cloud_topics/reconciler: add retry mechanism for transport errors #27724
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -24,10 +24,15 @@ | |
| #include "model/namespace.h" | ||
| #include "random/generators.h" | ||
| #include "ssx/future-util.h" | ||
| #include "utils/retry_chain_node.h" | ||
|
|
||
| #include <seastar/core/shared_ptr.hh> | ||
| #include <seastar/util/log.hh> | ||
|
|
||
| #include <chrono> | ||
|
|
||
| using namespace std::chrono_literals; | ||
|
|
||
| namespace { | ||
| ss::logger lg("reconciler"); | ||
|
|
||
|
|
@@ -534,6 +539,37 @@ reconciler::add_object_metadata( | |
| co_return std::expected<void, reconcile_error>{}; | ||
| } | ||
|
|
||
| ss::future<std::expected<l1::metastore::add_response, l1::metastore::errc>> | ||
| reconciler::add_objects_with_retry( | ||
| std::unique_ptr<l1::metastore::object_metadata_builder> meta_builder, | ||
| l1::metastore::term_offset_map_t terms) { | ||
| static constexpr auto timeout = 5s; | ||
| static constexpr auto backoff = 100ms; | ||
|
|
||
| retry_chain_node rtc(_as, ss::lowres_clock::now() + timeout, backoff); | ||
wdberkeley marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| retry_chain_logger ctxlog(lg, rtc, "add_objects"); | ||
| for (auto permit = rtc.retry(); permit.is_allowed; permit = rtc.retry()) { | ||
| auto add_result = co_await _metastore->add_objects( | ||
|
There was a problem hiding this comment. Should the code inside the metastore->add_objects retry? It should have better "understanding" on how the requests should be retried. There was a problem hiding this comment. Requests are idempotent, and Andrew considered this to be the simplest thing: https://redpandadata.atlassian.net/browse/CORE-13427?focusedCommentId=89779 There was a problem hiding this comment. this is not ideal because this way we're baking in some assumptions about the metastore and it's commands into the implementation of the reconciler (specifically, the fact that the command is idempotent and that the backoff is exponential) but maybe it's not a major concern at this moment |
||
| *meta_builder, terms); | ||
|
|
||
| if (add_result.has_value()) { | ||
| co_return std::move(add_result).value(); | ||
| } | ||
|
|
||
| if (add_result.error() != l1::metastore::errc::transport_error) { | ||
| vlog( | ||
| lg.error, | ||
| "Non-retryable error adding objects to the L1 metastore: {}", | ||
| add_result.error()); | ||
| co_return std::unexpected(add_result.error()); | ||
| } | ||
|
There was a problem hiding this comment. The fact that we got metastore transport_error doesn't mean that the add_objects request wasn't applied to the metastore. Is add_objects idempotent? |
||
|
|
||
| co_await ss::sleep_abortable(permit.delay, rtc.root_abort_source()); | ||
|
There was a problem hiding this comment. This will throw if aborted, everywhere else we use There was a problem hiding this comment. It's inside the reconciler round's try-catch so if it aborts (presumably because of shutdown) it'll abandon the round, which I think is the right thing to do. There was a problem hiding this comment. agree it's fine, but it's get a little hard to review when we are just mixing std::expected and exceptions. a reasonable pattern might be to have a top-level try/catch which treats exceptions as surprises. |
||
| } | ||
|
|
||
| co_return std::unexpected(l1::metastore::errc::transport_error); | ||
| } | ||
|
|
||
| ss::future<std::expected<void, reconcile_error>> reconciler::commit_objects( | ||
| const chunked_vector<built_object_metadata>& objects, | ||
| std::unique_ptr<l1::metastore::object_metadata_builder> meta_builder) { | ||
|
|
@@ -551,11 +587,11 @@ ss::future<std::expected<void, reconcile_error>> reconciler::commit_objects( | |
| } | ||
| } | ||
|
|
||
| auto add_objects_result = co_await add_objects_with_retry( | ||
| std::move(meta_builder), std::move(terms)); | ||
wdberkeley marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| if (!add_objects_result.has_value()) { | ||
| vlog( | ||
| lg.warn, | ||
| "Failed to add objects to the L1 metastore: {}", | ||
| add_objects_result.error()); | ||
| // TODO: The objects have been uploaded. The reconciler could | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We may have some existing config parameters that can be used here.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Poked around a bit and couldn't find any config properties or general parameters in cloud topics for this. Did you have something in mind? Maybe there are some numbers that could be applied multiple places we could factor out into configuration?