Page MenuHomePhabricator
Create Task
Maniphest T401198

More strictly validate X-Experiment-Enrollments-Header
Closed, DuplicatePublicBUG REPORT
Actions

Description

It was identified that...

In T396359#11045569, @dr0ptp4kt wrote:

...
It seems that experiments.js's getXExperimentEnrollments method may have a logic issue that, while guarding against bad headers, may not have the exact behavior that was intended.

If the X-Experiment-Enrollments header bears the value which doesn't match the regex (e.g., X-Experiment-Enrollments: boo), the regex may have no matches, and I believe thus experiments.js's getEnrolledExperiment may return an empty value, and then a HoistingError will be thrown instead of a MalformedHeaderError.
....

The expected behavior if encountering zero matches in the regex when the X-Experiment-Enrollments header is present shouldn't be to result in a HoistingError error, bur rather to throw a MalformedHeaderError error.

There may be other considerations, and I'll share them here, but I think we should opt for a simple approach here and just throw a MalformedHeaderError for this case and not overthink it. But, in the interest of other considerations for maintainability and defensive coding / smart graceful failures: this could require a little extra thought. On the one hand, we may want to allow through non-A/B test events if they're otherwise well-formed, because that would likely be a case of some misconfiguration independent of anything to do with the event (and that misconfiguration may really not be problematic). On the other hand, if the type of event is an A/B test event, then a malformed header is an error case that is "more" specious. On the other other hand we really don't want to be seeing this header badly behaved under any circumstance (other than us ourselves intentionally inducing it, the purpose of which is to make sure our handling is correct for this very special circumstance).

Related Objects

Event Timeline

dr0ptp4kt created this task.Aug 5 2025, 1:40 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 5 2025, 1:40 PM
Ottomata added a comment.Aug 5 2025, 1:59 PM

Also for consideration: T396359#11047999

the /v1/events API allows for POSTing an array of events, each of which could potentially be a for a different stream or schema.

So, the eventgate API will allow for POSTing batches of events. Some could be ExP events, others could be non ExP events. However, since the header is present via the HTTP request, and will be checked for each of these events, whatever logic is chosen here will impact if this happens.

I don't think any external clients (eventlogging? MP?) submit batches of events as arrays in a single request, but they could!

Ottomata edited projects, added Test Kitchen, Data-Engineering-Radar; removed Data-Engineering.Aug 6 2025, 4:10 PM

Groomed today, and we think this one could be handled by ExP. DE can help with review and deployment. TY!

phuedx mentioned this in T404352: Handle empty set regex parsing for MalformedHeaderError edge case.Sep 12 2025, 10:50 AM
dr0ptp4kt mentioned this in T396359: EventGate: Log unparseable X-Experiment-Enrollments headers to an error stream.Sep 15 2025, 11:29 PM
dr0ptp4kt merged a task: T404352: Handle empty set regex parsing for MalformedHeaderError edge case.
Ottomata moved this task from Backlog to Radar on the Event-Platform board.Sep 17 2025, 2:52 PM
Milimetric triaged this task as High priority.Sep 17 2025, 3:18 PM
Milimetric moved this task from Incoming to READY TO GROOM on the Test Kitchen board.
Milimetric added a project: Essential-Work.
dr0ptp4kt added a comment.Nov 11 2025, 7:13 PM

T409106: X-Experiment-Enrollments EventGate handling reinforcement for MalformedHeaderError cases is more prescriptive about improvement to current state handling and error logging. Now, we may want to think about more advanced handling as in the Description of this task later, too. I'll leave this here task open for consideration of how we may or may not want to allow graceful handling for message processing later on, although T409106 would be the next interim action.

Restricted Application added a project: Data-Engineering. · View Herald TranscriptJan 7 2026, 9:38 PM
Milimetric moved this task from Incoming (new tickets) to Tag with Radar on the Data-Engineering board.Jan 28 2026, 5:07 PM
Milimetric subscribed.

DE doesn't plan to work on this, but we'll discuss in our sync-up meeting

KReid-WMF closed this task as a duplicate of T409106: X-Experiment-Enrollments EventGate handling reinforcement for MalformedHeaderError cases.Feb 3 2026, 4:54 PM
KReid-WMF mentioned this in T409106: X-Experiment-Enrollments EventGate handling reinforcement for MalformedHeaderError cases.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits