Simplify system retry logic: Part 1

[yycptt]

What changed?

• One retry layer at caller (service client), one retry layer at handler (handler interceptor), one retry layer when calling downstream dependencies (persistence client). Each retry layer has a max attempt of 2.
• Resource exhausted error is only retried at caller layer (service client)
• Frontend handler interceptor has additional retry attempts than other handlers
• No more retry in history workflow context/transaction
• History handler no longer retry (conditionalRetryCount) for ErrConflict, ErrStaleState and when unable to locate current workflow run. Instead when ^ error happens, history interceptor will attempt a retry.
• Improve retry behavior for background task loading (Previously there's no backoff for timer and no special handle for service busy)
• Task processor will no longer retry task when holding the goroutine. Instead task will immediately be sent to the end of the task queue for retry.
• Remove unnecessary retry layer in other misc. places.

NOTE:

• Retry for visibility client is not done in this PR.
• This PR mainly focuses on core history service. Additional clean up is still needed for frontend, history replication, matching and worker service.

Why?

• Simplify system retry logic

How did you test it?

• Existing unit/integration test + Canary.

Potential risks

• API calls and background tasks are more likely to fail.

Is hotfix candidate?

• No.

[dnr]

This is great.. are you planning to consolidate the "retryable rpc clients" (client/*/retryable_client*.go) with an client interceptor also?

[yycptt]

Oh that's a good idea. I wasn't planning for it, but yeah I can replace them with a client interceptor.

Metrics client probably also need to be converted into a client interceptor as currently retryable client is on top of metrics client.

[yycptt]

Created a task for now #3183 as the replacement is not the main purpose of this PR.

[yiminc]

under what condition does persistence layer return Unavailable error?

[yycptt]

I couldn't find any usage for cassandra, but for sql, it's returned here: https://github.com/temporalio/temporal/blob/master/common/persistence/sql/common.go#L66

I removed the resource exhausted error from the existing IsPersistenceTransientError implementation, so only Unavailable error is remained here.

[yiminc]

why we need this get again? It is done at line 243 already

[yycptt]

If workflow is closed, we can't know if there's a newer run created after getting the runID on L243. So need to get runID again to validate it's still the latest run. And since workflow is locked before the second check, there's won't be a newer run if the second check is successful.

[yiminc]

why is this a retryable error?

[yycptt]

This only happens when workflow creates a newer run between getting current runID and loading the mutable state for that runID in getCurrentWorkflowContext(). So it's due to a race condition of two concurrent user requests, which can likely be resolved by a retry.

[alexshtin]

I am surprised to see Internal here. It shouldn't be retryable.

[yycptt]

I agree. But I am not confident enough that we follow this requirement throughout our codebase so it can be removed from here. 😞