NH-24786 fix xtraceoptions response calc

[tammy-baylis-swi]

Updated Dec 8.

Summary of changes

1. Fixes bug where x-trace-options-response header was not being added to responses if x-trace-options request header was present but missing trigger-trace -- it should be added if any x-trace-options. Addressed in b75c652 with other commits for tests.
2. Fixes bug where xtrace_options_response was included in injected/outgoing tracestate request header -- it should only be used for stashing before calculation of x-trace-options-response response header. Addressed in 38e74ef.
3. Related refactor: W3CTransformer helper is now responsible for removing xtrace_options_response from tracestate, instead of Sampler (7b8a993).
4. Also: xtrace_options_response is an APM constant, instead of class method of W3CTransformer helper (ec3cf3a).
5. Add/update some unit tests and lots of integration tests (nearly all the other commits!)

[cheempz]

Almost there I think @tammy-baylis-swi! There is still one point of misunderstanding(?) about when the x-trace-options-response should be set, and I think it would be worth adding explicit checks of the injected response header itself rather than the indirect check of what's stashed in SpanContext.

[cheempz]

Very Nit: "header is still also propagated" might give the impression that we inject something into outbound calls. Might be clearer to says something like "valid x-trace-options is still handled and an x-trace-options-response header is injected into the response".

[tammy-baylis-swi]

This one addressed in c872217

[cheempz]

Hehe. Please don't go nuts, but this is why we all did go a bit crazy sussing out the TT logic edge cases. This is a case where if a valid x-trace-options header is given, we should set an x-trace-options-response response header... it's not talked about in the W3C spec but you can see an example in the Trigger Trace request/response matrix row 21 (note X-Trace-Options-Response: trigger-trace=not-requested).

[tammy-baylis-swi]

Ok right yes. So the src code fix for this is addressed in b75c652. The tests and docstrings/comments around them have been updated in several other commits. Let me know if anything still amiss!

[cheempz]

Nit: should also assert that response header has x-trace-options-response

[tammy-baylis-swi]

Addressed in e60aa96

[cheempz]

I think it's also worth checking the actual resp.headers for x-trace-options-response (maybe close to the x-trace response header check), because that would be the actual expected and customer visible behaviour as part of the TT feature.

It's a side benefit that you are able to check the response header "ingredients" are being stashed in the SpanContext, but it's an implementation detail and should not be used as the only verification that "yes, we're injecting the response header" :)

This applies to several of the subsequent tests.

[tammy-baylis-swi]

Great call! Added in e60aa96!

[tammy-baylis-swi]

Thanks @cheempz for spotting the issues! I've addressed them in commits as commented, and updated the PR description for clarity. As suggested in your absence I've also tagged @molafson on this PR for x-trace-options expertise!

Please have a look when you have a moment and let me know if you've spotted any other deviations from spec, unexpected values, or even docstrings/comments that might still be conflicting. 😃

[tammy-baylis-swi]

Invalid value cases 15,16 in Request/Response matrix should be fixed in 59bec51 so that ignored should no longer be in x-trace-options response header if bad auth! Thank you @molafson for pointing this out.

[molafson]

Looks good 👍 Lots of test cases!