Exponential and Fibonacci backoffs easily overflow

Question

Exponential and Fibonacci backoffs easily overflow

magnusbaeck opened this issue 2 years ago · comments

If you let exponential or Fibonacci backoffs run for a while you'll easily get into an overflow situation. See https://go.dev/play/p/FUNKkZU0Kyn for an example. The NewExponential documentation says

It's very efficient, but does not check for overflow, so ensure you bound the retry.

but AFAICT you can't prevent overflows with WithCappedDuration since by then the overflow has already happened. How about changing said backoff functions to detect overflows and consistently return the largest time.Duration when the ceiling has been reached? Or am I missing something?

Seth Vargo · Answer 1 · Thu Feb 10 2022 23:53:37 GMT+0800 (China Standard Time)

If you can figure out a way to do that such that it's still safe for concurrent use and doesn't introduce races, I'd be very interested :)

Magnus Bäck · Answer 2 · Fri Feb 11 2022 00:23:52 GMT+0800 (China Standard Time)

Oooh, you want concurrency too. Should be feasible with a lock, or are those off limits?

Seth Vargo · Answer 3 · Fri Feb 11 2022 00:30:42 GMT+0800 (China Standard Time)

All the backoffs are safe for concurrent use and need to remain that way. They currently use atomic operations and are incredibly fast. When I benchmarked it, introducing a mutex added a fairly large performance hit.

Magnus Bäck · Answer 4 · Fri Feb 11 2022 02:47:59 GMT+0800 (China Standard Time)

Percentage-wise I'm sure that's true, but you'd have to run a really tight retry loop for that to have any significance.

I'm not sure what other options there are. It's not entirely easy to make WithCappedDuration to detect overflows (except for the special case of negative durations), and then we're down to adjusting the documentation to be clearer. Right now it's easy to read it as "just use WithCappedDuration and you'll be fine".

Seth Vargo · Answer 5 · Fri Feb 11 2022 02:57:47 GMT+0800 (China Standard Time)

I think WithCappedDuration, specifically, can check for negative times and then apply the max.

Magnus Bäck · Answer 6 · Fri Feb 11 2022 03:06:58 GMT+0800 (China Standard Time)

Yes, but retry.NewExponential(1 * time.Second) starts returning zero after a while (see https://go.dev/play/p/U0GEa6PRi4U) so we'd need a special case for that too. Bases must always be strictly greater than zero so applying the max for <= 0 would perhaps work out?

Seth Vargo · Answer 7 · Fri Feb 11 2022 03:13:00 GMT+0800 (China Standard Time)

The problem is that Next() will continue to run, so eventually you'll stop overflowing

Magnus Bäck · Answer 8 · Fri Feb 11 2022 03:47:50 GMT+0800 (China Standard Time)

Thanks for fixing this!

github-actions · Answer 9 · Fri Feb 25 2022 08:09:36 GMT+0800 (China Standard Time)

This issue has been automatically locked since there has not been any
recent activity after it was closed. Please open a new issue for
related bugs.