A Scala library for describing retry-on-failure behavior using a concise, literate embedded DSL.
There are places in most modern software where small, intermittent errors can occur and disrupt the normal flow of execution. Traditionally, a retry loop is used in these situations, with constraints on the number of attempts that can be made and how certain errors are handled. A naive retry loop that would make up to three attempts, waiting 100 milliseconds between each attempt, could look like this:
def doSomethingUntilItWorks(): String = {
val maxAttempts = 3
val backoff = 100 millis
var attempts = 0
while (true) {
attempts += 1
try {
return doSomethingThatMightFail()
} catch {
case e: SomeImportantException =>
println("Interrupted by important exception: " + e.getMessage)
throw e
case NonFatal(e) =>
if (attempts >= maxAttempts) {
println("Aborting after too many attempts: " + e.getMessage)
throw e
}
println("Retrying after error: " + e.getMessage)
Thread.sleep(backoff toMillis)
case e =>
println("Interrupted by fatal exception: " + e.getMessage)
throw e
}
}
sys.error("unreachable")
}Retry loops like the one above bring a number of issues with them:
-
They obscure the actual work that the program is trying to do (the lone call to
doSomethingThatMightFail()above). -
They are convoluted and tend to contain more and more mutable state the more complex they get, making them hard to reason about and resistant to change.
-
They are difficult and tedious to test, possibly leading to undiscovered bugs in the code base.
With the atmos library, a retry policy can be described using a minimalistic DSL, replacing unreadable retry loops with concise, descriptive text. The above example can be described using atmos like so:
import atmos.dsl._
implicit val retryPolicy = retryFor { 3 attempts } using constantBackoff { 100 millis } monitorWith System.out onError {
case _: SomeImportantException => stopRetrying
}
val result = retry() { doSomethingThatMightFail() }In addition to making retry behavior easy to understand, atmos provides the ability to customize the strategies that control loop termination, backoff calculation, error handling and event monitoring, as well as supporting both synchronous and asynchronous styles of programming. See the user guide below for information about the wide array of customization options this library supports.
Prerequisites:
- Scala 2.10.x
The atmos library divides the definition of a retry policy into four parts:
-
Termination policies enforce an upper bound on the number of retry attempts that are made.
-
Backoff policies calculate the delay that is inserted before subsequent retry attempts.
-
Error classifiers define the strategy used to determine if an error prevents further attempts.
-
Event monitors are notified of events that occur while performing a retry operation.
Using the naive retry loop from above, we can classify its behavior according to the four elements of a retry policy:
while (true) {
attempts += 1 // Termination policy
try {
return doSomethingThatMightFail()
} catch {
case e: SomeImportantException => // Error classifier
println("interrupted") // Event monitor
throw e
case NonFatal(e) => // Error classifier
if (attempts >= maxAttempts) { // Termination policy
println("aborting") // Event monitor
throw e
}
println("retrying") // Event monitor
Thread.sleep(backoff toMillis) // Backoff policy
case e =>
println("interrupted") // Event monitor
throw e
}
}Atmos decomposes the traditional retry loop into these four, independent strategies and allows you to easily recombine them in whatever fashion you see fit.
A retry policy is encapsulated in the atmos.RetryPolicy class. Typically, a retry policy is declared as an implicit variable and the retry() method from the DSL is used to execute a retry operation. However, if you have multiple policies in the same scope (or if you want to avoid using implicit parameters) you can also call retry() directly on the policy object:
import atmos.dsl._
implicit val policy: RetryPolicy = ???
// The following two statements are equivalent:
retry() { doSomething() }
policy.retry() { doSomething() }Termination policies determine when a retry operation will make no further attempts. Any type that implements the atmos.TerminationPolicy trait can be used in a retry policy, but the DSL exposes factory methods for creating the most common implementations. DSL methods that define termination policies return a RetryPolicy configured with that termination policy and with default values for its other properties.
A default retry policy that limits an operation to 3 attempts can be created with retrying:
import atmos.dsl._
// Default policy terminates after 3 attempts.
implicit val retryPolicy = retryingCustom termination policies can be specified using retryFor:
import scala.concurrent.duration._
import atmos.dsl._
// Terminate after 5 failed attempts.
implicit val retryPolicy = retryFor { 5 attempts }
// Terminate after retrying for at least 5 minutes.
val otherRetryPolicy = retryFor { 5 minutes }Note that the 5 minutes parameter is an instance of scala.concurrent.duration.FiniteDuration and that any instance of that class may be used as a policy in retryFor.
When creating a retry policy using retryFor, parameters can be combined using the && and || operators to describe complex termination conditions:
import scala.concurrent.duration._
import atmos.dsl._
// Terminate after 5 failed attempts or retrying for at least 5 minutes, whichever comes first.
implicit val retryPolicy = retryFor { 5.attempts || 5.minutes }
// Terminate after at least 5 failed attempts but not before retrying for at least 5 minutes.
val otherRetryPolicy = retryFor { 5.attempts && 5.minutes }Finally, a retry policy that immediately terminates can be created with neverRetry and a retry policy that never terminates (unless directed to by an error classifier) can be created with retryForever:
import atmos.dsl._
// Immediately terminates.
implicit val retryPolicy = neverRetry
// Only terminates if a fatal error is encountered.
val otherRetryPolicy = retryForeverBackoff policies specify the delay before subsequent retry attempts and are configured by calling using on an existing retry policy. Any type that implements the atmos.BackoffPolicy trait can be used in a retry policy, but the DSL exposes factory methods for creating the most common implementations.
There are four basic backoff policies provided by this library:
import scala.concurrent.duration._
import atmos.dsl._
// Wait 5 milliseconds between each attempt.
implicit val retryPolicy = retryForever using constantBackoff { 5 millis }
// Wait 5 minites after the first attempt, then 10 seconds, then 15 seconds and so on.
val otherRetryPolicy = retryForever using linearBackoff { 5 seconds }
// Wait 5 minites after the first attempt, then 10 seconds, then 20 seconds and so on.
val anotherRetryPolicy = retryForever using exponentialBackoff { 5 minutes }
// Wait 5 hours after the first attempt, then repeatedly multiply by the golden ratio after subsequent attempts.
val yetAnotherRetryPolicy = retryForever using fibonacciBackoff { 5 hours }For each of the above policy declarations, the parameter list may be omitted and the default backoff duration of 100 milliseconds will be used:
import atmos.dsl._
// Wait the default 100 milliseconds between each attempt.
implicit val retryPolicy = retryForever using constantBackoff
Additionally, you can select the type of backoff to use based on the exception that caused the most recent attempt to fail:
import scala.concurrent.duration._
import atmos.dsl._
// Waits longer after attempts that result in a hypothetical rate throttling exception.
implicit val retryPolicy = retryForever using selectedBackoff {
case e: ThrottledException => constantBackoff { 5 seconds }
case _ => constantBackoff
}Finally, any backoff policy can be configured so that each successive backoff duration is perturbed by a random value:
import scala.concurrent.duration._
import atmos.dsl._
// Randomizes each backoff duration by adding a random duration between 0 milliseconds and 100 milliseconds.
implicit val retryPolicy = retryForever using { constantBackoff { 1 second } randomized 100.millis }
// Randomizes each backoff duration by adding a random duration between -30 seconds and 30 seconds.
val otherRetryPolicy = retryForever using { linearBackoff { 5 minues } randomized -30.seconds -> 30.seconds }Errors that occur during a retry attempt can be classified as Fatal, Recoverable or SilentlyRecoverable. Fatal errors will interrupt a retry operation and cause it to immediately fail. Recoverable errors will be logged and suppressed so that the retry operation can continue. SilentlyRecoverable errors will be suppressed without being logged so that the retry operation can continue. Error classifications are defined in atmos.ErrorClassification.
Error classifiers are simply implementations of PartialFunction that map instances of Throwable to the desired error classification. In situations where a classifier is not defined for a particular error, scala.util.control.NonFatal is used to classify errors as Fatal or Recoverable. The appropriate partial function type is defined as atmos.ErrorClassifier and includes a helper factory object.
Error classifiers are configured by calling onError on an existing retry policy:
import atmos.dsl._
// Stop retrying after any runtime exception.
implicit val retryPolicy = retryForever onError { case _: RuntimeException => stopRetrying }
// Continue retrying silently after all runtime exceptions except illegal argument exceptions.
val otherRetryPolicy = retryForever onError {
case _: IllegalArgumentException => keepRetrying
case _: RuntimeException => keepRetryingSilently
}Event monitors are notified when retry attempts fail and are configured on a retry policy using monitorWith. Any type that implements the atmos.EventMonitor trait can be used in a retry policy, but the DSL exposes factory methods for creating the most common implementations.
This library supports using instances of Java's PrintStream and PrintWriter as targets for logging retry events. The specifics of what is printed can be customized for each type of event:
import atmos.dsl._
// Print information about failed attempts to stderr using the default printing strategies.
implicit val retryPolicy = retryForever monitorWith System.err
// Print information about failed attempts to a file, customizing what events get printed and how.
val otherRetryPolicy = retryForever monitorWith {
new PrintWriter("/path") onRetrying printNothing onInterrupted printMessage onAborted printMessageAndStackTrace
}Additionally, common logging frameworks can be used as event monitors and can be customized for each type of event:
import java.util.logging.Logger
import atmos.dsl._
// Submit information about failed attempts to the specified instance of `java.util.logging.Logger`.
implicit val retryPolicy = retryForever monitorWith Logger.getLogger("MyLoggerName")
// Submit information about failed attempts to the specified instance of `java.util.logging.Logger`, customizing
// what events get logged and and at what level.
val otheretryPolicy = retryForever monitorWith {
Logger.getLogger("MyLoggerName") onRetrying logNothing onInterrupted logWarning onAborted logError
}
// Submit information about failed attempts to the specified instance of `org.slf4j.Logger`, customizing what
// events get logged and and at what level.
import org.slf4j.LoggerFactory
import Slf4jSupport._
val slf4jRetryPolicy = retryForever monitorWith {
LoggerFactory.getLogger("MyLoggerName") onRetrying logNothing onInterrupted logWarning onAborted logError
}
// Submit information about failed attempts to the specified instance of `akka.event.LoggingAdapter`, customizing
// what events get logged and and at what level.
import akka.event.Logging
import AkkaSupport._
val akkaRetryPolicy = retryForever monitorWith {
Logging(context.system, this) onRetrying logNothing onInterrupted logWarning onAborted logError
}