Page MenuHomePhabricator
Create Task
Maniphest T151067

Implement rate limiter in Thumbor
Closed, ResolvedPublic
Actions

Revisions and Commits

rTHMBREXT Thumbor Plugins
Restricted Differential RevisionrTHMBREXT6cf4b802f799 Add PoolCounter support

Related Objects
Search...

Event Timeline

Gilles created this task.Nov 18 2016, 4:42 PM
Gilles added a comment.Nov 21 2016, 1:08 PM

The current rate-limiter in Mediawiki works per IP and per user. It honors XFF headers provided by Swift. It only applies to when an image needs to be rendered, not when it already exists in Swift. It uses a DC-local cache to share the limit counts between instances.

We could implement something similar in Thumbor, but only IP-based. We should probably also differentiate "expensive" thumbnails if possible.

Gilles edited parent tasks, added: T139606: add thumbor to production infrastructure; removed: T150745: Reimplement various rate-limiting mechanisms in Thumbor.Nov 23 2016, 12:08 PM
Gilles renamed this task from Implement rate limiter to Implement rate limiter in Thumbor.Nov 23 2016, 12:14 PM
fgiunchedi added a comment.Nov 23 2016, 8:35 PM

Sort-of related, see also T151444: Huge increase in cache_upload 404s due to buggy client-side code from graphiq.com for hot-linked urls that result in 404s with significant rate-per-second

Gilles moved this task from Inbox, needs triage to To-do: Goals prioritized current Quarter on the Performance-Team board.Nov 23 2016, 8:40 PM
elukey unsubscribed.Nov 24 2016, 11:31 AM
Gilles added a comment.Nov 24 2016, 6:15 PM

Yeah, I'm not sure that we rate-limit 404s actually. I'll make sure to do the right thing in Thumbor in regards to that.

Gilles edited parent tasks, added: T121388: Service-based thumbnailing re-architecture in production with Thumbor; removed: T139606: add thumbor to production infrastructure.Dec 6 2016, 2:32 PM
Gilles moved this task from To-do: Goals prioritized current Quarter to Backlog: Maintenance, non-prioritized on the Performance-Team board.Dec 7 2016, 5:21 PM
fgiunchedi mentioned this in T151851: Thumbor resource consumption is spiky.Dec 12 2016, 7:16 PM
Gilles added a comment.EditedDec 22 2016, 8:54 PM

I think we should be able to leverage PoolCounter for this. By locking on the IP address and leveraging PoolCounter's queue, PoolCounter would offer a very effective throttling mechanism for this. A given IP address would be allowed to generate N new thumbnails at once, and when one completes, its next request from the queue gets unlocked, etc. This allows proper throttling while still supporting legitimate traffic like opening a gallery page with hundreds of thumbnails.

Gilles moved this task from Backlog: Maintenance, non-prioritized to Doing (old) on the Performance-Team board.Jan 2 2017, 3:30 PM
Gilles added a comment.Jan 2 2017, 4:27 PM

Upstream PR: https://github.com/thumbor/thumbor/pull/847

Can be worked around by looking at X-Forwarded-For manually.

Gilles added a revision: Restricted Differential Revision.Jan 3 2017, 10:49 AM
Gilles moved this task from Doing (old) to Blocked (old) on the Performance-Team board.Jan 3 2017, 10:49 AM
Gilles added a commit: rTHMBREXT6cf4b802f799: Add PoolCounter support.Jan 6 2017, 12:10 PM
Gilles moved this task from Blocked (old) to Doing (old) on the Performance-Team board.Jan 6 2017, 12:36 PM
Gilles moved this task from Doing (old) to Blocked (old) on the Performance-Team board.Jan 9 2017, 10:14 AM
Gilles closed this task as Resolved.Feb 1 2017, 7:49 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL