Page MenuHomePhabricator
Create Task
Maniphest T117587

ResourceLoader should shorten cache max-age if version hash does not match
Closed, ResolvedPublic
Actions

Description

Due to race conditions such as T47877, ResourceLoader should validate the version hash computed by the client and respond with a short max-age if its own version discovered at run-time is different.

This way, during a deployment, we will avoid polluting cache indefinitely when a not-yet-updated server responds to a new url (provided to a client by an already-updated server).

It will need to reverse engineer how the loader client concatenates and combines the version hashes (e.g. sort sha1-base64 versions by module name, and run sha1-hex).

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
resourceloader: Don't cache stale responses in mw.loader.storemediawiki/coremaster+146 -42
resourceloader: Shorten cache expiry if 'version' query doesn't matchmediawiki/coremaster+45 -9
Customize query in gerrit

Related Objects
Search...

Event Timeline

Krinkle created this task.Nov 3 2015, 7:40 PM
Krinkle raised the priority of this task from to Medium.
Krinkle raised the priority of this task from Medium to Needs Triage.
Krinkle updated the task description. (Show Details)
Krinkle added projects: Performance-Team, MediaWiki-ResourceLoader.
Krinkle set Security to None.
Krinkle added subscribers: Aklapper, Krinkle, TrevorParscal and 3 others.
Restricted Application added a subscriber: StudiesWorld. · View Herald TranscriptNov 3 2015, 7:40 PM
ori moved this task from Inbox, needs triage to Backlog: Maintenance, non-prioritized on the Performance-Team board.Nov 9 2015, 7:52 PM
EBernhardson subscribed.Nov 18 2015, 6:14 PM
Krinkle triaged this task as High priority.Nov 19 2015, 10:06 PM
Krinkle moved this task from Inbox to Accepted Enhancement on the MediaWiki-ResourceLoader board.
Krinkle claimed this task.Dec 3 2015, 6:26 PM
Krinkle lowered the priority of this task from High to Medium.
Krinkle moved this task from Backlog: Maintenance, non-prioritized to To-do: Goals prioritized current Quarter on the Performance-Team board.Feb 23 2016, 7:35 PM
Krinkle removed Krinkle as the assignee of this task.Feb 23 2016, 7:47 PM
BBlack raised the priority of this task from Medium to High.Apr 27 2016, 10:25 PM
BBlack subscribed.

IMHO, we need a fix for this. The race condition does happen in the real-world with frequently-fetched ResourceLoader objects. Our only recourse after the race condition is to do a one-off ban in varnish of some complex regex-matched subset of RL URLs. This bit us today in T133765 , where 30-day-long cache objects had race-losing outputs.

The situation we're in today without this fix (or broader design fixes would be good, too, but at least this fix) is basically this:

  1. We hope we don't hit the race condition on random deploys
  2. If we do, we hope we notice (in this case, a ticket popped up something like 4 days later complaining about JS errors), but don't have any way to really verify it.
  3. When we notice it, we have to do a manual varnish ban, which doesn't scale and shouldn't be a routine operation.
AndyRussG subscribed.Apr 28 2016, 11:30 AM
AndyRussG mentioned this in T133971: CentralNotice: choiceData RL module hashes are flapping.Apr 29 2016, 4:00 AM
AndyRussG mentioned this in T134310: CentralNotice: don't fail hard if dynamic dependencies of ext.centralNotice.choiceData are incorrect.May 3 2016, 7:59 PM
AndyRussG mentioned this in T133765: mw.centralNotice CRASH on client side.May 4 2016, 1:58 AM
Krinkle claimed this task.Aug 8 2016, 8:55 PM
Krinkle moved this task from Accepted Enhancement to Assigned on the MediaWiki-ResourceLoader board.Aug 11 2016, 1:33 AM
Krinkle moved this task from To-do: Goals prioritized current Quarter to Doing (old) on the Performance-Team board.Sep 1 2016, 7:14 PM
gerritbot subscribed.Sep 2 2016, 10:59 PM

Change 308290 had a related patch set uploaded (by Krinkle):
resourceloader: Shorten cache expirty if 'version' query doesn't match

https://gerrit.wikimedia.org/r/308290

gerritbot added a project: Patch-For-Review.Sep 2 2016, 10:59 PM
gerritbot added a comment.Sep 2 2016, 11:56 PM

Change 308290 merged by jenkins-bot:
resourceloader: Shorten cache expiry if 'version' query doesn't match

https://gerrit.wikimedia.org/r/308290

ReleaseTaggerBot added projects: MW-1.28-release (WMF-deploy-2016-09-06_(1.28.0-wmf.18)), MW-1.28-release-notes.Sep 3 2016, 12:00 AM
Krinkle closed this task as Resolved.Sep 3 2016, 12:14 AM
Krinkle removed a project: Patch-For-Review.
Krinkle reopened this task as Open.Sep 6 2016, 7:55 PM

This still needs a solution for localStorage since Cache-Control only affects Varnish cache and the browser's HTTP cache.

When the client stores it in localStorage under the module name + version, there is no longer any ttl that applies. We should probably change the load.php response in some way that indicates client-side cache should be disabled or shortened. (I'm suggesting disabled since localStorage has no concept of ttl. And due to the way localStorage is implemented in browsers, it is rather hard to implement in a way that doesn't kill performance.)

gerritbot added a comment.Sep 12 2016, 8:52 PM

Change 310087 had a related patch set uploaded (by Krinkle):
[WIP] mw.loader.store: Don't cache stale module responses

https://gerrit.wikimedia.org/r/310087

gerritbot added a project: Patch-For-Review.Sep 12 2016, 8:52 PM
gerritbot added a comment.Oct 10 2016, 7:58 PM

Change 310087 merged by jenkins-bot:
resourceloader: Don't cache stale responses in mw.loader.store

https://gerrit.wikimedia.org/r/310087

ReleaseTaggerBot added a project: MW-1.28-release (WMF-deploy-2016-10-11_(1.28.0-wmf.22)).Oct 10 2016, 8:00 PM
Krinkle closed this task as Resolved.Oct 11 2016, 11:17 PM
Krinkle mentioned this in T188076: Versioned load.php url for long caching gets short-cached instead.Feb 23 2018, 8:37 AM
Krinkle mentioned this in T78369: Add tests for mw.loader.store.May 4 2018, 3:13 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits