Apply backpressure labels in CMAP layer; align SDAM with spec

Author: nhachicha

driver-core/src/main/com/mongodb/internal/connection/BackpressureErrorLabeler.java

@@ -0,0 +1,112 @@
+/*
+ * Copyright 2008-present MongoDB, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.mongodb.internal.connection;
+
+import com.mongodb.MongoException;
+import com.mongodb.MongoSecurityException;
+import com.mongodb.MongoSocketException;
+
+import javax.net.ssl.SSLHandshakeException;
+import javax.net.ssl.SSLPeerUnverifiedException;
+import javax.net.ssl.SSLProtocolException;
+import java.net.UnknownHostException;
+import java.security.cert.CertPathBuilderException;
+import java.security.cert.CertPathValidatorException;
+import java.security.cert.CertificateException;
+import java.util.Locale;
+
+/**
+ * Attaches {@link MongoException#SYSTEM_OVERLOADED_ERROR_LABEL} and
+ * {@link MongoException#RETRYABLE_ERROR_LABEL} to network errors encountered during connection
+ * establishment or the hello message, per the CMAP specification.
+ *
+ * <p>This is topology-agnostic: it must be invoked from the connection-establishment path so that
+ * both default SDAM and load-balanced modes are covered.
+ */
+final class BackpressureErrorLabeler {
+
+    private BackpressureErrorLabeler() {
+    }
+
+    static void applyLabelsIfEligible(final Throwable t) {
+        if (!(t instanceof MongoException)) {
+            return;
+        }
+        if (t instanceof MongoSecurityException) {
+            return;
+        }
+        if (!(t instanceof MongoSocketException)) {
+            return;
+        }
+        if (isDnsLookupFailure(t)) {
+            return;
+        }
+        if (isTlsConfigurationError(t)) {
+            return;
+        }
+        // TODO-BACKPRESSURE Nabil - SOCKS5 Revisit alongside JAVA-5205 (SOCKS5 in async) so both sync and
+        // async proxy error surfaces can be handled together — likely via a dedicated internal
+        // exception thrown from the proxy code path.
+        MongoException mongoException = (MongoException) t;
+        mongoException.addLabel(MongoException.SYSTEM_OVERLOADED_ERROR_LABEL);
+        mongoException.addLabel(MongoException.RETRYABLE_ERROR_LABEL);
+    }
+
+    static boolean isDnsLookupFailure(final Throwable t) {
+        Throwable cause = t.getCause();
+        while (cause != null) {
+            if (cause instanceof UnknownHostException) {
+                return true;
+            }
+            cause = cause.getCause();
+        }
+        return false;
+    }
+
+    static boolean isTlsConfigurationError(final Throwable t) {
+        if (!(t instanceof MongoSocketException)) {
+            return false;
+        }
+        Throwable cause = t.getCause();
+        while (cause != null) {
+            if (cause instanceof CertificateException
+                    || cause instanceof CertPathBuilderException
+                    || cause instanceof CertPathValidatorException
+                    || cause instanceof SSLPeerUnverifiedException
+                    || cause instanceof SSLProtocolException) {
+                return true;
+            }
+            if (cause instanceof SSLHandshakeException) {
+                String message = cause.getMessage();
+                if (message != null) {
+                    String lowerMessage = message.toLowerCase(Locale.ROOT);
+                    if (lowerMessage.contains("certificate")
+                            || lowerMessage.contains("verify")
+                            || lowerMessage.contains("trust")
+                            || lowerMessage.contains("hostname")
+                            || lowerMessage.contains("protocol")
+                            || lowerMessage.contains("cipher")
+                            || lowerMessage.contains("handshake_failure")) {
+                        return true;
+                    }
+                }
+            }
+            cause = cause.getCause();
+        }
+        return false;
+    }
+}

driver-core/src/main/com/mongodb/internal/connection/DefaultSdamServerDescriptionManager.java

@@ -16,7 +16,6 @@
 
 package com.mongodb.internal.connection;
 
-import com.mongodb.MongoException;
 import com.mongodb.annotations.ThreadSafe;
 import com.mongodb.connection.ClusterConnectionMode;
 import com.mongodb.connection.ServerDescription;
@@ -138,27 +137,12 @@ private void handleException(final SdamIssue sdamIssue, final boolean beforeHand
             serverMonitor.connect();
         } else if (sdamIssue.relatedToNetworkNotTimeout()
                 || (beforeHandshake && (sdamIssue.relatedToNetworkTimeout() || sdamIssue.relatedToAuth()))) {
-            // Backpressure spec: Don't clear pool or mark server unknown for connection establishment failures
-            // (network errors or timeouts during handshake). Authentication errors after handshake should still
-            // clear the pool as they're not related to overload.
-            // TLS configuration errors (certificate validation, protocol mismatches) should also clear the pool
-            // as they indicate configuration issues, not server overload.
-            if (beforeHandshake && !sdamIssue.relatedToAuth() && !sdamIssue.relatedToTlsConfigurationError()) {
-                // Don't update server description to Unknown
-                // Don't invalidate the connection pool
-                // Apply error labels for backpressure
-                sdamIssue.exception().ifPresent(exception -> {
-                    if (exception instanceof MongoException) {
-                        MongoException mongoException = (MongoException) exception;
-                        mongoException.addLabel(MongoException.SYSTEM_OVERLOADED_ERROR_LABEL);
-                        mongoException.addLabel(MongoException.RETRYABLE_ERROR_LABEL);
-                    }
-                });
-            } else {
-                updateDescription(sdamIssue.serverDescription());
-                connectionPool.invalidate(sdamIssue.exception().orElse(null));
-                serverMonitor.cancelCurrentCheck();
+            if (sdamIssue.hasBackpressureLabel()) {
+                return;
             }
+            updateDescription(sdamIssue.serverDescription());
+            connectionPool.invalidate(sdamIssue.exception().orElse(null));
+            serverMonitor.cancelCurrentCheck();
         } else if (sdamIssue.relatedToWriteConcern() || sdamIssue.relatedToStalePrimary()) {
             updateDescription(sdamIssue.serverDescription());
             serverMonitor.connect();

driver-core/src/main/com/mongodb/internal/connection/InternalStreamConnection.java

@@ -230,9 +230,11 @@ public void open(final OperationContext originalOperationContext) {
         isTrue("Open already called", stream == null);
         stream = streamFactory.create(serverId.getAddress());
         OperationContext operationContext = originalOperationContext;
+        boolean beforeHandshake = true;
         try {
             stream.open(operationContext);
             InternalConnectionInitializationDescription initializationDescription = connectionInitializer.startHandshake(this, operationContext);
+            beforeHandshake = false;
 
             operationContext = operationContext.withOverride(TimeoutContext::withNewlyStartedMaintenanceTimeout);
             initAfterHandshakeStart(initializationDescription);
@@ -241,6 +243,9 @@ public void open(final OperationContext originalOperationContext) {
             initAfterHandshakeFinish(initializationDescription);
         } catch (Throwable t) {
             close();
+            if (beforeHandshake) {
+                BackpressureErrorLabeler.applyLabelsIfEligible(t);
+            }
             if (t instanceof MongoException) {
                 throw (MongoException) t;
             } else {
@@ -263,6 +268,7 @@ public void completed(@Nullable final Void aVoid) {
                             (initialResult, initialException) -> {
                                     if (initialException != null) {
                                         close();
+                                        BackpressureErrorLabeler.applyLabelsIfEligible(initialException);
                                         callback.onResult(null, initialException);
                                     } else {
                                         assertNotNull(initialResult);
@@ -278,11 +284,13 @@ public void completed(@Nullable final Void aVoid) {
                 @Override
                 public void failed(final Throwable t) {
                     close();
+                    BackpressureErrorLabeler.applyLabelsIfEligible(t);
                     callback.onResult(null, t);
                 }
             });
         } catch (Throwable t) {
             close();
+            BackpressureErrorLabeler.applyLabelsIfEligible(t);
             callback.onResult(null, t);
         }
     }

driver-core/src/main/com/mongodb/internal/connection/SdamServerDescriptionManager.java

@@ -17,6 +17,7 @@
 package com.mongodb.internal.connection;
 
 import com.mongodb.MongoCommandException;
+import com.mongodb.MongoException;
 import com.mongodb.MongoNodeIsRecoveringException;
 import com.mongodb.MongoNotPrimaryException;
 import com.mongodb.MongoSecurityException;
@@ -30,12 +31,6 @@
 import com.mongodb.connection.TopologyVersion;
 import com.mongodb.lang.Nullable;
 
-import javax.net.ssl.SSLHandshakeException;
-import javax.net.ssl.SSLPeerUnverifiedException;
-import javax.net.ssl.SSLProtocolException;
-import java.security.cert.CertPathBuilderException;
-import java.security.cert.CertPathValidatorException;
-import java.security.cert.CertificateException;
 import java.util.Optional;
 
 import static com.mongodb.assertions.Assertions.assertNotNull;
@@ -168,47 +163,9 @@ boolean relatedToWriteConcern() {
             return exception instanceof MongoWriteConcernWithResponseException;
         }
 
-        /**
-         * Checks if the exception is related to TLS configuration errors that are NOT due to server overload.
-         * These include certificate validation failures, protocol mismatches, etc.
-         *
-         * @return true if this is a TLS configuration error (not network-related)
-         */
-        boolean relatedToTlsConfigurationError() {
-            if (!(exception instanceof MongoSocketException)) {
-                return false;
-            }
-            Throwable cause = exception.getCause();
-            while (cause != null) {
-                // Check for various certificate validation and TLS configuration errors
-                if (cause instanceof CertificateException
-                        || cause instanceof CertPathBuilderException
-                        || cause instanceof CertPathValidatorException
-                        || cause instanceof SSLPeerUnverifiedException
-                        || cause instanceof SSLProtocolException) {
-                    return true;
-                }
-
-                // SSLHandshakeException can be either network or config, so we check the message
-                if (cause instanceof SSLHandshakeException) {
-                    String message = cause.getMessage();
-                    if (message != null) {
-                        String lowerMessage = message.toLowerCase();
-                        // These indicate configuration issues, not network issues
-                        if (lowerMessage.contains("certificate")
-                                || lowerMessage.contains("verify")
-                                || lowerMessage.contains("trust")
-                                || lowerMessage.contains("hostname")
-                                || lowerMessage.contains("protocol")
-                                || lowerMessage.contains("cipher")
-                                || lowerMessage.contains("handshake_failure")) {
-                            return true;
-                        }
-                    }
-                }
-                cause = cause.getCause();
-            }
-            return false;
+        boolean hasBackpressureLabel() {
+            return exception instanceof MongoException
+                    && ((MongoException) exception).hasErrorLabel(MongoException.SYSTEM_OVERLOADED_ERROR_LABEL);
         }
 
         private static boolean stale(@Nullable final Throwable t, final ServerDescription currentServerDescription) {

driver-core/src/test/unit/com/mongodb/internal/connection/DefaultServerSpecification.groovy

@@ -234,12 +234,10 @@ class DefaultServerSpecification extends Specification {
         ]
     }
 
-    def 'network error should not invalidate the pool'() {
+    def 'failed open should invalidate the server'() {
         given:
         def connectionPool = Mock(ConnectionPool)
-        connectionPool.get(_) >> {
-            throw exceptionToThrow
-        }
+        connectionPool.get(_) >> { throw exceptionToThrow }
         def serverMonitor = Mock(ServerMonitor)
         def server = defaultServer(connectionPool, serverMonitor)
 
@@ -249,8 +247,8 @@ class DefaultServerSpecification extends Specification {
         then:
         def e = thrown(MongoException)
         e.is(exceptionToThrow)
-        0 * connectionPool.invalidate(_)
-        0 * serverMonitor.cancelCurrentCheck()
+        1 * connectionPool.invalidate(exceptionToThrow)
+        1 * serverMonitor.cancelCurrentCheck()
 
         where:
         exceptionToThrow << [
@@ -283,7 +281,7 @@ class DefaultServerSpecification extends Specification {
         ]
     }
 
-    def 'failed open should not invalidate the pool asynchronously'() {
+    def 'failed open should invalidate the server asynchronously'() {
         given:
         def connectionPool = Mock(ConnectionPool)
         connectionPool.getAsync(_, _) >> { it.last().onResult(null, exceptionToThrow) }
@@ -303,8 +301,8 @@ class DefaultServerSpecification extends Specification {
         then:
         !receivedConnection
         receivedThrowable.is(exceptionToThrow)
-        0 * connectionPool.invalidate(exceptionToThrow)
-        0 * serverMonitor.cancelCurrentCheck()
+        1 * connectionPool.invalidate(exceptionToThrow)
+        1 * serverMonitor.cancelCurrentCheck()
 
 
         where: