feat(grpc): enforce a maximum number of reconnection attempts

If fact fails to connect to the gRPC server in the specified number of
attemtps it will crash, which can be used as a clear signal in k8s that
something is not working as expected. If the number of retries is set to
0, there will be no limit to the amount of times fact attempts to
reconnect.

In order to allow the reconnection failure to trigger an application
wide crash, the main output task monitors the result of the grpc task's
handle propagating the error further up. This method should allow for
other output components to be added in the future and follow this same
pattern without having to change anything outside the output module. The
stdout component is not included in this logic because it has no
condition that could merit an application wide crash.

We also now propagate the error of worker tasks all the way up to the
termination of the application.

Author: Molter73

fact/src/config/mod.rs

@@ -332,6 +332,7 @@ pub struct BackoffConfig {
     max: Option<Duration>,
     jitter: Option<bool>,
     multiplier: Option<f64>,
+    retries_max: Option<u64>,
 }
 
 impl BackoffConfig {
@@ -348,6 +349,9 @@ impl BackoffConfig {
         if let Some(multiplier) = from.multiplier {
             self.multiplier = Some(multiplier);
         }
+        if let Some(retries) = from.retries_max {
+            self.retries_max = Some(retries);
+        }
     }
 
     pub fn initial(&self) -> Duration {
@@ -365,6 +369,10 @@ impl BackoffConfig {
     pub fn multiplier(&self) -> f64 {
         self.multiplier.unwrap_or(1.5)
     }
+
+    pub fn retries(&self) -> u64 {
+        self.retries_max.unwrap_or(10)
+    }
 }
 
 impl TryFrom<&yaml::Hash> for BackoffConfig {
@@ -405,6 +413,12 @@ impl TryFrom<&yaml::Hash> for BackoffConfig {
                     };
                     backoff.multiplier = Some(multiplier);
                 }
+                "retries" => {
+                    let Some(retries) = v.as_i64() else {
+                        bail!("invalid grpc.backoff.retries: {v:?}");
+                    };
+                    backoff.retries_max = Some(retries as u64);
+                }
                 name => bail!("Invalid field 'grpc.backoff.{name}' with value: {v:?}"),
             }
         }
@@ -606,6 +620,13 @@ pub struct FactCli {
     #[arg(long, env = "FACT_GRPC_BACKOFF_JITTER")]
     backoff_jitter: Option<bool>,
 
+    /// Maximum number of times a gRPC connection will be attempted
+    /// before giving up
+    ///
+    /// 0 means infinite retries
+    #[arg(long, env = "FACT_GRPC_BACKOFF_RETRIES_MAX")]
+    backoff_retries_max: Option<u64>,
+
     /// The port to bind for all exposed endpoints
     #[arg(long, short, env = "FACT_ENDPOINT_ADDRESS")]
     address: Option<SocketAddr>,
@@ -701,6 +722,7 @@ impl FactCli {
                     max: self.backoff_max,
                     jitter: self.backoff_jitter,
                     multiplier: self.backoff_multiplier,
+                    retries_max: self.backoff_retries_max,
                 },
             },
             endpoint: EndpointConfig {

fact/src/config/tests.rs

@@ -340,6 +340,23 @@ fn parsing() {
                 ..Default::default()
             },
         ),
+        (
+            r#"
+            grpc:
+              backoff:
+                retries: 5
+            "#,
+            FactConfig {
+                grpc: GrpcConfig {
+                    backoff: BackoffConfig {
+                        retries_max: Some(5),
+                        ..Default::default()
+                    },
+                    ..Default::default()
+                },
+                ..Default::default()
+            },
+        ),
         (
             r#"
             grpc:
@@ -348,6 +365,7 @@ fn parsing() {
                 max: 120
                 jitter: false
                 multiplier: 2
+                retries: 5
             "#,
             FactConfig {
                 grpc: GrpcConfig {
@@ -356,6 +374,7 @@ fn parsing() {
                         max: Some(Duration::from_secs(120)),
                         jitter: Some(false),
                         multiplier: Some(2.0),
+                        retries_max: Some(5),
                     },
                     ..Default::default()
                 },
@@ -374,6 +393,7 @@ fn parsing() {
                 max: 120
                 jitter: false
                 multiplier: 2
+                retries: 5
             endpoint:
               address: 0.0.0.0:8080
               expose_metrics: true
@@ -396,6 +416,7 @@ fn parsing() {
                         max: Some(Duration::from_secs(120)),
                         jitter: Some(false),
                         multiplier: Some(2.0),
+                        retries_max: Some(5),
                     },
                 },
                 endpoint: EndpointConfig {
@@ -543,6 +564,22 @@ paths:
             "#,
             "invalid grpc.backoff.multiplier: Real(\"0.5\")",
         ),
+        (
+            r#"
+            grpc:
+              backoff:
+                retries: 0.5
+            "#,
+            "invalid grpc.backoff.retries: Real(\"0.5\")",
+        ),
+        (
+            r#"
+            grpc:
+              backoff:
+                retries: true
+            "#,
+            "invalid grpc.backoff.retries: Boolean(true)",
+        ),
         (
             r#"
             grpc:
@@ -1058,6 +1095,51 @@ fn update() {
                 ..Default::default()
             },
         ),
+        (
+            r#"
+            grpc:
+              backoff:
+                retries: 5
+            "#,
+            FactConfig::default(),
+            FactConfig {
+                grpc: GrpcConfig {
+                    backoff: BackoffConfig {
+                        retries_max: Some(5),
+                        ..Default::default()
+                    },
+                    ..Default::default()
+                },
+                ..Default::default()
+            },
+        ),
+        (
+            r#"
+            grpc:
+              backoff:
+                retries: 5
+            "#,
+            FactConfig {
+                grpc: GrpcConfig {
+                    backoff: BackoffConfig {
+                        retries_max: Some(10),
+                        ..Default::default()
+                    },
+                    ..Default::default()
+                },
+                ..Default::default()
+            },
+            FactConfig {
+                grpc: GrpcConfig {
+                    backoff: BackoffConfig {
+                        retries_max: Some(5),
+                        ..Default::default()
+                    },
+                    ..Default::default()
+                },
+                ..Default::default()
+            },
+        ),
         (
             r#"
             endpoint:
@@ -1425,6 +1507,7 @@ fn update() {
                 max: 120
                 jitter: false
                 multiplier: 3.0
+                retries: 5
             endpoint:
               address: 127.0.0.1:8080
               expose_metrics: true
@@ -1447,6 +1530,7 @@ fn update() {
                         max: Some(Duration::from_secs(30)),
                         jitter: Some(true),
                         multiplier: Some(2.0),
+                        retries_max: Some(20),
                     },
                 },
                 endpoint: EndpointConfig {
@@ -1474,6 +1558,7 @@ fn update() {
                         max: Some(Duration::from_secs(120)),
                         jitter: Some(false),
                         multiplier: Some(3.0),
+                        retries_max: Some(5),
                     },
                 },
                 endpoint: EndpointConfig {
@@ -1525,6 +1610,7 @@ fn defaults() {
     assert_eq!(config.grpc.backoff.max(), Duration::from_secs(60));
     assert!(config.grpc.backoff.jitter());
     assert_eq!(config.grpc.backoff.multiplier(), 1.5);
+    assert_eq!(config.grpc.backoff.retries(), 10);
 }
 
 static ENV_MUTEX: Mutex<()> = Mutex::new(());
@@ -1756,6 +1842,22 @@ fn env_vars() {
                 ..Default::default()
             },
         ),
+        (
+            EnvVar {
+                name: "FACT_GRPC_BACKOFF_RETRIES_MAX",
+                value: "5",
+            },
+            FactConfig {
+                grpc: GrpcConfig {
+                    backoff: BackoffConfig {
+                        retries_max: Some(5),
+                        ..Default::default()
+                    },
+                    ..Default::default()
+                },
+                ..Default::default()
+            },
+        ),
         (
             EnvVar {
                 name: "FACT_ENDPOINT_ADDRESS",

fact/src/lib.rs

@@ -1,6 +1,6 @@
 use std::{borrow::BorrowMut, io::Write, str::FromStr};
 
-use anyhow::Context;
+use anyhow::{Context, bail};
 use bpf::Bpf;
 use host_info::{SystemInfo, get_distro, get_hostname};
 use host_scanner::HostScanner;
@@ -10,6 +10,7 @@ use rate_limiter::RateLimiter;
 use tokio::{
     signal::unix::{SignalKind, signal},
     sync::watch,
+    task::JoinError,
 };
 
 mod bpf;
@@ -64,6 +65,19 @@ pub fn log_system_information() {
     info!("Hostname: {}", get_hostname());
 }
 
+fn flatten_task_result(
+    component: &str,
+    res: Result<anyhow::Result<()>, JoinError>,
+) -> anyhow::Result<()> {
+    match res {
+        Ok(Ok(_)) => Ok(()),
+        Ok(Err(e)) => {
+            bail!("{component} worker errored out: {e:?}");
+        }
+        Err(e) => bail!("{component} task errored out: {e:?}"),
+    }
+}
+
 pub async fn run(config: FactConfig) -> anyhow::Result<()> {
     // Log system information as early as possible so we have it
     // available in case of a crash
@@ -99,13 +113,13 @@ pub async fn run(config: FactConfig) -> anyhow::Result<()> {
         exporter.metrics.rate_limiter.clone(),
     )?;
 
-    output::start(
+    let mut output_handle = output::start(
         rx,
         running.subscribe(),
         exporter.metrics.output.clone(),
         reloader.grpc(),
         reloader.config().json(),
-    )?;
+    );
     let mut host_scanner_handle = host_scanner.start();
     let mut rate_limiter_handle = rate_limiter.start();
     endpoints::Server::new(exporter.clone(), reloader.endpoint(), running.subscribe()).start();
@@ -114,43 +128,28 @@ pub async fn run(config: FactConfig) -> anyhow::Result<()> {
 
     let mut sigterm = signal(SignalKind::terminate())?;
     let mut sighup = signal(SignalKind::hangup())?;
-    loop {
+    let res = loop {
         tokio::select! {
-            _ = tokio::signal::ctrl_c() => break,
-            _ = sigterm.recv() => break,
+            _ = tokio::signal::ctrl_c() => break Ok(()),
+            _ = sigterm.recv() => break Ok(()),
             _ = sighup.recv() => config_trigger.notify_one(),
-            res = bpf_handle.borrow_mut() => {
-                match res {
-                    Ok(res) => if let Err(e) = res {
-                        warn!("BPF worker errored out: {e:?}");
-                    }
-                    Err(e) => warn!("BPF task errored out: {e:?}"),
-                }
-                break;
+            task_res = bpf_handle.borrow_mut() => {
+                break flatten_task_result("BPF", task_res);
+            }
+            task_res = host_scanner_handle.borrow_mut() => {
+                break flatten_task_result("HostScanner", task_res);
             }
-            res = host_scanner_handle.borrow_mut() => {
-                match res {
-                    Ok(res) => if let Err(e) = res {
-                        warn!("HostScanner worker errored out: {e:?}");
-                    }
-                    Err(e) => warn!("HostScanner task errored out: {e:?}"),
-                }
-                break;
+            task_res = rate_limiter_handle.borrow_mut() => {
+                break flatten_task_result("Rate limiter", task_res);
             }
-            res = rate_limiter_handle.borrow_mut() => {
-                match res {
-                    Ok(res) => if let Err(e) = res {
-                        warn!("Rate limiter worker errored out: {e:?}");
-                    }
-                    Err(e) => warn!("Rate limiter task errored out: {e:?}"),
-                }
-                break;
+            task_res = output_handle.borrow_mut() => {
+                break flatten_task_result("Output", task_res);
             }
         }
-    }
+    };
 
     running.send(false)?;
     info!("Exiting...");
 
-    Ok(())
+    res
 }