GoogleCloudPlatform · shubha-rajan · Jul 26, 2021 · Jul 22, 2021 · Jul 22, 2021 · Jul 22, 2021
@@ -301,9 +301,6 @@ String getPreferredIp(List<String> preferredTypes) {
    * @return {@code true} if successfully scheduled, or {@code false} otherwise.
    */
   boolean forceRefresh() {
-    if (!forcedRenewRateLimiter.tryAcquire()) {
-      return false;
-    }
     synchronized (instanceDataGuard) {
       // If a scheduled refresh hasn't started, perform one immediately
       if (nextInstanceData.cancel(false)) {
@@ -323,6 +320,8 @@ boolean forceRefresh() {
    * would expire.
    */
   private ListenableFuture<InstanceData> performRefresh() {
+    // To avoid unreasonable SQL Admin API usage, use a rate limit to throttle our usage. 
+    forcedRenewRateLimiter.acquire(1);
     // Use the Cloud SQL Admin API to return the Metadata and Certificate
     ListenableFuture<Metadata> metadataFuture = executor.submit(this::fetchMetadata);
     ListenableFuture<Certificate> ephemeralCertificateFuture =
@@ -364,18 +363,40 @@ private ListenableFuture<InstanceData> performRefresh() {
             executor,
             metadataFuture,
             sslContextFuture);
-    refreshFuture.addListener(
-        () -> {
-          synchronized (instanceDataGuard) {
-            // update currentInstanceData with the most recent results
-            currentInstanceData = refreshFuture;
-            // schedule a replacement before the SSLContext expires;
-            nextInstanceData = executor
-                .schedule(this::performRefresh, secondsUntilRefresh(),
-                    TimeUnit.SECONDS);
+    Futures.addCallback(refreshFuture,
+        new FutureCallback<InstanceData>() {
+          public void onSuccess(InstanceData instanceData) {
+            synchronized (instanceDataGuard) {
+              // update currentInstanceData with the most recent results
+              currentInstanceData = refreshFuture;
+              // schedule a replacement before the SSLContext expires;
+              nextInstanceData = executor
+                  .schedule(() -> performRefresh(),
+                      secondsUntilRefresh(),
+                      TimeUnit.SECONDS);
+            }
           }
-        },
-        executor);
+
+          public void onFailure(Throwable t) {
+            logger.log(Level.WARNING,
+                "An error occurred while performing refresh. Retrying immediately.", t);
+            synchronized (instanceDataGuard) {
+              try {
+                InstanceData instanceData = getInstanceData();
+                Instant expiration = instanceData.getExpiration().toInstant();
+                if (expiration.isBefore(Instant.now())) {
+                  // replace current if it is expired
+                  currentInstanceData = refreshFuture;
+                }
+              } catch (Exception e) {
+                // replace current if accessing it throws an error
+                currentInstanceData = refreshFuture;
+              }
+              nextInstanceData = Futures.immediateFuture(performRefresh());
+            }
+          }
+        }, executor);
+
     return refreshFuture;
   }