pubsys: retry SSM validation on any failure

bottlerocket-os · Aug 20, 2024 · 4d72f1d · 4d72f1d
1 parent 8805133
commit 4d72f1d
Show file tree

Hide file tree

Showing 4 changed files with 52 additions and 0 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -112,6 +112,7 @@ term_size = "0.3"
 tinytemplate = "1"
 tokio = "1"
 tokio-stream = "0.1"
+tokio-retry = "0.3"
 toml = "0.8"
 tough = "0.17"
 tough-kms = "0.9"

diff --git a/tools/pubsys/Cargo.toml b/tools/pubsys/Cargo.toml
@@ -43,6 +43,7 @@ tabled.workspace = true
 tempfile.workspace = true
 tinytemplate.workspace = true
 tokio = { workspace = true, features = ["full"] }
+tokio-retry.workspace = true
 tokio-stream = { workspace = true, features = ["time"] }
 toml.workspace = true
 tough = { workspace = true, features = ["http"] }

diff --git a/tools/pubsys/src/aws/ssm/ssm.rs b/tools/pubsys/src/aws/ssm/ssm.rs
@@ -22,6 +22,15 @@ use nonzero_ext::nonzero;
 use snafu::{ensure, OptionExt, ResultExt};
 use std::collections::{HashMap, HashSet};
 use std::time::Duration;
+use tokio_retry::{
+    strategy::{jitter, ExponentialBackoff},
+    RetryIf,
+};
+
+// SSM validation may retry if it fails for any reason.
+// These parameters control the exponential backoff and number of retries.
+const SSM_VALIDATION_RETRY_EXP_BASE_MILLIS: u64 = 2_000;
+const SSM_VALIDATION_NUM_RETRIES: usize = 3;
 
 // Configures the rate limit used for SSM parameter fetching.
 // SSM service quotas are provided on https://docs.aws.amazon.com/general/latest/gr/ssm.html
@@ -430,9 +439,38 @@ pub(crate) async fn set_parameters(
 }
 
 /// Fetch the given parameters, and ensure the live values match the given values
+///
+/// Retries validation up to 3 times on any failure, using exponential backoff.
 pub(crate) async fn validate_parameters(
     expected_parameters: &SsmParameters,
     ssm_clients: &HashMap<Region, SsmClient>,
+) -> Result<()> {
+    let retry_strategy = ExponentialBackoff::from_millis(SSM_VALIDATION_RETRY_EXP_BASE_MILLIS)
+        .map(jitter)
+        .enumerate()
+        .map(|(attempt, d)| {
+            if attempt > 0 {
+                error!("Retrying: attempt = {}", attempt + 1,);
+            }
+            d
+        })
+        .take(SSM_VALIDATION_NUM_RETRIES);
+
+    RetryIf::spawn(
+        retry_strategy,
+        || async { validate_parameters_inner(expected_parameters, ssm_clients).await },
+        |e: &'_ Error| {
+            error!("Failed to validate SSM parameters: {}", e);
+            true
+        },
+    )
+    .await
+}
+
+/// Fetch the given parameters, and ensure the live values match the given values
+async fn validate_parameters_inner(
+    expected_parameters: &SsmParameters,
+    ssm_clients: &HashMap<Region, SsmClient>,
 ) -> Result<()> {
     // Fetch the given parameter names
     let expected_parameter_names: Vec<&SsmKey> = expected_parameters.keys().collect();