CDRIVER-2237 re-check servers after network errors

ajdavis · ajdavis · commit 74600b68eb7c · 2017-08-25T18:24:06.000-04:00
Obeying the Server Discovery and Monitoring Spec, mark a server Unknown
after any network besides a timeout, re-check the server before using it
again.
diff --git a/src/mongoc/mongoc-cluster-private.h b/src/mongoc/mongoc-cluster-private.h
@@ -82,7 +82,10 @@ void
 mongoc_cluster_destroy (mongoc_cluster_t *cluster);
 
 void
-mongoc_cluster_disconnect_node (mongoc_cluster_t *cluster, uint32_t id);
+mongoc_cluster_disconnect_node (mongoc_cluster_t *cluster,
+                                uint32_t id,
+                                bool invalidate,
+                                const bson_error_t *why);
 
 int32_t
 mongoc_cluster_get_max_bson_obj_size (mongoc_cluster_t *cluster);
@@ -101,8 +104,7 @@ _mongoc_cluster_buffer_iovec (mongoc_iovec_t *iov,
                               char *buffer);
 
 bool
-mongoc_cluster_check_interval (mongoc_cluster_t *cluster,
-                               uint32_t server_id);
+mongoc_cluster_check_interval (mongoc_cluster_t *cluster, uint32_t server_id);
 
 bool
 mongoc_cluster_sendv_to_server (mongoc_cluster_t *cluster,
diff --git a/src/mongoc/mongoc-cluster.c b/src/mongoc/mongoc-cluster.c
@@ -409,7 +409,7 @@ mongoc_cluster_run_command_internal (mongoc_cluster_t *cluster,
                                     cluster->iov.len,
                                     cluster->sockettimeoutms,
                                     error)) {
-      mongoc_cluster_disconnect_node (cluster, cmd->server_id);
+      mongoc_cluster_disconnect_node (cluster, cmd->server_id, true, error);
 
       /* add info about the command to writev_full's error message */
       _bson_error_message_printf (
@@ -427,11 +427,12 @@ mongoc_cluster_run_command_internal (mongoc_cluster_t *cluster,
                                                 reply_header_size,
                                                 reply_header_size,
                                                 cluster->sockettimeoutms)) {
-      mongoc_cluster_disconnect_node (cluster, cmd->server_id);
       RUN_CMD_ERR (MONGOC_ERROR_STREAM,
                    MONGOC_ERROR_STREAM_SOCKET,
                    "socket error or timeout");
 
+      mongoc_cluster_disconnect_node (
+         cluster, cmd->server_id, !mongoc_stream_timed_out (stream), error);
       GOTO (done);
    }
 
@@ -1347,7 +1348,9 @@ _mongoc_cluster_auth_node (mongoc_cluster_t *cluster,
  * mongoc_cluster_disconnect_node --
  *
  *       Remove a node from the set of nodes. This should be done if
- *       a stream in the set is found to be invalid.
+ *       a stream in the set is found to be invalid. If @invalidate is
+ *       true, also mark the server Unknown in the topology description,
+ *       passing the error information from @why as the reason.
  *
  *       WARNING: pointers to a disconnected mongoc_cluster_node_t or
  *       its stream are now invalid, be careful of dangling pointers.
@@ -1363,9 +1366,13 @@ _mongoc_cluster_auth_node (mongoc_cluster_t *cluster,
  */
 
 void
-mongoc_cluster_disconnect_node (mongoc_cluster_t *cluster, uint32_t server_id)
+mongoc_cluster_disconnect_node (mongoc_cluster_t *cluster,
+                                uint32_t server_id,
+                                bool invalidate,
+                                const bson_error_t *why /* IN */)
 {
    mongoc_topology_t *topology = cluster->client->topology;
+
    ENTRY;
 
    if (topology->single_threaded) {
@@ -1377,13 +1384,15 @@ mongoc_cluster_disconnect_node (mongoc_cluster_t *cluster, uint32_t server_id)
       /* might never actually have connected */
       if (scanner_node && scanner_node->stream) {
          mongoc_topology_scanner_node_disconnect (scanner_node, true);
-         EXIT;
       }
-      EXIT;
    } else {
       mongoc_set_rm (cluster->nodes, server_id);
    }
 
+   if (invalidate) {
+      mongoc_topology_invalidate_server (topology, server_id, why);
+   }
+
    EXIT;
 }
 
@@ -1606,10 +1615,9 @@ _mongoc_cluster_stream_for_server (mongoc_cluster_t *cluster,
        * ServerDescription of type Unknown, and fill the ServerDescription's
        * error field with useful information."
        *
-       * error was filled by fetch_stream_single/pooled, pass it to invalidate()
+       * error was filled by fetch_stream_single/pooled, pass it to disconnect()
        */
-      mongoc_cluster_disconnect_node (cluster, server_id);
-      mongoc_topology_invalidate_server (topology, server_id, err_ptr);
+      mongoc_cluster_disconnect_node (cluster, server_id, true, err_ptr);
    }
 
    RETURN (server_stream);
@@ -1643,18 +1651,23 @@ mongoc_cluster_stream_for_server (mongoc_cluster_t *cluster,
                                   bson_error_t *error)
 {
    mongoc_server_stream_t *server_stream = NULL;
+   bson_error_t err_local;
 
    ENTRY;
 
    BSON_ASSERT (cluster);
    BSON_ASSERT (server_id);
 
+   if (!error) {
+      error = &err_local;
+   }
+
    server_stream = _mongoc_cluster_stream_for_server (
       cluster, server_id, reconnect_ok, error);
 
    if (!server_stream) {
       /* failed */
-      mongoc_cluster_disconnect_node (cluster, server_id);
+      mongoc_cluster_disconnect_node (cluster, server_id, true, error);
    }
 
    RETURN (server_stream);
@@ -1801,7 +1814,8 @@ mongoc_cluster_fetch_stream_pooled (mongoc_cluster_t *cluster,
       if (timestamp == -1 || cluster_node->timestamp < timestamp) {
          /* topology change or net error during background scan made us remove
           * or replace server description since node's birth. destroy node. */
-         mongoc_cluster_disconnect_node (cluster, server_id);
+         mongoc_cluster_disconnect_node (
+            cluster, server_id, false /* invalidate */, NULL);
       } else {
          return _mongoc_cluster_create_server_stream (
             topology, server_id, cluster_node->stream, error);
@@ -2206,7 +2220,11 @@ mongoc_cluster_check_interval (mongoc_cluster_t *cluster, uint32_t server_id)
 
    if (scanner_node->last_used + (1000 * CHECK_CLOSED_DURATION_MSEC) < now) {
       if (mongoc_stream_check_closed (stream)) {
-         mongoc_cluster_disconnect_node (cluster, server_id);
+         bson_set_error (&error,
+                         MONGOC_ERROR_STREAM,
+                         MONGOC_ERROR_STREAM_SOCKET,
+                         "connection closed");
+         mongoc_cluster_disconnect_node (cluster, server_id, true, &error);
          return false;
       }
    }
@@ -2223,9 +2241,7 @@ mongoc_cluster_check_interval (mongoc_cluster_t *cluster, uint32_t server_id)
       bson_destroy (&command);
 
       if (!r) {
-         mongoc_cluster_disconnect_node (cluster, server_id);
-         mongoc_topology_invalidate_server (
-            topology, server_id, &error /* IN */);
+         mongoc_cluster_disconnect_node (cluster, server_id, true, &error);
       }
    }
 
@@ -2420,6 +2436,7 @@ mongoc_cluster_try_recv (mongoc_cluster_t *cluster,
                          bson_error_t *error)
 {
    uint32_t server_id;
+   bson_error_t err_local;
    int32_t msg_len;
    int32_t max_msg_size;
    off_t pos;
@@ -2435,6 +2452,10 @@ mongoc_cluster_try_recv (mongoc_cluster_t *cluster,
 
    TRACE ("Waiting for reply from server_id \"%u\"", server_id);
 
+   if (!error) {
+      error = &err_local;
+   }
+
    /*
     * Buffer the message length to determine how much more to read.
     */
@@ -2444,7 +2465,11 @@ mongoc_cluster_try_recv (mongoc_cluster_t *cluster,
       MONGOC_DEBUG (
          "Could not read 4 bytes, stream probably closed or timed out");
       mongoc_counter_protocol_ingress_error_inc ();
-      mongoc_cluster_disconnect_node (cluster, server_id);
+      mongoc_cluster_disconnect_node (
+         cluster,
+         server_id,
+         !mongoc_stream_timed_out (server_stream->stream),
+         error);
       RETURN (false);
    }
 
@@ -2459,7 +2484,7 @@ mongoc_cluster_try_recv (mongoc_cluster_t *cluster,
                       MONGOC_ERROR_PROTOCOL,
                       MONGOC_ERROR_PROTOCOL_INVALID_REPLY,
                       "Corrupt or malicious reply received.");
-      mongoc_cluster_disconnect_node (cluster, server_id);
+      mongoc_cluster_disconnect_node (cluster, server_id, true, error);
       mongoc_counter_protocol_ingress_error_inc ();
       RETURN (false);
    }
@@ -2472,7 +2497,11 @@ mongoc_cluster_try_recv (mongoc_cluster_t *cluster,
                                            msg_len - 4,
                                            cluster->sockettimeoutms,
                                            error)) {
-      mongoc_cluster_disconnect_node (cluster, server_id);
+      mongoc_cluster_disconnect_node (
+         cluster,
+         server_id,
+         !mongoc_stream_timed_out (server_stream->stream),
+         error);
       mongoc_counter_protocol_ingress_error_inc ();
       RETURN (false);
    }
@@ -2485,7 +2514,7 @@ mongoc_cluster_try_recv (mongoc_cluster_t *cluster,
                       MONGOC_ERROR_PROTOCOL,
                       MONGOC_ERROR_PROTOCOL_INVALID_REPLY,
                       "Failed to decode reply from server.");
-      mongoc_cluster_disconnect_node (cluster, server_id);
+      mongoc_cluster_disconnect_node (cluster, server_id, true, error);
       mongoc_counter_protocol_ingress_error_inc ();
       RETURN (false);
    }
diff --git a/src/mongoc/mongoc-cursor.c b/src/mongoc/mongoc-cursor.c
@@ -527,7 +527,7 @@ _mongoc_cursor_destroy (mongoc_cursor_t *cursor)
       if (!cursor->done) {
          /* The only way to stop an exhaust cursor is to kill the connection */
          mongoc_cluster_disconnect_node (&cursor->client->cluster,
-                                         cursor->server_id);
+                                         cursor->server_id, false, NULL);
       }
    } else if (cursor->rpc.reply.cursor_id) {
       bson_strncpy (db, cursor->ns, cursor->dblen + 1);
diff --git a/tests/test-mongoc-client.c b/tests/test-mongoc-client.c
@@ -450,7 +450,8 @@ test_mongoc_client_authenticate_cached (bool pooled)
       mongoc_cursor_destroy (cursor);
 
       if (pooled) {
-         mongoc_cluster_disconnect_node (&client->cluster, 1);
+         mongoc_cluster_disconnect_node (
+            &client->cluster, 1, false /* invalidate */, NULL);
       } else {
          scanner_node =
             mongoc_topology_scanner_get_node (client->topology->scanner, 1);
@@ -1969,7 +1970,9 @@ _test_mongoc_client_ssl_opts (bool pooled)
    host = test_framework_get_host ();
    port = test_framework_get_port ();
    uri_str = bson_strdup_printf (
-      "mongodb://%s:%d/?serverSelectionTimeoutMS=1000", host, port);
+      "mongodb://%s:%d/?serverSelectionTimeoutMS=1000&connectTimeoutMS=1000",
+      host,
+      port);
 
    uri_str_auth = test_framework_add_user_password_from_env (uri_str);
    uri_str_auth_ssl = bson_strdup_printf ("%s&ssl=true", uri_str_auth);
@@ -2518,8 +2521,6 @@ _cmd (mock_server_t *server,
 
    if (server_replies) {
       mock_server_replies_simple (request, "{'ok': 1}");
-   } else {
-      mock_server_hangs_up (request);
    }
 
    r = future_get_bool (future);
@@ -2619,6 +2620,7 @@ _test_ssl_reconnect (bool pooled)
    mock_server_run (server);
 
    uri = mongoc_uri_copy (mock_server_get_uri (server));
+   mongoc_uri_set_option_as_int32 (uri, "socketTimeoutMS", 1000);
 
    if (pooled) {
       capture_logs (true);
@@ -2633,11 +2635,11 @@ _test_ssl_reconnect (bool pooled)
    ASSERT_OR_PRINT (_cmd (server, client, true /* server replies */, &error),
                     error);
 
-   /* man-in-the-middle: certificate changed, for example expired*/
+   /* man-in-the-middle: certificate changed, for example expired */
    server_opts.pem_file = CERT_EXPIRED;
    mock_server_set_ssl_opts (server, &server_opts);
 
-   /* server closes connections */
+   /* network timeout */
 
    ASSERT (!_cmd (server, client, false /* server hangs up */, &error));
    if (pooled) {
@@ -3062,7 +3064,7 @@ _test_null_error_pointer (bool pooled)
    /* disconnect */
    mock_server_destroy (server);
    if (pooled) {
-      mongoc_cluster_disconnect_node (&client->cluster, 1);
+      mongoc_cluster_disconnect_node (&client->cluster, 1, false, NULL);
    } else {
       mongoc_topology_scanner_node_t *scanner_node;
 
diff --git a/tests/test-mongoc-cluster.c b/tests/test-mongoc-cluster.c
@@ -231,6 +231,7 @@ _test_cluster_command_timeout (bool pooled)
    future_t *future;
    request_t *request;
    uint16_t client_port;
+   mongoc_server_description_t *sd;
    bson_t reply;
 
    capture_logs (true);
@@ -261,6 +262,11 @@ _test_cluster_command_timeout (bool pooled)
       MONGOC_ERROR_STREAM_SOCKET,
       "Failed to send \"foo\" command with database \"db\"");
 
+   /* a network timeout does NOT invalidate the server description */
+   sd = mongoc_topology_server_by_id (client->topology, 1, NULL);
+   BSON_ASSERT (sd->type != MONGOC_SERVER_UNKNOWN);
+   mongoc_server_description_destroy (sd);
+
    /* late response */
    mock_server_replies_simple (request, "{'ok': 1, 'bar': 1}");
    request_destroy (request);
@@ -319,6 +325,7 @@ _test_write_disconnect (bool legacy)
    future_t *future;
    request_t *request;
    mongoc_topology_scanner_node_t *scanner_node;
+   mongoc_server_description_t *sd;
 
    if (!TestSuite_CheckMockServerAllowed ()) {
       return;
@@ -369,6 +376,11 @@ _test_write_disconnect (bool legacy)
                                                     1 /* server_id */);
    ASSERT (scanner_node && !scanner_node->stream);
 
+   /* a hangup DOES invalidate the server description */
+   sd = mongoc_topology_server_by_id (client->topology, 1, NULL);
+   BSON_ASSERT (sd->type == MONGOC_SERVER_UNKNOWN);
+   mongoc_server_description_destroy (sd);
+
    mongoc_collection_destroy (collection);
    request_destroy (request);
    future_destroy (future);
diff --git a/tests/test-mongoc-topology.c b/tests/test-mongoc-topology.c
@@ -858,7 +858,8 @@ _test_server_removed_during_handshake (bool pooled)
                               mock_server_get_host_and_port (server));
 
    /* pretend to close a connection. does NOT affect server description yet */
-   mongoc_cluster_disconnect_node (&client->cluster, 1);
+   mongoc_cluster_disconnect_node (
+      &client->cluster, 1, false /* invalidate */, NULL);
    sd = mongoc_client_get_server_description (client, 1);
    /* still primary */
    ASSERT_CMPINT ((int) MONGOC_SERVER_RS_PRIMARY, ==, sd->type);
@@ -1408,20 +1409,28 @@ test_topology_install (TestSuite *suite)
                       test_framework_skip_if_slow);
    TestSuite_AddMockServerTest (
       suite, "/Topology/add_and_scan_failure", test_add_and_scan_failure);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/single/hangup", test_ismaster_retry_single_hangup);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/single/timeout", test_ismaster_retry_single_timeout);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/single/hangup/fail", test_ismaster_retry_single_hangup_fail);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/single/timeout/fail", test_ismaster_retry_single_timeout_fail);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/pooled/hangup", test_ismaster_retry_pooled_hangup);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/pooled/timeout", test_ismaster_retry_pooled_timeout);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/pooled/hangup/fail", test_ismaster_retry_pooled_hangup_fail);
-   TestSuite_AddMockServerTest (
-      suite, "/Topology/ismaster_retry/pooled/timeout/fail", test_ismaster_retry_pooled_timeout_fail);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/single/hangup",
+                                test_ismaster_retry_single_hangup);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/single/timeout",
+                                test_ismaster_retry_single_timeout);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/single/hangup/fail",
+                                test_ismaster_retry_single_hangup_fail);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/single/timeout/fail",
+                                test_ismaster_retry_single_timeout_fail);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/pooled/hangup",
+                                test_ismaster_retry_pooled_hangup);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/pooled/timeout",
+                                test_ismaster_retry_pooled_timeout);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/pooled/hangup/fail",
+                                test_ismaster_retry_pooled_hangup_fail);
+   TestSuite_AddMockServerTest (suite,
+                                "/Topology/ismaster_retry/pooled/timeout/fail",
+                                test_ismaster_retry_pooled_timeout_fail);
 }

Original file line number	Diff line number	Diff line change
`@@ -527,7 +527,7 @@ _mongoc_cursor_destroy (mongoc_cursor_t *cursor)`
`527`	`527`	`if (!cursor->done) {`
`528`	`528`	`/* The only way to stop an exhaust cursor is to kill the connection */`
`529`	`529`	`mongoc_cluster_disconnect_node (&cursor->client->cluster,`
`530`		`- cursor->server_id);`
	`530`	`+ cursor->server_id, false, NULL);`
`531`	`531`	`}`
`532`	`532`	`} else if (cursor->rpc.reply.cursor_id) {`
`533`	`533`	`bson_strncpy (db, cursor->ns, cursor->dblen + 1);`