caddytls: Cache 'ask' results to reduce load #5604
Conversation
|
This might not be needed after #5623. That patch doesn't cause the certificate cache to be purged of its managed certificates at config reloads, so there shouldn't be any point where the 'ask' endpoint is getting hammered with the same domain as it did recently. Once the cert is loaded, it stays loaded until a config is loaded that doesn't use it. And so it won't hit the 'ask' endpoint to try loading from storage. |
|
I agree this isn't really useful. It's not actively harmful, but not particularly useful. |
|
I do think though, that caching rejected domains might be useful to mitigate scrapers/bots/ddos from causing tons of |
|
Yeah, possibly. We should be careful about that if we do implement a strategy like this. I'll close this for now and see if there's really a need after #5623. |
Recently (2.7 beta) we made changes in CertMagic so that the 'ask' endpoint also guards access to the storage backend, as those can be rather expensive, and it doesn't make sense to even try loading a cert from storage if it's not even allowed to be managed.
However, now we have the potential of hammering the ask endpoint, which has been a new complaint in the beta.
Seeing as whether a certain domain is allowed or not doesn't change THAT often in practice, we cache the answer for an hour (could potentially be configurable later, if needed). The cache is a very simple map capped at 1000 entries with random (enough) eviction.