Suspending accounts cause huge delays in federation #9377
Comments
|
Would I be correct to guess that you participate in a relay, and do not have proxy caching configured in nginx? |
|
@Gargron what do you mean by relay? Also, I have exactly the same nginx configuration as noted in the old Production guide (https://github.com/tootsuite/documentation/blob/master/Running-Mastodon/Production-guide.md#nginx-configuration) and the default configuration otherwise, which I guess doesn't have proxy caching? |
|
Compare your configuration with: https://github.com/tootsuite/mastodon/blob/master/dist/nginx.conf I don't see a way for new accounts to cause requests from other servers unless they get followers from those servers or you are using a relay service which broadcasts their posts. So new accounts are likely unrelated to your issues. |
|
so, indeed there was no proxy caching. I patched the nginx config, restarted nginx, retried to suspend just one ad-bot (no followers, no toots, nothing) and I get flooded with requests from all the federation or something. This is an example of the line I get in the nginx log: And the same behavior stays when I send a message to another instance (i.e. very very long delay) |
|
Ah, I know what's happening. You're right after all. When an account is deleted, we want to make sure that everyone deletes it. So, we forward the delete to every known server. Ironically, for new accounts, most servers don't know them, and have to look them up to get the public key to even read the delete message. That is a consequence of #8305 |
|
why would slow web workers cause a sidekiq backup though??
…On Tue, Nov 27, 2018, 6:31 PM Eugen Rochko ***@***.***> wrote:
Ah, I know what's happening. You're right after all. When an account is
deleted, we want to make sure that everyone deletes it. So, we forward the
delete to every known server. Ironically, for new accounts, most servers
don't know them, and have to look them up to get the public key to even
read the delete message.
That is a consequence of #8305
<#8305>
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#9377 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAORV2xMcUSdt_QjiOWMComgo8gY6Zmiks5uzctvgaJpZM4Y15PO>
.
|
|
something something stoplight something something?
…On Tue, Nov 27, 2018, 6:31 PM Eugen Rochko ***@***.***> wrote:
Ah, I know what's happening. You're right after all. When an account is
deleted, we want to make sure that everyone deletes it. So, we forward the
delete to every known server. Ironically, for new accounts, most servers
don't know them, and have to look them up to get the public key to even
read the delete message.
That is a consequence of #8305
<#8305>
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#9377 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAORV2xMcUSdt_QjiOWMComgo8gY6Zmiks5uzctvgaJpZM4Y15PO>
.
|
|
I guess the issue isn't so much the fact that the remote servers do a useless query, but that mass-suspending users queues a hell lot of |
|
i guess? I wouldn't expect Delete jobs to be particularly more expensive/numerous then other types of jobs. Maybe anarchism.space has a lot of known remote inboxes but comparatively few remote followers? |
|
On my single-user instance, I'm not too sure how we can make this more efficient, as we have no way to track who has seen (and copied) accounts. We have the same issue with toot deletion to be honest. |
|
Can someone take care of this or something, I can't do this anymore... I got more than a hundred spam bots to remove this morning and now my instance is cut from federation for probably the whole day because of this issue. Please do something. Who do I have to implore to do something to either this issue of the spam bots issue in general? |
|
At the very least, I think we should move |
|
So what should we do when we're flooded with these An odd thing is that I see some instances doing several requests for a single suspension, e.g. toot.cafe, masto.themimitoof.fr and mastodon.huloop.com on this screenshot:
(Also, it's been like 4 hours since I suspended some dozens of bots on my small unpopular instance, and the torrent does not seem to fade... if only cloudflare supported caching 410 Gone responses and spared me some CPU load...
|
|
I guess we could add a shortcut to not try fetching the key for an account deletion when we don't know the account… it would be a bit awkward to add such special casing at this point in the flow, but it would definitely make sense |
|
So the wave has finally abated, after ~5 hours of flooding my instance with requests at 100x (!) the average rate, and making my CPU work at 100% load. Usually I'm getting that number of requests (170k) on a good month... And I've only suspended ~100 bots with zero followers and zero posts.
Thankfully my instance runs on a decent hardware, and was able to survive this without significant disruption of service. However, I believe that for some other instances it could be more similar to a DDoS attack. So the fix is definitely warranted IMHO, even if it will look a bit awkward. |
|
The awkward fix is in master: #10326 |
|
Getting hit with the issue: My instance became unavailable because of one account.
|
This will help a great deal with mastodon#9377 when a caching reverse proxy is configured.
This will help a great deal with #9377 when a caching reverse proxy is configured.
…on#10339) This will help a great deal with mastodon#9377 when a caching reverse proxy is configured.
…on#10339) This will help a great deal with mastodon#9377 when a caching reverse proxy is configured.
|
Last update here was ~6 years ago ... I'm going to close this on the assumption that the previously reference commit, while not a full/exhaustive solution, is an "as good as we can up with" solution ... please reopen/comment if there's something specific that still exists on current versions and could use renewed, robust, respectful contemplation. |
Expected behaviour
Suspending accounts should be smooth and shouldn't create any delays in the federation
Actual behaviour
anarchism.space is currently (as with many other instances) a spambot surge. However suspending them makes my instances to have huge delays in terms of posting things to the federation (not receiving). The CPU is fine (8 cores working at 5% each), the nginx log is filled with attempted accesses to the suspended account from all the other instances I'm federated with (I'm not sure if it's the cause of this but maybe)
Steps to reproduce the problem
Specifications
Mastodon: 2.6.1
The text was updated successfully, but these errors were encountered: