[DNM] do not retry the txhashset msg send (do not retry any msg with an attachment) #3152
Conversation
|
Sounds reasonable |
|
Going to take another pass at this.
And the per-msg "retry" logic feels flawed to me - we end up potentially retrying a msg forever under some error conditions (whereas other error conditions mean we drop the connection). I think we can write this in a far simpler way by getting rid of There is no intermediate state that makes sense where "we could not write all the bytes but we'll just try sending the whole msg again and keep doing this until it gets more serious" which is effectively what we are attempting to handle currently. |
|
Closing this for now. Now that we have consistency across all the peer connections (blocking everywhere consistently) the "send" behavior needs investigating again to see if "retry send" is even necessary or makes sense. I'd like to try and reduce our reliance on |
Related #3145.
The existing
retry_sendlogic retries any msg send iftry_break!returnsNone.try_break!does some funky stuff internally squashing some exceptions but letting others propagate.WouldBlockandTimedOutare both squashed, returningNone.So any msg send that times out will be retried.
This is fine for most (small) self-contained msgs but is definitely not fine for msgs that contain an attachment. For attachments we write repeatedly in a tight loop and any iteration of this loop could experience a timeout.
In situations like this we want to fail fast and not attempt to retry the msg send.
The receiver may have received a partial txhashset zip file and the only thing we can do here is to close the connection to signal to the recipient that we cannot reliably send the remaining bytes of the zip file.
Do not merge yet - needs discussing.
#3145 should be merged first.
We may want to rethink how we implement
write_messageto make sending the attachment more robust. But even if we do we still want to prevent msgs with attachments from being retried at the full msg level.