+1 to both points. I was left scratching my head as well and it didn't occur to me to dig into logging just to find out the why of Send failed. I just assumed I was doing something wrong (just starting out with grpc here).

RpcException indeed would be a good starting substitution here instead of IOE imho. If MSDN is any nudge to how MS tends to handle these case, DirectoryException / CommunicationException are good examples of this sort of situation handling. They're all encompassing within their realm and throw more specialized exceptions where they make sense (for example LdapException or SecurityAccessDeniedException)

@kkm000, thanks for filing this issue, I fully agree with your thoughts. Seems like this is something we need to fix. Also, I apologize for not reacting sooner, I was out of office for extended period of time.

Here are my thoughts on what needs to be done and how. I will start with the client side calls

• For unary calls, everything works as expected because if such call fails, one receives an RpcException with appropriate status and InvalidOperationException is only thrown if programmer breaks the contract and does something not admissible.
• For streaming calls, I think for a failed write we should deliver an RpcException with a StatusCode corresponding to the status code of the entire call. As a principle, a single gRPC call should only have a single status code associated with it - so in C# API we need to honor that. Internally in C core, finishing of a write operation and finishing of the entire call with a status code are two different events. So, what needs to happen is when a write operation fails, we also wait for the entire call to finish and then throw RpcException with the correct status because we already obtained it. That should work fine because
  • C core guarantees that if a write operations fails, the entire call will fail "immediately" (soon enough) afterwards. So we wouldn't starve waiting on the status code to be delivered.
  • there should be no performance impact, because we only wait for two events instead of one in case the RPC call fails and that's not really something we need to optimize for.

Does that make sense? If so, things seem to be fairly clear on the client side.

On the server side, things works similarly with the biggest difference being that we cannot throw and RpcException (that comes with a status code) simply because server side calls don't have a status code associated with them - if they fail, they finish with a binary success/non-success flag reported back to the server code. So on the server side, we need to figure out which exception type is the most fitting here - my personal favorite seems to be IOException (but do be honest I am not 100% convinced I like that choice either).

What is your opinion on what the server side behavior should be (and what exception type to use)?

CC @apolcyn @jskeet

Would it be worth it to try and do this in a non-breaking way, or at least less breaking? Possibly sub-classing the current InvalidOperationException? (got rid of one idea like that in #7861).

So what server-side failure type are we talking about? Something like "client killed connection"?

@jskeet yes, if something went wrong with the call and we weren't able to finish the call normally (by sending client a status). That could be network error, client died, etc.

Sounds like IOException makes sense in that case then.

Another option would be to throw parameterless "RpcException" for more consistency with client side (but it's just an idea).

I like the idea of throwing an RpcException, a single exception type to signify "this rpc has failed".

IOException feels a little out of place given that the grpc does not model IO, instead we model the invocation of methods that happen to require IO. It would be the only place in grpc that would throw an IOException requiring that exception handlers must now catch two types to handle the "this rpc has failed [and potentially retry]". RpcException seems semantically okay here.

Actually RpcException on server side turned out to be a bit tricky because it already has field Status that only makes sense on the client side. I had the options to introduce a new "ServerRpcException" or stick with "IOException". It seems that IOException is the best choice, because it required the least changes and expresses the concept quite well. I didn't want to add just another exception type for no good reason.

See #8084 for the PR with the fix.

Sounds great. So looking briefly at #8084, we now throw an RpcException on the client, and an IOException on the server? That's perfect.

@imiuka Yes, exactly (once we merge and release of course).

#8084 has been been merged.