Frank DENIS random thoughts.2012-05-11T08:53:03+02:00http://00f.netFrank Denis (Jedi/Sector One)On the distribution of DNS TTLs2012-05-10T00:00:00+02:00http://00f.net/2012/05/10/distribution-of-dns-ttls<p>I recently sampled 348,876,495 valid (actual records exist) A queries
processed by OpenDNS servers. This represents 6,263,672 unique names.</p>
<p>And I then made a simple app that dumps the initial TTL (as reported by
authoritative servers) for each of these unique names, in order to check
what the TTL distribution looks like. This data was then processed with R.</p>
<p><img src="/img/posts/ttl-distribution/1.png" alt="General overview" /></p>
<p>Well, the TTL distribution looks <em>very</em> unbalanced, to say the least.</p>
<p>Do a lot of people publish records with a TTL that is longer than 30
days?</p>
<p><img src="/img/posts/ttl-distribution/2.png" alt="More than 30 days" /></p>
<p>No, apparently, only a ridiculous amount of records happen to have a
TTL larger than 30 days.</p>
<p>It's fun to see insane TTLs like 68 years (bbs.oouc.cn, beechglen.com,
canadianangling.com, capitoltalk.com, durhambannerexchange.com,
elimport.co.il, epictn.org, glutathioneforhealth.com, greeley.ca,
gregsushinsky.com, ...), although these are probably configuration
errors.</p>
<p>Let's zoom into more reasonnable TTLs, that are 1 week or less.</p>
<p><img src="/img/posts/ttl-distribution/3.png" alt="7 days or less" /></p>
<p>Wow. Apparently, even TTLs longer than 1 day are very rare.
So let's shrink the window to TTLs that are no longer than 1 day.</p>
<p><img src="/img/posts/ttl-distribution/4.png" alt="1 day or less" /></p>
<p>A fair amount of records have been configured with a TTL that is
exactly 1 day, but the vast majority seems to be below 4 hours.</p>
<p>Let's zoom in.</p>
<p><img src="/img/posts/ttl-distribution/5.png" alt="8 hours or less" /></p>
<p>Ok, at this point, it's probably reasonnable to keep zooming in:</p>
<p><img src="/img/posts/ttl-distribution/6.png" alt="4 hours or less" /></p>
<p>or with 10 segments:
<img src="/img/posts/ttl-distribution/7.png" alt="4 hours or less - 10 segments" /></p>
<p>This is still a very unbalanced distribution. 4 hours TTLs are common,
1 hour TTLs are more common, but the vast majority seems to be below
15 minutes.</p>
<p>TTLs below 1 hour represent the hot spot, so let's zoom in:</p>
<p><img src="/img/posts/ttl-distribution/8.png" alt="1 hours or less" /></p>
<p>There's a fair amount of records with a 1 hour TTL, a high amount of
records with a TTL below or equal to 10 minutes, and pretty much
nothing in-between.</p>
<p>Let's see what TTLs below 10 minutes look like:</p>
<p><img src="/img/posts/ttl-distribution/9.png" alt="10 minutes or below" /></p>
<p>So, records within this interval are either below 5 minutes (with
peaks at 1 minute and 2 minutes), or 10 minutes.</p>
<p>In summary:</p>
<table summary="TTL distribution">
<tr><th>TTL = 0</th><td>0.16 %</td></tr>
<tr><th>TTL <= 1 minute</th><td>9.84 %</td></tr>
<tr><th>TTL <= 2 minutes</th><td>16.32 %</td></tr>
<tr><th>TTL <= 5 minutes</th><td>39.88 %</td></tr>
<tr><th>TTL <= 1 hour</th><td>70.07 %</td></tr>
<tr><th>TTL <= 1 day</th><td>98.89 %</td></tr>
</table>
<p>Looks like there are still ways to make the internet faster.</p>
Akamai vs public DNS servers2012-02-22T00:00:00+01:00http://00f.net/2012/02/22/akamai-vs-public-dns-servers<h1>How a CDN works</h1>
<p>"Downloads from Apple are excruciatingly slow".
"Don't use Google DNS or OpenDNS, or else iTunes will be slow"
"LOL, OpenDNS claims it makes the internet faster. Yeah, by telling
Akamai you are in the US and getting 200K/sec downloads in Oz…"</p>
<p>Fact: these claims are true.</p>
<p>Apple uses Akamai, a popular CDN. The whole point of a CDN is to make
your downloads faster: CDNs have servers at multiple locations, and
when you request some content, CDNs are supposed to serve it from the
closest (and hopefully fastest) location.</p>
<p>There are different ways to achieve this, but a very common one, that
Akamai also relies on, is to leverage the DNS system.</p>
<p>When your client wants to resolve www.apple.com, Akamai DNS servers
are going to give different replies according to the source IP
address.</p>
<p>But what source IP address? Yours? Not always. What Akamai consider is
actually the IP address of the DNS resolver hitting their servers.
If you're using a local resolver, that's cool. Akamai will know your
exact IP address, and hopefully redirect you to the closest server.</p>
<p>If you're using your ISP's resolver, this is the IP Akamai will consider
in order to pick the server that will process your query. The result
may be the same as if you had used a local resolver. Or not. If the
DNS resolver is on a different subnet, Akamai can get confused and you
can be redirected to a server that actually is way off base.</p>
<p>If you're using OpenDNS, Google DNS, Norton, Level 3, any other
public DNS service, or any other remote DNS resolver (for example,
through a VPN connection), Akamai will see the source IP address of
your remote resolver, too. Nor yours.</p>
<p>And the server they will redirect you to would probably be an
excellent choice if you were Google or OpenDNS. But the very same
server can be a very poor choice for you.</p>
<p>From the same origin, packets can take a totally different route in
order to reach Google, OpenDNS and Akamai. DNS queries sent to Google
or OpenDNS from Paris to Amsterdam can be super fast. But then,
downloads from Paris to an Akamai server in Amsterdam can be super
slow. Just because the routes can be totally different.</p>
<h1>What about other CDNs?</h1>
<p>How come this problem occurs with Akamai but not with other CDNs?</p>
<p>Some other major CDNs don't have this problem because instead of
considering the resolver IP address, they actually pay attention to
the actual client network, in order to pick the closest/fastest
server.</p>
<p>OpenDNS and Google DNS have been supporting the edns-client-subnet
extension for a long time. This mechanism was designed by Google
specifically to address this problem. And it works beautifully.
CDNs can send a redirection to the best server no matter what resolver
you use.</p>
<p>Unfortunately, Akamai still don't support this mechanism.</p>
<h1>Make an exception</h1>
<p>It's totally possible to use Google, OpenDNS or any other public DNS
service and still avoid being redirected to a slow server by Akamai.</p>
<p>Just make an exception.</p>
<p>If you happen to run OSX, your operating system already provides a way
to use specific DNS resolvers in order to resolve specific domains.</p>
<p>If you want queries to *.apple.com to go to your ISP's resolvers
instead of Google, OpenDNS, or any other default resolver, just create
a file named <code>/etc/resolver/apple.com</code> with the following content:</p>
<pre><code>nameserver a.b.c.d
nameserver e.f.g.h
</code></pre>
<p>Replace <code>a.b.c.d</code> and <code>e.f.g.h</code> with your ISP's resolvers. You can
have as many resolvers as you want, and as many exceptions as you
want. Just create files as needed. One per domain name.</p>
<p>If you're running another operating system, you should be running a
local DNS cache. The Windows DNS cache is a total joke and most
Unix-like systems don't provide any cache at all.</p>
<p>Running a cache like <a href="http://unbound.net">Unbound</a> is the best way to
reduce latency due to DNS queries, even if queries are forwarded to
Google or OpenDNS. In addition to caching queries, modern resolvers
have nice features like the ability to automatically prefetch records
before they expire. For CDNs and social networks using stupidily low
TTLs, it can really make a difference.</p>
<p>Once you are running a cache, and it has been configured to forward
queries to OpenDNS, Google, or anything else, you can configure
exceptions.</p>
<p>With Unbound, it's as simple as adding two lines to the configuration
file:</p>
<pre><code>forward-zone:
name: "apple.com"
forward-addr: a.b.c.d
forward-addr: e.f.g.h
</code></pre>
<p>The edns-client-subnet mechanism has been around for quite some time
now, so all modern CDNs are eventually going to support it, and
manually adding exceptions won't be required any more.</p>
<p>But as we speak, this is still required, at least for Akamai.</p>
<p>Fortunately, adding exceptions is easy. So you can totally work around
CDNs that don't support a DNS mechanism that was designed for them,
and still enjoy the benefits of fast and reliable DNS services in
order to access content served by other services.</p>
DNS records and TTL - how long does a second actually last?2011-11-17T00:00:00+01:00http://00f.net/2011/11/17/how-long-does-a-dns-ttl-last<p>In a DNS zone, every record carries its own time-to-live, so that it can
be cached, yet still changed if necessary.</p>
<p>This information is originally served by authoritative servers for the
related zone. The TTL is represented as an integer number of seconds.</p>
<p>At first sight, the mechanism looks straightforward: if the
<code>www.example.com</code> record has a TTL of 30, it's only valid up to 30
second, and caches must fetch it again if requested after this delay.</p>
<h1>Chained caches</h1>
<p>DNS caches can be chained: instead of directly querying authoritative
servers, a cache can forward queries to a another server, and cache
the result.</p>
<p>Having 3 or 4 chained caches is actually very common. Web browsers,
operating systems and routers can cache and forward DNS a query.
Eventually, this query will be sent to an upstream cache, like the ISP
cache or a third-party service like <em>OpenDNS</em>. And these caches can also
actually hide multiple chained caches.</p>
<p>In order to respect the original TTL, caches are modifying records as
they forward them to clients. The response to a query that has been
sitting in a cache for 10 second will be served with a TTL reduced by
10 second. That way, if the original TTL was 30 second, the whole
chain is guaranteed to consider this record as expired as the same
time: the original meaning of the TTL is retained no matter how many
resolvers there are in the way.</p>
<p>Well, not exactly. A TTL is just a time interval, not an absolute
date. Unlike a HTTP response, a DNS response doesn't contain any
timestamp. Thus, requests processing and network latency are causing
caches to keep a record longer than they actually should in order to
respect the initial TTL.</p>
<p>A TTL being an integer value makes things even worse: a chain of <strong>N</strong> caches
can introduce a <strong>N</strong> second bias.</p>
<p>In practice, this is rarely an issue: TTLs as served by authoritative
servers are considered indicative, and not as something to depend on
when accurate timing is required.</p>
<h1>The decay of a TTL, as seen by different pieces of software</h1>
<p>How does the TTL of a record served by a DNS cache decays over time?</p>
<p>Surprisingly, different implementations exhibit different behaviors.</p>
<p>For a record initially served with a TTL equal to <strong>N</strong> by authoritative
servers:</p>
<ul>
<li><em>Google DNS</em> serves it with a TTL in the interval <strong>[0, N-1]</strong></li>
<li><em>dnscache</em> is serving it with a TTL in the interval <strong>[0, N]</strong></li>
<li><em>Unbound</em> serves it with a TTL in the interval <strong>[0, N]</strong></li>
<li><em>Bind</em> serves it with a TTL in the interval <strong>[1, N]</strong></li>
<li><em>PowerDNS Recursor</em> always serves it with a TTL of <strong>N</strong></li>
</ul>
<p>Hold on... Does it mean that how frequently an entry will actually be
refreshed depends on what software resolvers are running?</p>
<p>Sadly, yes. Given a record with a TTL equal to <strong>N</strong>:</p>
<ul>
<li><em>Bind</em> and <em>PowerDNS Recursor</em> refresh it every <strong>N</strong> second if necessary</li>
<li><em>Unbound</em> and <em>dnscache</em> are only refreshing it every <strong>N + 1</strong> seconds at best.</li>
</ul>
<h1>TTL Zero</h1>
<p>Although <a href="http://mark.lindsey.name/2009/03/never-use-dns-ttl-of-zero-0.html">a TTL of zero can cause interoperability issues</a>,
most DNS caches are considering records with a TTL of zero as records
that should not be cached.</p>
<p>This perfectly makes sense when the TTL of zero is the original TTL, as served
by authoritative servers.</p>
<p>However, when a cache artificially changes the TTL to zero, it changes a record
that had been designed for being cached to an uncachable record that
contaminates the rest of the chain.</p>
<h1>dnscache and a 1 second record</h1>
<p>To illustrate this, a Linux box has been setup with a local DNS cache.
<em>Unbound</em> has been chosen, but the last component of the chain actually
makes little difference. Even web browsers caches have a very similar
behavior.</p>
<p>Queries are forwarded to an upstream cache on the same LAN, running
<em>dnscache</em>, and outgoing queries are recorded with ngrep. The same
query, whose response has a TTL of <strong>1</strong>, is made at a 10 queries per
second rate.</p>
<p>The <strong>X</strong> axis represents outgoing queries, whereas the <strong>Y</strong> axis is the time
elapsed since the previous query.</p>
<p><img src="/img/posts/ttl/unbound-djbdns-one.jpg" alt="One sec TTL with an upstream server running dnscache" /></p>
<p>Even though a TTL of <strong>1</strong> is served by authoritative servers for this
record, a large amount of responses are cached and served for <strong>2</strong>
second. This is due to the local <em>Unbound</em> resolver.</p>
<p>However, there is also quite a lot of responses that haven't been cached at
all. It happens when <em>dnscache</em> serves a response with a TTL of <strong>0</strong>. Since
it happens one third of the time, this is suboptimal and not on par
with the intent of the authoritate record, which is served with
non-zero TTL.</p>
<p>And although <em>dnscache</em> and <em>Unbound</em> are handling TTLs the same way, we
can't expect their caches to be perfectly synchronized. When the local
cache considers a record as expired and issues an outgoing query, the
upstream server can consider it as not expired yet, just in the middle
of the last second. What we get is a constant race between caches,
causing jitter and outgoing queries sent after 1 second.</p>
<h1>How different implementations can affect the number of outgoing queries</h1>
<p>The following experiment has been made by observing outgoing queries
when sending <strong>10,000 queries</strong> for a record with a TTL of <strong>2</strong>, at an average
10 qps rate, to a local cache, using <em>Google</em>, <em>OpenDNS</em> and
<em>Level 3</em> as upstream resolvers.</p>
<p>Here is the number of outgoing queries that were required to complete
the <strong>10,000 local queries</strong> using different services:</p>
<table>
<tr scope=column>
<th>Service</th>
<th>Outgoing queries</th>
</tr>
<tr>
<td>Google DNS</td>
<td>1383</td>
</tr>
<tr>
<td>OpenDNS</td>
<td>632</td>
</tr>
<tr>
<td>Level 3</td>
<td>388</td>
</tr>
</table>
<p><img src="/img/posts/ttl/unbound-remote.jpg" alt="Same queries, same local resolver, but using different upstream caches: Google DNS, _OpenDNS_ and Level 3" /></p>
<p>When using <em>Google DNS</em> (blue dots), queries are effectively never cached
more than <strong>2 second</strong>, even locally. This is due to the max TTL returned
by <em>Google DNS</em> being the initial TTL <strong>minus one</strong>.</p>
<p>When <em>Google DNS</em> returns a TTL of <strong>zero</strong>, we observe the same jitter and
the same slew of queries that couldn't be served from the local cache.</p>
<p><em>OpenDNS</em> (orange dots) has the same behavior as <em>dnscache</em> and <em>Unbound</em>.,
with TTLs in the <strong>[0, N]</strong> interval.
Our initial TTL with a value of <strong>2</strong> actually causes <strong>3, 2, and 1 second
delays</strong> between request, plus a sensitive amount of consecutive
outgoing queries due a null TTL.</p>
<p><em>Level 3</em> (green dots) is running <em>Bind</em>, which returns a TTL in the <strong>[1, N]</strong>
interval. <em>Bind</em> caches records <strong>one second less</strong> than <em>dnscache</em> and <em>Unbound</em>.
Because our local resolver is <em>Unbound</em>, queries received with
a TTL of <strong>N</strong> are actually cached <strong>N + 1</strong> second.
But as expected, the frequency of required outgoing queries very rarely
exceeds <strong>3 second</strong>.</p>
<p>What the correct behavior is, is out of scope of this article. All
major implementations are probably correct.</p>
<p>But from a user perspective, with only <strong>2</strong> caches in the chain, and for
a given record, the same set of queries can require <strong>up to 3.5 more
outgoing queries</strong> to get resolved, depending on what software the
remote cache is running.</p>
<p>With CDNs and popular web sites having records with a very low TTL
(Facebook has a 30 second TTL, Skyrock has a 10 second TTL), the way a
cache handles TTLs can have a sensible impact on performance. That
said, some resolvers can be configured to pre-fetch records before
they expire, effectively mitigating this problem.</p>
<p><strong>Update:</strong> <em>OpenDNS</em> resolvers now behave like Bind: TTLs are now
in the <strong>[1, N]</strong> interval.</p>
<h1>The OSX cache</h1>
<p><em>MacOS X</em> provides a system-wide name cache, which is enabled by default.</p>
<p>Its behavior is quite surprising, though. It seems to enforce a
<strong>minimum TTL of 12.5 seconds</strong>, while still requiring some outgoing
queries delayed by the initial TTL value, and some consecutive ones.
Resolving the <strong>10,000 queries</strong> from the previous test took only an average
of <strong>232 outgoing queries</strong>.</p>
<p>Using <em>Google DNS</em>, <em>OpenDNS</em> and <em>Level 3</em> as a remote resolver
produce the same result, with the exception on <em>Level 3</em> (<em>Bind</em>)
avoiding frequent (less than 1 sec) consecutive queries during the
time other return a TTL of zero.</p>
<p><img src="/img/posts/ttl/osx.jpg" alt="OSX built-in resolver" /></p>
Programmatically changing network configuration on OSX2011-08-14T00:00:00+02:00http://00f.net/2011/08/14/programmatically-changing-network-configuration-on-osx<p>Programmatically changing DNS resolvers, IP addresses and proxies on
OSX isn't rocket science but finding documentation on that is like
looking for a needle in a haystack.</p>
<p>Changing the DNS configuration could have been as simple as updating
<code>/etc/resolv.conf</code>, as OSX does provide an <code>/etc/resolv.conf</code> file. But
unlike every other Unix variant out there, OSX doesn't actually read
this file, as it is only there for compatibility with some legacy
tools.</p>
<h1>Meet configd</h1>
<blockquote><p>"The configd daemon is responsible for many configuration aspects of the
local system. configd maintains data reflecting the desired and current
state of the system, provides notifications to applications when this
data changes, and hosts a number of configuration agents in the form of
loadable bundles."</p></blockquote>
<p>Think about it as a centralized key/value registry. Applications can
watch for changes, add new key/value pairs and modify existing
entries.</p>
<p>The scutil(8) command provides a command-line interface to this registry:</p>
<pre>
$ scutil
> list
subKey [0] = Plugin:IPConfiguration
subKey [1] = Plugin:InterfaceNamer
subKey [2] = Setup:
subKey [3] = Setup:/
subKey [4] = Setup:/Network/BackToMyMac
subKey [5] = Setup:/Network/Global/IPv4
subKey [6] = Setup:/Network/HostNames
subKey [7] = Setup:/Network/Interface/en0/AirPort
subKey [8] = Setup:/Network/Service/0CE7A64C-9174-41AC-B634-41F4B6B5FE02
subKey [9] = Setup:/Network/Service/0CE7A64C-9174-41AC-B634-41F4B6B5FE02/IPv4
subKey [10] = Setup:/Network/Service/0CE7A64C-9174-41AC-B634-41F4B6B5FE02/IPv6
subKey [11] = Setup:/Network/Service/0CE7A64C-9174-41AC-B634-41F4B6B5FE02/Interface
subKey [12] = Setup:/Network/Service/0CE7A64C-9174-41AC-B634-41F4B6B5FE02/Proxies
...
subKey [32] = Setup:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E
subKey [33] = Setup:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/IPv4
subKey [34] = Setup:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/IPv6
subKey [35] = Setup:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/Interface
subKey [36] = Setup:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/Proxies
...
subKey [58] = Setup:/System
subKey [59] = State:/IOKit/LowBatteryWarning
subKey [60] = State:/IOKit/Power/CPUPower
subKey [61] = State:/IOKit/PowerAdapter
subKey [62] = State:/IOKit/PowerManagement/Assertions
subKey [63] = State:/IOKit/PowerManagement/CurrentSettings
subKey [64] = State:/IOKit/PowerManagement/SystemLoad
subKey [65] = State:/IOKit/PowerManagement/SystemLoad/Detailed
subKey [66] = State:/IOKit/PowerSources/InternalBattery-0
subKey [67] = State:/IOKit/SystemPowerCapabilities
subKey [68] = State:/Network/BackToMyMac
subKey [69] = State:/Network/Connectivity
subKey [70] = State:/Network/Global/DNS
subKey [71] = State:/Network/Global/IPv4
subKey [72] = State:/Network/Global/Proxies
subKey [73] = State:/Network/Interface
subKey [74] = State:/Network/Interface/en0/AirPort
subKey [75] = State:/Network/Interface/en0/CaptiveNetwork
subKey [76] = State:/Network/Interface/en0/IPv4
subKey [77] = State:/Network/Interface/en0/IPv6
subKey [78] = State:/Network/Interface/en0/Link
subKey [79] = State:/Network/Interface/lo0/IPv4
subKey [80] = State:/Network/Interface/lo0/IPv6
subKey [81] = State:/Network/Interface/p2p0/Link
subKey [82] = State:/Network/Interface/utun0/IPv6
subKey [83] = State:/Network/MulticastDNS
subKey [84] = State:/Network/NetBIOS
subKey [85] = State:/Network/PrivateDNS
subKey [86] = State:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/DHCP
subKey [87] = State:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/DNS
subKey [88] = State:/Network/Service/527FC752-8B1D-4111-A205-4E81F757704E/IPv4
subKey [89] = State:/Users/ConsoleUser
subKey [90] = com.apple.DirectoryService.NotifyTypeStandard:DirectoryNodeAdded
subKey [91] = com.apple.network.identification
subKey [92] = com.apple.opendirectoryd.node:/Search
> get State:/Network/Global/DNS
> d.show
<dictionary> {
ServerAddresses : <array> {
0 : 208.67.220.220
1 : 208.67.222.222
}
}
</pre>
<p>As we can see, the registry holds most of the network settings,
including DNS settings. The <code>Setup:/*</code> entries contain every available
network configuration (as configured in the preferences pane), whereas
<code>State:/*</code> entries include only what's currently active.</p>
<p>There are global DNS settings and configuration-specific DNS setings.</p>
<h1>Programmatically accessing the registry</h1>
<p>The overlooked <code>DynamicStore</code> API, which is part of the SystemConfiguration
framework, let us access the <code>configd</code> registry.</p>
<p>The following code snippet opens the registry, looks for active
DNS-related entries, and updates them with a new property list
containing OpenDNS resolvers.</p>
<div class="highlight"><pre><code class="c"><span class="cp">#include <SystemConfiguration/SystemConfiguration.h></span>
<span class="k">static</span> <span class="n">bool</span> <span class="nf">setDNS</span><span class="p">(</span><span class="n">CFStringRef</span> <span class="o">*</span><span class="n">resolvers</span><span class="p">,</span> <span class="n">CFIndex</span> <span class="n">resolvers_count</span><span class="p">)</span>
<span class="p">{</span>
<span class="n">SCDynamicStoreRef</span> <span class="n">ds</span> <span class="o">=</span> <span class="n">SCDynamicStoreCreate</span><span class="p">(</span><span class="nb">NULL</span><span class="p">,</span> <span class="n">CFSTR</span><span class="p">(</span><span class="s">"setDNS"</span><span class="p">),</span> <span class="nb">NULL</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>
<span class="n">CFArrayRef</span> <span class="n">array</span> <span class="o">=</span> <span class="n">CFArrayCreate</span><span class="p">(</span><span class="nb">NULL</span><span class="p">,</span> <span class="p">(</span><span class="k">const</span> <span class="kt">void</span> <span class="o">**</span><span class="p">)</span> <span class="n">resolvers</span><span class="p">,</span>
<span class="n">resolvers_count</span><span class="p">,</span> <span class="o">&</span><span class="n">kCFTypeArrayCallBacks</span><span class="p">);</span>
<span class="n">CFDictionaryRef</span> <span class="n">dict</span> <span class="o">=</span> <span class="n">CFDictionaryCreate</span><span class="p">(</span><span class="nb">NULL</span><span class="p">,</span>
<span class="p">(</span><span class="k">const</span> <span class="kt">void</span> <span class="o">**</span><span class="p">)</span> <span class="p">(</span><span class="n">CFStringRef</span> <span class="p">[])</span> <span class="p">{</span> <span class="n">CFSTR</span><span class="p">(</span><span class="s">"ServerAddresses"</span><span class="p">)</span> <span class="p">},</span>
<span class="p">(</span><span class="k">const</span> <span class="kt">void</span> <span class="o">**</span><span class="p">)</span> <span class="o">&</span><span class="n">array</span><span class="p">,</span> <span class="mi">1</span><span class="p">,</span> <span class="o">&</span><span class="n">kCFTypeDictionaryKeyCallBacks</span><span class="p">,</span>
<span class="o">&</span><span class="n">kCFTypeDictionaryValueCallBacks</span><span class="p">);</span>
<span class="n">CFArrayRef</span> <span class="n">list</span> <span class="o">=</span> <span class="n">SCDynamicStoreCopyKeyList</span><span class="p">(</span><span class="n">ds</span><span class="p">,</span>
<span class="n">CFSTR</span><span class="p">(</span><span class="s">"State:/Network/(Service/.+|Global)/DNS"</span><span class="p">));</span>
<span class="n">CFIndex</span> <span class="n">i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">,</span> <span class="n">j</span> <span class="o">=</span> <span class="n">CFArrayGetCount</span><span class="p">(</span><span class="n">list</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">j</span> <span class="o"><=</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">bool</span> <span class="n">ret</span> <span class="o">=</span> <span class="n">TRUE</span><span class="p">;</span>
<span class="k">while</span> <span class="p">(</span><span class="n">i</span> <span class="o"><</span> <span class="n">j</span><span class="p">)</span> <span class="p">{</span>
<span class="n">ret</span> <span class="o">&=</span> <span class="n">SCDynamicStoreSetValue</span><span class="p">(</span><span class="n">ds</span><span class="p">,</span> <span class="n">CFArrayGetValueAtIndex</span><span class="p">(</span><span class="n">list</span><span class="p">,</span> <span class="n">i</span><span class="p">),</span> <span class="n">dict</span><span class="p">);</span>
<span class="n">i</span><span class="o">++</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">return</span> <span class="n">ret</span><span class="p">;</span>
<span class="p">}</span>
<span class="kt">int</span> <span class="nf">main</span><span class="p">(</span><span class="kt">int</span> <span class="n">argc</span><span class="p">,</span> <span class="k">const</span> <span class="kt">char</span> <span class="o">*</span> <span class="n">argv</span><span class="p">[])</span>
<span class="p">{</span>
<span class="n">CFStringRef</span> <span class="n">resolvers</span><span class="p">[]</span> <span class="o">=</span> <span class="p">{</span>
<span class="n">CFSTR</span><span class="p">(</span><span class="s">"208.67.220.220"</span><span class="p">),</span>
<span class="n">CFSTR</span><span class="p">(</span><span class="s">"208.67.222.222"</span><span class="p">)</span>
<span class="p">};</span>
<span class="n">setDNS</span><span class="p">(</span><span class="n">resolvers</span><span class="p">,</span> <span class="p">(</span><span class="n">CFIndex</span><span class="p">)</span> <span class="p">(</span><span class="k">sizeof</span> <span class="n">resolvers</span> <span class="o">/</span> <span class="k">sizeof</span> <span class="n">resolvers</span><span class="p">[</span><span class="mi">0</span><span class="p">]));</span>
<span class="k">return</span> <span class="mi">0</span><span class="p">;</span>
<span class="p">}</span>
</code></pre>
</div>
<p>Of course, changing the registry requires root privileges, but that's
all it takes.</p>
<p>As new entries can be seamlessly created, you can use the registry for
centralizing configuration in your own apps, or just to save previous
entries before altering them.</p>
<h1>Changing network services</h1>
<p>The technique describe above works fine. But the new settings aren't
persistent. More often than once, this actually comes in handy, in
order to apply temporary settings and to rest assured that once the
user reboots his machine, network settings will always be back to a
sane state.</p>
<p>Tweaking the system configuration database is not recomended by Apple
because some daemons may not be aware of a configuration change.
In addition, you may want to permanently apply the new settings.</p>
<p>Another way to tackle this problem is to actually alter the network
services.</p>
<p>Under OSX, a network service is a configuration for a network interface.
To apply a change globally, we need to step over all network services,
check whether DNS (or whatever we want to change) is a support
protocol, and make the related changes.</p>
<p>This achieves the same thing as what one can do from the Network
preferences pane.</p>
<p>Almost.</p>
<p>After changing settings this way, you will notice that ths Network
preferences pane properly reflects them. However, some apps won't have
caught up with the changes. For example, the <code>/etc/resolv.conf</code> isn't
automatically updated.</p>
<p>The trick here is to open the system configuration registry as
described above, and then to close it without having done any actual
change. Just "touching" the registry will trigger observers like
<code>configd</code> so that they can do their own magic.</p>
<p>An empty DNS servers list or an empty IP/network address means that
DHCP will be used in order to retrieve this information.
But this doesn't happen automatically as the new settings are applied.
Explicitly renewing the DHCP lease is required, by calling
<code>SCNetworkInterfaceForceConfigurationRefresh()</code> on each interface.</p>
<div class="highlight"><pre><code class="objc"><span class="k">@implementation</span> <span class="nc">DNSGlobalSettings</span>
<span class="o">-</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="nl">DNSSupportForNetworkService:</span> <span class="p">(</span><span class="n">SCNetworkServiceRef</span><span class="p">)</span> <span class="n">networkService</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">SCNetworkServiceGetEnabled</span><span class="p">(</span><span class="n">networkService</span><span class="p">))</span> <span class="p">{</span>
<span class="k">return</span> <span class="n">NO</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">SCNetworkInterfaceRef</span> <span class="n">interface</span> <span class="o">=</span> <span class="n">SCNetworkServiceGetInterface</span><span class="p">(</span><span class="n">networkService</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">interface</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="n">NO</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">NSArray</span> <span class="o">*</span><span class="n">supportedProtocols</span> <span class="o">=</span> <span class="p">(</span><span class="n">__bridge_transfer</span> <span class="n">NSArray</span> <span class="o">*</span><span class="p">)</span> <span class="n">SCNetworkInterfaceGetSupportedProtocolTypes</span><span class="p">(</span><span class="n">interface</span><span class="p">);</span>
<span class="k">if</span> <span class="p">([</span><span class="n">supportedProtocols</span> <span class="nl">indexOfObject:</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">NSString</span> <span class="o">*</span><span class="p">)</span> <span class="n">kSCNetworkProtocolTypeDNS</span><span class="p">]</span> <span class="o">==</span> <span class="n">NSNotFound</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="n">NO</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">return</span> <span class="n">YES</span><span class="p">;</span>
<span class="p">}</span>
<span class="o">-</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="nl">setResolversTo:</span> <span class="p">(</span><span class="n">NSArray</span> <span class="o">*</span><span class="p">)</span> <span class="n">resolvers</span> <span class="nl">forNetworkService:</span> <span class="p">(</span><span class="n">SCNetworkServiceRef</span><span class="p">)</span> <span class="n">networkService</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">([</span><span class="n">self</span> <span class="nl">DNSSupportForNetworkService:</span> <span class="n">networkService</span><span class="p">]</span> <span class="o">==</span> <span class="n">NO</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="mi">0</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">SCNetworkProtocolRef</span> <span class="n">networkProtocol</span> <span class="o">=</span> <span class="n">SCNetworkServiceCopyProtocol</span><span class="p">(</span><span class="n">networkService</span><span class="p">,</span> <span class="n">kSCNetworkProtocolTypeDNS</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">networkProtocol</span> <span class="o">==</span> <span class="nb">nil</span> <span class="o">||</span> <span class="o">!</span> <span class="n">SCNetworkProtocolGetEnabled</span><span class="p">(</span><span class="n">networkProtocol</span><span class="p">))</span> <span class="p">{</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"disabled"</span><span class="p">);</span>
<span class="k">return</span> <span class="nb">FALSE</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="p">[</span><span class="n">resolvers</span> <span class="nl">isKindOfClass:</span> <span class="p">[</span><span class="n">NSArray</span> <span class="n">class</span><span class="p">]]</span> <span class="o">||</span> <span class="n">resolvers</span><span class="p">.</span><span class="n">count</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span>
<span class="n">resolvers</span> <span class="o">=</span> <span class="nb">nil</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="n">resolvers</span> <span class="o">==</span> <span class="nb">nil</span><span class="p">)</span> <span class="p">{</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"Setting this service's resolvers to DHCP"</span><span class="p">);</span>
<span class="p">}</span> <span class="k">else</span> <span class="p">{</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"Setting this service's resolvers to [%@]"</span><span class="p">,</span> <span class="n">resolvers</span><span class="p">);</span>
<span class="p">}</span>
<span class="n">NSDictionary</span> <span class="o">*</span><span class="n">DNSDict</span> <span class="o">=</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">NSDictionary</span> <span class="o">*</span><span class="p">)</span> <span class="n">SCNetworkProtocolGetConfiguration</span><span class="p">(</span><span class="n">networkProtocol</span><span class="p">);</span>
<span class="n">NSMutableDictionary</span> <span class="o">*</span><span class="n">newDNSDict</span><span class="p">;</span>
<span class="k">if</span> <span class="p">(</span><span class="n">DNSDict</span><span class="p">)</span> <span class="p">{</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"This interface had an existing configuration"</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">resolvers</span> <span class="o">==</span> <span class="nb">nil</span><span class="p">)</span> <span class="p">{</span>
<span class="n">SCNetworkProtocolRef</span> <span class="n">networkProtocol</span> <span class="o">=</span> <span class="n">SCNetworkServiceCopyProtocol</span><span class="p">(</span><span class="n">networkService</span><span class="p">,</span> <span class="n">kSCNetworkProtocolTypeDNS</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">networkProtocol</span> <span class="o">==</span> <span class="nb">nil</span> <span class="o">||</span> <span class="o">!</span> <span class="n">SCNetworkProtocolGetEnabled</span><span class="p">(</span><span class="n">networkProtocol</span><span class="p">))</span> <span class="p">{</span>
<span class="k">return</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"Removing protocol from configuration"</span><span class="p">);</span>
<span class="n">SCNetworkProtocolSetConfiguration</span><span class="p">(</span><span class="n">networkProtocol</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>
<span class="k">return</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">newDNSDict</span> <span class="o">=</span> <span class="p">[</span><span class="n">NSMutableDictionary</span> <span class="nl">dictionaryWithDictionary:</span> <span class="n">DNSDict</span><span class="p">];</span>
<span class="k">if</span> <span class="p">(</span><span class="n">resolvers</span> <span class="o">==</span> <span class="nb">nil</span><span class="p">)</span> <span class="p">{</span>
<span class="p">[</span><span class="n">newDNSDict</span> <span class="nl">removeObjectForKey:</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">NSString</span> <span class="o">*</span><span class="p">)</span> <span class="n">kSCPropNetDNSServerAddresses</span><span class="p">];</span>
<span class="p">}</span> <span class="k">else</span> <span class="p">{</span>
<span class="p">[</span><span class="n">newDNSDict</span> <span class="nl">setValue:</span> <span class="n">resolvers</span> <span class="nl">forKey:</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">NSString</span> <span class="o">*</span><span class="p">)</span> <span class="n">kSCPropNetDNSServerAddresses</span><span class="p">];</span>
<span class="p">}</span>
<span class="p">}</span> <span class="k">else</span> <span class="p">{</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"This interface had no existing configuration"</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">resolvers</span> <span class="o">==</span> <span class="nb">nil</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="p">}</span>
<span class="n">newDNSDict</span> <span class="o">=</span> <span class="p">[</span><span class="n">NSMutableDictionary</span> <span class="nl">dictionaryWithObject:</span> <span class="n">resolvers</span> <span class="nl">forKey:</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">NSString</span> <span class="o">*</span><span class="p">)</span> <span class="n">kSCPropNetDNSServerAddresses</span><span class="p">];</span>
<span class="p">}</span>
<span class="k">return</span> <span class="n">SCNetworkProtocolSetConfiguration</span><span class="p">(</span><span class="n">networkProtocol</span><span class="p">,</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">CFDictionaryRef</span><span class="p">)</span> <span class="n">newDNSDict</span><span class="p">);</span>
<span class="p">}</span>
<span class="o">-</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="n">touchDynamicStore</span>
<span class="p">{</span>
<span class="n">SCDynamicStoreRef</span> <span class="n">ds</span> <span class="o">=</span> <span class="n">SCDynamicStoreCreate</span><span class="p">(</span><span class="nb">NULL</span><span class="p">,</span> <span class="n">CFSTR</span><span class="p">(</span><span class="s">"myapp"</span><span class="p">),</span> <span class="nb">NULL</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>
<span class="n">CFRelease</span><span class="p">(</span><span class="n">ds</span><span class="p">);</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"DynamicStore updated"</span><span class="p">);</span>
<span class="k">return</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="p">}</span>
<span class="o">-</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="n">forceDHCPUpdate</span>
<span class="p">{</span>
<span class="n">NSLog</span><span class="p">(</span><span class="s">@"Forcing DHCP update"</span><span class="p">);</span>
<span class="n">NSArray</span> <span class="o">*</span><span class="n">interfaces</span> <span class="o">=</span> <span class="p">(</span><span class="n">__bridge_transfer</span> <span class="n">NSArray</span> <span class="o">*</span><span class="p">)</span> <span class="n">SCNetworkInterfaceCopyAll</span><span class="p">();</span>
<span class="k">for</span> <span class="p">(</span><span class="kt">id</span> <span class="n">interface_</span> <span class="k">in</span> <span class="n">interfaces</span><span class="p">)</span> <span class="p">{</span>
<span class="n">SCNetworkInterfaceRef</span> <span class="n">interface</span> <span class="o">=</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">SCNetworkInterfaceRef</span><span class="p">)</span> <span class="n">interface_</span><span class="p">;</span>
<span class="n">SCNetworkInterfaceForceConfigurationRefresh</span><span class="p">(</span><span class="n">interface</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">return</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="p">}</span>
<span class="o">-</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="nl">applyToNetworkServices:</span> <span class="p">(</span><span class="kt">BOOL</span> <span class="p">(</span><span class="o">^</span><span class="p">)(</span><span class="n">SCNetworkServiceRef</span> <span class="n">networkService</span><span class="p">))</span> <span class="n">cb</span> <span class="nl">andCommit:</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="n">commit</span>
<span class="p">{</span>
<span class="n">SCPreferencesRef</span> <span class="n">preferences</span> <span class="o">=</span> <span class="n">SCPreferencesCreate</span><span class="p">(</span><span class="nb">NULL</span><span class="p">,</span> <span class="n">CFSTR</span><span class="p">(</span><span class="s">"myapp"</span><span class="p">),</span> <span class="nb">NULL</span><span class="p">);</span>
<span class="n">SCPreferencesLock</span><span class="p">(</span><span class="n">preferences</span><span class="p">,</span> <span class="nb">TRUE</span><span class="p">);</span>
<span class="n">SCNetworkSetRef</span> <span class="n">networkSet</span> <span class="o">=</span> <span class="n">SCNetworkSetCopyCurrent</span><span class="p">(</span><span class="n">preferences</span><span class="p">);</span>
<span class="n">NSArray</span> <span class="o">*</span><span class="n">networkSetServices</span> <span class="o">=</span> <span class="p">(</span><span class="n">__bridge_transfer</span> <span class="n">NSArray</span> <span class="o">*</span><span class="p">)</span> <span class="n">SCNetworkSetCopyServices</span><span class="p">(</span><span class="n">networkSet</span><span class="p">);</span>
<span class="kt">BOOL</span> <span class="n">ret</span> <span class="o">=</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="k">for</span> <span class="p">(</span><span class="kt">id</span> <span class="n">networkService_</span> <span class="k">in</span> <span class="n">networkSetServices</span><span class="p">)</span> <span class="p">{</span>
<span class="n">SCNetworkServiceRef</span> <span class="n">networkService</span> <span class="o">=</span> <span class="p">(</span><span class="n">__bridge</span> <span class="n">SCNetworkServiceRef</span><span class="p">)</span> <span class="n">networkService_</span><span class="p">;</span>
<span class="n">ret</span> <span class="o">&=</span> <span class="n">cb</span><span class="p">(</span><span class="n">networkService</span><span class="p">);</span>
<span class="p">}</span>
<span class="n">SCPreferencesUnlock</span><span class="p">(</span><span class="n">preferences</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">commit</span><span class="p">)</span> <span class="p">{</span>
<span class="n">SCPreferencesCommitChanges</span><span class="p">(</span><span class="n">preferences</span><span class="p">);</span>
<span class="n">SCPreferencesApplyChanges</span><span class="p">(</span><span class="n">preferences</span><span class="p">);</span>
<span class="p">}</span>
<span class="n">CFRelease</span><span class="p">(</span><span class="n">networkSet</span><span class="p">);</span>
<span class="n">CFRelease</span><span class="p">(</span><span class="n">preferences</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="n">commit</span><span class="p">)</span> <span class="p">{</span>
<span class="p">[</span><span class="n">self</span> <span class="n">touchDynamicStore</span><span class="p">];</span>
<span class="p">}</span>
<span class="k">return</span> <span class="n">ret</span><span class="p">;</span>
<span class="p">}</span>
<span class="o">-</span> <span class="p">(</span><span class="kt">BOOL</span><span class="p">)</span> <span class="nl">setResolvers:</span> <span class="p">(</span><span class="n">NSArray</span> <span class="o">*</span><span class="p">)</span> <span class="n">resolvers</span>
<span class="p">{</span>
<span class="p">[</span><span class="n">self</span> <span class="nl">applyToNetworkServices:</span> <span class="o">^</span><span class="kt">BOOL</span><span class="p">(</span><span class="n">SCNetworkServiceRef</span> <span class="n">networkService</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="p">[</span><span class="n">self</span> <span class="nl">setResolversTo:</span> <span class="n">resolvers</span> <span class="nl">forNetworkService:</span> <span class="n">networkService</span><span class="p">];</span>
<span class="p">}</span> <span class="nl">andCommit:</span> <span class="n">YES</span><span class="p">];</span>
<span class="p">[[</span><span class="n">NSNotificationCenter</span> <span class="n">defaultCenter</span><span class="p">]</span> <span class="nl">postNotificationName:</span> <span class="s">@"CONFIGURATION_CHANGED"</span> <span class="nl">object:</span> <span class="n">self</span> <span class="nl">userInfo:</span> <span class="nb">nil</span><span class="p">];</span>
<span class="k">return</span> <span class="nb">TRUE</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">@end</span>
</code></pre>
</div>
Redis as a recommendation engine2011-03-10T00:00:00+01:00http://00f.net/2011/03/10/redis-as-a-recommendation-engine<p><em>"You might be interested in red toilet paper, because you bought blue
and green toilet paper, and people who also bought blue and green
toilet paper tend to also buy red toilet paper".</em></p>
<p>Recommendation engines are now everywhere, from e-commerce to social networks.</p>
<p>Graphs databases like Neo4j are probably the best way to tackle the
problem. But as an alternative, let's try building a recommendation
engine on Redis.</p>
<p>Who bought what or who is following who could be stored in Redis
sorted sets.</p>
<p>Let's take an example: a user buys A, and also B. We increment the
score of the B item in the sorted set associated to key A. And we
possibly also do it the other way round.</p>
<p>This is a trivial way to keep a list of what items have been bought,
what are the related items and how many of them there are.</p>
<p>On a social network, the score associated to a relationship may reflect the
level of trust.</p>
<p>Let's suppose we have the following relationships:</p>
<pre><code>B -> C
D -> C
E -> F
A -> B
A -> D
A -> E
</code></pre>
<p>C is referenced by B and D. B and D are referenced by A.
But C isn't referenced by A yet. This is presumably something to suggest.</p>
<p>F might also be a good candidate as a suggestion for A. However, since
there's only a single path from A to F (through E), it's probably less
relevant than C.</p>
<p>In order to limit the number of non-relevant results, we may want to
add a threshold: nodes that have less possible paths than a cutoff
value shouldn't be suggested.</p>
<p>How to do that with Redis, and only Redis?</p>
<p>Here's one possible way:</p>
<ul>
<li><p>Use ZUNIONSTORE in order to build a temporary aggregate of all
related items (scores are summed up), and remove the reference item
from the set (cylic links).</p></li>
<li><p>Remove everything from the aggregate that is already directly
related to the reference item.
One way to achieve this on a sorted set is to use ZUNIONSTORE
AGGREGATE MIN with a negative or null weight for the set we want to
delete, followed by ZREMRANGEBYSCORE in order to actually remove
everything from the reference set and everything below the cutoff
score.</p></li>
<li><p>Sort and optionally trim the new set with ZREVRANGE et voila!</p></li>
</ul>
<p>Maybe code speaks louder than words, so here we go for some code:</p>
<div class="highlight"><pre><code class="ruby"><span class="nb">require</span> <span class="s2">"redis"</span>
<span class="k">class</span> <span class="nc">Recommendation</span>
<span class="kp">attr_reader</span> <span class="ss">:db</span>
<span class="k">def</span> <span class="nf">initialize</span>
<span class="vi">@db</span> <span class="o">=</span> <span class="no">Redis</span><span class="o">.</span><span class="n">new</span>
<span class="k">end</span>
<span class="k">def</span> <span class="nf">bought</span><span class="p">(</span><span class="nb">id</span><span class="p">)</span>
<span class="no">Item</span><span class="o">.</span><span class="n">new</span><span class="p">(</span><span class="nb">self</span><span class="p">,</span> <span class="nb">id</span><span class="p">)</span>
<span class="k">end</span>
<span class="k">def</span> <span class="nf">suggestions_for</span><span class="p">(</span><span class="nb">id</span><span class="p">,</span> <span class="n">options</span> <span class="o">=</span> <span class="p">{</span> <span class="p">})</span>
<span class="no">Item</span><span class="o">.</span><span class="n">new</span><span class="p">(</span><span class="nb">self</span><span class="p">,</span> <span class="nb">id</span><span class="p">)</span><span class="o">.</span><span class="n">suggestions</span><span class="p">(</span><span class="n">options</span><span class="p">)</span>
<span class="k">end</span>
<span class="k">class</span> <span class="nc">Item</span>
<span class="k">def</span> <span class="nf">initialize</span><span class="p">(</span><span class="n">recommendation</span><span class="p">,</span> <span class="nb">id</span><span class="p">)</span>
<span class="vi">@db</span><span class="p">,</span> <span class="vi">@id</span> <span class="o">=</span> <span class="n">recommendation</span><span class="o">.</span><span class="n">db</span><span class="p">,</span> <span class="nb">id</span>
<span class="k">end</span>
<span class="k">def</span> <span class="nc">self</span><span class="o">.</span><span class="nf">key</span><span class="p">(</span><span class="nb">id</span><span class="p">)</span> <span class="s2">"{rec}:items:</span><span class="si">#{</span><span class="nb">id</span><span class="si">}</span><span class="s2">"</span> <span class="k">end</span>
<span class="k">def</span> <span class="nf">key</span><span class="p">()</span> <span class="no">Item</span><span class="o">.</span><span class="n">key</span><span class="p">(</span><span class="vi">@id</span><span class="p">)</span> <span class="k">end</span>
<span class="k">def</span> <span class="nf">tmp_key</span><span class="p">(</span><span class="n">n</span> <span class="o">=</span> <span class="mi">1</span><span class="p">)</span> <span class="s2">"{rec}:_tmp:</span><span class="si">#{</span><span class="vi">@id</span><span class="si">}</span><span class="s2">:</span><span class="si">#{</span><span class="n">n</span><span class="si">}</span><span class="s2">"</span> <span class="k">end</span>
<span class="k">def</span> <span class="nf">and_also_bought</span><span class="p">(</span><span class="n">linked_id</span><span class="p">,</span> <span class="n">weight</span> <span class="o">=</span> <span class="mi">1</span><span class="p">)</span>
<span class="vi">@db</span><span class="o">.</span><span class="n">zincrby</span><span class="p">(</span><span class="n">key</span><span class="p">,</span> <span class="n">weight</span><span class="p">,</span> <span class="n">linked_id</span><span class="p">)</span>
<span class="k">end</span>
<span class="k">def</span> <span class="nf">suggestions</span><span class="p">(</span><span class="n">options</span> <span class="o">=</span> <span class="p">{</span> <span class="p">})</span>
<span class="n">cutoff</span> <span class="o">=</span> <span class="n">options</span><span class="o">[</span><span class="ss">:cutoff</span><span class="o">]</span> <span class="o">||</span> <span class="mi">1</span>
<span class="n">limit</span> <span class="o">=</span> <span class="n">options</span><span class="o">[</span><span class="ss">:limit</span><span class="o">]</span> <span class="o">||</span> <span class="mi">50</span>
<span class="n">tmp</span><span class="p">,</span> <span class="n">tmp2</span> <span class="o">=</span> <span class="n">tmp_key</span><span class="p">,</span> <span class="n">tmp_key</span><span class="p">(</span><span class="mi">2</span><span class="p">)</span>
<span class="n">related_keys</span> <span class="o">=</span> <span class="vi">@db</span><span class="o">.</span><span class="n">sort</span><span class="p">(</span><span class="n">key</span><span class="p">)</span><span class="o">.</span><span class="n">collect</span> <span class="p">{</span> <span class="o">|</span><span class="n">item</span><span class="o">|</span> <span class="no">Item</span><span class="o">.</span><span class="n">key</span><span class="p">(</span><span class="n">item</span><span class="p">)</span> <span class="p">}</span>
<span class="k">return</span> <span class="o">[</span> <span class="o">]</span> <span class="k">unless</span> <span class="n">related_keys</span>
<span class="n">res</span> <span class="o">=</span> <span class="vi">@db</span><span class="o">.</span><span class="n">multi</span> <span class="k">do</span> <span class="o">|</span><span class="n">m</span><span class="o">|</span>
<span class="n">m</span><span class="o">.</span><span class="n">zunionstore</span><span class="p">(</span><span class="n">tmp</span><span class="p">,</span> <span class="n">related_keys</span><span class="p">,</span> <span class="ss">:aggregate</span> <span class="o">=></span> <span class="ss">:sum</span><span class="p">)</span>
<span class="n">m</span><span class="o">.</span><span class="n">zrem</span><span class="p">(</span><span class="n">tmp</span><span class="p">,</span> <span class="vi">@id</span><span class="p">)</span>
<span class="n">m</span><span class="o">.</span><span class="n">zunionstore</span><span class="p">(</span><span class="n">tmp2</span><span class="p">,</span> <span class="o">[</span> <span class="n">tmp</span><span class="p">,</span> <span class="n">key</span> <span class="o">]</span><span class="p">,</span> <span class="ss">:weights</span> <span class="o">=></span> <span class="o">[</span> <span class="mi">1</span><span class="p">,</span> <span class="o">-</span><span class="mi">1</span> <span class="o">]</span><span class="p">,</span>
<span class="ss">:aggregate</span> <span class="o">=></span> <span class="ss">:min</span><span class="p">)</span>
<span class="n">m</span><span class="o">.</span><span class="n">del</span><span class="p">(</span><span class="n">tmp</span><span class="p">)</span>
<span class="n">m</span><span class="o">.</span><span class="n">zremrangebyscore</span><span class="p">(</span><span class="n">tmp2</span><span class="p">,</span> <span class="s1">'-inf'</span><span class="p">,</span> <span class="n">cutoff</span><span class="p">)</span>
<span class="n">m</span><span class="o">.</span><span class="n">zrevrange</span><span class="p">(</span><span class="n">tmp2</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="n">limit</span> <span class="o">-</span> <span class="mi">1</span><span class="p">)</span>
<span class="n">m</span><span class="o">.</span><span class="n">del</span><span class="p">(</span><span class="n">tmp2</span><span class="p">)</span>
<span class="k">end</span>
<span class="n">res</span><span class="o">[</span><span class="mi">5</span><span class="o">]</span>
<span class="k">end</span>
<span class="k">end</span>
<span class="k">end</span>
<span class="c1"># Example</span>
<span class="n">r</span> <span class="o">=</span> <span class="no">Recommendation</span><span class="o">.</span><span class="n">new</span>
<span class="n">r</span><span class="o">.</span><span class="n">bought</span><span class="p">(</span><span class="s1">'b'</span><span class="p">)</span><span class="o">.</span><span class="n">and_also_bought</span><span class="p">(</span><span class="s1">'c'</span><span class="p">)</span>
<span class="n">r</span><span class="o">.</span><span class="n">bought</span><span class="p">(</span><span class="s1">'d'</span><span class="p">)</span><span class="o">.</span><span class="n">and_also_bought</span><span class="p">(</span><span class="s1">'c'</span><span class="p">)</span>
<span class="n">r</span><span class="o">.</span><span class="n">bought</span><span class="p">(</span><span class="s1">'e'</span><span class="p">)</span><span class="o">.</span><span class="n">and_also_bought</span><span class="p">(</span><span class="s1">'f'</span><span class="p">)</span>
<span class="n">r</span><span class="o">.</span><span class="n">bought</span><span class="p">(</span><span class="s1">'a'</span><span class="p">)</span><span class="o">.</span><span class="n">and_also_bought</span><span class="p">(</span><span class="s1">'b'</span><span class="p">)</span>
<span class="n">r</span><span class="o">.</span><span class="n">bought</span><span class="p">(</span><span class="s1">'a'</span><span class="p">)</span><span class="o">.</span><span class="n">and_also_bought</span><span class="p">(</span><span class="s1">'d'</span><span class="p">)</span>
<span class="n">r</span><span class="o">.</span><span class="n">bought</span><span class="p">(</span><span class="s1">'a'</span><span class="p">)</span><span class="o">.</span><span class="n">and_also_bought</span><span class="p">(</span><span class="s1">'e'</span><span class="p">)</span>
<span class="nb">puts</span> <span class="n">r</span><span class="o">.</span><span class="n">suggestions_for</span><span class="p">(</span><span class="s1">'a'</span><span class="p">)</span>
</code></pre>
</div>