Make negative caching configurable with error HTTP status codes

[nqyy]

This PR is a resurrection of #2031.
This will resolve the issue: #3211.

A new configurable variable is added to records.config: proxy.config.http.negative_caching_list.
It enables users to self-define status code for negative caching.

[SolidWallOfCode]

Why is this a std::vector? And why 10 as the base bitset size? Why not 32 or 64? But overall, the maximum possibly status code is 599, which makes std::bitset<600> a reasonable choice. Then you can do c.codeNegCache[HTTP_STATUS_NOT_FOUND] = true;.

[SolidWallOfCode]

P.S. "codeNegCache" is a bad name. "isNegativeStatus" might be better, for something like "if (isNegativeStatus[client.info->status]) { ...}`.

[nqyy]

I agree. I had some misunderstanding on the vector stuff.

[SolidWallOfCode]

Right, riffing on the previous comment, this becomes

if (params->isNegativeStatus[status]) {

[SolidWallOfCode]

Where is the configuration parsing? This needs to be able to be set from records.config.

[nqyy]

Updated. @SolidWallOfCode

[SolidWallOfCode]

You should use TextView here - it is as clean and avoids any memory allocation. Also, if the configuration is set, don't enable the defaults (because then it would be impossible to turn those off). Error checking and reporting is good too. In terms of hooking this up to the configuration file, take a look at the code in HttpConnectionCount.cc, around line 161.

  char *negative_status = nullptr;
  ts::TextView list(config_var);

  if (list.empty()) {
    // The responses with the following status code WILL BE cached by default with negative caching enabled.
    set[HTTP_STATUS_NO_CONTENT]            = true;
    set[HTTP_STATUS_USE_PROXY]             = true;
    set[HTTP_STATUS_FORBIDDEN]             = true;
    set[HTTP_STATUS_NOT_FOUND]             = true;
    set[HTTP_STATUS_METHOD_NOT_ALLOWED]    = true;
    set[HTTP_STATUS_REQUEST_URI_TOO_LONG]  = true;
    set[HTTP_STATUS_INTERNAL_SERVER_ERROR] = true;
    set[HTTP_STATUS_NOT_IMPLEMENTED]       = true;
    set[HTTP_STATUS_BAD_GATEWAY]           = true;
    set[HTTP_STATUS_SERVICE_UNAVAILABLE]   = true;
    set[HTTP_STATUS_GATEWAY_TIMEOUT]       = true;
  }

  auto is_sep { [](char c) { return isspace(c) || ',' == c || ';' == c; } };
  while (! list.ltrim_if(is_sep).empty()) {
    ts::TextView span, token { list.take_prefix_if(is_sep) };
    auto n = ts::svtoi(token, &span);
    if (span.size() != token.size()) {
      ink_fatal("Invalid status code '%.*s' for negative caching: not a number", static_cast<int>(token.size()), token.data());
    } else if (n <= 0 || n >= 600) {
      ink_fatal("Invalid status code '%.*s' for negative caching: out of range", static_cast<int>(token.size()), token.data());
    } else {
      set[n] = true;
    }
  }

[SolidWallOfCode]

Why is a std::string used here? Why not status_list(data.rec_string, strlen(data.rec_string));? The use of std::string in this way already requires a null terminate string.

[nqyy]

+1

[SolidWallOfCode]

Perhaps return update? Or assign to zret instead of ret or update. There's no comment indicating what exactly the return value of this function means so it's hard to be sure.

[SolidWallOfCode]

Suppose I want to configure negative caching to not include HTTP_STATUS_FORBIDDEN. How do I do that?

[nqyy]

In previous logic, they are there by default. Maybe, I can put them in the records.config default value but not here.

[SolidWallOfCode]

Yes, but in the previous logic they could not be configured at all. These should be used only if the incoming string is null or empty.

[nqyy]

I agree. I'll change this logic.

[SolidWallOfCode]

No - it's a policy goal to reduce the amount of things in this file. The defaults should be handled if needed in RecordsConfig.cc, as you've already done.

[nqyy]

But users need to put 204 305 403 404 405 414 500 501 502 503 504 in here on their own, and modify it if they want.

[SolidWallOfCode]

Well, if you want, you can allow a special token like "default" to mean "add all the default status codes". Therefore to add 301, it would be "default 301".

[SolidWallOfCode]

You need to either move is_sep and the ltrim_if up, or handle the possibility of an empty token if there are trailing separators. I'd favor the former - use while (!status_list.ltrim_if(is_sep).empty()) { and move the is_sep definition to just before the while.

[nqyy]

right

[SolidWallOfCode]

It would probably be faster to do

if ((set ^ c->negative_caching_list).any()) {
  c->negative_caching_list = set;
  ret = ret || update;
}

[nqyy]

Good idea.

[SolidWallOfCode]

I missed it the first time, but double checking there is an equality operator for bitset. I thought it was a bit odd to not have that.

[SolidWallOfCode]

I think you want to use s->http_config_params here - that is the HTTP configuration parameters acquired when the HttpSM was created (and which HttpTransact is a member). You can see other examples of this in HttpTransact methods.

[nqyy]

OK, I see. I was following the way that the original PR was constructed.

[SolidWallOfCode]

Is this called from anywhere else? Maybe it should be folded in to negative_caching_list_cb.

[nqyy]

negative_caching_list_cb is only called when reloading. set_negative_caching_list is called once in the first place.

[nqyy]

Good to go. @SolidWallOfCode

[SolidWallOfCode]

How much testing have you done with this?

[nqyy]

I did some basic "print out" tests of using both default value and configured values in records.config when running and reloading traffic server. @SolidWallOfCode

[mlibbey]

Worth trying the test from #3211?

$ traffic_ctl config get proxy.config.http.negative_caching_lifetime
proxy.config.http.negative_caching_lifetime: 10
$ for status in `seq 400 499`; do 
echo "####status code=$status####"; 
for retry in `seq 3`; do 
  result=$(curl -sD- -o/dev/null -x 127.0.0.1:80 "http://httpbin.org/status/$status" | egrep "(Age|X-Cache)"); 
  if [[ $retry < 3 ]]; then 
    sleep 6; 
  else if [[ "$result" == *"Age: 0"* ]]; then 
      echo "$status code works"; 
    else 
      echo "$status is cached too long"; 
    fi;
  fi; 
  done; 
done

(needs a remap like

map http://httpbin.org http://httpbin.org

[SolidWallOfCode]

An excellent idea. Make it so, Xavier.

[zwoop]

This does not cherry-pick cleanly to 8.0.x, if you would like this feature in 8.0.x, please make a PR against this branch.

[bryancall]

I also tried to cherry pick this change and it failed. There needs to be a new PR opened that is a backport to the 8.0.x tree. I am going to remove this PR from the 8.0.x project.

[bryancall]

The cherry pick conflict was minor, so I fixed it myself.