Bug 6419 - [review] SpamD/SpamC report email as not spam but also reports Hits = Required Threshold
Summary: [review] SpamD/SpamC report email as not spam but also reports Hits = Require...
Status: RESOLVED FIXED
Alias: None
Product: Spamassassin
Classification: Unclassified
Component: spamc/spamd (show other bugs)
Version: 3.3.0
Hardware: All All
: P1 blocker
Target Milestone: 3.3.2
Assignee: SpamAssassin Developer Mailing List
URL:
Whiteboard: ready for commit
Keywords:
Depends on:
Blocks:
 
Reported: 2010-04-19 16:59 UTC by Kevin A. McGrail
Modified: 2010-07-31 08:06 UTC (History)
3 users (show)


Attachment Type Modified Status Actions Submitter/CLA Status
Patch of PerMsgStatus.pm for clarity and duplication of routine in spamd patch None Kevin A. McGrail [HasCLA]
Patch of PerMsgStatus.pm, Util.pm and spamd to round spam score consistently using the same routine patch None Kevin A. McGrail [HasCLA]
VERY small change to remove an extra semi-colon patch None Kevin A. McGrail [HasCLA]
Show Obsolete (2) Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Kevin A. McGrail 2010-04-19 16:59:48 UTC 
spamc called with parameter -R is printing the report with

   "The first line of the output is the message score and the thresh­old, in this format: score/threshold"

However, the first line does NOT agree with the content analysis details. Here's the output from /usr/local/bin/spamc -R -z -d localhost -u root < /tmp/3:

6.5/6.5

...(STUFF REMOVED)

Content analysis details:   (6.4 points, 6.5 required)

 1.1 URIBL_GREY             Contains an URL listed in the URIBL greylist
                            [URIs: constantcontact.com]
 1.0 EXTRA_MPART_TYPE       Header has extraneous Content-type:...type= entry
-0.5 TEMP                   TEMP
 2.4 ONLINE_PHARMACY        BODY: Online Pharmacy
 1.2 TVD_VISIT_PHARMA       BODY: TVD_VISIT_PHARMA
 0.0 HTML_MESSAGE           BODY: HTML included in message
 2.3 ADVANCE_FEE_2          Appears to be advance fee fraud (Nigerian 419)
 0.0 T_LOTS_OF_MONEY        Huge... sums of money
-1.0 KAM_RPTR_PASSED        Passed Mail Relay Reverse DNS Test
-0.0 AWL                    AWL: From: address is in the auto white-list


I am using spamc -R and using the first line of output from spamc to determine if the email was spam by checking if score is >= thresholdto test.

OK, so long and short, this is bug 2607 rearing it's head in spamd.  

I have a patch against 3.3.0 that works.  However, centralizing the routine that I've duplicated for PerMsgStatus.pm would likely be a better solution.
Comment 1 Kevin A. McGrail 2010-04-19 17:01:38 UTC 
Created attachment 4750 [details]
Patch of PerMsgStatus.pm for clarity and duplication of routine in spamd
Comment 2 Kevin A. McGrail 2010-04-21 17:42:54 UTC 
I believe this is a fairly big bug as spamd is reporting different scores that PerMsgStatus.pm.  I have re-written the patch to move the rounding function from PMS to Util.pm and changed PMS and Spamd to both use the same routine for consistency.
Comment 3 Kevin A. McGrail 2010-04-21 17:43:41 UTC 
Created attachment 4752 [details]
Patch of PerMsgStatus.pm, Util.pm and spamd to round spam score consistently using the same routine
Comment 4 Karsten Bräckelmann 2010-05-26 17:09:17 UTC 
+1, looks good

Even though I would have preferred the public function to stay in PMS, but that might just be me and weird in another way.  Oh, and could you please do an s/;;/;/ on the Util.pm hunk of the patch? ;)
Comment 5 Karsten Bräckelmann 2010-05-26 17:12:18 UTC 
Forgot to mention: I didn't run the code, just checked the diff -- based on the previous discussion on the dev list.
Comment 6 Kevin A. McGrail 2010-05-27 13:35:25 UTC 
Created attachment 4761 [details]
VERY small change to remove an extra semi-colon

(In reply to comment #4)
> Even though I would have preferred the public function to stay in PMS, but that
> might just be me and weird in another way.  Oh, and could you please do an
> s/;;/;/ on the Util.pm hunk of the patch? ;)

From memory, PMS is a class and I needed a procedural call to use the same function uniformly throughout.  This issue really came down to implementations to do the same functionality that were not kept in sync.  

re: double semi-colon, new patch attached.
(In reply to comment #5)
> Forgot to mention: I didn't run the code, just checked the diff -- based on the
> previous discussion on the dev list.

No worries, I've been running in production now since the day of the patch so I stand behind it.
Comment 7 Mark Martinec 2010-05-29 12:23:57 UTC 
+0.1

I don't mind the proposed change. I'm just rather skeptical
on this entire rounding business - the deeper these tricks go
and the more complex they become, the more difficult it is
to explain how this all works. Like opening a can of worms.
If it were my code, I'd ditch the whole rounding magic and
just let the sprintf %f do its rounding job to whatever format
is required in each presentation text. Users should realize
by now (during the last 50 years) how this floating point
arithmetics works.
Comment 8 Kevin A. McGrail 2010-05-30 18:25:36 UTC 
(In reply to comment #7)
> +0.1
> 
> I don't mind the proposed change. I'm just rather skeptical
> on this entire rounding business - the deeper these tricks go
> and the more complex they become, the more difficult it is
> to explain how this all works. Like opening a can of worms.
> If it were my code, I'd ditch the whole rounding magic and
> just let the sprintf %f do its rounding job to whatever format
> is required in each presentation text. Users should realize
> by now (during the last 50 years) how this floating point
> arithmetics works.

Mark,

I don't disagree but bug 2607 was the original bug.  All this patch is doing is using the same code everywhere that was previously implemented.  The previous implementation missed code in spamc/spamd that has been overlooked until now.

And I think for me, a major change would be to report to 5 decimal places.  Because this really isn't a floating point arithmetic issue.  This is a rounding up for the reporting but using the real number for the is_spam flag.

Regards,
KAM
Comment 9 Sidney Markowitz 2010-07-17 18:32:56 UTC 
+1
ready for commit to 3.3 branch
Comment 10 Sidney Markowitz 2010-07-17 18:35:52 UTC 
Shouldn't this have been committed to trunk already?
Comment 11 Kevin A. McGrail 2010-07-21 14:54:08 UTC 
(In reply to comment #10)
> Shouldn't this have been committed to trunk already?

I don't know. I usually wait for the vote to apply to trunk.  Am I doing that incorrectly?

Trunk commit:

svn commit -m 'Bug 6419 patch commit to resolve rounding issue irregularity with spamd/spamc'
Sending        lib/Mail/SpamAssassin/PerMsgStatus.pm
Sending        lib/Mail/SpamAssassin/Util.pm
Sending        spamd/spamd.raw
Transmitting file data ...
Committed revision 966355.

3.3 branch commit:
svn commit -m 'Bug 6419 patch commit to resolve rounding issue irregularity with spamd/spamc'
Sending        lib/Mail/SpamAssassin/PerMsgStatus.pm
Sending        lib/Mail/SpamAssassin/Util.pm
Sending        spamd/spamd.raw
Transmitting file data ...
Committed revision 966357.

Regards,
KAM
Comment 12 Sidney Markowitz 2010-07-21 15:53:22 UTC 
(in reply to comment #11)

Commits to trunk are CTR (Commit then review), no votes required (or rather, only the one implied vote of the person committing it is required) but anyone can notice a problem and veto it to have the commit reverted.

Commits to branches are RTC, requiring three votes and no vetoes before committing.

Since only one vote is needed to commit to trunk, in general the committer who is proposing a patch for branch commits to trunk at the same time that they post the patch and call for votes for branch.

Of course it can go somewhat differently if you are asking for opinions or review before you are sure that you like your own proposal, or if the patch is submitted by a non-committer and so doesn't even have one vote yet.

But it is important to have the process such that it is difficult to accidentally forget to commit something to trunk that has been committed to branch. That has happened before with unfortunate results.
Comment 13 Kevin A. McGrail 2010-07-21 16:15:08 UTC 
(In reply to comment #12)
> (in reply to comment #11)
> 
> Commits to trunk are CTR (Commit then review), no votes required (or rather,
> only the one implied vote of the person committing it is required) but anyone
> can notice a problem and veto it to have the commit reverted.
> 
> Commits to branches are RTC, requiring three votes and no vetoes before
> committing.
> 
> Since only one vote is needed to commit to trunk, in general the committer who
> is proposing a patch for branch commits to trunk at the same time that they
> post the patch and call for votes for branch.
> 
> Of course it can go somewhat differently if you are asking for opinions or
> review before you are sure that you like your own proposal, or if the patch is
> submitted by a non-committer and so doesn't even have one vote yet.
> 
> But it is important to have the process such that it is difficult to
> accidentally forget to commit something to trunk that has been committed to
> branch. That has happened before with unfortunate results.

Thanks for the detailed explanation.  I will change my behavior with the trunk commits to be in line with this procedure.

Regards,
KAM
Comment 14 Sidney Markowitz 2010-07-21 17:30:20 UTC 
(in reply to comment #13)

Oh, I should have mentioned that trunk goes to RTC for a freeze period as part of the release procedure, and you should see the wiki page about all this for more details:

http://wiki.apache.org/spamassassin/DevelopmentMode
Comment 15 Matt Kettler 2010-07-31 08:06:26 UTC 
Just so there's the proper number of votes 

+1 to commit to 3.3

I agree that we don't really want a ton of decimal places, and variable could cause formatting issues (although we could possibly make this a configure-time option at some point, for those who really want more, that seems like a lot of work for not much point.)

Regardless, if we're going to round, it is crucial we do it the same way everywhere.