noirello
commented
1 year ago Yes, it makes sense.
I'm not sure that there's an easy way to detect corrupt connections. ConnectionError might seem like an obvious sign, but I'm not that confident about timeout errors.
One change I'm considering right now is the idea of not putting back closed connections to the pool. I can't think of any reason to keeping them in cycle. It'd be a relatively simple change in the put method, because the connection object already has an attribute about its closed state (While getting the last exception would require much more work). Thus closing a corrupt connection would give you the possibility to implicitly remove it from the pool. So by writing something like this, you could be sure not getting back the invalid connection:
async with AIOPoolContextManager(self._pool) as conn:
try:
logger.debug("Querying LDAP")
return await conn.search(
base=base,
scope=scope,
filter_exp=filter_exp,
attrlist=attrlist,
timeout=LDAP_TIMEOUT,
)
except (bonsai.ConnectionError, asyncio.TimeoutError):
conn.close()
rra
We're using bonsai with
AIOConnectionPoolandAIOPoolContextManagerand are seeing some tricky state-tracking issues with failed connections. I'm not sure I entirely understand the problem, let alone the best solution, but wanted to open an issue to start a discussion.The root problem is that we have a long-running service that wants to maintain an open LDAP connection pool to save on reconnect overhead under load, but sometimes the service is idle for long enough that firewalls between the service and the LDAP server time out the connections. When this happens, attempting to query the connection just never returns a result unless a timeout is set (presumably it would eventually fail at the TCP timeout, but that's often quite long).
We work around this by setting a timeout on the search request, and that works fine (it feels from local testing like something down inside bonsai may be busy-waiting on the search result in an otherwise idle asyncio pool, but I haven't been able to track that down and it's not really a problem, just an aside). However, when the connection does time out, the bonsai pool doesn't naturally recover.
In other words, I was hoping I could write some code like this:
and have the right thing happen, but what does happen is that the failed connection is returned to the pool and then handed back to a later caller and of course will still fail. What I expected instead was for
AIOPoolContextManagerin its__aexit__method to notice that it was exiting with an exception indicating the connection is bad (which may be a bonsai error orasyncio.TimeoutError) and mark the connection as invalid so that it will be closed and reopened, rather than returning the failed connection to the pool.Currently, it appears that what I have to do is close and reopen the connection myself before allowing it to be returned to the pool to maintain the invariant that all connections in the pool are valid. In other words, adding another except block like:
This does work, but of course has the problem that
conn.openmay fail, at which point a closed connection is returned to the pool. So what I currently have is the following, which I think will work but which is kind of a mess:This catches the error from a closed connection and tries to reopen it. But it feels like this is working around state tracking issues that ideally should be handled in the pool, and instead the pool should have a list of failed connections that are reopened before they're returned again.
Does this all make sense? I'm happy to try to put together a PR if the solution makes sense, but I'm not sure I'm thinking about the problem in the right way.