feat: make Manager compatible with being initially disconnected

doudou · doudou · commit 3945d4d4bb37 · 2025-04-23T14:14:50.000-03:00
So far only the class supports it. The rest of Syskit won't work (yet) when it
happens
diff --git a/lib/syskit/process_managers/remote/manager.rb b/lib/syskit/process_managers/remote/manager.rb
@@ -49,7 +49,7 @@ class StartupFailed < RuntimeError; end
                 # The hostname we are connected to
                 attr_reader :host
                 # The port on which we are connected on +hostname+
-                attr_reader :port
+                attr_accessor :port
                 # The PID of the server process
                 attr_reader :server_pid
                 # A string that allows to uniquely identify this process server
@@ -77,40 +77,112 @@ def available?
                 #   root for this client's loader
                 def initialize(
                     host = "localhost", port = DEFAULT_PORT,
-                    connect_timeout: 10,
-                    response_timeout: 10,
+                    initial_connection_timeout:
+                        Syskit.conf.remote_process_managers_initial_connection_timeout,
+                    connection_timeout:
+                        Syskit.conf.remote_process_managers_connection_timeout,
+                    response_timeout:
+                        Syskit.conf.remote_process_managers_response_timeout,
                     root_loader: Orocos.default_loader,
-                    register_on_name_server: true
+                    register_on_name_server: true,
+                    connect_executor: :io
                 )
                     @host = host
                     @port = port
                     @state = STATE_DISCONNECTED
                     @response_timeout = response_timeout
-                    @socket =
-                        begin Socket.tcp(host, port, connect_timeout: connect_timeout)
-                        rescue Errno::ECONNREFUSED => e
-                            raise e.class,
-                                  "cannot contact process server at " \
-                                  "'#{host}:#{port}': #{e.message}"
-                        end
-
-                    @socket.setsockopt(Socket::IPPROTO_TCP, Socket::TCP_NODELAY, true)
-                    @socket.fcntl(Fcntl::FD_CLOEXEC, 1)
-                    @state = STATE_CONNECTED
-
-                    begin
-                        @server_pid = pid
-                    rescue EOFError
-                        close
-                        raise StartupFailed, "process server failed at '#{host}:#{port}'"
-                    end
 
-                    @loader = Loader.new(self, root_loader)
-                    @root_loader = loader.root_loader
                     @processes = {}
                     @death_queue = []
                     @host_id = "#{host}:#{port}:#{server_pid}"
                     @register_on_name_server = register_on_name_server
+                    @root_loader = root_loader
+
+                    @connection_timeout = connection_timeout
+                    @connect_executor = connect_executor
+
+                    # For now, make the first connection attempt
+                    perform_initial_connection(
+                        deadline: Roby.monotonic_time + initial_connection_timeout
+                    )
+
+                    if !Syskit.conf.remote_process_managers_accept_failed_connections? &&
+                       !available?
+                        raise ComError,
+                              "connection to #{self} failed and " \
+                              "remote_process_managers_accept_failed_connections is false"
+                    end
+                end
+
+                def perform_initial_connection(deadline:)
+                    while deadline > Roby.monotonic_time
+                        attempt_connection.result(@connection_timeout + @response_timeout)
+                        poll
+                        break if available?
+
+                        sleep 0.1
+                    end
+                end
+
+                def connect
+                    socket = Socket.tcp(
+                        host, port, connect_timeout: @connection_timeout
+                    )
+                    socket.setsockopt(Socket::IPPROTO_TCP, Socket::TCP_NODELAY, true)
+                    socket.fcntl(Fcntl::FD_CLOEXEC, 1)
+                    socket
+                end
+
+                def poll
+                    case @state
+                    when STATE_DISCONNECTED
+                        poll_in_disconnected_state
+                    end
+                end
+
+                def poll_in_disconnected_state
+                    if @connect_future
+                        return unless (result = @connect_future.result(0))
+
+                        @connect_future = nil
+                        _, socket, error = result
+                        return handle_new_connection(socket) if socket
+
+                        ProcessManagers.warn(
+                            "failed to connect to remote process manager #{self}: " \
+                            "#{error.message}"
+                        )
+                        schedule_connection_attempt
+                    elsif Roby.monotonic_time > @next_connection_deadline
+                        attempt_connection
+                    end
+                end
+
+                def schedule_connection_attempt
+                    @next_connection_deadline = Roby.monotonic_time
+                end
+
+                def attempt_connection
+                    @connect_future = Concurrent::Promises.future_on(@connect_executor) do
+                        connect
+                    end
+                end
+
+                def handle_new_connection(socket)
+                    @socket = socket
+                    @state = STATE_CONNECTED
+
+                    @server_pid = pid
+                    @loader = Loader.new(self, @root_loader)
+                    ProcessManagers.info "connected to remote process manager #{self}"
+                rescue StandardError => e
+                    ProcessManagers.warn(
+                        "got a socket to remote process manager #{self}, but the first " \
+                        "call failed: #{e.message}"
+                    )
+
+                    close
+                    schedule_connection_attempt
                 end
 
                 def pid
@@ -346,8 +418,8 @@ def read_object(deadline:)
                     Marshal.load(@socket)
                 end
 
-                class ComError < RuntimeError
-                end
+                class TimeoutError < RuntimeError; end
+                class ComError < RuntimeError; end
 
                 def wait_for_answer(deadline: Roby.monotonic + timeout)
                     validate_available
diff --git a/lib/syskit/roby_app/configuration.rb b/lib/syskit/roby_app/configuration.rb
@@ -134,20 +134,65 @@ def early_deploy?
                 @early_deploy
             end
 
-            # Whether to capture errors during network resolution instead of raising them.
-            def capture_errors_during_network_resolution?
-                @capture_errors_during_network_resolution
-            end
-
             # Controls where the deployment stage happens
             #
             # @see early_deploy?
             attr_writer :early_deploy
 
+            # Whether to capture errors during network resolution instead of raising them.
+            def capture_errors_during_network_resolution?
+                @capture_errors_during_network_resolution
+            end
+
             # Controls whether to capture errors instead of raising them during network
             # resolution
             attr_writer :capture_errors_during_network_resolution
 
+            # Whether the initial connection to process servers are allowed to fail
+            #
+            # When this flag is enabled, the initial connection to remote process managers
+            # is allowed to fail. When it happens, Syskit will generate errors for
+            # attempts to deploy things that run on these process managers.
+            #
+            # By default, Syskit will re-try to connect for a full minute before it
+            # assumes the process manager is not available, to keep a "good" behaviour
+            # w.r.t. boot of distributed systems.
+            #
+            # It is strongly recommended to turn this on with `early_deploy` and
+            # `capture_errors_during_network_resolution`
+            def remote_process_managers_accept_failed_connections?
+                @remote_process_managers_accept_failed_connections
+            end
+
+            # Sets whether syskit accepts the initial connection to process servers are
+            # allowed to fail
+            #
+            # @see #remote_process_managers_accept_failed_connections?
+            attr_writer :remote_process_managers_accept_failed_connections
+
+            # Period at which the remote process managers will retry connecting
+            # to the remote servers
+            attr_accessor :remote_process_managers_connection_retry_period
+
+            # Timeout for connection to remote process managers
+            attr_accessor :remote_process_managers_connection_timeout
+
+            # Timeout for replies from remote process managers
+            attr_accessor :remote_process_managers_response_timeout
+
+            # Timeout for the initial connection to a process manager
+            #
+            # When the manager is instanciated for the first time, Syskit will wait
+            # for its initial connection attempt before moving on with the rest
+            # of the initialization.
+            #
+            # During this initial connection phase, Syskit will try to connect during
+            # this many seconds. Each attempt use
+            # {#remote_process_managers_connection_timeout}
+            # and {#remote_process_managers_response_timeout}, and retries are
+            # spaced by {#remote_process_managers_connection_retry_period}
+            attr_accessor :remote_process_managers_initial_connection_timeout
+
             # Controls whether the orogen types should be exported as Ruby
             # constants
             #
@@ -184,6 +229,12 @@ def initialize(app)
                 @early_deploy = false
                 @capture_errors_during_network_resolution = false
 
+                @remote_process_managers_accept_failed_connections = false
+                @remote_process_managers_connection_retry_period = 5
+                @remote_process_managers_connection_timeout = 10
+                @remote_process_managers_response_timeout = 10
+                @remote_process_managers_initial_connection_timeout = 60
+
                 @log_rotation_period = nil
                 @log_transfer = LogTransferManager::Configuration.new(
                     user: "syskit",
diff --git a/test/process_managers/test_remote.rb b/test/process_managers/test_remote.rb
@@ -53,6 +53,86 @@
         end
     end
 
+    describe "when not accepting failed connections" do
+        before do
+            update_and_restore_attr(
+                Syskit.conf, :remote_process_managers_accept_failed_connections?, false
+            )
+        end
+
+        it "raises if the server allows connection but does not reply" do
+            @server = Syskit::ProcessManagers::Remote::Server::Server.new(
+                @app, port: 0, name_service_ip: "127.0.0.1"
+            )
+            @server.open
+
+            assert_raises(Syskit::ProcessManagers::Remote::Manager::ComError) do
+                Syskit::ProcessManagers::Remote::Manager.new(
+                    "localhost", server.port,
+                    root_loader: root_loader,
+                    connection_timeout: 1, response_timeout: 1,
+                    initial_connection_timeout: 1
+                )
+            end
+        end
+
+        it "raises if there are no servers" do
+            assert_raises(Syskit::ProcessManagers::Remote::Manager::ComError) do
+                Syskit::ProcessManagers::Remote::Manager.new(
+                    "localhost", 12_222,
+                    root_loader: root_loader,
+                    connection_timeout: 1, response_timeout: 1,
+                    initial_connection_timeout: 1
+                )
+            end
+        end
+    end
+
+    describe "when accepting failed connections" do
+        before do
+            update_and_restore_attr(
+                Syskit.conf, :remote_process_managers_accept_failed_connections?, true
+            )
+        end
+
+        it "handles a server that allows connection but does not reply" do
+            @server = Syskit::ProcessManagers::Remote::Server::Server.new(
+                @app, port: 0, name_service_ip: "127.0.0.1"
+            )
+            @server.open
+
+            client = Syskit::ProcessManagers::Remote::Manager.new(
+                "localhost", server.port,
+                root_loader: root_loader,
+                connection_timeout: 1, response_timeout: 1,
+                initial_connection_timeout: 1
+            )
+            refute client.available?
+
+            @server_thread = Thread.new { server.listen }
+            assert_client_is_eventually_available(client)
+        end
+
+        it "handles a server that shows up late" do
+            client = Syskit::ProcessManagers::Remote::Manager.new(
+                "localhost", 12_222,
+                root_loader: root_loader,
+                connection_timeout: 1, response_timeout: 1,
+                initial_connection_timeout: 1
+            )
+            refute client.available?
+
+            @server = Syskit::ProcessManagers::Remote::Server::Server.new(
+                @app, port: 0, name_service_ip: "127.0.0.1"
+            )
+            @server.open
+            @server_thread = Thread.new { server.listen }
+
+            client.port = @server.port
+            assert_client_is_eventually_available(client)
+        end
+    end
+
     describe "#pid" do
         before do
             @client = start_and_connect_to_server
@@ -645,4 +725,19 @@ def assert_eventually(timeout: 5, &block)
 
         flunk("#{block} did not return true in #{timeout} seconds")
     end
+
+    def assert_client_is_eventually_available(client, timeout: 5)
+        now = Roby.monotonic_time
+        deadline = now + timeout
+        while deadline > now
+            return if client.available?
+
+            client.poll
+            sleep 0.01
+
+            now = Roby.monotonic_time
+        end
+
+        flunk("client did not become available in #{timeout} seconds")
+    end
 end
