Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Setting default wait_time to 1 minute#2074

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Closed
bachsh wants to merge1 commit intopython-gitlab:mainfrombachsh:patch-1

Conversation

bachsh
Copy link

While debugging my code against gitlab.com (SaaS, not self-hosted) I realized that the SDK bombards the API with the same request.
I found out that for some reason, headers such asRetry-After are missing from the response so only the defaultwait_time is taken into account. This means that the SDK basically doesn't wait at all.

Since for Gitlab.com most rate limits are calculated per 1 minute, I think it's better to set the default timeout to that value in case rate limit headers are missing.

For Gitlab.com most rate limits are calculated per 1 minute. Better to set the default timeout to that value
@bachsh
Copy link
Author

In addition to that change, I think it makes sense to log (in DEBUG level) that a rate limit 429 has occurred, but IDK how the maintainers would like to add logging here, if at all. If anyone agrees with me on this I'd love to have guidance on how to add this logging.

@codecov-commenter
Copy link

Codecov Report

Merging#2074 (d637206) intomain (ca98d88) willnot change coverage.
The diff coverage is100.00%.

@@           Coverage Diff           @@##             main    #2074   +/-   ##=======================================  Coverage   94.64%   94.64%           =======================================  Files          78       78             Lines        5003     5003           =======================================  Hits         4735     4735             Misses        268      268
FlagCoverage Δ
cli_func_v482.45% <0.00%> (ø)
py_func_v481.03% <100.00%> (ø)
unit85.60% <100.00%> (ø)

Flags with carried forward coverage won't be shown.Click here to find out more.

Impacted FilesCoverage Δ
gitlab/client.py98.67% <100.00%> (ø)

@nejch
Copy link
Member

Hi@bachsh thanks for looking into this! We've already had some discussion on how gitlab.com behaves - see#1889.

I'm not sure we can merge your change as is, this happens in a while loop and would make some of the other code dead, and it's quite aggressive with the wait. I'd have a few questions first:

  1. is there a specific endpoint are you seeing this with?
  2. could you paste some code and logs withenable_debug() (and tokens redacted) toDefault value for max_retries is too short to "clear" all rate limit windows #1889 so we can take a look at the headers that are present?

If GitLab.com no longer returns any rate-limit headers I think we should take this discussion upstream as well - clients should have some reasonable idea of how to retry these limits instead of us figuring out arbitrary waits, IMO. Or worst case scenario we should have these defaults only if the url matches gitlab.com, if we really have no other option.

bachsh reacted with thumbs up emoji

@bachsh
Copy link
Author

bachsh commentedJun 20, 2022
edited
Loading

hey@nejch, thanks for looking at my PR. I guess I should've looked at open issues before opening it :)

To your questions:

  1. I ran into the rate limit on the/users/:id: endpoint.
  2. Yes, attached to the end of this message. I first ran a short loop to make sure I've reached the rate limit, and then ran my code that fetched the data that I need. I've setmax_retries=1 which is why you will see only 1 retry instead of the default 10.

And yes it seems that these headers no longer exist for gitlab-com; the reporter of#1889 mentioned that as well. It is possible that Cloudflare is not passing these headers along.

2022-06-20T11:14:03+0300 [DEBUG] urllib3.connectionpool - Starting new HTTPS connection (1): gitlab.com:443send: b'GET /api/v4/groups?per_page=100&min_access_level=40 HTTP/1.1\r\nHost: gitlab.com\r\nUser-Agent: python-gitlab/3.5.0\r\nAccept-Encoding: gzip, deflate\r\nAccept: */*\r\nConnection: keep-alive\r\nPRIVATE-TOKEN: ***\r\nContent-type: application/json\r\n\r\n'reply: 'HTTP/1.1 200 OK\r\n'header: Date: Mon, 20 Jun 2022 08:14:04 GMTheader: Content-Type: application/jsonheader: Transfer-Encoding: chunkedheader: Connection: keep-aliveheader: Cache-Control: max-age=0, private, must-revalidateheader: Etag: W/"c5ab47387a7f6b720554bb2425b3b2fe"header: Link: <https://gitlab.com/api/v4/groups?min_access_level=40&order_by=name&owned=false&page=1&per_page=100&sort=asc&statistics=false&with_custom_attributes=false>; rel="first", <https://gitlab.com/api/v4/groups?min_access_level=40&order_by=name&owned=false&page=1&per_page=100&sort=asc&statistics=false&with_custom_attributes=false>; rel="last"header: Vary: Originheader: X-Content-Type-Options: nosniffheader: X-Frame-Options: SAMEORIGINheader: X-Next-Page: header: X-Page: 1header: X-Per-Page: 100header: X-Prev-Page: header: X-Request-Id: 01G602T2JSZ1GM92BS4FV1QQX8header: X-Runtime: 0.202389header: X-Total: 20header: X-Total-Pages: 1header: Strict-Transport-Security: max-age=31536000header: Referrer-Policy: strict-origin-when-cross-originheader: GitLab-LB: fe-13-lb-gprdheader: GitLab-SV: api-gke-us-east1-cheader: CF-Cache-Status: DYNAMICheader: Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"header: Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kax%2F2w4Ke3oK4eC%2BxRSkST%2B%2BlgKoD6aicEEb%2FtyX1TuxPR08UuWw0NwK%2BoWAVRnw9SKyUwFX%2BN9Q1PPn6AGTs%2Bbo4rqhIKnSg15srLa3YteFCMD264OgEhlRJq%2BXOicr8l2G6klgO%2BE%3D"}],"group":"cf-nel","max_age":604800}header: NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}header: Server: cloudflareheader: CF-RAY: 71e30c7c6f697d9e-TLVheader: Content-Encoding: gzip2022-06-20T11:14:04+0300 [DEBUG] urllib3.connectionpool - https://gitlab.com:443 "GET /api/v4/groups?per_page=100&min_access_level=40 HTTP/1.1" 200 Nonesend: b'GET /api/v4/groups/16076036/members?per_page=100&min_access_level=40 HTTP/1.1\r\nHost: gitlab.com\r\nUser-Agent: python-gitlab/3.5.0\r\nAccept-Encoding: gzip, deflate\r\nAccept: */*\r\nConnection: keep-alive\r\nPRIVATE-TOKEN: ***\r\nContent-type: application/json\r\n\r\n'reply: 'HTTP/1.1 200 OK\r\n'header: Date: Mon, 20 Jun 2022 08:14:05 GMTheader: Content-Type: application/jsonheader: Transfer-Encoding: chunkedheader: Connection: keep-aliveheader: Cache-Control: max-age=0, private, must-revalidateheader: Etag: W/"c3cd59286c4e3c98c5bd093619940c0c"header: Link: <https://gitlab.com/api/v4/groups/16076036/members?id=16076036&min_access_level=40&page=1&per_page=100>; rel="first", <https://gitlab.com/api/v4/groups/16076036/members?id=16076036&min_access_level=40&page=1&per_page=100>; rel="last"header: Vary: Originheader: X-Content-Type-Options: nosniffheader: X-Frame-Options: SAMEORIGINheader: X-Next-Page: header: X-Page: 1header: X-Per-Page: 100header: X-Prev-Page: header: X-Request-Id: 01G602T309ZWENB37JYNER4GH7header: X-Runtime: 0.129332header: X-Total: 12header: X-Total-Pages: 1header: Strict-Transport-Security: max-age=31536000header: Referrer-Policy: strict-origin-when-cross-originheader: GitLab-LB: fe-14-lb-gprdheader: GitLab-SV: api-gke-us-east1-dheader: CF-Cache-Status: DYNAMICheader: Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"header: Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tXC%2F%2FLFtAda5ObhwRZUsRARnvdhywJpEFy%2Fm5gVyAMe86Uo1U9bLadeX%2FIq0iwF3AvOVKuJ2L%2BXWpBWL6gLgiTPKMgGlBQ7ysk6lNkN8WQ92XGDQOUmzzmBByB5WOWhjwHEMpO%2FAXKY%3D"}],"group":"cf-nel","max_age":604800}header: NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}header: Server: cloudflareheader: CF-RAY: 71e30c7f4c297d9e-TLVheader: Content-Encoding: gzip2022-06-20T11:14:04+0300 [DEBUG] urllib3.connectionpool - https://gitlab.com:443 "GET /api/v4/groups/16076036/members?per_page=100&min_access_level=40 HTTP/1.1" 200 Nonesend: b'GET /api/v4/users/10821733/ HTTP/1.1\r\nHost: gitlab.com\r\nUser-Agent: python-gitlab/3.5.0\r\nAccept-Encoding: gzip, deflate\r\nAccept: */*\r\nConnection: keep-alive\r\nPRIVATE-TOKEN: ***\r\nContent-type: application/json\r\n\r\n'reply: 'HTTP/1.1 429 Too Many Requests\r\n'header: Date: Mon, 20 Jun 2022 08:14:05 GMTheader: Content-Type: application/jsonheader: Content-Length: 89header: Connection: keep-aliveheader: Cache-Control: no-cacheheader: Vary: Originheader: X-Content-Type-Options: nosniffheader: X-Frame-Options: SAMEORIGINheader: X-Request-Id: 01G602T3CRRZ0AYAQA74CK41VHheader: X-Runtime: 0.044223header: Strict-Transport-Security: max-age=31536000header: Referrer-Policy: strict-origin-when-cross-originheader: GitLab-LB: fe-25-lb-gprdheader: GitLab-SV: api-gke-us-east1-cheader: CF-Cache-Status: DYNAMICheader: Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"header: Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SCMaLNWcLLooykPtjJMaWYXilZsmlyr9FWguBvRtg5%2FQqF8h3Z9hfCO7ecFxErFy8M2UOG6wjEFso1zbpLR6ztI334%2FZTaDiHOZmPGczQbovD0dhCiQ0Q4rqFr0ApOLLML2rO83sanA%3D"}],"group":"cf-nel","max_age":604800}header: NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}header: Server: cloudflareheader: CF-RAY: 71e30c8188497d9e-TLV2022-06-20T11:14:05+0300 [DEBUG] urllib3.connectionpool - https://gitlab.com:443 "GET /api/v4/users/10821733/ HTTP/1.1" 429 89send: b'GET /api/v4/users/10821733/ HTTP/1.1\r\nHost: gitlab.com\r\nUser-Agent: python-gitlab/3.5.0\r\nAccept-Encoding: gzip, deflate\r\nAccept: */*\r\nConnection: keep-alive\r\nPRIVATE-TOKEN: ***\r\nContent-type: application/json\r\n\r\n'reply: 'HTTP/1.1 429 Too Many Requests\r\n'header: Date: Mon, 20 Jun 2022 08:14:05 GMTheader: Content-Type: application/jsonheader: Content-Length: 89header: Connection: keep-aliveheader: Cache-Control: no-cacheheader: Vary: Originheader: X-Content-Type-Options: nosniffheader: X-Frame-Options: SAMEORIGINheader: X-Request-Id: 01G602T3RSA1HGKBB4NW2GD366header: X-Runtime: 0.027737header: Strict-Transport-Security: max-age=31536000header: Referrer-Policy: strict-origin-when-cross-originheader: GitLab-LB: fe-22-lb-gprdheader: GitLab-SV: api-gke-us-east1-cheader: CF-Cache-Status: DYNAMICheader: Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"header: Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jfa01qENyS5pkJ6u2UEIEYxEbSPMDM74JeI1wKLru9GbKCdcUe8iToj6SAIu4MO3V4KCe1L7Bgt4FcNdEAKQtK5KLZzg2srWszdc3aR1eB1nDBZd7zc4C2aF21d4h6hMAlD0MtJDGCo%3D"}],"group":"cf-nel","max_age":604800}header: NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}header: Server: cloudflareheader: CF-RAY: 71e30c843d047d9e-TLV2022-06-20T11:14:05+0300 [DEBUG] urllib3.connectionpool - https://gitlab.com:443 "GET /api/v4/users/10821733/ HTTP/1.1" 429 892022-06-20T11:14:05+0300 [WARNING] authomize.gitlab.client.gitlab_client - Hit rate limit not covered by SDK. Waiting 1 minute(s).

@nejchnejch mentioned this pull requestJun 20, 2022
@bachsh
Copy link
Author

@nejch I think it's going to take some time for gitlab.com to fixthe issue.
In the meantime I've been thinking and the exponential backoff will result in wait time of 51.2 seconds in the end by default (since the default is 10 retries, and2^9*0.1=51.2). So actually it's kinda hard for me to understand why the code fails after all these retries. If it bothers you to change the default time to 60 seconds, would it be ok to make the base wait_time configurable (currently 0.1 secs)?

@bachsh
Copy link
Author

(also, CI is failing because of the format of the commit message and IDK how to fix this besides submitting a new one)

@nejch
Copy link
Member

nejch commentedJul 3, 2022
edited
Loading

@nejch I think it's going to take some time for gitlab.com to fixthe issue. In the meantime I've been thinking and the exponential backoff will result in wait time of 51.2 seconds in the end by default (since the default is 10 retries, and2^9*0.1=51.2). So actually it's kinda hard for me to understand why the code fails after all these retries. If it bothers you to change the default time to 60 seconds, would it be ok to make the base wait_time configurable (currently 0.1 secs)?

@bachsh I agree, and I think the issue might never go away as it seems to be there because of user enumeration attacks.

Hmm I'm not sure why this happens, maybe each subsequent request further increases the backoff requirements without providing feedback.

Yes, a configurablewait_time would be the first step and would also open things up to solve a few more issues. Would you be willing to work on that as well? See also#1890. I think we'd be fine also increasing the default step a bit, just going with 60s wait from the start might be a bit harsh for instances/endpoints where you can handle more granular rate-limits.

Regarding the commit message,git commit --amend lets you amend your last commit, andgit rebase -i HEAD~n wheren is the number of commits going back allows you to edit a longer history of commits :)

@nejch
Copy link
Member

@bachsh let us know if you need any help here.

@github-actions
Copy link

This Pull Request (PR) was marked stale because it has been open 90 days with no activity. Please remove the stale label or comment on this PR. Otherwise, it will be closed in 15 days.

@github-actions
Copy link

This PR was closed because it has been marked stale for 15 days with no activity. If this PR is still valid, please re-open.

Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment
Reviewers
No reviews
Assignees

@bachshbachsh

Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

3 participants
@bachsh@codecov-commenter@nejch
[8]ページ先頭
©2009-2025 Movatter.jp