Retry decryption from a long-lived async task, instead of lots of detached ones #4715
Conversation
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #4715 +/- ##
=======================================
Coverage 86.14% 86.14%
=======================================
Files 291 292 +1
Lines 34308 34327 +19
=======================================
+ Hits 29553 29570 +17
- Misses 4755 4757 +2 ☔ View full report in Codecov by Sentry. |
|
This lines that codecov is complaining about missing coverage are pretty much all lifted-and-shifted from the their old location into |
|
@poljar is this something like what you intended in https://github.com/matrix-org/matrix-rust-sdk/pull/4644/files#r1963599148 ? |
|
|
||
| // Spawn the long-running task, providing the receiver so we can listen for | ||
| // decryption requests | ||
| matrix_sdk::executor::spawn(decryption_task(state, room_data_provider, receiver)); |
There was a problem hiding this comment.
Hmm, we're still dropping the JoinHandle though the task will get killed because the sender gets dropped, which in turn means the receiver will get a None.
That's a bit implicit compared to holding on to the JoinHandle and cancelling in the drop() call of `DecryptionRetryTask, but I guess there's nothing wrong with it.
There was a problem hiding this comment.
Yeah, I tried to join in drop() but it's async, so I can't do it.
There was a problem hiding this comment.
Oh, you wouldn't await the join in the drop() call, you would just abort() the task. But perhaps it's cleaner to let the task naturally die due to the Sender being gone.
There was a problem hiding this comment.
I think keeping the join handle and manually aborting shows a clear ownership of the task, and would be a tiny bit clearer, even in terms of discoverability: we'd see the JoinHandle in the struct, thus know that this is a task's owner.
There was a problem hiding this comment.
At first I was thinking this as well. But then the task could stop in two ways:
- It ends because the receiver receives a
None. - It gets cancelled.
And then I would need to think about cancel safety of all the things the task contains. Which made me conclude that it's fine to let the task die of natural causes the way it's done.
There was a problem hiding this comment.
Fair; my argument in terms of discoverability still holds IMO, can we store the task in the struct at least?
There was a problem hiding this comment.
Sure, that's probably a wise idea.
Yeah, I think that's fine, I explained things a bit more here: #4715 (review) |
There was a problem hiding this comment.
Nice work, thanks for splitting this into many small commits, made the review easier. I left one nit, but I'll approve this in advance.
There's also a typo in one commit:
Adjust tsts that retry decryption to wait with
In any case, this should make it much easier to move the redecryption logic into the correct place, wherever we decide this to be.
andybalaam
force-pushed
the
andybalaam/decrypt-in-owned-task
branch
from
ec3bc04 to
ddfe69e
Compare
…el, instead of spawning a task directly
…nto the async task
andybalaam
force-pushed
the
andybalaam/decrypt-in-owned-task
branch
from
ddfe69e to
9cb0630
Compare
Part of element-hq/element-meta#2697
In response to a comment on #4644 - avoid spawning a detached async task every time we have some things to decrypt because some Megolm sessions updated.
Instead, we create one async task and hold it inside a new struct called
RetryDecryptionTask. This struct holds one end of channel, and sends retry requests to the async task, which stops when the channel is closed, which will happen when theRetryDecryptionTaskstruct is dropped.So we keep the feature that retrying decryption does not block the main processing, but we lose the spawning of lots of async tasks that are not kept track of.
As written, the task is not cancellable, but this could be added if we think we need it.
I strongly suggest reviewing commit by commit, since this is structured as a set of refactorings that hopefully make sense individually.