mirror of
https://github.com/neondatabase/neon.git
synced 2026-05-14 19:50:38 +00:00
80854b98ff
Cancellation and timeouts are handled at remote_storage callsites, if
they are. However they should always be handled, because we've had
transient problems with remote storage connections.
- Add cancellation token to the `trait RemoteStorage` methods
- For `download*`, `list*` methods there is
`DownloadError::{Cancelled,Timeout}`
- For the rest now using `anyhow::Error`, it will have root cause
`remote_storage::TimeoutOrCancel::{Cancel,Timeout}`
- Both types have `::is_permanent` equivalent which should be passed to
`backoff::retry`
- New generic RemoteStorageConfig option `timeout`, defaults to 120s
- Start counting timeouts only after acquiring concurrency limiter
permit
- Cancellable permit acquiring
- Download stream timeout or cancellation is communicated via an
`std::io::Error`
- Exit backoff::retry by marking cancellation errors permanent
Fixes: #6096
Closes: #4781
Co-authored-by: arpad-m <arpad-m@users.noreply.github.com>
170 lines
4.8 KiB
Rust
170 lines
4.8 KiB
Rust
use std::{
|
|
future::Future,
|
|
pin::Pin,
|
|
task::{Context, Poll},
|
|
time::Duration,
|
|
};
|
|
|
|
use bytes::Bytes;
|
|
use futures_util::Stream;
|
|
use tokio_util::sync::CancellationToken;
|
|
|
|
use crate::TimeoutOrCancel;
|
|
|
|
pin_project_lite::pin_project! {
|
|
/// An `AsyncRead` adapter which carries a permit for the lifetime of the value.
|
|
pub(crate) struct PermitCarrying<S> {
|
|
permit: tokio::sync::OwnedSemaphorePermit,
|
|
#[pin]
|
|
inner: S,
|
|
}
|
|
}
|
|
|
|
impl<S> PermitCarrying<S> {
|
|
pub(crate) fn new(permit: tokio::sync::OwnedSemaphorePermit, inner: S) -> Self {
|
|
Self { permit, inner }
|
|
}
|
|
}
|
|
|
|
impl<S: Stream> Stream for PermitCarrying<S> {
|
|
type Item = <S as Stream>::Item;
|
|
|
|
fn poll_next(self: Pin<&mut Self>, cx: &mut Context<'_>) -> Poll<Option<Self::Item>> {
|
|
self.project().inner.poll_next(cx)
|
|
}
|
|
|
|
fn size_hint(&self) -> (usize, Option<usize>) {
|
|
self.inner.size_hint()
|
|
}
|
|
}
|
|
|
|
pin_project_lite::pin_project! {
|
|
pub(crate) struct DownloadStream<F, S> {
|
|
hit: bool,
|
|
#[pin]
|
|
cancellation: F,
|
|
#[pin]
|
|
inner: S,
|
|
}
|
|
}
|
|
|
|
impl<F, S> DownloadStream<F, S> {
|
|
pub(crate) fn new(cancellation: F, inner: S) -> Self {
|
|
Self {
|
|
cancellation,
|
|
hit: false,
|
|
inner,
|
|
}
|
|
}
|
|
}
|
|
|
|
/// See documentation on [`crate::DownloadStream`] on rationale why `std::io::Error` is used.
|
|
impl<E, F, S> Stream for DownloadStream<F, S>
|
|
where
|
|
std::io::Error: From<E>,
|
|
F: Future<Output = E>,
|
|
S: Stream<Item = std::io::Result<Bytes>>,
|
|
{
|
|
type Item = <S as Stream>::Item;
|
|
|
|
fn poll_next(self: Pin<&mut Self>, cx: &mut Context<'_>) -> Poll<Option<Self::Item>> {
|
|
let this = self.project();
|
|
|
|
if !*this.hit {
|
|
if let Poll::Ready(e) = this.cancellation.poll(cx) {
|
|
*this.hit = true;
|
|
let e = Err(std::io::Error::from(e));
|
|
return Poll::Ready(Some(e));
|
|
}
|
|
}
|
|
|
|
this.inner.poll_next(cx)
|
|
}
|
|
|
|
fn size_hint(&self) -> (usize, Option<usize>) {
|
|
self.inner.size_hint()
|
|
}
|
|
}
|
|
|
|
/// Fires only on the first cancel or timeout, not on both.
|
|
pub(crate) async fn cancel_or_timeout(
|
|
timeout: Duration,
|
|
cancel: CancellationToken,
|
|
) -> TimeoutOrCancel {
|
|
tokio::select! {
|
|
_ = tokio::time::sleep(timeout) => TimeoutOrCancel::Timeout,
|
|
_ = cancel.cancelled() => TimeoutOrCancel::Cancel,
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::*;
|
|
use crate::DownloadError;
|
|
use futures::stream::StreamExt;
|
|
|
|
#[tokio::test(start_paused = true)]
|
|
async fn cancelled_download_stream() {
|
|
let inner = futures::stream::pending();
|
|
let timeout = Duration::from_secs(120);
|
|
let cancel = CancellationToken::new();
|
|
|
|
let stream = DownloadStream::new(cancel_or_timeout(timeout, cancel.clone()), inner);
|
|
let mut stream = std::pin::pin!(stream);
|
|
|
|
let mut first = stream.next();
|
|
|
|
tokio::select! {
|
|
_ = &mut first => unreachable!("we haven't yet cancelled nor is timeout passed"),
|
|
_ = tokio::time::sleep(Duration::from_secs(1)) => {},
|
|
}
|
|
|
|
cancel.cancel();
|
|
|
|
let e = first.await.expect("there must be some").unwrap_err();
|
|
assert!(matches!(e.kind(), std::io::ErrorKind::Other), "{e:?}");
|
|
let inner = e.get_ref().expect("inner should be set");
|
|
assert!(
|
|
inner
|
|
.downcast_ref::<DownloadError>()
|
|
.is_some_and(|e| matches!(e, DownloadError::Cancelled)),
|
|
"{inner:?}"
|
|
);
|
|
|
|
tokio::select! {
|
|
_ = stream.next() => unreachable!("no timeout ever happens as we were already cancelled"),
|
|
_ = tokio::time::sleep(Duration::from_secs(121)) => {},
|
|
}
|
|
}
|
|
|
|
#[tokio::test(start_paused = true)]
|
|
async fn timeouted_download_stream() {
|
|
let inner = futures::stream::pending();
|
|
let timeout = Duration::from_secs(120);
|
|
let cancel = CancellationToken::new();
|
|
|
|
let stream = DownloadStream::new(cancel_or_timeout(timeout, cancel.clone()), inner);
|
|
let mut stream = std::pin::pin!(stream);
|
|
|
|
// because the stream uses 120s timeout we are paused, we advance to 120s right away.
|
|
let first = stream.next();
|
|
|
|
let e = first.await.expect("there must be some").unwrap_err();
|
|
assert!(matches!(e.kind(), std::io::ErrorKind::Other), "{e:?}");
|
|
let inner = e.get_ref().expect("inner should be set");
|
|
assert!(
|
|
inner
|
|
.downcast_ref::<DownloadError>()
|
|
.is_some_and(|e| matches!(e, DownloadError::Timeout)),
|
|
"{inner:?}"
|
|
);
|
|
|
|
cancel.cancel();
|
|
|
|
tokio::select! {
|
|
_ = stream.next() => unreachable!("no cancellation ever happens because we already timed out"),
|
|
_ = tokio::time::sleep(Duration::from_secs(121)) => {},
|
|
}
|
|
}
|
|
}
|