looks like you always give init_fill_time = true. Do we need the param in the first place?

No, in local rate limit network filter, init_fill_time = false. A test of local rate limit network filter will throw an exception for different time system if we initialize fill_time_ in LocalRateLimiterImpl for local rate limit network filter.

Do we know why this is the case? What is the implication of not initializing the fill time at ctor time?

Even though this is used for calculating the default per-route RateLimit_Reset which is new header field for HTTP only, I am interested to learn why it fails in network filter? This code seems not to be something HTTP filter specific?

Ok, it is a mistake, and I suppose it is because I was not not familiar about the time system in the test before.

There is a assert failure threw by the test shows there is an inconsistent time system. And today I find the problem is only in the test code, not in the source code.

But I cannot fix the test. There is a conflict between the MockDispatcher which uses the GlobalTimeSystem and the MockStreamInfo in MockReadFilterCallbacks which uses the SimulatedTimeSystem. Do you have some ideas?

There is already a TODO(#4160) in class GlobalTimeSystem: Switch default testSystem to SimulatedTimeSystem. I guess switching to that system might resolve the issue? I don't have the context on that TODO though.

If that is a lot of work to do or if that doesn't work, a quick workaround off top of my head (just for ideas not necessary to be the final solution): wrapping this line under if condition like below:

if (!descriptors.empty()) {
    tokens_.fill_time_ = time_source_.monotonicTime();
  }

This implicitly limits this code path to local descriptor override case which is only available in HTTP filter.
It is a bit hacky workaround :) but, IMO, it is still better than having bool flag in the interface all over the places.

Unfortunately, I do not think it might work. In fact, a HTTP filter should load time to fill_time_ while its descriptors are empty.

I Imagine we don't need to have optional here. Do you consider just avoiding push(abls::nullopt)?

We still need an optional here. In any request the filter is not enabled, we will not attach x-ratelimit-* headers.

How is this enum different than:

DRAFT_VERSION_03 here means the responding x-ratelimit-* headers are according to draft RFC version 03. I think we should keep its name. And do you think it is a good idea for us to extract XRateLimitHeadersRFCVersion in LocalRateLimit and RateLimit and relocate it in common/ratelimit/v3/ratelimit.proto?

I don't mind the name DRAFT_VERSION_03.

Yes, I do think it would be better to extract the enum to the extension's common ratelimit proto.

An API change has been committed, but the CI reports the change is non-backwards-compatible. Is this a issue that needs to be fixed?

The generated_api_shadow directory was removed in #18091.
Please remove this file

Ok, recent commits have been merged.

This should be deprecated.

Unfortunately this breaks backwards compatibility, and therefore the field must be deprecated and a new field with the new type should be introduced.

@htuch extracting the enum to a common place (see: api/envoy/extensions/common/ratelimit/v3/ratelimit.proto) is arguably the right way to go, but will cause some deprecation churn. Another option is to make the local_rate_limit proto use the enum directly from the (global) rate_limit proto. WDYT?

I think for the local rate limiting, put it in the common location and use it there. Either deprecate or eave a TODO to cleanup for global. I'm not super keen on API dependencies between extensions, since we're creating an unnecessary dependency in build/protos.

In my opinion, if we treat local rate limit and rate limit as two independent extensions (like if we can decouple envoy and extensions someday in the future), both local rate limit and rate limit should maintain their own enum values. But if we consider the local rate limit and rate limit are inseparable, extract common enum is a good choice.

My take on this is that similar to the original issue (#15293) that requested a local rate-limiting feature support similar to what the global rate-limiting does, then in the future they should be in-sync.
I think that adding the enum to the common proto (as you've already done) is a good thing, and to avoid changes to the global rate-limiting API (following @htuch suggestion), we should not deprecate this enum at this stage, but add a [#next-major-version: comment (see: example here).

We tend to favor longer names if it helps readability, but it's probably ok as is

nit: extra /

Thanks, I will fix it.

I don't think you need to include the quotes in there? You don't when you specify the other option

No, we cannot remove these quotes. We write YAML like

local_rate_limit_per_downstream_connection: false
enable_x_ratelimit_headers: "OFF"

, so we must keep these quotes.

I'm on the fence whether this should be deprecated while enable_x_ratelimit_headers isn't deprecated and a new alternative isn't introduced (that is, both should either be deprecated or not).
I guess that for now you can remove the deprecation, and add #next-major-version to your comment above.

So, we are going to unify the XRateLimitHeadersRFCVersion used by rate limit and local rate limit. I will change the deprecated to a #next-major-version.

Is there some expected bound to the result of ToInt64Seconds(...)? Could it overflow or cause issues with the cast to uint32_t?

I have changed the return type from uint32_t to int64_t in previous commits, so we do not need the cast anymore.