refactor + retry writes error logic

baileympearson · baileympearson · commit 7ba74261a7d2 · 2026-02-03T12:52:33.000-07:00
diff --git a/src/operations/execute_operation.ts b/src/operations/execute_operation.ts
@@ -246,9 +246,7 @@ async function executeOperationWithRetries<
     session.incrementTransactionNumber();
   }
 
-  let previousOperationError: MongoError | undefined;
   const deprioritizedServers = new DeprioritizedServers();
-
   const backoffDelayProvider = new ExponentialBackoffProvider(
     10_000, // MAX_BACKOFF
     100, // base backoff
@@ -257,40 +255,86 @@ async function executeOperationWithRetries<
 
   let maxAttempts =
     (operation.maxAttempts ?? willRetry) ? (timeoutContext.csotEnabled() ? Infinity : 2) : 1;
+
   const shouldRetry = operation.hasAspect(Aspect.READ_OPERATION) && topology.s.options.retryReads || (operation.hasAspect(Aspect.WRITE_OPERATION) || operation instanceof RunCommandOperation) && topology.s.options.retryWrites;
 
+  let error: MongoError | null = null;
+
   for (
     let attempt = 0;
     attempt < maxAttempts;
-    attempt++,
-    maxAttempts = shouldRetry && previousOperationError?.hasErrorLabel(MongoErrorLabel.SystemOverloadedError)
-      ? 6
-      : maxAttempts
+    attempt++
   ) {
-    if (previousOperationError) {
-      if (hasWriteAspect && previousOperationError.code === MMAPv1_RETRY_WRITES_ERROR_CODE) {
+
+    operation.server = server;
+
+    try {
+      const isRetry = attempt > 0;
+
+      try {
+        const result = await server.command(operation, timeoutContext);
+        topology.tokenBucket.deposit(
+          isRetry
+            ? // on successful retry, deposit the retry cost + the refresh rate.
+            TOKEN_REFRESH_RATE + RETRY_COST
+            : // otherwise, just deposit the refresh rate.
+            TOKEN_REFRESH_RATE
+        );
+        return operation.handleOk(result);
+      } catch (error) {
+        return operation.handleError(error);
+      }
+    } catch (operationError) {
+      // Should never happen but if it does - propragate the error.
+      if (!(operationError instanceof MongoError)) throw operationError;
+
+      if (!operationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError)) {
+        // if an operation fails with an error that does not contain the SystemOverloadError, deposit 1 token.
+        topology.tokenBucket.deposit(RETRY_COST);
+      }
+
+      if (error == null) {
+        error = operationError;
+      } else {
+        if (!operationError.hasErrorLabel(MongoErrorLabel.NoWritesPerformed)) {
+          error = operationError;
+        }
+      }
+
+      if (hasWriteAspect && operationError.code === MMAPv1_RETRY_WRITES_ERROR_CODE) {
         throw new MongoServerError({
           message: MMAPv1_RETRY_WRITES_ERROR_MESSAGE,
           errmsg: MMAPv1_RETRY_WRITES_ERROR_MESSAGE,
-          originalError: previousOperationError
+          originalError: operationError
         });
       }
 
+      // prepare for retry
       const isRetryable =
         // bulk write commands are retryable if all operations in the batch are retryable
         (operation.hasAspect(Aspect.COMMAND_BATCHING) && operation.canRetryWrite) ||
         // if we have a retryable read or write operation, we can retry
-        (hasWriteAspect && willRetryWrite && isRetryableWriteError(previousOperationError)) ||
-        (hasReadAspect && willRetryRead && isRetryableReadError(previousOperationError)) ||
+        (!operation.hasAspect(Aspect.COMMAND_BATCHING) && hasWriteAspect && willRetryWrite && isRetryableWriteError(operationError)) ||
+        (hasReadAspect && willRetryRead && isRetryableReadError(operationError)) ||
         // if we have a retryable, system overloaded error, we can retry
-        (previousOperationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError) &&
-          previousOperationError.hasErrorLabel(MongoErrorLabel.RetryableError));
+        (operationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError) &&
+          operationError.hasErrorLabel(MongoErrorLabel.RetryableError));
+
+      if (!isRetryable) throw error;
 
-      if (!isRetryable) {
-        throw previousOperationError;
+      maxAttempts = shouldRetry && operationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError)
+        ? 6
+        : maxAttempts
+      if (attempt >= maxAttempts) {
+        throw error;
       }
 
-      if (previousOperationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError)) {
+      // safe to retry - reset timeout context, apply backoff if necessary and re-run server selection
+
+      // Reset timeouts
+      timeoutContext.clear();
+
+      if (operationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError)) {
         const delayMS = backoffDelayProvider.getNextBackoffDuration();
 
         // if the delay would exhaust the CSOT timeout, short-circuit.
@@ -299,20 +343,20 @@ async function executeOperationWithRetries<
           throw new MongoOperationTimeoutError(
             `MongoDB SystemOverload exponential backoff would exceed timeoutMS deadline: remaining CSOT deadline=${timeoutContext.remainingTimeMS}, backoff delayMS=${delayMS}`,
             {
-              cause: previousOperationError
+              cause: error
             }
           );
         }
 
         if (!topology.tokenBucket.consume(RETRY_COST)) {
-          throw previousOperationError;
+          throw error;
         }
 
         await setTimeout(delayMS);
       }
 
       if (
-        previousOperationError instanceof MongoNetworkError &&
+        operationError instanceof MongoNetworkError &&
         operation.hasAspect(Aspect.CURSOR_CREATING) &&
         session != null &&
         session.isPinned &&
@@ -321,6 +365,8 @@ async function executeOperationWithRetries<
         session.unpin({ force: true, forceClear: true });
       }
 
+      deprioritizedServers.add(server.description);
+
       server = await topology.selectServer(selector, {
         session,
         operationName: operation.commandName,
@@ -333,52 +379,13 @@ async function executeOperationWithRetries<
           'Selected server does not support retryable writes'
         );
       }
-    }
-
-    operation.server = server;
-
-    try {
-      const isRetry = attempt > 0;
 
       // If attempt > 0 and we are command batching we need to reset the batch.
-      if (isRetry && operation.hasAspect(Aspect.COMMAND_BATCHING)) {
+      if (operation.hasAspect(Aspect.COMMAND_BATCHING)) {
         operation.resetBatch();
       }
-
-      try {
-        const result = await server.command(operation, timeoutContext);
-        topology.tokenBucket.deposit(
-          isRetry
-            ? // on successful retry, deposit the retry cost + the refresh rate.
-            TOKEN_REFRESH_RATE + RETRY_COST
-            : // otherwise, just deposit the refresh rate.
-            TOKEN_REFRESH_RATE
-        );
-        return operation.handleOk(result);
-      } catch (error) {
-        return operation.handleError(error);
-      }
-    } catch (operationError) {
-      if (!(operationError instanceof MongoError)) throw operationError;
-
-      if (!operationError.hasErrorLabel(MongoErrorLabel.SystemOverloadedError)) {
-        // if an operation fails with an error that does not contain the SystemOverloadError, deposit 1 token.
-        topology.tokenBucket.deposit(RETRY_COST);
-      }
-
-      if (
-        previousOperationError != null &&
-        operationError.hasErrorLabel(MongoErrorLabel.NoWritesPerformed)
-      ) {
-        throw previousOperationError;
-      }
-      deprioritizedServers.add(server.description);
-      previousOperationError = operationError;
-
-      // Reset timeouts
-      timeoutContext.clear();
     }
   }
 
-  throw previousOperationError ?? new MongoRuntimeError('ahh');
+  throw error ?? new MongoRuntimeError('ahh');
 }
diff --git a/test/integration/retryable-writes/retryable_writes.spec.prose.test.ts b/test/integration/retryable-writes/retryable_writes.spec.prose.test.ts
@@ -8,8 +8,9 @@ import {
   type Collection,
   type MongoClient,
   MongoError,
+  MongoErrorLabel,
   MongoServerError,
-  MongoWriteConcernError
+  MongoWriteConcernError,
 } from '../../../src';
 import { Server } from '../../../src/sdam/server';
 import { sleep } from '../../tools/utils';
@@ -344,4 +345,100 @@ describe('Retryable Writes Spec Prose', () => {
       }
     );
   });
+
+  describe('6. Test that drivers return the original error after encountering multiple WriteConcernErrors with a RetryableWriteError label', () => {
+    let client: MongoClient;
+    let collection: Collection<{ _id: 1 }>;
+
+    beforeEach(async function () {
+      // This test MUST:
+      // - be implemented by any driver that implements the Command Monitoring specification,
+      // - only run against replica sets as mongos does not propagate the NoWritesPerformed label to the drivers.
+      // - be run against server versions 6.0 and above.
+      // - be implemented by any driver that has implemented the Client Backpressure specification.
+
+      // Additionally, this test requires drivers to set a fail point after an `insertOne` operation but before the subsequent
+      // retry. Drivers that are unable to set a failCommand after the CommandFailedEvent SHOULD use mocking or write a unit test
+      // to cover the same sequence of events.
+
+      // 1. Create a client with `retryWrites=true`.
+      client = this.configuration.newClient({ monitorCommands: true, retryWrites: true });
+      await client
+        .db()
+        .collection('retryReturnsOriginal')
+        .drop()
+        .catch(() => null);
+      collection = client.db().collection('retryReturnsOriginal');
+    });
+
+    afterEach(async function () {
+      // 5. Disable the fail point:
+      //     ```javascript
+      //     {
+      //         configureFailPoint: "failCommand",
+      //         mode: "off"
+      //     }
+      //     ```
+
+      // (we don't use a failPoint, so we use sinon.restore instead)
+      sinon.restore();
+      await client.close();
+    });
+
+    it(
+      'when a retry attempt fails with an error labeled NoWritesPerformed, drivers MUST return the original error',
+      { requires: { topology: 'replicaset', mongodb: '>=4.2.9' } },
+      async () => {
+        // 2. Configure a fail point with error code `91` (ShutdownInProgress) with the `RetryableError` and
+        //     `SystemOverloadedError` error labels:
+
+        //     ```javascript
+        //     {
+        //         configureFailPoint: "failCommand",
+        //         mode: {times: 1},
+        //         data: {
+        //             failCommands: ["insert"],
+        //             errorLabels: ["RetryableError", "SystemOverloadedError", "NoWritesPerformed"],
+        //             errorCode: 91
+        //         }
+        //     }
+        //     ```
+
+        // 3. Via the command monitoring CommandFailedEvent, configure a fail point with error code `10107` (NotWritablePrimary)
+        //     and a NoWritesPerformed label:
+
+        //     ```javascript
+        //     {
+        //         configureFailPoint: "failCommand",
+        //         mode: "alwaysOn",
+        //         data: {
+        //             failCommands: ["insert"],
+        //             errorCode: 10107,
+        //             errorLabels: ["RetryableError", "SystemOverloadedError", , "NoWritesPerformed"]
+        //         }
+        //     }
+        //     ```
+
+        //     Drivers SHOULD only configure the `10107` fail point command if the the failed event is for the `91` error configured
+        //     in step 2.
+        const serverCommandStub = sinon.stub(Server.prototype, 'command').callsFake(async function () {
+          throw new MongoServerError({
+            message: 'Server Error',
+            errorLabels: [MongoErrorLabel.RetryableError, MongoErrorLabel.SystemOverloadedError, MongoErrorLabel.NoWritesPerformed],
+            code: serverCommandStub.callCount === 1 ? 91 : 10107,
+            ok: 0
+          });
+        });
+
+        const insertResult = await collection.insertOne({ _id: 1 }).catch(error => error);
+
+        expect(serverCommandStub.callCount).to.equal(6);
+
+        // 4. Attempt an `insertOne` operation on any record for any database and collection. Expect the `insertOne` to fail with a
+        //     server error. Assert that the error code of the server error is 91.
+        expect(insertResult).to.be.instanceOf(MongoServerError);
+        expect(insertResult).to.have.property('code', 91);
+      }
+    );
+  })
 });
