Page MenuHomePhabricator
Create Task
Maniphest T150745

Reimplement various rate-limiting mechanisms in Thumbor
Closed, ResolvedPublic
Actions

Description

  • 429ing when a broken thumbnail is requested more than 4 times in 5 minutes (uses a DC-local cache)
  • Use PoolCounter for throttling normal and expensive thumbnails
  • Implement rate limiter to avoid a given IP DDOSing us with unique uncached requests

Related Objects
Search...

Event Timeline

Gilles created this task.Nov 15 2016, 11:47 AM
Gilles raised the priority of this task from Medium to High.Nov 15 2016, 12:31 PM
fgiunchedi added a comment.Nov 16 2016, 7:27 PM

I think it'd make sense to have similar rate-limit capabilities to avoid overload. Implementation-wise I'm not sure though, is pool counter reserved for mediawiki usage only?

Gilles added a comment.Nov 17 2016, 8:44 AM

Thumbor can probably talk to PoolCounter.

As for the failure counter, it's based on a cache, a DC-local memcache I presume. Thumbor could talk to that too.

Gilles moved this task from Inbox, needs triage to To-do: Goals prioritized current Quarter on the Performance-Team board.Nov 17 2016, 10:06 AM
Gilles moved this task from To-do: Goals prioritized current Quarter to Doing (old) on the Performance-Team board.
Gilles moved this task from Backlog to Doing on the Thumbor board.Nov 18 2016, 4:37 PM
Gilles added a subscriber: Krinkle.

@Krinkle reminded me of the (presumably per-IP) rate limiter for uncached thumbnails. I need to figure out at what level that's implemented.

Gilles renamed this task from Investigate whether we need a repeat failure guard and/or a poolcounter-like behavior in Thumbor to Reimplement various rate-limiting mechanisms in Thumbor.Nov 18 2016, 4:41 PM
Gilles closed this task as Resolved.
Gilles updated the task description. (Show Details)
Gilles created subtask T151065: Implement DC-local cache failure limiter in Thumbor.
Gilles created subtask T151066: Implement PoolCounter support in Thumbor.
Gilles created subtask T151067: Implement rate limiter in Thumbor.

Closing this parent task, the child tasks are enough.

Gilles removed a subtask: T151067: Implement rate limiter in Thumbor.Nov 23 2016, 12:08 PM
Gilles removed a subtask: T151066: Implement PoolCounter support in Thumbor.
Gilles removed a subtask: T151065: Implement DC-local cache failure limiter in Thumbor.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits