Page MenuHomePhabricator
Create Task
Maniphest T261340

'skip_first' feature flag for gdnsd GeoIP plugin
Closed, ResolvedPublic
Actions

Description

As part of T257527: automatically collect network error reports from users' browsers (Network Error Logging API), it'd be nice to have a way to serve a DNS record that was backed by an edge datacenter different than the "usual" datacenter for any given user. This is because if a user needs to send a Network Error report, it very likely means something is wrong with their route to the usual edge DC.

This isn't a strict requirement; browsers are supposed to buffer these reports and try again later in the event that sending them immediately fails. But it would help us receive reports in a more timely fashion, which would let us react and try to fix things.

It seems it's likely that a small patch can be made to add a skip_first flag at the resource level in gdnsd, which would save us defining and maintaining multiple flavors of country-to-datacenter maps in the dns repo.

An alternative approach might be to take an entire mapping and reverse it, but that's not as straightforward given the codebase.

Details

SubjectRepoBranchLines +/-
point intake-logging.wikimedia.org to text-next (second-best DC)operations/dnsmaster+2 -2
geo-resources: create text-next for NELoperations/dnsmaster+16 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

CDanis created this task.Aug 26 2020, 5:36 PM
Restricted Application added a project: SRE. · View Herald TranscriptAug 26 2020, 5:36 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
CDanis added a parent task: T257527: automatically collect network error reports from users' browsers (Network Error Logging API).Aug 26 2020, 5:36 PM
CDanis mentioned this in T257527: automatically collect network error reports from users' browsers (Network Error Logging API).
jijiki triaged this task as Medium priority.Aug 27 2020, 7:53 PM
CDanis added a comment.EditedSep 4 2020, 8:28 PM

I just had an alternate idea, which wouldn't require any change to gdnsd.

The Reporting API allows you to specify a whole group of endpoint URLs, successful delivery to any one of which will consider the report delivered to the whole group, but where failure to one endpoint within a group will retry on other endpoints*.

*: I think. At least to my quick reading, the spec doesn't cleanly differentiate between endpoints and endpoint groups in the key sections.

So as an alternative, we could export a per-datacenter domain name, and make them all part of that endpoint group. We could even do this in combination with providing the special skip_first geoDNS name -- that might help us catch certain kinds of failure scenarios. (But since when the skip_first name does work, it wouldn't require any retries, it would also get us faster delivery in most cases.)

BBlack added a comment.Sep 10 2020, 12:16 AM

This is implemented "upstream" in https://github.com/gdnsd/gdnsd/commit/b17bb0b073b4a9c6e2a65d2ddee2e5bc39f1b717 which is released with v3.3.0, so we're over halfway there. Now to figure out our local debian packaging issues with it again :)

Stashbot added a comment.Sep 10 2020, 4:04 PM

Mentioned in SAL (#wikimedia-operations) [2020-09-10T16:04:24Z] <bblack> reprepro: uploaded gdnsd-3.3.0-1~wmf1 - T261340

gerritbot added a comment.Sep 11 2020, 12:01 PM

Change 626656 had a related patch set uploaded (by BBlack; owner: BBlack):
[operations/dns@master] geo-resources: create text-next for NEL

https://gerrit.wikimedia.org/r/626656

gerritbot added a project: Patch-For-Review.Sep 11 2020, 12:01 PM
CDanis mentioned this in T226986: Client side error logging production launch.Sep 16 2020, 5:27 PM
jlinehan mentioned this in T263049: Avoid extra HTTPS connections for most Event Platform beacons.Sep 16 2020, 6:43 PM
gerritbot added a comment.Sep 21 2020, 8:35 PM

Change 628935 had a related patch set uploaded (by CDanis; owner: CDanis):
[operations/dns@master] point intake-logging.wikimedia.org to text-next (second-best DC)

https://gerrit.wikimedia.org/r/628935

gerritbot added a comment.Sep 22 2020, 11:22 AM

Change 626656 merged by BBlack:
[operations/dns@master] geo-resources: create text-next for NEL

https://gerrit.wikimedia.org/r/626656

gerritbot added a comment.Sep 22 2020, 1:18 PM

Change 628935 merged by CDanis:
[operations/dns@master] point intake-logging.wikimedia.org to text-next (second-best DC)

https://gerrit.wikimedia.org/r/628935

CDanis closed this task as Resolved.Sep 22 2020, 1:20 PM
CDanis claimed this task.

Deployed at 13:20 UTC. The original TTL of the intake-logging CNAME was 1 day, so it will take that long for all clients to migrate.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits