Description

In Varnish3, all outbound requests ultimately ran through vcl_deliver on their way out. With Varnish4, several classes of response do not pass through vcl_deliver and instead use vcl_synth as an alternative code path. Those classes include:

synthetic response from vcl_recv and/or vcl_hash
backend fetch failures
PURGE

We have a lot of code hooked into vcl_deliver, and much of it (but probably not all) should also be invoked for the vcl_synth path for non-PURGE requests, for things like X-Cache, X-Analytics, HSTS-setting, etc. It's a little bit complicated to untangle this, but we need to.

Details

	Project	Branch	Lines +/-	Subject
	operations/puppet	production	+67 -31	VCL: v4 deliver+synth refactoring

Customize query in gerrit

Related Objects
Search...

Status	Assigned	Task
		Restricted Task
Duplicate	None	T109331 Deleted files sometimes remain visible to non-privileged users if permanently linked
Duplicate	None	T133819 upload-lb.ulsfo.wikimedia.org still allow access to some deleted files
Open	None	T124286 [Epic] Wikidata language support
Open	None	T134592 Allow setting the UI to a language other than English for anonymous users
Duplicate	Nikerabbit	T149419 Interface language selection for unregistered users on Wikimedia projects
Invalid	None	T114662 RFC: Per-language URLs for multilingual wiki pages
Duplicate	BBlack	T119038 Image cache issue when 'over-writing' an image on commons
Stalled	None	T133821 Make CDN purges reliable
Open	None	T108580 HTTPS for internal service traffic
Open	None	T109325 Outbound HTTPS for varnish backend instances
Open	None	T122867 Evaluate the feasibility of cache invalidation for the action API
Resolved	ema	T122881 Install XKey vmod
Declined	None	T142841 Sideways Only-If-Cached on misses at a primary DC
Resolved	ema	T131499 Upgrade all cache clusters to Varnish 4
Resolved	BBlack	T135696 Sort out vcl_deliver vs vcl_synth mess with v4 VCL

Event Timeline

BBlack created this task.May 19 2016, 12:22 AM

Restricted Application added a subscriber: Zppix. · View Herald TranscriptMay 19 2016, 12:22 AM

Actually it doesn't turn out to be as messy as it seems at first. It's mostly the analytics, debugging, etc headers in common code that need invocation in vcl_synth, but nothing cluster-specific seems critical yet.

Change 289588 had a related patch set uploaded (by BBlack):
VCL: v4 deliver synth refactoring

https://gerrit.wikimedia.org/r/289588

gerritbot added a project: Patch-For-Review.May 19 2016, 2:45 AM

Change 289588 merged by BBlack:
VCL: v4 deliver synth refactoring

https://gerrit.wikimedia.org/r/289588

BBlack mentioned this in rOPUP5dfdb4e0a5cc: VCL: v4 deliver+synth refactoring.May 19 2016, 4:12 PM

BBlack closed this task as Resolved.May 31 2016, 9:30 PM

BBlack claimed this task.

BBlack mentioned this in rOPUPe8f1ac157ddc: VCL: v4 deliver+synth refactoring.Jun 17 2016, 6:08 PM

BBlack mentioned this in rOPUP914fcaf5b6dd: VCL: v4 deliver+synth refactoring.

BBlack mentioned this in rOPUP400213d2ef1c: VCL: v4 deliver+synth refactoring.