expire: Force a cache MISS when req.ttl = 0s #4041
Conversation
Maybe this is for the best? What about this instead? unset req.ttl;
unset req.grace; |
|
My take: Integrate Dridis suggestion and update the docs, then it's a good improvement! |
|
A thought occurred to me, shouldn't we use |
|
The problem with this PR is that it does not do what the title says. In the event of a waiting list, and there is a queue of clients waiting for an object, a newly inserted object will be "fresh", even if the "waiting list clients" all have The question is if we should special case the situation |
|
I think it would be more accurate to say "consider all objects stale when req.ttl = 0s". Aren't we creating a perpetual waiter if the client disregards both TTL and grace? That is, when there is a busy object, the outcome will always be to disembark the request. So until the request wins the miss race, it will compete with other "req.ttl = req.grace = 0s" requests. This is waiting list serialization once again, except that we swapped beresp with req to trigger it. I can try combining this change with #4032 to check whether it would eventually be mitigated. |
We are not since we treat zero as the lack of TTL limit for the client. Let's revisit that specific point once |
Yeah, you are right, my comment does not add much, and I think we should simply go with the PR as it is now, with all the timestamp confusion which exist. |
|
Sorry, strike that, I still think we need a test case demonstrating how you can get a hit, even when the request set both |
|
If you, like me, were wondering why the test case provided does not return a grace hit, this is the reason: #2422. The object in cache is still fresh, and since we ignore req.ttl, we get no candidates for a grace hit. Whether this is the correct behavior is a subject for future discussion. |
| ctx->req->elem = val; \ | ||
| ctx->req->elem = val; \ | ||
| } | ||
|
|
||
| REQ_VAR_R(backend_hint, director_hint, VCL_BACKEND) | ||
|
|
||
| REQ_VAR_L(ttl, d_ttl, VCL_DURATION, if (!(arg>0.0)) arg = 0;) |
There was a problem hiding this comment.
do we still want to set negative arguments to zero? Could it be a better option to fail?
There was a problem hiding this comment.
IMO it's reasonable to expect that req.ttl can be set to a negative duration, we even do so in a test case:
Failing on a negative duration has a good chance of breaking existing VCL.
There was a problem hiding this comment.
That is a coverage test.
What are the semantics of a negative duration for req.ttl and req.grace?
There was a problem hiding this comment.
The same as beresp.ttl and beresp.grace:
varnish-cache/bin/varnishd/cache/cache_vrt_var.c
Lines 743 to 744 in e0b164f
There was a problem hiding this comment.
I understand that this "has always been like that", but also please remember that for quite some time, varnish had no way of properly failing at runtime (VRT_fail()).
The particular lines you are referring to are from 10 years ago and I am still wondering what a negative ttl/grace is supposed to mean. ttl: already expired before it even went into the cache? If those were the semantics, then we would not be allowed to take the respective objects as "just refreshed". grace: I would think a negative value should move an object into grace mode earlier than ttl.
So, as we come across these questions, we should answer them.
There was a problem hiding this comment.
I totally agree that "has always been like that" is a weak argument, but I personally prefer to limit breakage if I can. It's not obvious to me what a negative TTL/grace should mean, and I think that question is bigger than the scope of this PR.
There was a problem hiding this comment.
Let's try to cover this quickly during the next bugwash. I am also fine with continuing to ignore negative values, but I'd like to at least ask for opinions.
There was a problem hiding this comment.
I think the point here is to cap the TTL, and once we run out of TTL the object goes in grace mode if applicable, so once we run out of TTL req.grace applies.
This is why in my opinion req.ttl should only limit the ability to look up a fresh object, and that negative values that could be the result of some arithmetic expression should be bumped to zero.
There was a problem hiding this comment.
@dridi maybe I do not understand your answer, but why should we not fail immediately if an attempt is made to set any of the timers to a negative value?
There was a problem hiding this comment.
If you use an expression instead of a constant to compute the acceptable TTL limit and the result is negative, I think it would be too harsh to fail the transaction.
If your "clever" req.ttl formula can yield something negative, then negative should be considered as allowing no TTL, just like zero.
|
I force pushed for two reasons:
CCI alerted me to the fact that a VTC was failing due to a NAN being converted to string in the following line: Unless we want to convert NAN to some number when reading |
I think we should print NAN |
AlveElde
force-pushed
the
req-ttl-0s
branch
3 times, most recently
from
b433ea1 to
7309008
Compare
|
Sorry for the noise, ready for review |
| ctx->req->elem = val; \ | ||
| ctx->req->elem = val; \ | ||
| } | ||
|
|
||
| REQ_VAR_R(backend_hint, director_hint, VCL_BACKEND) | ||
|
|
||
| REQ_VAR_L(ttl, d_ttl, VCL_DURATION, if (!(arg>0.0)) arg = 0;) |
There was a problem hiding this comment.
I think the point here is to cap the TTL, and once we run out of TTL the object goes in grace mode if applicable, so once we run out of TTL req.grace applies.
This is why in my opinion req.ttl should only limit the ability to look up a fresh object, and that negative values that could be the result of some arithmetic expression should be bumped to zero.
doc/sphinx/reference/vcl_var.rst
Outdated
| During lookup the minimum of req.grace and the object's stored | ||
| grace value will be used as the object's grace. | ||
| grace value will be used as the object's grace. Setting req.grace | ||
| to 0s prevents hits on stale objects. |
There was a problem hiding this comment.
Maybe now would be a good time to document that negative values are swallowed.
doc/sphinx/reference/vcl_var.rst
Outdated
| Unsetable from: client | ||
|
|
||
| Upper limit on the object age for cache lookups to return hit. | ||
| Lookups always miss when req.ttl is set to 0s. |
There was a problem hiding this comment.
Maybe now would be a good time to document that negative values are swallowed.
There was a problem hiding this comment.
If. Or document that they are invalid and will trigger a failure.
bin/varnishd/cache/cache_expire.c
Outdated
| if (req != NULL && req->d_ttl >= 0. && req->d_ttl < r) | ||
| if (req != NULL && !isnan(req->d_ttl) && req->d_ttl < r) | ||
| r = req->d_ttl; |
bin/varnishd/cache/cache_expire.c
Outdated
| if (req != NULL && req->d_grace >= 0. && req->d_grace < g) | ||
| if (req != NULL && !isnan(req->d_grace) && req->d_grace < g) | ||
| g = req->d_grace; |
bin/varnishd/cache/cache_vrt.c
Outdated
| if (isnan(num)) | ||
| return (WS_Printf(ctx->ws, "NAN")); |
There was a problem hiding this comment.
Why allocate a static string from the workspace instead of returning a static string?
There was a problem hiding this comment.
how could my efficiency fetish miss this ;)
doc/sphinx/reference/vcl_var.rst
Outdated
| @@ -510,8 +512,10 @@ req.ttl | |||
|
|
|||
| Writable from: client | |||
|
|
|||
| Unsetable from: client | |||
There was a problem hiding this comment.
| Unsetable from: client | |
| Unsettable from: client |
|
I think I have addressed all review comments except @nigoroll's request to fail the transaction when either |
|
@nigoroll the sanitizer job is failing on a legit leak in the VDP stack unrelated to this change. |
|
Squashed ✔️ |
There was a problem hiding this comment.
I think this is a good change which represents a necessary and positive improvement of the code. The heading in the first commit might be slightly misleading (the waiting-list is an option, not only a miss), but I will leave it to the author do decide if this should be amended.
This commit changes the undefined behavior of setting req.ttl = 0s. Setting req.ttl = 0s would previously cause req.ttl to have no effect, but this breaks with setting req.grace = 0s, which does have an effect. The new behavior of setting req.ttl = 0s is similar to setting req.hash_always_miss = true, the main difference is that req.ttl allows for request coalescing. Useful for short-lived non-private objects. This aligns the behavior of setting req.ttl = 0s with req.grace = 0s.
req.ttl and req.grace are NAN when unset
|
@AlveElde @dridi pointed out that I pushed a change which created a merge conflict with this PR, and I am sorry for having done that unintentionally. I see no semantic conflict, though, whatever the value of "unset" is, we can have it with or without this PR. |
This commit changes the undefined behavior of setting req.ttl = 0s. Setting req.ttl = 0s would previously cause req.ttl to have no effect, but this breaks with setting req.grace = 0s, which does have an effect.
The use case is to achieve
hash_always_misssemantics but with coalescing (waitinglist) (edit @nigoroll during bugwash)The new behavior of setting req.ttl = 0s is similar to setting req.hash_always_miss = true, the main difference is that req.ttl allows for request coalescing. Useful for short-lived non-private objects.
I would like to define this behavior in the documentation somewhere, but didn't find a good place to put it.
Both req.ttl and req.grace are initialized to -1, which is why this change does not break everything. But setting req.ttl/grace to -1s in VCL ends up setting them to 0s, as these two req attributes have extra logic in their respective definitions:
varnish-cache/bin/varnishd/cache/cache_vrt_var.c
Lines 566 to 569 in 5f67d3a
Since this commit effectively prevents VCL writers from "clearing" req.ttl by setting it to 0s, maybe we should consider allowing users to clear req.ttl/grace by setting them to -1s?