Air Traffic

We've been watching people use Copilot all day. It's been very interesting and insightful but also a bit painful. It's really frustrating to see all the different ways people can fail to successfully use Copilot.  We've seen people who can't find Internet Explorer, people who type www.copilot.com into MSN instead of the address bar, people who successfully get connected but then don't realize that they're controlling the other person's computer instead of their own...  We've seen just about everything. We're learning a ton though! We've filed at least a dozen usablitiy bugs already...

In addition to the frustrations, there have also been a few moments of great triumph. We just had one such moment when a user entered www.copolit.com instead of www.copilot.com. Fortunately, Joel had the foresight to register a number of misspellings of copilot.com... As we watched, I held my breath, wondering if that one had made the list... Fortunately it had, and the session went on without a hitch!  Yay!

So, we haven't been updating much lately, mostly because we've all been quite busy rolling out the Fog Creek Copilot private beta.  Tomorrow we are having usability testing to see if there are any other interface issues that we need to address in order to make it as easy to use as possible.  Thanks to everyone who has participated in the private beta, you have given us extremely useful feedback!

After days of frantic debugging, an empty web page never looked so good:

...it's Saturday night! I'm at work. So is Ben. We're both working away on getting things ready for the upcoming beta. I am personally getting all the CSS work done so that we have a professional looking site. We just got the home page design yesterday, and seeing as we need it up soon, working on the weekend was really the only option. Fortunately, it has come together pretty easily and I have not had to use too many browser hacks to make it work. The design looks really good, better than any of us could have ever come up with. I think I've replicated it in HTML/CSS pretty well, but I will let you all be the judge of that when the public beta comes out. For reference, you can always send me feedback at Tyler (AT) fogcreek (DOT) com.

Because I haven't posted in a while, I thought it would also be good to update my progess on the security features. SSL has been implemented in the VNC protocol, and is almost completely transparent. There seems to be some minor buffering issues that I need to address to make respond just a little quicker, but it's barely noticible. Next, I need to write a small program to create SSL certificates so everything is truly secure, but that won't make it into the private beta due to time.

Have a good evening!

Today was quite a busy day for everybody getting ready for the private beta launch next week.  The beta applications have been flooding in. Well, not quite flooding, but there are certainly far more than I expected, and the number continues to rise.  In retrospect I should’ve used a form to gather the information.  I wrote a perl script to parse all the data (age, target, etc) into an excel sheet, but there was too much inconsistencies in all the different e-mail formatting for it to work right.  After dealing with a fourth type of divider (Name:,   Name –,  Name*,  Name\n) I finally just threw up my hands and did all the data entry by hand.  I’ll be selecting and contacting the first wave of testers soon, most likely on Monday.

While the other three guys are working on getting all the kinks out of the code I’ve been writing and finalizing all the website copy, redoing the terms of use agreement, working with our graphic designer, Mike Lok at Urbane-Dog Creative, on the concept and Photoshop work for the website, preparing a mailing to send out the rest of our brochures from CFUNITED to some FogBUGZ customers, and dealing with the mass of beta e-mails.  It’s been a pretty packed day.

The initial concept art for the website looks great.  I worked with Mike Lok last summer when I was a marketing intern for Aileron Group LLC, a technology consulting firm in Boston.  He’s really good at what he does. He’s just giving us Photoshop files and Tyler is breaking it up into CSS himself.  The beta will hopefully have a limited version of the art he’s sent us, though it’s possible we’ll just go with the barebones version we have now until it’s all ready. 

So that’s what’s going on around here.  It’s pretty exciting, though pretty stressful at the same time.

“This is when you give up and realize that something that could take you 10 seconds to fix in person is about to become a two hour nightmare during which you'll alienate your family, lose sleep, tie up the phone line while your Auntie Marge is stuck on the turnpike with no gas and can't get through to your uncle to come rescue her, and curse your lot in life. Just because you're a programmer doesn't mean you have to be the help desk for a dozen friends, relatives, and the people in the apartment next door. Does it?”

Project Aardvark Midterm Report

Today I added a feature to the website that allows you to email instructions to the person you're trying to help.  Because I fear spam filters, I tested the email against gmail, hotmail, and yahoo.  gmail and hotmail were no problem, but yahoo filed it away as spam. After looking at the email carefully and failing to figure out what was spammy about it, I ran it through SpamAssassin. It got a perfect score of 0. So I just started tinkering with the email, sending variation after variation until finally yahoo delivered it to my inbox. The problem ended up being that the email contained links to http://localhost/aardvark/ (since I was testing it on my local development machine).  Changing the links to http://www.copilot.com/ made yahoo happy.

So basically I spent around 90 minutes tracking down a problem that doesn't even matter because the production site will obviously send emails that link to copilot.com, not localhost...  Therefore, I am now blogging about the experience to make it seem less like a waste of time. Enjoy. =]

Today, the topic is the law of unintended consequences as it applies to modifying software.

Since we’ve now revealed what Fog Creek Copilot is, I can talk in a lot more detail about exactly what I’m up to. At the moment, I’m wrapping up some GUI improvements that have been the source of two weeks of misery for me. As you all know by now, we’re using TightVNC as our code base. We’re diverging more and more from that starting point (we stopped complying with VNC’s protocol weeks ago and will break a lot more in about a week when I change the compression mechanism), but the fact it’s our base means that certain design decisions made for TightVNC affect the design of Aardvark.

One of the design decisions that vncviewer (the TightVNC client) made was an extreme usability headache. Specifically, there is no way to quit vncviewer until the connection has fully succeeded or fully failed—i.e., you cannot abort the connection during handshaking. This manifests itself in the UI by giving you a tiny window that pops up that says “Connecting…” and has a button marked “Hide.” The “Hide” button does exactly that: it hides the window. You may think that vncviewer has quit, since it no longer has any open windows or taskbar icons, but it’ll actually still continue trying to make the connection. This results either in a window popping up unexpectedly several seconds later or in a seemingly random message box telling you that a connection couldn’t be established. Either one is surprising and confusing if you thought that vncviewer had been closed for several minutes. We found this behavior totally unacceptable, so the spec called for displaying a normal window immediately and allowing the user to quit at any time.

Unfortunately, vncviewer had some design decisions that made fixing this extremely difficult. All of the negotiations occurred in an independent thread that could not be stopped once it was launched. No useful feedback came out of the thread (it updated some text, but didn't pass any messages). The viewing window assumed that, if it were displayed, it had a valid connection, which meant that it would complain when it tried to send data to a nonexistent socket.

Just under two weeks ago, I started the process of tackling these issues. I broke up most of the worker thread into chunks handled by Windows messages, and I modified what was left of the negotiation thread to use message passing and flags to let the user quit cleanly. That solved about 50% of the problem. There were a tremendous number of bugs, but I was able to fix the overwhelming majority of them over the next few days without any major problems.

Except one. This heavily modified program, which was for the first time called Aardvark Helper in our internal emails instead of vncviewer, had a tendency of closing the connection during the negotiation cycle. A lot. The problem was that it wasn't easily reproducible. It was certainly pervasive—it happened constantly—but there were no replicatable sequences that would cause the bug to surface. Usually, launching Aardvark Helper and then WinVNC caused a crash, but sometimes it didn’t, and occasionally launching WinVNC and then Aardvark Helper also crashed. Frequently both orders would be fine several tries in a row. Most frustratingly, stepping through handshaking in the debugger fixed the problem. Doing that was the one surefire way to guarantee that everything would work just peachy.

I scoured the way I’d broken up handshaking looking for any clue of what was going wrong. Inconsistent crashing during code that you know is threaded is usually a sign of a threading issue, so at first I thought that the handshaking wasn’t proceeding linearly or was restarting itself at some point. Yet a collection of printfs quickly assured me that my refactored negotiation code was running just fine, even when the program was crashing, which removed that possibility from the table. Unfortunately, this happened running up to CFUNITED, so I couldn't stay focused on just this one bug. In fact, I couldn't even focus on just this one code base: we had forked everything a few days earlier for the show and had a policy of fixing bugs in those builds by any means necessary (which at one point meant adding a line in code that basically read "if you can't open the file, pretend you could and wing it"). So I had a very hard time actually focusing on any individual bug for very long.

Literally the day before CFUNITED, I discovered yet another bug: Aardvark Helper wouldn’t send mouse movements unless the window lost focus and then got it back. I was too busy to deal with this quirk at that point, so I simply filed it in FogBUGZ and figured I’d attack it later.

Yesterday, I got back to attacking the crash-during-negotiation bug. As I toyed for the umpteenth time to see whether I could reproduce it reliably, I was also scanning open issues in FogBUGZ, and suddenly, I realized something. Aardvark Helper wasn’t sending messages unless the window lost and regained focus. The crash normally happened if I launched Aardvark Helper, then WinVNC. When I did that, I usually, but not always, then reselected Aardvark Helper, which meant…

Which meant that reselecting the Aardvark Helper window and then moving the mouse would cause the program to send VNC data during handshaking. Which causes the programs to quit because they get corrupt data during the handshake.

I’d thought to ensure that Aardvark Helper’s window wouldn’t send data when the socket was invalid, but I’d neglected to make a distinction between a valid VNC-like connection and a simple socket connection in the middle of handshaking. Oops.

A mere 25 lines of code later, the bleeding-edge version of Aardvark Helper now has the stability of the CFUNITED build, in single-window form. So now the applications run smoothly and stably, and for the first time in weeks, I can honestly say that neither Aardvark Helper nor Aardvark Host have any known operational bugs. It was a headache getting here, but at least I’m pretty confident now that when we start the private beta in a few days, the clients will be ready.