rptaylor
commented
8 years ago It doesn't do any harm to add default proxies at the end of the list. It would only result in nodes using the default if the shoal-provided ones aren't available, and that would be a good thing. The more proxies in the list, the more reliable CVMFS can be generally speaking.
I think the concept of using the default proxies as "something that should work and be available to use as a fallback even if Shoal totally breaks" is important. So for Shoal to check and potentially exclude those default proxies defeats the purpose completely: if there is a problem with Shoal (i.e. the test of the default proxies doesn't work correctly) then we will be left without any proxies at all. That's exactly what the default proxy list is supposed to avoid.
We should not be quite so worried about having bad proxies in the CVMFS_HTTP_PROXY list; the CVMFS client is meant to handle that and fail over. In this case I think we should be more worried about false negatives (good squids being accidentally excluded) than false positives (bad squids being accidentally included). The recent problem was a result of not having enough proxies in the list, caused by incorrect syntax, and testing if ports were open would not have addressed that.
colsond
This line: https://github.com/hep-gc/shoal/blob/master/shoal-client/shoal-client#L147
Shows that even after getting the nearest proxies from the shoal server (closest_http_proxy) it also adds default_http_proxy (defined as default_http_proxy = config.default_squid_proxy) to the cvmfs_http_proxy.
I feel like this isn't the behaviour we are looking for and could result in a lot of nodes using the config default. I'm going to look at fixing this along with #125 probably with a control flow as follows:
Colin and I discussed the merit of doing a basic test on the default proxys just for sanity checking in the logs. He suggested simply checking if the port was open.