CBG-5357: removal of fast fail retry by default

base/bootstrap.go

@@ -12,6 +12,7 @@ import (
 	"context"
 	"errors"
 	"fmt"
+	"net/http"
 	"reflect"
 	"sort"
 	"sync"
@@ -53,13 +54,14 @@ type BootstrapConnection interface {
 
 // CouchbaseClusterSpec define how to make a connection to Couchbase Server
 type CouchbaseClusterSpec struct {
-	Server        string // connection string to connect to the Couchbase cluster
-	Username      string // RBAC username to authenticate with the cluster
-	Password      string // RBAC password to authenticate with the cluster
-	X509Certpath  string // X.509 cert path to authenticate with the cluster
-	X509Keypath   string // X.509 key path to authenticate with the cluster
-	CACertpath    string // CA cert path to use for TLS connections
-	TLSSkipVerify bool   // If true, do not validate TLS certificate
+	Server               string // connection string to connect to the Couchbase cluster
+	Username             string // RBAC username to authenticate with the cluster
+	Password             string // RBAC password to authenticate with the cluster
+	X509Certpath         string // X.509 cert path to authenticate with the cluster
+	X509Keypath          string // X.509 key path to authenticate with the cluster
+	CACertpath           string // CA cert path to use for TLS connections
+	TLSSkipVerify        bool   // If true, do not validate TLS certificate
+	UseGOCBFastFailRetry bool   // When true, readiness checks fail fast instead of using the best-effort retry strategy
 }
 
 // CouchbaseCluster is a GoCBv2 implementation of BootstrapConnection
@@ -73,6 +75,7 @@ type CouchbaseCluster struct {
 	cachedBucketConnections cachedBucketConnections // Per-bucket cached connections
 	cachedConnectionLock    sync.Mutex              // mutex for access to cachedBucketConnections
 	configPersistence       ConfigPersistence       // ConfigPersistence mode
+	useGOCBFastFailRetry    bool                    // When true, readiness checks fail fast instead of using the best-effort retry strategy
 }
 
 type BucketConnectionMode int
@@ -198,6 +201,7 @@ func NewCouchbaseCluster(ctx context.Context, clusterSpec CouchbaseClusterSpec,
 		perBucketAuth:        perBucketAuth,
 		clusterOptions:       clusterOptions,
 		bucketConnectionMode: bucketMode,
+		useGOCBFastFailRetry: clusterSpec.UseGOCBFastFailRetry,
 	}
 
 	if bucketMode == CachedClusterConnections {
@@ -212,6 +216,12 @@ func NewCouchbaseCluster(ctx context.Context, clusterSpec CouchbaseClusterSpec,
 	return cbCluster, nil
 }
 
+// UseGOCBFastFailRetry returns whether gocb operations on this cluster should fail fast instead of using the
+// best-effort retry strategy.
+func (cc *CouchbaseCluster) UseGOCBFastFailRetry() bool {
+	return cc.useGOCBFastFailRetry
+}
+
 // connect attempts to open a gocb.Cluster connection. Callers will be responsible for closing the connection.
 // Pass an authenticator to use that to connect instead of using the cluster credentials.
 func (cc *CouchbaseCluster) connect(auth *gocb.Authenticator) (*gocb.Cluster, error) {
@@ -230,7 +240,7 @@ func (cc *CouchbaseCluster) connect(auth *gocb.Authenticator) (*gocb.Cluster, er
 	err = cluster.WaitUntilReady(time.Second*10, &gocb.WaitUntilReadyOptions{
 		DesiredState:  gocb.ClusterStateOnline,
 		ServiceTypes:  []gocb.ServiceType{gocb.ServiceTypeManagement},
-		RetryStrategy: &goCBv2FailFastRetryStrategy{},
+		RetryStrategy: goCBRetryStrategy(cc.useGOCBFastFailRetry),
 	})
 	if err != nil {
 		_ = cluster.Close(nil)
@@ -579,7 +589,7 @@ func (cc *CouchbaseCluster) connectToBucket(ctx context.Context, bucketName stri
 	b = connection.Bucket(bucketName)
 	err = b.WaitUntilReady(time.Second*10, &gocb.WaitUntilReadyOptions{
 		DesiredState:  gocb.ClusterStateOnline,
-		RetryStrategy: &goCBv2FailFastRetryStrategy{},
+		RetryStrategy: goCBRetryStrategy(cc.useGOCBFastFailRetry),
 		ServiceTypes:  []gocb.ServiceType{gocb.ServiceTypeKeyValue},
 	})
 	if err != nil {
@@ -589,6 +599,13 @@ func (cc *CouchbaseCluster) connectToBucket(ctx context.Context, bucketName stri
 			return nil, nil, ErrAuthError
 		}
 
+		// In best-effort retry mode a missing/unreachable bucket surfaces as a timeout rather than an
+		// auth failure. Classify it as a connection error so callers translate it to a 502 instead of a
+		// generic 500, mirroring the per-database connection path (see db.connectToBucketErrorHandling).
+		if !cc.useGOCBFastFailRetry {
+			return nil, nil, HTTPErrorf(http.StatusBadGateway,
+				"Unable to connect to Couchbase Server. Please ensure it is running and reachable, and that bucket %q exists. Error: %s", MD(bucketName).Redact(), err)
+		}
 		return nil, nil, err
 	}
 

base/bucket.go

@@ -121,6 +121,7 @@ type BucketSpec struct {
 	ViewQueryTimeoutSecs          *uint32        // the view query timeout in seconds (default: 75 seconds)
 	MaxConcurrentQueryOps         *int           // maximum number of concurrent query operations (default: DefaultMaxConcurrentQueryOps)
 	BucketOpTimeout               *time.Duration // How long bucket ops should block returning "operation timed out". If nil, uses GoCB default.  GoCB buckets only.
+	UseGOCBFastFailRetry          bool           // When true, gocb readiness checks and index lookups fail fast instead of using the best-effort retry strategy
 }
 
 const defaultNumRetries = 10

base/bucket_gocb_test.go

@@ -1987,31 +1987,41 @@ func TestCouchbaseServerIncorrectLogin(t *testing.T) {
 	if UnitTestUrlIsWalrus() {
 		t.Skip("This test only works against Couchbase Server")
 	}
+	LongRunningTest(t)
 
 	ctx := TestCtx(t)
 	for _, tls := range []bool{true, false} {
-		t.Run(fmt.Sprintf("tls=%v", tls), func(t *testing.T) {
-			testBucket := GetTestBucket(t)
-			defer testBucket.Close(ctx)
-
-			// Override test bucket spec with invalid creds
-			testBucket.BucketSpec.Auth = TestAuthenticator{
-				Username:   "invalid_username",
-				Password:   "invalid_password",
-				BucketName: testBucket.BucketSpec.BucketName,
-			}
-			if tls {
-				testBucket.BucketSpec.Server = strings.ReplaceAll(testBucket.BucketSpec.Server, "couchbase://", "couchbases://")
-				testBucket.BucketSpec.TLSSkipVerify = true // test env isn't always using valid certs
-			} else {
-				testBucket.BucketSpec.Server = strings.ReplaceAll(testBucket.BucketSpec.Server, "couchbases://", "couchbase://")
-			}
-
-			// Attempt to open the bucket again using invalid creds. We should expect an error.
-			bucket, err := GetBucket(TestCtx(t), testBucket.BucketSpec)
-			assert.Equal(t, ErrAuthError, err)
-			assert.Nil(t, bucket)
-		})
+		for _, fastFail := range []bool{true, false} {
+			t.Run(fmt.Sprintf("tls=%v/fastFail=%v", tls, fastFail), func(t *testing.T) {
+				testBucket := GetTestBucket(t)
+				defer testBucket.Close(ctx)
+
+				// Override test bucket spec with invalid creds
+				testBucket.BucketSpec.Auth = TestAuthenticator{
+					Username:   "invalid_username",
+					Password:   "invalid_password",
+					BucketName: testBucket.BucketSpec.BucketName,
+				}
+				testBucket.BucketSpec.UseGOCBFastFailRetry = fastFail
+				if tls {
+					testBucket.BucketSpec.Server = strings.ReplaceAll(testBucket.BucketSpec.Server, "couchbase://", "couchbases://")
+					testBucket.BucketSpec.TLSSkipVerify = true // test env isn't always using valid certs
+				} else {
+					testBucket.BucketSpec.Server = strings.ReplaceAll(testBucket.BucketSpec.Server, "couchbases://", "couchbase://")
+				}
+
+				// Attempt to open the bucket again using invalid creds. We should expect an error.
+				bucket, err := GetBucket(TestCtx(t), testBucket.BucketSpec)
+				assert.Nil(t, bucket)
+				if fastFail {
+					// Fail-fast strategy surfaces the authentication failure directly.
+					assert.Equal(t, ErrAuthError, err)
+				} else {
+					// Best-effort strategy retries the auth failure until WaitUntilReady times out.
+					assert.ErrorIs(t, err, gocb.ErrUnambiguousTimeout)
+				}
+			})
+		}
 	}
 }
 

base/cluster_n1ql.go

@@ -36,15 +36,17 @@ type ClusterOnlyN1QLStore struct {
 	collectionName           string // Used to build keyspace for query when not otherwise set
 	supportsCollections      bool
 	supportsIfNotExistsInDDL bool // 7.1.0+ MB-38737
+	useGOCBFastFailRetry     bool // When true, index lookups fail fast instead of using the best-effort retry strategy
 }
 
-func NewClusterOnlyN1QLStore(cluster *gocb.Cluster, bucketName, scopeName, collectionName string) (*ClusterOnlyN1QLStore, error) {
+func NewClusterOnlyN1QLStore(cluster *gocb.Cluster, bucketName, scopeName, collectionName string, useGOCBFastFailRetry bool) (*ClusterOnlyN1QLStore, error) {
 
 	clusterOnlyn1qlStore := &ClusterOnlyN1QLStore{
-		cluster:        cluster,
-		bucketName:     bucketName,
-		scopeName:      scopeName,
-		collectionName: collectionName,
+		cluster:              cluster,
+		bucketName:           bucketName,
+		scopeName:            scopeName,
+		collectionName:       collectionName,
+		useGOCBFastFailRetry: useGOCBFastFailRetry,
 	}
 
 	major, minor, err := GetClusterVersion(cluster)
@@ -209,10 +211,11 @@ func (cl *ClusterOnlyN1QLStore) runQuery(statement string, n1qlOptions *gocb.Que
 
 func (cl *ClusterOnlyN1QLStore) indexManager(scopeName, collectionName string) *indexManager {
 	return &indexManager{
-		cluster:        cl.cluster.QueryIndexes(),
-		bucketName:     cl.bucketName,
-		scopeName:      scopeName,
-		collectionName: collectionName,
+		cluster:              cl.cluster.QueryIndexes(),
+		bucketName:           cl.bucketName,
+		scopeName:            scopeName,
+		collectionName:       collectionName,
+		useGOCBFastFailRetry: cl.useGOCBFastFailRetry,
 	}
 }
 

base/collection.go

@@ -77,7 +77,7 @@ func GetGoCBv2Bucket(ctx context.Context, spec BucketSpec) (*GocbV2Bucket, error
 	err = cluster.WaitUntilReady(time.Second*30, &gocb.WaitUntilReadyOptions{
 		DesiredState:  gocb.ClusterStateOnline,
 		ServiceTypes:  []gocb.ServiceType{gocb.ServiceTypeManagement},
-		RetryStrategy: &goCBv2FailFastRetryStrategy{},
+		RetryStrategy: goCBRetryStrategy(spec.UseGOCBFastFailRetry),
 	})
 
 	if err != nil {
@@ -89,7 +89,7 @@ func GetGoCBv2Bucket(ctx context.Context, spec BucketSpec) (*GocbV2Bucket, error
 		return nil, err
 	}
 
-	return GetGocbV2BucketFromCluster(ctx, cluster, spec, connString, time.Second*30, true)
+	return GetGocbV2BucketFromCluster(ctx, cluster, spec, connString, time.Second*30, spec.UseGOCBFastFailRetry)
 
 }
 
@@ -111,14 +111,8 @@ func GetGocbV2BucketFromCluster(ctx context.Context, cluster *gocb.Cluster, spec
 	// Connect to bucket
 	bucket := cluster.Bucket(spec.BucketName)
 
-	var retryStrategy gocb.RetryStrategy
-	if failFast {
-		retryStrategy = &goCBv2FailFastRetryStrategy{}
-	} else {
-		retryStrategy = gocb.NewBestEffortRetryStrategy(nil)
-	}
 	err := bucket.WaitUntilReady(waitUntilReady, &gocb.WaitUntilReadyOptions{
-		RetryStrategy: retryStrategy,
+		RetryStrategy: goCBRetryStrategy(failFast),
 	})
 	if err != nil {
 		_ = cluster.Close(&gocb.ClusterCloseOptions{})

base/collection_n1ql.go

@@ -64,9 +64,10 @@ func (c *Collection) BucketName() string {
 
 func (c *Collection) indexManager() *indexManager {
 	m := &indexManager{
-		bucketName:     c.BucketName(),
-		collectionName: c.CollectionName(),
-		scopeName:      c.ScopeName(),
+		bucketName:           c.BucketName(),
+		collectionName:       c.CollectionName(),
+		scopeName:            c.ScopeName(),
+		useGOCBFastFailRetry: c.Bucket.Spec.UseGOCBFastFailRetry,
 	}
 	if !c.IsSupported(sgbucket.BucketStoreFeatureCollections) {
 		m.cluster = c.Bucket.cluster.QueryIndexes()

base/collection_n1ql_common.go

@@ -101,16 +101,17 @@ func ExplainQuery(ctx context.Context, store N1QLStore, statement string, params
 }
 
 type indexManager struct {
-	cluster        *gocb.QueryIndexManager
-	collection     *gocb.CollectionQueryIndexManager
-	bucketName     string
-	scopeName      string
-	collectionName string
+	cluster              *gocb.QueryIndexManager
+	collection           *gocb.CollectionQueryIndexManager
+	bucketName           string
+	scopeName            string
+	collectionName       string
+	useGOCBFastFailRetry bool
 }
 
 func (im *indexManager) GetAllIndexes() ([]gocb.QueryIndex, error) {
 	opts := &gocb.GetAllQueryIndexesOptions{
-		RetryStrategy: &goCBv2FailFastRetryStrategy{},
+		RetryStrategy: goCBRetryStrategy(im.useGOCBFastFailRetry),
 	}
 
 	if im.collection != nil {

base/gocb_utils.go

@@ -83,6 +83,15 @@ func (rs *goCBv2FailFastRetryStrategy) RetryAfter(req gocb.RetryRequest, reason
 	return &gocb.NoRetryRetryAction{}
 }
 
+// goCBRetryStrategy returns the fail-fast retry strategy when useFailFast is true, otherwise the best-effort
+// strategy that retries until the operation's timeout. Gated by the unsupported.use_gocb_fast_fail_retry config.
+func goCBRetryStrategy(useFailFast bool) gocb.RetryStrategy {
+	if useFailFast {
+		return &goCBv2FailFastRetryStrategy{}
+	}
+	return gocb.NewBestEffortRetryStrategy(nil)
+}
+
 // GOCBCORE Utilities
 
 // CertificateAuthenticator allows for certificate auth in gocbcore

base/gocb_utils_test.go

@@ -11,6 +11,7 @@ package base
 import (
 	"testing"
 
+	"github.com/couchbase/gocb/v2"
 	"github.com/stretchr/testify/require"
 
 	"github.com/stretchr/testify/assert"
@@ -95,3 +96,8 @@ func TestGoCBCoreAuthConfigInvalidPaths(t *testing.T) {
 	_, err := GoCBCoreAuthConfig("", "", "/non/existent/cert", "/non/existent/key")
 	assert.Error(t, err)
 }
+
+func TestGoCBRetryStrategy(t *testing.T) {
+	assert.IsType(t, &goCBv2FailFastRetryStrategy{}, goCBRetryStrategy(true))
+	assert.IsType(t, gocb.NewBestEffortRetryStrategy(nil), goCBRetryStrategy(false))
+}

db/indextest/indextest_dual_metadata_test.go

@@ -67,6 +67,7 @@ func TestDualMetadataStoreIndexes(t *testing.T) {
 				gocbBucket.BucketName(),
 				store.ScopeName(),
 				store.CollectionName(),
+				gocbBucket.Spec.UseGOCBFastFailRetry,
 			)
 			require.NoError(t, err)
 			indexesMeta, err = base.GetSystemCollectionIndexesMeta(ctx, n1qlStore, base.SystemScope, base.SystemCollectionMobile, expectedIndexes)

db/indextest/indextest_test.go

@@ -355,7 +355,7 @@ func TestInitializeIndexes(t *testing.T) {
 			gocbBucket, err := base.AsGocbV2Bucket(database.Bucket)
 			require.NoError(t, err)
 
-			n1qlStore, err := base.NewClusterOnlyN1QLStore(gocbBucket.GetCluster(), gocbBucket.BucketName(), collection.ScopeName, collection.Name)
+			n1qlStore, err := base.NewClusterOnlyN1QLStore(gocbBucket.GetCluster(), gocbBucket.BucketName(), collection.ScopeName, collection.Name, gocbBucket.Spec.UseGOCBFastFailRetry)
 			require.NoError(t, err)
 
 			// add and drop indexes that may be different from the way the bucket pool expects, so use specific options here for test

db/indextest/util.go

@@ -78,7 +78,7 @@ func initializeCollectionIndexes(ctx context.Context, t *testing.T, testBucket b
 	gocbBucket, err := base.AsGocbV2Bucket(testBucket)
 	require.NoError(t, err)
 
-	n1qlStore, err := base.NewClusterOnlyN1QLStore(gocbBucket.GetCluster(), gocbBucket.BucketName(), dsName.ScopeName(), dsName.CollectionName())
+	n1qlStore, err := base.NewClusterOnlyN1QLStore(gocbBucket.GetCluster(), gocbBucket.BucketName(), dsName.ScopeName(), dsName.CollectionName(), gocbBucket.Spec.UseGOCBFastFailRetry)
 	require.NoError(t, err)
 
 	ctx = base.CollectionLogCtx(ctx, dsName.ScopeName(), dsName.CollectionName())

docs/api/components/schemas.yaml

@@ -2436,6 +2436,10 @@ Startup-config:
           description: Store database configurations in system xattrs
           type: boolean
           default: false
+        use_gocb_fast_fail_retry:
+          description: When true, gocb cluster/bucket readiness checks and index lookups (on both the bootstrap and per-database connections) fail on the first error instead of retrying. When false, they use the best-effort retry strategy, retrying until their timeout when Couchbase Server is unavailable or failing over.
+          type: boolean
+          default: false
       readOnly: true
     couchbase_keepalive_interval:
       description: TCP keep-alive interval between SG and Couchbase server. This is unused.