Closed Bug 1273398 Opened 8 years ago Closed 8 years ago

Implement RequestBackoff for Safe Browsing v4

Categories

(Toolkit :: Safe Browsing, defect)

Product:
Toolkit
Component:
Safe Browsing
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla50
Tracking Flags:
Tracking Status
firefox50 --- fixed

People

(Reporter: hchang, Assigned: hchang)

References

Details

(Whiteboard: #sbv4-m0)

Attachments

(3 files, 2 obsolete files)

Part 1: Wrap to RequestBackoffV4
2.03 KB, patch
francois
: review+
Details | Diff | Splinter Review
Part 2: list manager to use RequestBackoffV4
3.18 KB, patch
francois
: review+
Details | Diff | Splinter Review
Part 3: Hashcompleter to use RequestBakcoffV4
3.10 KB, patch
francois
: review+
Details | Diff | Splinter Review 
The backoff on request failure for v4 is slightly different from v2. We need to implement RequestBackoff (in request-backoff.js) when v4 is enabled.
Assignee: nobody → hchang
Blocks: safebrowsingv4
(In reply to Henry Chang [:henry] from comment #0)
> The backoff on request failure for v4 is slightly different from v2. We need
> to implement RequestBackoff (in request-backoff.js) when v4 is enabled.

Is the backoff algorithm in V4 a lot different?

It might be useful to compare the backoff in V2 and V4 and summarize the differences. If they're not too different, we could ask Google whether they are OK with us using the V4 backoff in our V2 code too. That way we'd have only one backoff implementation.
Flags: needinfo?(hchang)
I digested the backoff spec in [1] and it seems they would be only different on the first error and the maximum waiting time:

       v2                 v4
----------------------------------
1    1 min             15~30 min
2    30~60  min        30~60 min
3    60~120 min        60~120 min
4    120~240 min       120~240 min
5    240~480 min       240~480 min
6    480 min           480~960 min 
7    480 min           960~1440 min
8    480 min           1440 min
9    ...               ...

I couldn't tell if they make a lot difference so maybe only google can answer this question. Do you know who is the googler that we used to contact? Thanks!

[1] https://docs.google.com/document/d/149TrX2FRMLgfchQJ-cTto6yLlPYlJVjF5QTDulERRTs/edit#
Flags: needinfo?(hchang) → needinfo?(francois)
The RequestBackoff can be seamlessly configured to v4 spec. See patch Part 2 in Bug 1264885. Probably we only need Bug 1264885.

[1] https://dxr.mozilla.org/mozilla-central/source/toolkit/components/url-classifier/content/request-backoff.js
Thanks for the table Henry, that's super helpful!

I've got a meeting with Google in a few days and I will ask if they're OK with us using the V4 backoff for V2 as well. I assume they will be fine with that because it will put even less load on their servers.

Sticking to a single backoff algorithm would have a few benefits:

- only one thing to test
- we can land it ahead of time on V2 and make sure it works before the switch to V4
- less moving parts in one of the most critical parts of the Safe Browsing code
Flags: needinfo?(francois)
Attached patch Part 1: listmanager v4 backoff (obsolete) — Splinter Review 

    
    

    
  

      
      
      
      

        Attached patch
          
          
        Part 2: hashcompleter v4 backoff (obsolete)
        — Splinter Review
      

    


  

    
  

        Attachment #8760147 -
        Flags: review?(francois)

    
  

        Attachment #8760148 -
        Flags: review?(francois)

    
    

    
  
We decided to use v4 backoff parameters for both v2 and v4 according to [1]. So, just made patches to change to v4 backoff settings for listmanager and hashcompleter.

[1] https://bugzilla.mozilla.org/show_bug.cgi?id=1264885#c6

    
    

    
  
Comment on attachment 8760148 [details] [diff] [review]
Part 2: hashcompleter v4 backoff

Review of attachment 8760148 [details] [diff] [review]:
-----------------------------------------------------------------

::: toolkit/components/url-classifier/nsUrlClassifierHashCompleter.js
@@ +196,5 @@
>        // after they are dispatched.
>        var jslib = Cc["@mozilla.org/url-classifier/jslib;1"]
>                    .getService().wrappedJSObject;
> +
> +      // We use v4 request backoff both v2 and v4. See listmanager.js

You could just say "See bug 1273398."

        Attachment #8760148 -
        Flags: review?(francois) → review+

    
    

    
  
Comment on attachment 8760147 [details] [diff] [review]
Part 1: listmanager v4 backoff

Review of attachment 8760147 [details] [diff] [review]:
-----------------------------------------------------------------

This approach works for me.

An alternative that might reduce code duplication would be to move the default parameters into RequestBackoff directly. That way we would only have one copy of the V4 backoff numbers and we could potentially add a test for it.

The test would look like the table you have in here, checking that the code matches what the spec says.

Anyways, up to you if you want to improve this code further or if you'd rather leave it the way it is.

::: toolkit/components/url-classifier/content/listmanager.js
@@ +114,5 @@
>    // Keep track of all of our update URLs.
>    if (!this.needsUpdate_[updateUrl]) {
>      this.needsUpdate_[updateUrl] = {};
> +
> +    // Following is the backoff table for v2 and v4, which shows the

Instead of documenting this decision here, we could also simply refer to the bug with "Using the V4 backoff algorithm for both V2 and V4. See bug 1273398."

        Attachment #8760147 -
        Flags: review?(francois) → review+

    
    

    
  


  

        Attachment #8760147 -
        Attachment is obsolete: true

        Attachment #8760148 -
        Attachment is obsolete: true

    
    

    
  
Thanks for review and the alternative approach is indeed much better. I've re-attached patches so could you have review again? I just created a wrapper (RequestBackoffV4) and it is to be used by listmanager and hashcompleter.

(In reply to François Marier [:francois] from comment #9)
> Comment on attachment 8760147 [details] [diff] [review]
> Part 1: listmanager v4 backoff
> 
> Review of attachment 8760147 [details] [diff] [review]:
> -----------------------------------------------------------------
> 
> This approach works for me.
> 
> An alternative that might reduce code duplication would be to move the
> default parameters into RequestBackoff directly. That way we would only have
> one copy of the V4 backoff numbers and we could potentially add a test for
> it.
> 
> The test would look like the table you have in here, checking that the code
> matches what the spec says.
> 
> Anyways, up to you if you want to improve this code further or if you'd
> rather leave it the way it is.
>

    
    

    
  
I think this is ready to land, but if you could do a manual test first that would be great because it's a pretty important part of the code.

    
    

    
  
The following is how I test the patches:

1) Modify 'browser.safebrowsing.provider.google.updateURL' to 'https://safebrowsing.google.com/safebrowsing-whatever', which would return 404 for whatever request we make.
2) Turn on 'browser.safebrowsing.debug'
3) Start firefox from scratch with the above changes applied.
4) See if 

"listmanager: 16:30:45 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;"

is printed with the expected timestamps.

(the log is printed by [1])

[1] https://dxr.mozilla.org/mozilla-central/rev/23dc78b7b57e9f91798ea44c242a04e112c37db0/toolkit/components/url-classifier/content/listmanager.js#409

    
    

    
  
listmanager: 15:07:44 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 15:35:25 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 16:30:45 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 18:21:27 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 22:02:50 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 05:25:36 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 20:11:09 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;
listmanager: 20:11:09 GMT+0800 (CST): makeUpdateRequestForEntry_: request goog-phish-shavar;

The retry interval is

~28 min
~55 min
~111 min
~221 min
~443 min
~886 min
~24 hr
~24 hr

Just exactly what we expect!

    
  
Keywords: checkin-needed

    
    

    
  
(In reply to Henry Chang [:henry][:hchang] from comment #16)
> Just exactly what we expect!

Good job!  :)

    
  
Whiteboard: #sbv4-m0

    
    

    
  
Pushed by cbook@mozilla.com:
https://hg.mozilla.org/integration/fx-team/rev/4f819766df6d
Part 1: Wrap RequestBackoff to a v4-specific one. r=francois.
https://hg.mozilla.org/integration/fx-team/rev/05c73c2ad630
Part 2: Modify listmanager to use RequestBackoffV4. r=francois.
https://hg.mozilla.org/integration/fx-team/rev/01a3b0eeee75
Part 3: Modify "hash completer" to use RequestBackoffV4. r=francois.
Keywords: checkin-needed

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: