to test that.
would recommend splitting amqp work to another PR

[kchheda3]

i am afraid this will be forgotten while we refactor the amqp
since we are doing this for kafka, why not just do it for amqp as well, coz amqp also faces the same issue ? and its similar code changes so its logical to be part of same commit ?

[yuvalif]

agree that this is needed there. but there are many other (critical) fixes we did on the kafka code that are needed there as well.
main reason that i want it in a separate PR is testing.

[kchheda3]

done, removed amqp code.

[yuvalif]

please add tests for both fixes:

• for the notification caching fix, you can define an invalid kafka port or host on persistent notifications, and then modify the topic to the correct values
• fot the connection caching, you can define 2 topics pointing to the same kafka broker, one with the with-ssl and one without. ans define the with-ssl topic first.
  before your fix, all of the notifications to both topics would fail (as they share the same connection that tries to open a secure connection with the broker). after the fix, only notifications fro mthe first topics would fail, and the second topic should be successfull

[github-actions]

This pull request can no longer be automatically merged: a rebase is needed and changes have to be manually resolved

[yuvalif]

Suggested change

	str += "\nBroker: " + conn_id.broker;
	str += "\nBroker: " + to_string(conn_id);

[yuvalif]

please rebase and resolve conflicts only after: #57630
is merged (as it will prevent you from testing kafka code).

[kchheda3]

please rebase and resolve conflicts only after: #57630

is merged (as it will prevent you from testing kafka code).

Yes I was planning to take one final look at the #57630, and also do some local test again

[kchheda3]

please add tests for both fixes:

• for the notification caching fix, you can define an invalid kafka port or host on persistent notifications, and then modify the topic to the correct values
• fot the connection caching, you can define 2 topics pointing to the same kafka broker, one with the with-ssl and one without. ans define the with-ssl topic first.
  before your fix, all of the notifications to both topics would fail (as they share the same connection that tries to open a secure connection with the broker). after the fix, only notifications fro mthe first topics would fail, and the second topic should be successfull

added both test cases.
however FYI, both the test cases need the PR #57536 to be merged to run successfully

[kchheda3]

please rebase and resolve conflicts only after: #57630 is merged (as it will prevent you from testing kafka code).

rebased and updated the commits.