Page MenuHomePhabricator
Create Task
Maniphest T110961

Error handling in Parsoid
Closed, ResolvedPublic
Actions

Description

Parsoid has this pattern to env.log('fatal', (or fatal/request to return a HTTP 500) when it enters a bad state (ie. catching a thrown error). I'm not too keen on it and would like to see errors returned to callers, rather than magically killing the process with the logger. We also ran into a bug on an old version of express where trying to write headers when content has already been sent gets into an infinite loop, which is why our api utils have all these responseSent flags. That happened when the logger sent a 500 midstream but then the async processing of the page finished and tried to send an (albeit undesirable) response.

I did some preliminary inspection of what it's going to take for a refactor.

  1. The token transformers need to emit errors and handle error events.

2) The serializer has all these cbs which aren't really callbacks, they are accumulators. We should extend that to accumulate errors as well (as the first arg). Then when the serialization is done, return both.

Related Objects
Search...

Event Timeline

Arlolra created this task.Aug 31 2015, 10:51 PM
Arlolra claimed this task.
Arlolra raised the priority of this task from to Medium.
Arlolra updated the task description. (Show Details)
Arlolra added a project: Parsoid.
Arlolra subscribed.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 31 2015, 10:51 PM
Arlolra added a project: Parsoid-Robustness.Aug 31 2015, 10:51 PM
Arlolra set Security to None.
Arlolra updated the task description. (Show Details)
Arlolra added a subscriber: ssastry.Aug 31 2015, 10:53 PM

@ssastry is -1 on me doing this until after vacation.

Arlolra updated the task description. (Show Details)Dec 10 2015, 11:25 PM
  1. The serializer has all these cbs which aren't really callbacks, they are accumulators. We should extend that to accumulate errors as well (as the first arg). Then when the serialization is done, return both.

Error handling in the serializer is much improved after T115720.

Arlolra added a comment.EditedDec 10 2015, 11:55 PM

See https://gerrit.wikimedia.org/r/#/c/257944/8/lib/wt2html/tt/LinkHandler.js

This is the async phase, right? So throwing here will likely return the correct http error to the client, but doesn't do anything to stop Parsoid from continuing to the parse.

We really need to improve error handling during wt2html, T110961.

This is why the cpu timeout doesn't always work. Sometimes the processing will yield enough for the request timeout to fire (and disable the cpu timeout) but that doesn't actually halt processing.

I think we determined a while back that the request timeout doesn't really do anything useful (because of the bad error handling in this phase) beyond masking the problem and getting in the way of the cputimeout (which is much harsher). Should we remove it entirely?

ssastry moved this task from Needs Triage to Next Up on the Parsoid board.Dec 17 2015, 5:45 PM
ssastry mentioned this in T121854: Parsoid emits "wt2html: Exceeded max resource use: wikitextSize. Aborting!" at emergency level.Dec 18 2015, 3:48 PM
Arlolra moved this task from Next Up to Needs Triage on the Parsoid board.Apr 8 2016, 5:28 PM
Arlolra added a parent task: T123446: Bring back the req. timeouts without cancelling the cpu timeout.Jul 19 2016, 8:43 PM
GWicke subscribed.EditedMar 23 2017, 10:38 PM

Another option worth considering is to use pure compute workers for the actual request processing:

  • Only run a small number of cluster workers handling HTTP requests.
  • Each cluster worker maintains a compute worker pool, and dispatches any actual parsing to those workers. Each compute worker processes only a single client request at a time.
  • Enforce memory and time limits on compute workers by killing them hard, and returning appropriate error HTTP responses from the cluster worker.

Ascii art:

service-runner master
  service-runner cluster worker
    parsoid compute worker
    parsoid compute worker
    ...
  service-runner cluster worker
    parsoid compute worker
    parsoid compute worker
    ....

To my knowledge, this is the most reliable way to limit CPU and memory resources per request, without affecting concurrent requests. An in-process alternative could be to use the VM module, but this only offers time limits, and will still break concurrent requests on OOM.

Arlolra added a comment.Mar 23 2017, 10:54 PM

Definitely worth considering. I think I was suggesting something similar in T90668#1951210

OCG's ascii art would be more like this though,

service-runner master
  service-runner cluster http worker
  service-runner cluster http worker
  ...
  service-runner cluster compute worker
  service-runner cluster compute worker
  service-runner cluster compute worker
  ...

with I guess more orchestration between workers (it's using Redis).

Your proposal seems simpler on the face of it, which is good.

Arlolra raised the priority of this task from Medium to Medium.Jun 15 2017, 10:01 PM
Arlolra added a comment.Dec 20 2017, 3:23 AM

https://gerrit.wikimedia.org/r/#/c/355861/ implements the architecture outlined in T110961#3127017

Arlolra closed this task as Resolved.Dec 20 2017, 3:25 AM

And for,

  1. The token transformers need to emit errors and handle error events.

that will be done instead in T183327 so I'll close in favour of finishing there.

Isnit001 subscribed.Apr 9 2019, 8:06 AM

This issue is referenced here: https://github.com/wikimedia/parsoid/blob/master/lib/api/routes.js#L152

The process.exit is causing issues in MWOffliner, do we have an estimate of timings?

ssastry added a comment.Apr 9 2019, 12:52 PM

@Isnit001, we may never get to some of these issues.

Parsoid is currently being ported to PHP and once that is verified correct and deployed, we will be retiring the JS version. But, there will be one more release of the Parsoid JS version later this year which is likely to be the last release of the JS version.

See https://www.mediawiki.org/wiki/Tech_talks#Episode_1:_The_long_and_winding_road_to_making_Parsoid_the_default_mediaWiki_parser for where Parsoid is headed.

The Parsoid API itself will not change, but it will no longer be an independent service as it is now. We should separately discuss what this means for Kiwix at some point in the coming months.

Arlolra added a comment.Apr 9 2019, 5:55 PM

See T123446#5098558

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL