Spec compliance: require a request body on POST /rooms/{roomId}/receipt/{receiptType}/{eventId}
#10534
Comments
reivilibre
added
the
Z-Future-Maintenance
clokep
added
the
A-Spec-Compliance
|
I'd like us to set a timescale for deprecation of this workaround while it's still fresh in our heads. |
erikjohnston
added
the
T-Task
|
Fixed in Element Android this week, will be in EA 1.2.1. Have asked for an estimate of user uptake so we can figure out a timeline and will report back once I know. I've also mentioned this anticipated change in the Matrix Client Developers room. |
|
General feeling is "the longer the better" for Android uptake, but at least 4-6 weeks. We should watch traffic on matrix.org to confirm. |
|
Thanks Dan. Let's revisit this at the end of October in the hope that we will feel comfortable fixing it then? |
yeah, especially considering F-Droid (the builds lag behind a bit and generally require manual updating). |
callahad
changed the title
POST /rooms/{roomId}/receipt/{receiptType}/{eventId}POST /rooms/{roomId}/receipt/{receiptType}/{eventId}
callahad
changed the title
POST /rooms/{roomId}/receipt/{receiptType}/{eventId}POST /rooms/{roomId}/receipt/{receiptType}/{eventId}
|
Let's check matrix.org stats for EA < 1.2.1, but otherwise target for the tail end of the Synapse 1.46 window (thus merging around 21st Oct to give us a few days before RC1) |
|
Checking stats this week |
|
Did a little bit of sleuthing and for users on matrix.org last Wednesday (2021-10-13), who had
I don't think we can unilaterally break that fraction of our Android users, but the known clients are known, so we could constrain the hack to only allow empty bodies from those specific clients. This will at least prevent the problem from getting worse. |
|
Specifically, we could limit the hack to only apply when the user agent starts with:
|
|
Question: Do we constrain the workaround per above, or do we wait even longer? The rate of decay is slow enough that I don't think we'll dip under 10% for many months. |
|
I'd be pretty reluctant to add user agent sniffing in to the workaround; it feels nasty to make the homeserver have to discriminate on user agent (and it's not particularly fair for e.g. forks of Element that we're not aware of, which may not be sending the same user agent). However, 15% of Android users is a substantial number of users to cut off (were you looking at the active sessions, daily visits or all the devices, ooi?). I would be unhappy doing so because it will just be one more thing that makes Matrix as a whole look buggy. |
I was specifically looking at the results of the following query: SELECT COUNT(*), user_agent
FROM user_daily_visits
WHERE timestamp >= extract(epoch from timestamp '2021-10-13')::bigint * 1000
AND timestamp < extract(epoch from timestamp '2021-10-14')::bigint * 1000
AND user_agent ILIKE '%android%'
AND user_agent NOT ILIKE 'Mozilla%'
GROUP BY user_agent
ORDER BY user_agent |
Agreed that a UA-specific hack is... a hack... but at least it stops new callers from accidentally adopting the incorrect behavior, so it at least ensures that the ecosystem does not regress.
I think it's fair enough. To the best of our knowledge (which includes actually breaking people in production), only Element Android and its forks have ever been subject to this particular misimplementation of the spec. From looking at all clients that advertised themselves as "android" on October 13th, limiting the hack to just old versions of Riot, Element Android, and SchildiChat would get us to a point where literally more than 99.9% of all Android clients we saw on matrix.org would explicitly be known to work. Basically, I'm willing to risk that long tail of fewer than 0.1% of android clients which we've not explicitly verified whether they comply with the spec or not. |
|
We'll implement the UA hack as a stopgap. |
|
Tracking the UA hack in #11156, punting this into the "look at it next year" bucket. |
|
Next step is to rip out the hack once we're comfortable with ecosystem adoption... Dan to pull numbers again. |
|
(Waiting until next week Wednesday just so we get a more representative sample of people coming back from holidays) |
|
FWIW #12168 is an update to the hidden read receipt logic which means we don't actually need a body there anymore. We could remove all the code that cares about the body or still move forward with this? |
|
It's not a big deal but I think we should still fix this; it's only fair to other homeserver implementations that we should enforce the spec a bit when we become aware of a deficiency. |
|
Android team are happy for us to drop the workaround patch now! |
erikjohnston
removed
the
Z-Future-Maintenance
In that case, next step is to strip out the user-agent specific logic added in #11157, and write a removal notice in the changelog. |
We currently don't require a body on
POST /rooms/{roomId}/receipt/{receiptType}/{eventId}.Initially, this seems to have been a mistake, but since #10531 [v1.40.0rc2], it's a workaround because Element Android relied on that behaviour (which we broke by actually using the body for hidden read receipts in #10413 [v1.40.0rc1]).
Blockers:
/rooms/{roomId}/receipt/{receiptType}/{eventId}element-hq/element-android#3789Minimum of four weeks following release. Revisit in October.
Eventually, we should return to enforcing the spec.
The text was updated successfully, but these errors were encountered: