Closed Bug 824695 Opened 13 years ago Closed 13 years ago

Fix bustage from requiring etags for packaged apps to keep the phone in a consistent state during download of a packaged app

Categories

(Core Graveyard :: DOM: Apps, defect)

Product:
Core Graveyard
Component:
DOM: Apps
Platform:
ARM
Gonk (Firefox OS)
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(blocking-basecamp:+, firefox19 fixed, firefox20 fixed, b2g18+ fixed)

Status:
RESOLVED FIXED
Milestone:
mozilla20
Project Flags:
blocking-basecamp +
Tracking Flags:
Tracking Status
firefox19 --- fixed
firefox20 --- fixed
b2g18 + fixed

People

(Reporter: jsmith, Assigned: julienw)

References

Details

(Whiteboard: [qa-])

Attachments

(1 file, 2 obsolete files)

patch v3
3.40 KB, patch
sicking
: review+
Details | Diff | Splinter Review
Build: 12/26/2012 B2G18 Device: Unagi Steps: 1. Go to https://marketplace-dev.allizom.org/app/test-webapi-permissions/ 2. Select to install the packaged app 3. Confirm installation Expected: The downloading app should start and complete successfully. Actual: The downloading starts, but eventually will get hung. Stopping and restarting the download will not fix the problem. Additionally, this also occurred when I tried a different packaged app at http://jds2501.github.com/webapi-permissions-tests/ in "Packaged App Test Case 2." Looks like packaged app installation is broken again :(. Error Console: 12-25 15:07:07.838: E/GeckoConsole(110): [JavaScript Error: "[Exception... "Component returned failure code: 0x80040111 (NS_ERROR_NOT_AVAILABLE) [nsIHttpChannel.getResponseHeader]" nsresult: "0x80040111 (NS_ERROR_NOT_AVAILABLE)" location: "JS frame :: resource://gre/modules/Webapps.jsm :: <TOP_LEVEL> :: line 1838" data: no]" {file: "resource://gre/modules/Webapps.jsm" line: 1838}]
blocking-basecamp: --- → ?
Blocks: market-packaged-apps
Keywords: regression
Keywords: smoketest
From bug 824710: The reporter there thinks that it happens only if the http server doesn't send an ETAG header.
The line which fails was introduced by Bug 820630.
(In reply to Matthias Versen (Matti) from comment #2) > From bug 824710: The reporter there thinks that it happens only if the http > server doesn't send an ETAG header. Confirming, it works as expected when the server sends etags headers.
Flags: needinfo?(fabrice)
Blocks: 820630
Is this something the marketplace needs to help with? We send etags with all installs afaik.
We discussed this during triage today and decided we'd like all marketplaces to send etag headers since we rely on them so much for update detection. Will this affect 3rd party marketplaces?
Status: NEW → RESOLVED
Closed: 13 years ago
Flags: needinfo?(fabrice)
Resolution: --- → WORKSFORME
blocking-basecamp: ? → ---
Keywords: dev-doc-needed
Disagrew with triage call. Will explain more when i am not typing this on my phone, but in short - this affects installation of a packaged app from anywhere. That requirement stated above sounds unwise. Reopening and renoming.
Status: RESOLVED → REOPENED
blocking-basecamp: --- → ?
Resolution: WORKSFORME → ---
Priority: -- → P4
Please do not touch the priority field on a component you do not own. Thanks.
Priority: P4 → --
When I am not in transit traveling (probably late tonight) I will provide a detailed writeup on my rationale.
I completely agree with Jason here. Please don't forget we're talking about open web apps here. The point of open web apps is that we don't need marketplaces any more (even if they're still useful of course). Please don't break the installation of 3rd party webapps. The Web works with or without ETag header, with or without Last-Modified header (BTW this is Bug 823648), the very point of Firefox OS is to leverage the Web, so please let's fix this bug.
(In reply to Jason Smith [:jsmith] from comment #8) > Please do not touch the priority field on a component you do not own. Thanks. I'm changing it in accordance with the decision in our meeting today.
Priority: -- → P4
Then i am voiding that decision, as you have not enough context yet to set a priority. And we only set priorities per how b2g triage works. So there is no meaning on your p4 setting.
Priority: P4 → --
One note while i am not at the computer - this bug reproduces on a 12/26 build with both a marketplace dev privileged app as shown in comment 0 and with a packaged app on a random website. So the current argument made by triage is incorrect anyways - the bug is reproducing on marketplace dev which does send etags.
Moreover, this bug leaves the phone is an inconsistent state because we don't get a normal downloaderror event from gecko. Let's wait until Fabrice returns and gives us a hint on whether this is easy to fix or not. I suspect the needed amount of energy is less than what we've already spent arguing.
Flags: needinfo?(fabrice)
Updating summary. As far as I can tell, we now "simply" require servers to support etags if they want to support packaged apps. We effectively required that previously too since our update mechanism was heavily relying on etags to detect when a package is updated. I do think that we should improve this in the future. Likely by using if-modified-since headers as well as possibly comparing contents of the minimanifest files (this is what the appcache does). But that's not something that should be a priority for v1. I don't think etags is a hard requirements for 3rd party app store servers to fulfill. However possibly this will be a bit of a pain for QA when doing tests for packaged apps since it means that you can only test packaged apps by running a server which supports etags.
Flags: needinfo?(fabrice)
Summary: Installation of packaged apps is broken again on 12/26/2012 build → Packaged app installation requires server to send etags
Jonas, Wil, I fully understand your reasoning. However, as it is now, the phone is left in an inconsistent state if it happens that a user wants to install a packaged app that happens to not send the ETag header. If you want to support only packaged apps with ETag (which is still wrong imho, but, well, that is a product decision), we need to properly catch this in gecko and send a proper downloaderror to gaia. Now, it's just broken. About the reasoning, I still feel something is wrong: the error happens after the download is finished. So let's say the user has downloaded a package of several MB, and now, we'll tell him that he can't install this package because the author doesn't send ETag. After he spent several potentially paid megabytes of his allowed download ratio. That's not acceptable imho. I'm in favor of requiring ETag for the manifest (mini for packages, normal for hosted) for v1, but here the bug happens for ETag on the archive. I'm not sure we should require ETag for archives. We should just use it if it's here, and that's ok.
Fixing title - see comment 13. This reproduces on marketplace dev which does send etags. So this bug isn't just about the etag req - its failing generally right now.
Summary: Packaged app installation requires server to send etags → Packaged app installation fails with and without etags sent by the server
Thanks for clarifying. This is definitely a blocker then. Sorry about the confusion.
blocking-basecamp: ? → +
Summary: Packaged app installation fails with and without etags sent by the server → Installation of packaged apps is broken again on 12/26/2012 build
Note that we *have* *to* require either etags or last-modified headers. Otherwise we can't detect when a package has been updated. The way things work right now is 1. Download the mini manifest 2. If the mini manifest hasn't changed, we assume that the app hasn't been updated 3. If the mini manifest has changed, we make a HEAD request to the app package to see if it has changed. If the app package neither supports etags or if-modifed-since then in step three we would have to assume that the app package was updated every time that the mini manifest was updated. This doesn't seem like a good solution and could easily result in users redownloading the same app package multiple times. This is really bad in countries where data connections are pricy, something that will be the case in many of our launch markets. This is especially bad since we've spent a lot of effort building a UI which puts the user in control of managing their expenses. It would be a very bad experience for users if we tell them that a new version of an app is available and then the user decides to spend money on downloading that new version, only to realize that it's still the same version. I agree that what we are building here is "of the web" and that we can't just think of the mozilla marketplace. My argument is that we should still prioritize users over developers and so "all" we are doing here is adding additional requirements on developers. Not breaking the model. Since we don't support if-modified-since yet, it would make sense to me to throw an error before showing the install dialog if the minimanifest doesn't send an etag. And raising a download error if the app package doesn't supply an etag. And then in v2 worry about adding support for if-modified-since and other mechanisms that can give developers more flexibility while still providing a good user experience. It's unclear to me though if doing those two things would fix the problem here or not.
Clarifying title so that we know what exactly we are blocking on. There's other implications of the etags I'll talk about more - but I'll take that to email.
Keywords: dev-doc-needed
Summary: Installation of packaged apps is broken again on 12/26/2012 build → Installation of packaged apps is broken again on 12/26/2012 build (using marketplace dev)
(In reply to Jason Smith [:jsmith] from comment #17) > Fixing title - see comment 13. This reproduces on marketplace dev which does > send etags. So this bug isn't just about the etag req - its failing > generally right now. Not so sure about that statement: ~ [ curl -I https://marketplace-dev.allizom.org/telefonica/downloads/file/181065/scriptalertall-your-base-ar-1.zip HTTP/1.1 200 OK Server: nginx X-Backend-Server: dev2.addons.phx1.mozilla.com Content-Type: application/zip Date: Fri, 28 Dec 2012 09:46:33 GMT Accept-Ranges: bytes Via: Moz-pp-zlb09 Connection: keep-alive Set-Cookie: lang="en-US\054"; Path=/ Set-Cookie: region=us; Path=/ Last-Modified: Wed, 12 Dec 2012 15:01:25 GMT Content-Length: 39712 The marketplace-dev *does* send etags for the manifest, but not the zip file, and looks like this is causing the issue.
Summary: Installation of packaged apps is broken again on 12/26/2012 build (using marketplace dev) → Installation of packaged apps is broken again on 12/26/2012 build, requires server to send etags for manifest and package file
Jonas> I fully agree with what you're explaining. However afaik now we don't do a HEAD request to get the headers of the package files before downloading it. I believe we should file another bug. Do you think we should use a HEAD request for the mini manifest as well ? As for the cause this bug, this is very simple. |getResponseHeader| throws an exception if the header is absent (see [1]). I'll try to come up with a patch soon. [1] https://mxr.mozilla.org/mozilla-central/source/netwerk/protocol/http/nsIHttpChannel.idl#191
Attached patch patch v1 (obsolete) — Splinter Review
This is untested, I think I won't be able to test before a few hours so feel free to take.
Yes, I do think we should make a HEAD request if the minimanifest has changed to make sure that there really is a new package available. Please file a bug on that (and ideally attach a patch :) )
(In reply to Etienne Segonzac (:etienne) from comment #21) > (In reply to Jason Smith [:jsmith] from comment #17) > > Fixing title - see comment 13. This reproduces on marketplace dev which does > > send etags. So this bug isn't just about the etag req - its failing > > generally right now. > > Not so sure about that statement: > > ~ [ curl -I > https://marketplace-dev.allizom.org/telefonica/downloads/file/181065/ > scriptalertall-your-base-ar-1.zip > HTTP/1.1 200 OK > Server: nginx > X-Backend-Server: dev2.addons.phx1.mozilla.com > Content-Type: application/zip > Date: Fri, 28 Dec 2012 09:46:33 GMT > Accept-Ranges: bytes > Via: Moz-pp-zlb09 > Connection: keep-alive > Set-Cookie: lang="en-US\054"; Path=/ > Set-Cookie: region=us; Path=/ > Last-Modified: Wed, 12 Dec 2012 15:01:25 GMT > Content-Length: 39712 > > > The marketplace-dev *does* send etags for the manifest, but not the zip > file, and looks like this is causing the issue. That sounds right. I can confirm this still doesn't work on a 12/28 build. So root cause of the problem here then is a marketplace problem. Since there's already a patch here I'll morph the bug to the patch's purpose. I'll file a new bug on marketplace about zip file etags.
bug 825209 tracks the root cause of the problem now. Morphing the bug to what I *think* this patch will eventually target. If we fail to find an etag, we should fail gracefully, and not spin infinitely in the download cycle till the end of time. Renoming due to the morph. My opinion - I'd at least track this, given the poor UX here and the fact that app developers could hit this. Don't know about blocking.
blocking-basecamp: + → ?
Summary: Installation of packaged apps is broken again on 12/26/2012 build, requires server to send etags for manifest and package file → When the packaged app zip file or mini-manifest fails to send etags, fail to download gracefully
Keywords: regression, smoketest
Summary: When the packaged app zip file or mini-manifest fails to send etags, fail to download gracefully → When the packaged app zip file or mini-manifest fails to send etags, fail to download gracefully during install
Josh - feel free to add your own input from a UX perspective on this problem
Flags: needinfo?(jcarpenter)
Whiteboard: [UX-P?]
In this bug, I want to fix the breakage due to a server not sending etag for the package. This is wrong because the phone is left in an unconsistent state. This does NOT happen with manifest because we use XHR to download them, and XHR doesn't throw. Will test my patch now.
Filed Bug 825218 about doing a HEAD request before GETting the package.
Gotcha. Updated title again to see if I get it right this time...
Summary: When the packaged app zip file or mini-manifest fails to send etags, fail to download gracefully during install → Fix bustage from requiring etags for packaged apps to keep the phone in a consistent state during download of a packaged app
Flags: needinfo?(jcarpenter)
Whiteboard: [UX-P?]
Filed bug 825223 about the etag for the mini-manifest.
Assignee: nobody → felash
Attached patch patch v2 (obsolete) — Splinter Review
This fixes also another bug with ETag support: the original code doesn't call correctly |setRequestHeader| so this would fail as soon as we try to download the file for an update... or the first time if the ETag was specified for preinstalled apps ! Don't know if Fabrice is the best reviewer as I think he's away now.
Attachment #696322 - Flags: review?(fabrice)
Attachment #696272 - Attachment is obsolete: true
Comment on attachment 696322 [details] [diff] [review] patch v2 I think Fabrice is out. Fernando might be a good backup reviewer.
Attachment #696322 - Flags: review?(fabrice) → review?(ferjmoreno)
Fernando is away as well ;)
Comment on attachment 696322 [details] [diff] [review] patch v2 Time for reviewer #3! I know Jonas is here. I think...
Attachment #696322 - Flags: review?(ferjmoreno) → review?(jonas)
If this is r+ please go ahead and check this in as I don't have committer access. Thanks
Comment on attachment 696322 [details] [diff] [review] patch v2 Review of attachment 696322 [details] [diff] [review]: ----------------------------------------------------------------- ::: dom/apps/src/Webapps.jsm @@ +1863,5 @@ > } > > // Save the new Etag for the package. > + try { > + app.packageEtag = requestChannel.getResponseHeader("Etag"); Does the casing matter? Viewing the headers from the server this is "ETag" and not "Etag".
This is case insensitive (see [1], and I've seen this work). Do you want that we use a lower-case string to make it more obvious ? [1] https://mxr.mozilla.org/mozilla-central/source/netwerk/protocol/http/nsIHttpChannel.idl#183
Comment on attachment 696322 [details] [diff] [review] patch v2 Review of attachment 696322 [details] [diff] [review]: ----------------------------------------------------------------- Please also put a call in onStartRequest which calls checks for an etag and calls channel->Cancel() if there isn't an etag available. r=me with that fixed. ::: dom/apps/src/Webapps.jsm @@ +1863,5 @@ > } > > // Save the new Etag for the package. > + try { > + app.packageEtag = requestChannel.getResponseHeader("Etag"); The case doesn't seem to matter.
Attachment #696322 - Flags: review?(jonas) → review+
This is a bad experience, but it's basically "just" error handling. Under normal circumstances users won't be noticing this problem. So minusing for v1 but tracking for v1.x
blocking-basecamp: ? → -
tracking-b2g18: --- → +
(In reply to Jonas Sicking (:sicking) from comment #39) > > Please also put a call in onStartRequest which calls checks for an etag and > calls channel->Cancel() if there isn't an etag available. > Sorry but I don't understand the point of this. Do you want to abort if we have no saved ETag in the app object ? I'm afraid this might break our dogfood users because until recently we didn't have a saved ETag.
(In reply to Jonas Sicking (:sicking) from comment #40) > This is a bad experience, but it's basically "just" error handling. Under > normal circumstances users won't be noticing this problem. So minusing for > v1 but tracking for v1.x As I said in the comment with the patch, it also fixes a lot more serious issue that would make an update fails as soon as we save an ETag, so I'm renominating. This is the first chunk in the patch, we're calling "setRequestHeader" with only 2 arguments whereas it requires 3 arguments, and this throws an exception.
blocking-basecamp: - → ?
(In reply to Jonas Sicking (:sicking) from comment #40) > This is a bad experience, but it's basically "just" error handling. Under > normal circumstances users won't be noticing this problem. So minusing for > v1 but tracking for v1.x Unlike bug 825223 where we're failing silently (which is less severe and I agree to track, not block) this one really produces nasty effects on the download experience. Past precedent in triage states that the developer experience for apps does indeed block to provide at least some indication of why something failed, so along with Julien's comments in comment 42, I tend to think this still blocks.
(In reply to Jason Smith [:jsmith] from comment #43) > (In reply to Jonas Sicking (:sicking) from comment #40) > > This is a bad experience, but it's basically "just" error handling. Under > > normal circumstances users won't be noticing this problem. So minusing for > > v1 but tracking for v1.x > > Unlike bug 825223 where we're failing silently (which is less severe and I > agree to track, not block) this one really produces nasty effects on the > download experience. > > Past precedent in triage states that the developer experience for apps does > indeed block to provide at least some indication of why something failed, so > along with Julien's comments in comment 42, I tend to think this still > blocks. See https://bugzilla.mozilla.org/show_bug.cgi?id=816448 that discussed this in thorough detail of why error handling for general development experiences actually does block.
Even without talking about the error handling, my comment states that there is an actual blocking behaviour for updates...
> As I said in the comment with the patch, it also fixes a lot more serious > issue that would make an update fails as soon as we save an ETag, so I'm > renominating. This is a blocker I agree. (In reply to Jason Smith [:jsmith] from comment #43) > Unlike bug 825223 where we're failing silently (which is less severe and I > agree to track, not block) this one really produces nasty effects on the > download experience. > > Past precedent in triage states that the developer experience for apps does > indeed block to provide at least some indication of why something failed, so > along with Julien's comments in comment 42, I tend to think this still > blocks. We are simply at the point where we no longer can block on these types of issues though. If this was the only problem in this bug then I would still mark it blocking-minus, sad as it is. We always have developer docs and FAQs to help developers with bug hunting. Not all developer-affecting bugs are equal. I agree that some of them are severe enough that they are blockers. But I don't think this one falls into that category. It only affects developers setting up app stores (or self-hosting packaged apps) and it only affects error reporting.
> > Please also put a call in onStartRequest which calls checks for an etag and > > calls channel->Cancel() if there isn't an etag available. > > > > Sorry but I don't understand the point of this. Do you want to abort if we > have no saved ETag in the app object ? I'm afraid this might break our > dogfood users because until recently we didn't have a saved ETag. The idea is to call channel->getResponseHeader("Etag"). If that throws, then call cancel() on the channel so that we fail early and we fail in a consistent state.
(In reply to Jonas Sicking (:sicking) from comment #47) > > > Please also put a call in onStartRequest which calls checks for an etag and > > > calls channel->Cancel() if there isn't an etag available. > > > > > > > Sorry but I don't understand the point of this. Do you want to abort if we > > have no saved ETag in the app object ? I'm afraid this might break our > > dogfood users because until recently we didn't have a saved ETag. > > The idea is to call channel->getResponseHeader("Etag"). If that throws, then > call cancel() on the channel so that we fail early and we fail in a > consistent state. Ok I'll try this ! Are you sure that we'll have received all the headers yet ?
Yes, that's the purpose of onStartRequest, it's called when we have all the metadata but before the actual request data starts coming in. In the case of HTTP, "metadata" means headers.
Thanks, this makes sense ! Then do we still need Bug 825218 ?
Yes. Fixing that will prevent the user from getting prompted about an update being available when in reality only the minimanifest has changed, but the actual application package has not.
However bug 825223 would be automatically fixed if we did that.
Attached patch patch v3Splinter Review
Jonas, I'd be more comfortable if you could review these changes. Also, please go ahead and check this in if this is ok ! Thanks :)
Attachment #696322 - Attachment is obsolete: true
Attachment #696480 - Flags: review?(jonas)
I take it this patch is fixing a bug I just saw doing an update of a packaged app, which will spin forever right now and never finish updating: 12-30 00:49:44.452: E/GeckoConsole(109): [JavaScript Error: "NS_ERROR_XPC_NOT_ENOUGH_ARGS: Not enough arguments [nsIHttpChannel.setRequestHeader]" {file: "resource://gre/modules/Webapps.jsm" line: 1735}]
Jason> yes it is ;) This is the part of the patch that I consider blocking.
Blocks: 825237
Checked in. Unfortunately I had a copy-paste error when adding your username to the patch so it looks like it was written by someone else :( https://hg.mozilla.org/integration/mozilla-inbound/rev/d73bfee4c495 In the future, it's great if you can use |hg export| when attaching patches for others to check in. That way your username and check-in comment gets attached to the patch.
jonas> fine, I wondered if hg had something like |git format-patch| :) thanks !
To whoever will check in to other trees, this need to go in aurora and b2g18 as well.
https://hg.mozilla.org/mozilla-central/rev/d73bfee4c495
Status: REOPENED → RESOLVED
Closed: 13 years ago13 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla20
Keywords: verifyme
QA Contact: jsmith
Depends on: 827772
Keywords: verifyme
Whiteboard: [qa-]
Blocks: app-install
No longer blocks: market-packaged-apps
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: