tag:blogger.com,1999:blog-386066892024-03-13T08:16:27.277-07:00XoatlicueOpen Data, Open Doors, Open QuestionsTau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.comBlogger36125tag:blogger.com,1999:blog-38606689.post-31271146665057310392014-08-23T16:08:00.000-07:002014-08-23T16:08:04.166-07:00To encourage civic participation and voting (in US)https://petitions.whitehouse.gov/petition/create-national-holidays-voting-consolidating-other-holidays-honor-civic-engagement/wx7xMFCR<br />
<br />
Please consider whether this suggestion makes sense.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-61412494708724874392013-03-23T10:25:00.000-07:002013-03-23T10:25:00.197-07:00Who worries about the Internet "pipes" getting clogged?I started looking at the pool.ntp.org project. I manage several data centers with various kinds of connections and some of the machines disagree with each other about the time. The effort behind pool.ntp.org seems to be a really good idea. It made me wonder, why is information about the Internet not shared in the same way?<br />
<br />
Remember hearing about Internet blockages in Syria? A private company in the US reported it. Who is that? Who are their customers? Why are we hearing about the state of the Internet from a private company? There could be a distributed group of people sharing information to do the same thing. Sounds sort of like something you would do on the Internet, yes?<br />
<br />
I worry about what drives connectivity, because often it seems to not do so. We wanted to serve customers in Jakarta. The Jakarta-based provider have really bad service to Jakarta. It turns out that if you go to Tokyo, the connection to Jakarta is wicked fast. Well, all the infrastructure in Indonesia points out. There is less infrastructure for services within Indonesia.<br />
<br />
And then I hear that if you look at connections between the US and Europe on the Internet, the distributed-to-survive-a-nuclear-war-or-massive-disaster-Internet, a massive proportion of them go through Manhattan, an island. Because who would ever attack Manhattan? Really.<br />
<br />
What's my point? I am not sure. But if you want a robust Internet, is letting the companies run it put all of the eggs in a very small number of baskets a good idea? Maybe not. Maybe I should find out about the state of connectivity around the things I care about. I bet I know where I can but a $10,000 whitepaper that tells me what I want to know.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-77337107118046824252012-02-02T17:23:00.000-08:002012-02-02T17:56:22.356-08:00Facebook IPO chatter reminds me why Firefox is so important to me...Hearing all the media blather about the upcoming Facebook IPO has made me think about a couple of things. Mostly, I am so glad I have Firefox available. I learned to develop Facebook applications a few years back, looked at what the applications could see about a user, and removed myself from every single application on Facebook. The amount of information an application user is giving away is amazing.<br /><br />Luckily, I have Firefox and add-ons like Adblock and Ghostery (for tracking/blocking inter-site data slurping) and other tools of that sort to help me to, perhaps, stay under the radar of some of those people. Somewhat.<br /><br />On the other hand, Mozilla seems to be reluctant to let the search bar be configured to go to https://www.google.com. (http://bugzilla.mozilla.org/show_bug.cgi?id=633773) Hm. Maybe Mozilla is still, in some ways at least, just another company. O well, it is something to think about.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com3tag:blogger.com,1999:blog-38606689.post-61048585247728369432011-08-28T17:30:00.001-07:002011-08-28T17:55:58.549-07:00The Internet: how are those tubes working anyway?I am finding myself dealing with an unexpected question. Does the Internet work? You know, the whole moving data from place to place. Is it really working?
<br />
<br />Well, of course it is. But perhaps not for everyone. I am trying to find out why we often have problems reaching our data centers. The company I work for sells software for people learning English. I think this is the root of the problem. There might be 2 billion people on the planet with an interest in learning English, but not too many of them live near a T1. Why can't I reach my data centers? Maybe because they are in places like Ulan Bator and Ho Chi Minh City.
<br />
<br />Why do we need all these data centers? Often it is because we have to have an in-country data center to avoid having all of our customers take a "Golden Shield" hit. If customers in China, or Vietnam or Saudi Arabia, or other places, need to get content from outside the country, the latency turns out to be very high. Get the content into an in-country data center and your performance problems go away.
<br />
<br />But here is an odd thing. We have customers in Jakarta that have connect problems. Getting an ISP in Jakarta does not fix it. Turns out that a connection from one part of Jakarta to another part of Jakarta is slow and unreliable. Serving data from Tokyo to Jakarta, however, is fast and reliable. Hm.
<br />
<br />Actually I am interested if anyone has ideas about how to measure connectivity more broadly. One might think the net would have distributed sources of information about connectivity, but it does not seem to be so. One can measure pings, but one needs to keep track of a lot of pings to figure anything out. One can run traceroutes. Or not. Somebody in Mongolia blocks traceroutes, for example. And traceroutes do not necessarily follow the same routes that regular traffic will. Or you can buy reports about connectivity, if you have spend tens of thousands on them or sign up for fairly expensive services. And Akamai and other services work great, assuming you want to sell something to the creme de la creme of the First World. And that is, after all, most of the businesses out there.
<br />
<br />I wonder if there is a way to collect connectivity information in a distributed, peer-to-peer manner. Perhaps we can use this Internet thing for that, too. Or is something available and I just have not hit upon it? Does anyone run "weather reports" for the Internet? Could it be accessed as a utility? Looking for suggestions, questions, thoughts, ridicule, insults, jibes, or whatever works for you.
<br />Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-41985407832303622272011-06-16T13:48:00.001-07:002011-06-16T14:02:09.942-07:00Why iCloud?I am increasingly glad that I left Apple to do other things. And I am sure Apple will continue to make more money for a while. But one has to wonder.<br /><br />Here is a company dedicated to the "Wow!". The stars in their developer teams create these applications that you launch and, really, they are beautiful. They are only 85% finished, but they look good and one does not see the problems until a few days later. Then, hey, you already bought it. They have a Support group to make you feel better about this. And you can file bugs. And wait for the next version. But that's about it.<br /><br />There was only one place in Apple that spoke about things like MTBF and that actually measured things like reliability. That was the server group. You know, the one whose products got deprecated and that is probably mostly gone at this point. Apple's apps are known for the elegance of their UIs and not for reliability. Everyone else at Apple says "You re-boot and your problem is gone? Problem solved." And these are the people that are going to build a cloud-based music service?<br /><br />The important people at Apple used to design things, create standards, carve beauty out of technological crap. Now, the important people are going to be running a data center full of HP machines. In North Carolina. It is truly sad.<br /><br />Of course, iCloud is a good idea for Apple. You used to pay for your music, own your music, and hold your music. With the iTunes Store, you pay for your music and hold your music and Apple owns your music. Now, with iCloud, you pay for your music, Apple holds your music and Apple owns your music. And this is a good deal. Why is Apple doing this? They might say, "because iCould."Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-67517491900924521342010-01-18T23:02:00.001-08:002010-01-18T23:16:43.953-08:00China Stealing IP? I'm Shocked, Shocked I Tell You....We're hearing a lot of news about China trying to steal intellectual property from companies like Google. There's a lot of sanctimonious news coverage about how we have innovative companies and China is trying to steal their way out of having to do the work.<br /><br />Then one of these "innovative" companies was named. Microsoft. Then it occurred to me where the objection really comes from. Microsoft has never done an innovative thing, ever, except invent OLE. And you can thank that for your virus problems. But they do buy lots and lots of other companies that have innovated. So, in the US, the currency of our society is just that, currency. The dollar rules all. In China, political power is the currency. So, Microsoft spends one type of currency to get access to other people's creativity because they are out of ideas. And China spends another type of currency to get access to other people's creativity because they are out of ideas. They are different, but there are similarities.<br /><br />We lose a lot of IP because we manufacture in China. We manufacture there because they have weak worker protection laws, no environmental regulations and, basically, business can do what it wants. There is a basic lack of civic law. Want to make cheap plastic crap and dump the waste in the river? Rock and roll! But then our stuff gets stolen. CDs get pirated, designs get copied. Why? Perhaps it is because there is a basic lack of civic law. But isn't that why we want to manufacture there in the first place? And then, do we get to complain about it as well?<br /><br />People who are really being creative know their work cannot be outsourced. Companies trying to milk a fifty-year old file of patents have reason to be upset. It just does not bother me.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-42454485214841081402009-11-18T11:30:00.000-08:002009-11-18T11:44:05.408-08:00Three PicturesWhat do these three pictures have in common?<br /><br /><table border="1"><tr><br /><td><img src="http://www.wykiwyk.com/mozilla/misc/DHS_NTA_Warning.png" /></td><br /><td><img src="http://www.wykiwyk.com/mozilla/misc/prop65warning.png" /></td><br /><td><img src="http://www.wykiwyk.com/mozilla/misc/unknownAddonAuthorWarning.png" /></td><br /></tr></table><br /><br />The first is a US Dept of Homeland Security warning. The second is a Proposition 65 warning from California. The third is from Firefox when we add _any_ add-on.<br /><br />Obvious questions are:<br />- does anyone feel safer when they see these?<br />- do these actually inform one of anything?<br />- why are these being displayed? for whose benefit?Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com6tag:blogger.com,1999:blog-38606689.post-37547831133724477202009-04-07T08:41:00.000-07:002009-04-07T08:58:37.019-07:00Benefits of Open Source, or Why the iPhone Will Continue to SuckI am doing less direct development using Mozilla tools lately, but a recent trip to British Columbia has brought home to me, again, why Mozilla is important.<br /><br />I am doing iPhone development and will, in the future, be doing Android development as well. But I was surprised that, on most of my trip, my iPhone was useless. I often did not have cell service, but when I did, I had no access to network-based services. Apparently I would have had to connect via Rogers and pay roaming charges and I was unwilling to do so. This is the problem with a single point-of-failure in the Internet. This is why we do not have one company, like Apple, running the Internet. Apple is seeking control of the iPhone market for obvious reasons, but this costs us as consumers. We should, as we pay those ever-increasing monthly charges, keep this in mind. Really, the fact that we cannot have data services everywhere is just sad. Companies would rather offer less and control more of it than offer more to consumers if they lose some control. And let's not even talk about how bad the App Store is for finding things. Please. There's to much and it hurts to talk about it.<br /><br />I am also recently using Chandler for my calendar and for keeping track of 'to do' items. It is an interesting app and I went to see the latest dev versions of it and see about building it. Apparently, I have a level of expectation about open source projects. Apparently it is not worth it to interact with the source unless it builds like Mozilla. Chandler development is Linux-only, and while I could upgrade to the version of Parallels I need (since VirtualBox does not see to do enough for me) and build it that way, I find myself unwilling to do so. Despite my ability to complain about the quirks of building mozilla tools, it seems to work better than most alternatives. But I really only complain loudest about something when I like it. This may not be obvious to people to whom I complain.<br /><br />It turns out that being connection-less for a time is a good thing, though. It makes you think about the value and cost of being always connected. When I was working for Mozilla, one of the things that was a problem for me (though I did not realize it at the time) is that Mozilla's offices are on-line all the time. It is too easy to be "at the office" every day, all day. Reading most Mozilla posts you see how the veterans deal with it, so that they can keep their families, their friends and their sanity. It probably would have been easier to focus if I had not found the information ecosystem around Mozilla to be so rich and fascinating. One has to balance finding that connection with a new friend in Europe with the need to get things done. It is easier, for now, working for myself, but I will have to figure this out someday. We'll see.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-53490813054343623102009-02-08T15:14:00.000-08:002009-02-08T16:40:53.748-08:00Software Patents and Open-SourceI am slightly sanguine about the possibility that reality and rationality might actually drive the Supreme Court to invalidate software patents, which they might eventually do in the <a href="http://arstechnica.com/tech-policy/news/2008/04/closely-watched-case-may-spell-trouble-for-software-patents.ars">In re Bilski</a> case. I hope the open-source community appreciates the importance of this. <br /><br />I was working at Apple as they were looking at making a certain technology open source. There was quite a bit of evidence that making this technology available via open-source licenses would make it much more widely usable and it would get maintenance and TLC that Apple had no business case to provide, but it got nixed from higher-ups. <br /><br />It turns out that one of the best uses of a patented software technology is to seal it in a black box and say nothing. It is a secret landmine that one can use against others. This will not help the software get used, but that is not the point. It does not actually matter whether it is a good patent or not. Lots of bad patents get approved by the Patent Office and the cost of defending against the holder of a bad patent is the same as the cost of defending against the holder of a patent that actually does involve innovation. <br /><br />Software companies use these patents like playing cards. One big company goes to another and tries to strong-arm some licensing money out of them. The target company pulls out its cards and says, "Sue us for X, Y, and Z and we will sue you for A, B and C." Eventually their lawyers sit down, cards are shown, somebody decides to pay something or not, they write a cross-licensing agreement and both companies go home happy. <br /><br />A side benefit of this is that small companies that might be developing innovative software cannot afford the ante and they are locked out. The big patent holders, IBM, Apple, Microsoft, Sony at al are happy and they shut down those annoying whipper-snappers who want to do something better.<br /><br />This state of affairs is particularly saddening when one looks at why we have patents. Ask 100 people "what is the purpose of a patent?" and 99 will say that they protect the author of some discovery or creative work. In reality the temporary monopoly provided to a copyright or patent holder is the means of fulfilling the purpose. It is not the purpose itself. Looking at the Constitution, one sees this power assigned to Congress in <a href="http://www.law.cornell.edu/constitution/constitution.articlei.html#section8">Article 1, Section 8</a> of the US Constitution:<br /><blockquote>To promote the progress of science and useful arts, by securing for limited times to authors and inventors the exclusive right to their respective writings and discoveries;</blockquote> Does our current system of patents, especially software patents, "promote the progress of science and the useful arts?" The answer is obvious. It does not. Is it obvious enough for the Supreme Court to go against the wishes of the "intellectual property nomenklatura" of this country, with their fictitious billions of dollars on their balance sheets? Maybe. We'll see. Another interesting question is this. On the day after all those patents are invalidated, what will the stock market do? It will be interesting to see....Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com1tag:blogger.com,1999:blog-38606689.post-88395249034733531622009-01-25T14:26:00.000-08:002009-01-25T14:59:40.188-08:00Trustedness in Ubiquity and Other PlacesI have started to use Ubiquity and it is, of course, as amazing as people have been saying it is. And I see questions being raised about how one gets new commands and how one can trust sources for new commands. I hope that, as these questions get answered, the answers can apply to other areas of concern within Mozilla.<br /><br />Almost two years ago, I was asking Window Snyder why the add-ons on AMO all had warnings from lack of certificates or authentication. It seemed that MoCo could not decide how to decide whether an add-on is "certifiably safe" or not. Perhaps there is a way to determine whether a command is "certifiably safe" or not. I have a feeling that certifying safety falls in a weird area between what the community around Mozilla can do and what the corporation feels that it should do. When MoCo takes off its nice and fuzzy gloves and puts on its "corporate" hat, what reason do they have for taking on this risk? These kinds of risks are notoriously hard to judge. Or rather, one can see when a problem is less likely to occur, but one can never guarantee there will never be a problem and one can never find a limit to how much damage might be caused. So, there is a clear benefit of moderate import and a slight risk but with no way to guess the cost. A corporation which has to show due diligence will probably not sign up for this risk.<br /><br />I hope I am wrong. Perhaps this is a way to certify these. And maybe a "casual" certification will work. Sort of like saying, "it is not certified, but this add-on is up on AMO and we like the developer and you should like the developer too but we're not responsible for any problems and yadda, yadda, yadda...", and so on down into the fine print. And maybe this works well enough for everyone, except for dealing with the occasionally nasty security dialog.<br /><br />But it also seems obvious that the more places one needs trusted content, or trusted sites, or trusted chrome, the more ways there are to stub one's toes. I guess we'll see.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-19301941734191765402009-01-08T18:10:00.000-08:002009-01-08T20:00:52.355-08:00Amusing iPhone Sound Volume InterfaceI waited long enough to be almost the last multicellular organism on the planet that did not have an iPhone. Well, we share our phone plan with my wife's parents and my father-in-law was hot for an iPhone and so here we are.<br /><br />Some of the interface ideas in it are amazing. Then some are, well, something else.<br /><br />Everybody has seen the thing where you turn the iPhone on its side and the app that is running rotates. I was looking at the calculator in portrait mode and I was just, literally, seconds away from pointing out I would need some scientific calculator stuff and then turned in sideways and there it is. Very cool.<br /><br />But the interface for setting the sound volume has a strangeness. For one thing, you do not hear a tone that increases in volume as you increase the volume. You just have to eye-ball the volume indicator. Really. There is no auditory feedback for changing the sound volume. It really boggles the mind.<br /><br />Then you turn it sideways. The hardware does not change its behavior. So, picture this. In portrait mode you press the down side of the toggle and the sound goes down and a visual "volume progress bar" thing slides to the left. Push on the up toggle, the volume goes up and the "volume progress bar" thing slides to the right. So far, so good. But turn it sideways and you press on what is now the right side of the switch and in my "right-hand-is-right-ish" view, this should make the sound increase. But the volume decreases and the "volume progress bar" slides to the left. And if you press on the left hand side of the toggle, the volume increases and the sound goes up.<br /><br />I cannot decide if it is my brain that is wrong or, is it possible they just thought it would be ok to respond backwards?Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-25072390833530963662008-12-11T10:50:00.000-08:002008-12-11T11:09:10.041-08:00Add-ons Interacting Badly? Nope. report from AddOnCon...I just wanted to call this out. I am at the Add-On-Con in Mountain View today. The keynote was good. Great questions, good back-and-forth, interesting responses.<br /><br />I asked the panelists (reps from Conduit, http://www.oneriot.com/, http://www.alexa.com/, http://www.adaptiveblue.com/, http://www.cooliris.com/) how much of their time or mental energy is taken up by dealing with confusions or bugs from cross-addon interactions.<br /><br />I see this as a, theoretically, very serious problem. It was interesting, though, that the panelists said things like (paraphrasing):<br /><br />- "browser upgrades are more of an issue. MS is bad about this and Mozilla is much better"<br />- "this does take up time, but the problems have gotten better"<br />- "Symantec should not try to clean up people's registry"<br />- "there are generic best practices and these could be more publicized"<br /><br />I think the responses I heard speak well of how Mozilla has addressed or is addressing this issue. Considering how huge the problem could (again, theoretically) be, it is great that people who are actually relying on their add-ons to make money do not seem to be very upset or worried about it.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-90875065630550507652008-11-09T12:31:00.000-08:002008-11-09T12:41:04.224-08:00Freebase HackDay in SFIt has only a slight connection to Firefox, but I did meet people there doing database-ish things with Firefox extensions to provide a whole experience....<br /><br />Freebase (http://www.freebase.com) is an odd service. It is a wiki-like database. Anybody can go in, look at a table and decide there needs to be another column on it and add a new column. Anyone can put new data in. Anyone can create new "types" (like tables). There are APIs for managing time information and geo information and all that kind of stuff. They have created the concept of a "Base" which sort of combines a social situation with a custom view of data. It allows a better separation between the model and the view.<br /><br />The tools are mostly Javascript or Google-app based and they work pretty well.<br /><br />And how many places can one go to and talk about the re-contextualization of socially-constructed semi-structured database tables into dynamic entities and not have people get glassy-eyed and start looking for open doors or windows to jump out of?Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-54136433050968655592008-06-22T16:24:00.000-07:002008-06-22T16:51:37.474-07:00Mozilla Dev Kit ... and Scratchbox?Seeing a post on the Mozilla Developer Kit (MozDevKit? MDK?) has gotten me very psyched. I have been trying to add some things to the developer doc site. I see, for example, a lot of really good information in blog posts and then the corresponding DevMo pages are ... not so up-to-date. In general, there is much that can be done to make developing Mozilla more accessible to people and MDC does not get as much love as it deserves from people who are doing development and should therefore be able to write. But they probably have no time to doc because they are, you know, coding. It is a conundrum.<br /><br />But build environments are complicated. How can setting up such an environment be made easy?<br /><br />Can a Mozilla development kit can be set up in a trackable, verifiable, chroot-ed environment using a tool such as scratchbox? I have been trying to get a xulrunner (FF Mobile) build working to an embedded device using scratchbox and it has been challenging, to say the least, but interesting. Tools like scratchbox or crosstool seem a very good idea. And every production build environment, such as the one I used while I was in the Dev Tools group at Apple, uses a verifiable, chroot-ed environment. It is really hard to get reproducibility without it, and without reproducibility, it is really hard to help anybody who has problems. This is why most responses to build issues on the newsgroups consist of 'please set up X, Y, and Z, and do A, B and C, and see if that helps....'<br /><br />Also, the usual use of scratchbox is to build on host A for a different architecture, target B. But A and B can actually be the same. MoCo builds Linux binaries on Linux and Mac OS X binaries on Mac OS X, but that does not <span style="font-weight: bold;">have</span> to be so. Of course, scratchbox is very Linux-centric. And I see that a Linux version of the MDK is the first item listed on the aforementioned blog post. This is probably true because Linux is amenable to scripted, verifiable building. But it would be interesting (perhaps for only me) to consider how a scratchbox on Linux could build Mac OS X binaries, or how a scratchbox on Mac OS X could build binaries for either Linux or the Mac. And of course, some might be interested in making Windows development possible, but that is way beyond my bailiwick. Yo no hablo Microsoft and I am just fine with that. Can you imagine, for example, getting the Microsoft development tools into a scratchbox environment? I cannot, and I am sure it would be ugly, but it might be possible.)<br /><br />Downloading a single file, launching it and then finding oneself in a known, trackable, verifiable virtual host for building Mozilla apps seems a compelling opportunity.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com3tag:blogger.com,1999:blog-38606689.post-13754248396565080432008-05-16T09:34:00.000-07:002008-05-16T10:10:02.450-07:00the age of bugs, and other useless information...In a recent post, dbaron suggested that people inappropriately judge Mozilla by, for example, the age of the bugs that one can see. I think he is right, but I think there is a reason for this. It is usually completely impossible to look at a bug and figure out whether it will be fixed or not. There are long-standing reasons for the use of nobody as an assignee, but this can be un-helpful.<br /><br />Mozilla code development is socially driven. This may seem obvious, but the effects of this are not necessarily obvious, especially to someone in coming from commercial software. Look at the recent revisions of the module ownership system and you can see how tenuous the ownership of code can be. Nobody has to care about any bug. Or, to say it another way, only 'nobody' actually has to care about the vast majority of bugs.<br /><br />It is very hard to look at a bug and see who actually cares about it. No. I will not gripe about bugzilla. Really. But I will just say that anything in a bug is not what it says, but how that is looked at by which group does the work. Priority, Confirmed, and many other terms mean different things to different groups of people. And everyone seems to be ok with that.<br /><br />I have filed many bugs thinking that Firefox should just 'do the right thing' and that people would want to know. Is still have this idealism at times, but I recognize the other viewpoint as being valid. It may be true that one should not fix something that does not need to be fixed.<br /><br />And as dbaron has pointed out to me many times, one is always welcome to file a patch. And, actually, that turns out to be the key to many things. I used to think there was value in asking about a bug to understand it. I used to think there was value in discussing a solution before creating a patch. But, as a practical matter, the number of people willing to talk about making changes is vastly more huge than the number of people who will make changes. So, considered questions almost always get silence while patches that are crap get responses. If I have 10+ years of database experience and ask a question about sqlite use by Places, and a 12-year-old asks a question with a patch he came up with in five minutes, who will get a response? Who will be more likely to get something started on a bug? It seems obvious to me now.<br /><br />So when in doubt, submit a patch. Any patch.<br /><br />So, this leaves a question. How does Mozilla want to manage bugs submitted by or read by or tracked by non-developers? It seems clear that bugzilla is really best only for developers. Asking users to look at bugzilla and make sense of what they see is, I would suggest, not realistic. Maybe the idea behind Hendrix needs to be developed further. A lot of what is in bugzilla looks like graffiti in a train station. So maybe something is needed manages that graffiti and relates it to actual bugs that people may actually work on. But then, the people who do the work do not mind looking at the graffiti and just working on what they talk about. They seem to know which ones are actually significant, so why fix it if it's not broken?Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-77031092237772008362008-03-30T12:39:00.000-07:002008-03-30T13:09:46.605-07:00A Really Neat Test Reusability SituationI had something happen yesterday which makes me think there might be hope. For my brain and how I sometimes fail to keep track of things. I was asked, in a bug I filed a while back, if the failure was reproducible.<br /><br />I do not why it was not reproducible earlier. I hardly ever find out why people do not see the bugs I see. I filed the bug and it got the usual responses: "works for me", "what are the running? are you sure?", "i see something weird", "why are we checking this?", "can you attach more information?", "did you configure the thingamagig to build the whatamacallit?", "can you attach a lot more information?". It just gets really ... exhausting. Actually, this particular bug was not as bad as some others. And it is nice when someone can actually reproduce something I filed.<br /><br />But right now, if you look in my ~/mo directory, you see 3 different builds of the browser, a half-dozen nightlies (some a few months old), a couple of calendar builds, a few xulrunners, an nspr build (what the heck was I doing with that?), a re-usable profile directory, and other random stuff. So, do I still see my bug? I look in the directory and and it is, again, exhausting, even to just think about.<br /><br />Then I saw something.<br /><br /> tests_20080106_160400/<br /><br />You know, I was talking about a re-usable test product, wasn't I? Oh, yeah.<br /><br /> % cd tests_20080106_160400<br /> % ls<br /> dist/ runReftests* testing/ xpcshell-simple/<br /> %<br /> % ./runReftests ~/mo/browser_20080327_235255/dist/MinefieldDebug.app/Contents/MacOS/firefox ~/mo/debug.mozilla_20080106_173138_PST<br /><br />Holy test failures, Batman! It worked! I just gave it a fairly recent build and that re-usable profile directory I mentioned and there it is. Lots of failures.<br /><br />Now, I am thinking again of that standalone test product I was mentioning. Once again, the buzzing in my head is beginning. There is apparently a new way to build a product out of the Mozilla build system. Create a directory, put some stuff in it, and voila! A new product. Now, to find the documentation for this wonderful new capability. Ok, I am sure that people are busy. Is it fair to ask them to document things? Should I ask a question in the newsgroups? I will just get that response that I really hate so much: "what exactly are you trying to do?". I think I was trying to ask a question. Again, it can just be exhausting. I even created an <a href="http://developer.mozilla.org/en/docs/Building_XXX_Standalone">MDC page</a>. Seeing a place for something like this to to be documented, someone who knows what is going on might, you know, document something. Not even a nibble on that yet. O well. You can lead them to water....<br /><br />And, finally, I have to do homework today. My Stats and PDE homework is not doing itself. And why don't I get more Mozilla stuff done?Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com1tag:blogger.com,1999:blog-38606689.post-75686377219907294072008-03-29T19:24:00.000-07:002008-03-29T19:30:25.790-07:00Participating in Earth Hour?Are you participating in <a href="http://www.google.com/intl/en/earthhour/">Earth Hour</a>? I am, apparently. My wife says that we can and should turn off all lights in the house. We can then turn off all electrical devices (even my Server machine!) and, further, she is convinced we will survive and may perhaps even escape psychological damage.<br /><br />I am dubious.<br /><br />If you do not hear back from me, you know why. Good luck.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com0tag:blogger.com,1999:blog-38606689.post-7639194603944350782008-01-07T18:56:00.000-08:002008-01-08T02:10:23.993-08:00A Standalone Test ProductWhat does one need to do to help test Firefox. It turns out that to help very much, it takes a fair amount of effort. Just downloading the latest browser and "doing stuff" with it does provide testing, but it is not very complete. That kind of testing tends to be shallow at best.<br /><br />Firefox has great automated testing tools built into it, and so one can build a copy of Firefox using '--enable-tests' as a configuration flag. One gets a bunch of standalone executable tests, some xpcshell tests, the mochitest functionality and reftest. There is a lot there to work with.<br /><br />However, building Firefox can be a pretty hefty requirement. Is it really necessary? One benefit of automated testing is that the more of it that gets done, the more valuable it can be. There are lots of OS versions and machine configurations to worry about. MoCo can either try to have a copy of all those OSes and all those machines, or it can allow the community to meaningfully assist with testing without jumping through all the extra hoops needed to be able to build the browser. After all, the software required to just run tests is much simpler.<br /><br />In pursuit of this, I am creating a standalone product which can be a test vehicle for testing Firefox. After all, if Firefox is changing every day, should one have to refetch all those tests? One would hope that when Firefox is changing a lot, the tests are not changing, so that the tests can provide confidence for the changes being made.<br /><br />So far, I have a standalone product that I can use, on my Mac OS X system, to run reftests. There are issues with some of the other technologies that I will try to address. For now, I have taken the last 4 nightly builds and used the same test product on them and got the same result.<br /><br />- REFTEST UNEXPECTED FAIL: file:///.../testing/reftest/layout/bidi/bidi-000.html<br />- REFTEST UNEXPECTED FAIL: file:///.../testing/reftest/layout/bidi/bidi-001.html<br />- REFTEST UNEXPECTED FAIL: file:///.../testing/reftest/layout/bidi/bidi-001-j.html<br />- REFTEST UNEXPECTED FAIL: file:///.../testing/reftest/layout/bidi/mixedChartype-02.html<br />- REFTEST UNEXPECTED FAIL: file:///.../testing/reftest/layout/bidi/mixedChartype-02-j.html<br />- REFTEST UNEXPECTED FAIL: file:///.../testing/reftest/layout/line-breaking/currency-2.html<br /><br />There may already be bugs on these test failures. It is hard to tell. I cannot seem to find the obvious way to locate bugs filed against automated tests.<br /><br />The test product is based on the contents of the "<code>_tests</code>" directory as built with the '--enable-tests' flag, with some minor changes. Also, the contents of the directory are actually files, not links back into a source tree. The basic directory structure right now looks as so:<br /><br /><pre><br />tests\<br /> Minefield.app/Contents/MacOS/chrome/reftest.jar<br /> Minefield.app/Contents/MacOS/chrome/reftest.manifest<br /> Minefield.app/Contents/MacOS/components/reftest-cmdline.js<br /> testing\<br /> mochitest\<br /> reftest\<br /> xpcshell-simple\<br /></pre><br /><br />There are issues, already, that make it a little difficult to just grab this test product and put it up in a shareable location for other Mac OS X users. For one thing, script bits need to be put inside the application bundle of the app being tested. For reftest, it is only three files that need to be put inside the ".app/Contents" directory, but it is awkward to do manually.<br /><br />Looking at mochitests, I can already see problems. The tests all assume that they can do something like "../../../dist/bin/testExecutable". There is no reason they need to assume that, but they all do. Does the xpcshell executable that runs the tests need to be the same build as the Firefox browser itself? I would say no, but that is the way it has always been done. Until issues like these are teased apart, there will have to be lots of workarounds.<br /><br />If anyone has any suggestions, I am open to them. If MoCo wants to make automated testing available to a much larger group of people, without massively increasing their app download times, it seems that a standalone test product would be one way to do it.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com1tag:blogger.com,1999:blog-38606689.post-27983309868369342402007-12-05T10:32:00.000-08:002007-12-05T10:35:09.113-08:00A Systematic Look at Testing, PerhapsSeeing the release of Firefox 2.0.0.10, followed by the rapid release of 2.0.0.11, made me wonder about how regression testing is going at Mozilla. Of course, there are no simple answers to be found for any of the issues. We all want less bugs and for bugs to get fixed more quickly. Nor am I feeling that there is some deep and dark hidden flaw that is coming to the fore here. Things could be better. No shock there. Things could be worse. Lots of people care enough to make sure they are not. And MoCo moves from one day to the next. We all love the products that come out of Mozilla, and as with anything one cares about, we are frustrated about some things. Such is life.<br /><br />But with every new test harness being talked about and with every new set of tests being brought in, the same questions and issues seem to come up for me. Every new test harness I see being developed for MoCo technologies bring me hope, but it is rarely clear why the last one is not being talked about. The same issues seem to be stumbled over. What happened to the lessons learned in the past? One problem with wiki-based communities is that people talk a lot about what they are doing. People tend not to talk about what they are not doing. Search for any kind of solution in Mozilla's information space, in any problem area, and one finds at least four or five different efforts. Only one or two may be current, but nothing gets written about why the others are not moving forward, or why they failed. It may just be against our natures to talk about things that did not work. One just has to puzzle out the things that are real from the things that just look real.<br /><br />In testing, it often seems to me that one needs to be clear about what kind of tests one wants, who can create, develop, or maintain what kinds of tests, and why different kinds of tests should or should not be run. If one is not clear about these things, tests get developed which do not get run, tests get run but they do not exercise the right things, or their results get ignored, and lots of people might be working hard to no good effect. The result is that there is no joy.<br /><br />Questions:<br /><br />(How hard is it to/Who can) develop a new test?<br />(How hard is it to/Who can) modify an existing test?<br />(How hard is it to/Who can) identify a feature or fault for which a test should be created?<br />(How hard is it to/Who can) evaluate the benefit of creating a test of the effectiveness of running a particular test over time?<br />(How hard is it to/Who can) run a test?<br />(How hard is it to/Who can) see that a test has failed?<br />(How hard is it to/Who can) identify the cause of a test failure, or interpret the failure?<br /><br />I would suggest that each of these questions defines an axis in the "problem space", the space of possibilities to in which to locate problems and suggest solutions about Mozilla products. There are risks to be managed in the Firefox source base, and possibilities to be enabled. The cost of the risk to be averted and the possible improvement to the product that are enabled have to be measured against the costs of testing. I think that answers to these questions can be used to categorize various quality efforts and give a way to judge whether testing is doing what it should do and how much should or should not be spent on it.<br /><br />I was going to take a stab at answering the one or more of questions above, but I will post this as a start. Answers can come later, especially since I do not know all of the answers. Nor am I sure I know all the questions. And if anyone wants to suggest either questions or answers, please do. And if anyone can think of a way to draw a representation of a, say, 12-dimensional space, so I can draw pictures based on something like the questions above, let me know that too.<br /><br />Thanks. More to come.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-75493915381021637072007-10-10T13:52:00.000-07:002007-10-10T14:47:31.823-07:00Extension Development, and Trials and Tribulations ThereofWell, I am almost done with an extension I am developing for a third-party company. Wow! Was this ever harder than I thought it would be....<br /><br />I had some slightly complicated things in the extension. 2.5K lines of javascript, a custom XPCOM component, a status bar icon, a toolbar popup button, a sidebar, and a partridge in a pear tree thrown in for good measure. The app was crashing on exit. Actually only FF 2.* was crashing. FF 3.* was fine.<br /><br />So, I am doing a bunch of different kinds of allocations and there are listeners and so on. I figured I was doing something wrong with the memory. Much staring at the code. Much re-reading of dbaron's docs on this stuff. Much more staring at code....<br /><br />Turned out it was this:<br /><br /><pre><br /> <toolbarbutton id="id1" type="menu" popup="id2"><br /> <menupopup id="id2" /><br /> </toolbarbutton><br /></pre><br /><br />I thought that all this memory stuff might have a problem, and it turns out to be something bone simple! It is amazing what taking a machete to your code can show you. Along the way, an amusing thing happened. I took the image attribute off the toolbarbutton and I got this:<br /><br /><img src="http://www.wykiwyk.com/mozilla/pics/badButtons.png"><br /><br />And someone said this was ok! I might try to guess at the logic, but I cannot make myself do it. Obviously, some people are very immersed in how XUL gets rendered. I hope I can learn enough to understand it. I hope I never forget that its contortions are, after all, contortions.<br /><br />Next things to do now that this monkey is almost off my back:<br /><br />- do an extension for rule-based qualification of XUL, because you need something to tell you that you can have A, B, and C together, but C makes B have no effect, and C without A does something totally different. Look at a given XUL reference. It inherits all its parent's attributes. Now, how many have any effect? How many break everything? There has got to be a way to get information about this.<br /><br />- figure out something to help me search bugzilla. I looked for bugs on this many times and did not find it. Maybe it is because the relevant bug was marked for Windows. Maybe it was because the title mentioned <menupopup> and not <toolbarbutton>. Maybe it was because the title said it happened on window close and I was searching for "quit". I do not know. I just know I truly hate trying to find things in bugzilla. But when I suggest changes to bugzilla, they seem to hate that even more. I have no idea why. So, I just obviously need to construct tools to help me get around this thing. There has got to be a better way to find bugs than creating new bugs and letting gavin find the dupes. For one thing, this is not fair to gavin, or neil, or reed, or whoever it is.<br /><br />- and some other things I am sure I have forgotten. We'll see.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com4tag:blogger.com,1999:blog-38606689.post-83089052052523946602007-09-30T20:35:00.000-07:002007-09-30T20:40:39.258-07:00Bad Intel-Only Icon for MinefieldSomeone posted a while back about this icon. I thought they said they were not sure what caused it. I got one of these and saw what it was.<br /><br /><img src="http://www.wykiwyk.com/mozilla/pics/badIntelMinefield.png"><br /><br />This is what happens when you have an app that is built only for Intel, and you are looking at it on a PPC system. It is not going to run. If it is built "fat", then it has both an Intel executable and a PPC executable hidden inside its bundle directory and it will run on either.<br /><br />This particular app was the Mac OS X 10.4.x app put up by Chris Double for his <a href="http://www.bluishcoder.co.nz/2007/08/svg-video-demo.html">SVG Video Demo</a>.<br /><br />Just FYI.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com3tag:blogger.com,1999:blog-38606689.post-37908263155226850792007-09-10T13:35:00.000-07:002007-09-10T14:26:00.247-07:00Discovering the Coolness of nsIWebProgressListenerI am writing an extension and I have been jumping through some painful hoops with the "load" and "unload" events and "onDocumentLoad" and I have been trying to figure out how this is supposed to behave....<br /><br />Then I discovered nsIWebProgressListener. What a beautiful interface!<br /><br />I had thought that, in all my questions and grumblings and gripes, that someone would have pointed me to this. Someone probably did and I probably did not hear. But then, I notice that I will be drowning in a pool and I will say "Help!" and someone will say "you probably need an instance of a nsINylonLinearExtractionDevice...". No, actually, I need to not drown! Or I need a rope. And if I decode the answer, I can see that, yes, I was told I should grab a rope. How could I have missed it? :-)<br /><br />It also makes it challenging that when you do a search (in site:mozilla.org), you are as likely to find a document from 1999 as any other. Yes, people have written new documents on the new ways of doing things. How often do the old documents get removed from wiki.m.o, or www.m.o? From the evidence, I would guess it does not happen very often.<br /><br />There needs to be many more snippets on MDC that make use of this interface. I look forward to posting some. I am recalling many newbie questions on the newsgroups where the appropriate response would have been that one needs to look at all the wonderful things this interface gives you.<br /><br />Of course, I always have a suggestion for future improvement. It's just something I have to do.<br /><br />I wanted to keep track of some resources, one for each open window or tab. The interface, through the onStateChange and onLocationChange, gives me almost everything I need. Except that when I close a window, or close a tab, I get no message? I could just keep my stuff around in case a notification ever comes in on that window. But if that window was closed, wouldn't that be a leak in my extension?<br /><br />I am sure there are other, older events I could look for, but it seems that nsIWebProgressListener was written to provide a better interface. It just needs to do the whole job.<br /><br />See: http://bugzilla.mozilla.org/show_bug.cgi?id=395709 - <br />nsIWebProgressListener can send message when window or tab is closedTau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-67045568477827785392007-09-01T14:09:00.000-07:002007-09-01T14:37:57.119-07:00Tools for UI Testing Coming Around...In case anyone missed it, as I almost did, a technology that had been called Koala was released by IBM as CoScripter. Here is <a href="http://www.kaply.com/weblog/2007/08/28/coscripter-formerly-koala-extension-for-firefox-from-ibm/">the post</a>. I, for one, am jazzed about this.<br /><br />There is an opportunity here that I want to try to take advantage of. It has been possible, for at least a few months, to use JavaScript to create events and throw them at a DOM tree and see what happens. Some really good work went into making this possible.<br /><br />But it has been made possible. It has not been made easy. As far as I know, there has not been a flood of new mochitest test cases using this API to test the UI in Firefox. Which is a shame. There is a lot of good testing that needs to be done.<br /><br />Right now, most UI testing is done via the "clicks and eyeballs" harness that is housed at Building K of MoCo Central. These people do a great job with what they are given, but frankly they should not have to do it all. If the UI was more specified and the development of automated tests was part of feature development, there would be less fire drills at release times. Fire drills may be good for building esprit de corps in an organization, but it does not always lead to a quality release. When we hear of a successful fire drill at MoCo, we should be glad they got through it, but we should be worried that it happened.<br /><br />What does this have to do with CoScripter? Am I done with my MoCo org rant? Yes, I am. And let me tell you.<br /><br />Last time I heard, CoScripter records JavaScript events. I still have to confirm this. A lot may have happened since this was shown at MoCo in February and it was said that it would be released "any day now" and then "when IBM legal signed off". And hey, it only took six months. Those lawyers must have really burned the midnight oil, yes? :-)<br /><br />The point is that it may be possible to record a user doing stuff, and then turn that into an automated test case. I am sure some processing of the resulting recording will have to occur, but I have done automated test case generation with a UI recording tool at Apple (that is proprietary and shall remain nameless), so I am pretty sure it can be done.<br /><br />Imagine a user being able to turn on an extension, and then do something that causes whatever error they are seeing, and then just drop that into a bug. It would certainly make user's bugs a bit more informative. And more automated UI tests? This cannot be a bad thing.<br /><br />Hopefully I can do this and not fail my classes this semester. We will see. :-)Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com2tag:blogger.com,1999:blog-38606689.post-54929728011179351862007-07-31T11:26:00.000-07:002007-07-31T11:53:05.952-07:00What Prevents Multi-App Development at MoCo?Reading some (but not all) of the Firefox/Thunderbird discussions, I find myself sanguine. I am not finding anything to be upset about. I think the current discussion may be more about the social structure of Mozilla. It does not seem to be a technical issue.<br /><br />Looking at the technologies, it might be helpful if MoCo became, or came to see itself as, a service-provider for projects like Thunderbird. It could be "sourceforge with benefits", or perhaps a "sourceforge with a conscience". This seems obvious.<br /><br />What makes it hard for MoCo to deal with Thunderbird as it is right now? Open-source avoids some problems one sees with commercial development. Commercial development seeks local maxima of utility with minimal investment of money. But MoCo has a similar issue. It seeks local maxima with minimal investment of social capital. What does this mean? If one looks at how Mozilla works, one sees this played out in many ways. I see some of them, but I do not think I am the best one to call them out.<br /><br />One can identify, though, the "Mozilla way" of doing things. I noticed this when I was at Apple, and I still see it today. The "Mozilla way" is to use quirky tool sets, often old tools sets, with lots of hand-crafted modifications for particular issues. Enabling flexibility in these systems is not often a priority. Often it seems to be easier to hand-craft a solution to deal with the hand-crafted solution from two years ago. Finding a general solution that does not require tweaking does not seem to be a priority. A general solution rarely has social benefit. Individual tweaks, each to satisfy a different social entity, do have social benefits.<br /><br />Why are more things not better documented? There is no social benefit to documenting that which is known by the core group. MoCo has, in general, a resistance to making things obvious. But social networks are built on shared knowledge, and if that knowledge requires a "maturation ritual", a "rite of passage", to find, all the better.<br /><br />So, why can't Mozilla keep Thunderbird up-front, alongside Firefox? Perhaps it is not a technical issue. Anthropologists tell us that primates form social networks whose size varies with the ration of the brain size to body size. Given MoCo's reliance on social cohesion, Mozilla may not be able to concentrate on Thunderbird because the social network required is too big. Is Mozilla's pervasive reliance on social cohesion a good thing?Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com5tag:blogger.com,1999:blog-38606689.post-82750768859387530822007-07-24T11:19:00.000-07:002007-07-24T17:30:19.923-07:00automated leak testing - followupI have filed a bug (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=389361">389361 - reproducible leak accessing page www.1ting.com</a>) as a result of my leak testing. There are actually 6 URLs in that bug, but I cannot differentiate the leaks, so I have reported them together. I will have to figure out the leaks-gauge output so that I can make sense of this and report better bugs.<br /><br />The leaks tool available on the Mac allows one to set an environment variable, MallocStackLogging, that makes the leaks output much more verbose. It will potentially tell you a lot about the objects being leaked. Unfortunately, this mostly works for Objective-C objects. C++ seems to be pretty good at obfuscating itself, or Apple has not done the work to help here, or both. It's a shame.<br /><br />Well, the long and short of it is that leaks-gauge output does not make very much sense to me yet. :-(<br /><br />I was not being very creative in how I got URLs. Someone pointed me to the alexa 500 and I hit pay dirt. Here are the sites I filed the bug against:<br /><br />* http://www.1ting.com<br />* http://www.chinaren.com/<br />* http://www.cmfu.com/<br />* http://www.hurriyet.com.tr/<br />* http://www.yahoo.com/<br />* http://www.zaycev.net/<br /><br />By the way, I am trying to get my add-on up onto <a href="http://addons.mozilla.org">AMO</a>. This extension does nothing but quit Firefox at any page load. This is useful when launching Firefox from a script. The extension is available at <a href="http://www.wykiwyk.com/mozilla/loadAndDie/">my site</a> and in the <a href="https://addons.mozilla.org/en-US/firefox/developers/details/5371">AMO sand box</a> (<i>login required, or may not be reachable</i>). If anyone wants to review, after reading the docs, please do. I am not sure what the trigger is for getting it accepted on AMO. We will see.<br /><br />I find it interesting that these leaks are sometimes not reproducible. There were a couple of dozen URLs in the list which generated leaks, but only once. As I re-tested URLs, sometimes they would leak every other time (like www.yahoo.com) and sometimes every third access (like www.1ting.com) and sometimes it was just more random than that. I did not list a URL if I could not get it to leak again. I am re-launching the browser each time, though, so I thought the testing would be more reproducible. It is <span style="font-weight:bold;">more</span> reproducible, but it is still surprising to me how many one-time leaks there were. There are some questions I am going to investigate.<br /><br />* Does it matter if I randomize the list of URLs I am checking?<br />* If I automatically retry leaking URLs a certain number of times, how many times should I check?<br />* What files in the app bundle or in the profile directory change with an instance launch and shutdown? Or,<br />* What state being held between app launches?<br /><br />We'll see.Tau Centralhttp://www.blogger.com/profile/04639944664204798442noreply@blogger.com1