transport: Send RST stream from the server when deadline expires

[arjan-bal]

Fixes: #2886

This PR makes the server cancel an RPC when it sees the deadline expiring instead of waiting forn the client to cancel the stream.

RELEASE NOTES:

• transport: Servers send an HTTP/2 RST_STREAM frame to cancel a stream when the deadline expires.

[codecov]

Codecov Report

Attention: Patch coverage is 97.05882% with 3 lines in your changes missing coverage. Please review.

Project coverage is 82.49%. Comparing base (cbb5c2f) to head (a45d43b).
Report is 14 commits behind head on master.

Files with missing lines	Patch %	Lines
internal/leakcheck/leakcheck.go	96.20%	2 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #8071      +/-   ##
==========================================
+ Coverage   82.36%   82.49%   +0.13%     
==========================================
  Files         387      388       +1     
  Lines       39065    39049      -16     
==========================================
+ Hits        32174    32214      +40     
+ Misses       5562     5538      -24     
+ Partials     1329     1297      -32     

Files with missing lines	Coverage Δ
internal/grpctest/grpctest.go	78.43% <100.00%> (+1.83%)	⬆️
internal/internal.go	100.00% <ø> (ø)
internal/transport/client_stream.go	100.00% <ø> (ø)
internal/transport/http2_server.go	91.63% <100.00%> (+0.40%)	⬆️
internal/transport/server_stream.go	95.31% <ø> (-4.69%)	⬇️
internal/leakcheck/leakcheck.go	89.34% <96.20%> (+4.55%)	⬆️

... and 37 files with indirect coverage changes

[dfawley]

This is additive with the 10s for checking goroutines. It might be nice to pass a context (or timer) to both of these instead, so they can share the 10s timeout?

[arjan-bal]

Nice idea, changed.

[dfawley]

Delete

[arjan-bal]

Oops, removed.

[dfawley]

Is there any need for this? As opposed to just directly calling time.AfterFunc

[arjan-bal]

I was thinking about a future scenarios when subtests and outer tests both start leak checks. Having the previously set function would allow wrapping the outer tests function. The global globalTimerTracker would still prevent this from working.

Removed this field. This use case can be addressed if/when it arises.

[dfawley]

This happens at the end?

[arjan-bal]

Yes, moved the comment to the end.

[dfawley]

Please revert.

[arjan-bal]

It seemed like a harmless typo fix, but I’ve reverted it as requested.

[dfawley]

Can you add a test for this functionality?

[arjan-bal]

Didn't notice that there were tests for this file. Added a test now.

[dfawley]

Suggested change

	s.deadlineTimerCancel = func() {
	timer.Stop()
	}
	s.deadlineTimerCancel = timer.Stop

[arjan-bal]

Changed to use the cancel field on ServerStream. cancel is always set to a non-nil value, so this issue is solved.

[dfawley]

Should we make sure this is always a valid function so we can just call it without the nil check?

[arjan-bal]

Changed to use the existing cancel field.

[dfawley]

Was this a bug before? Or did we have something that prevented it? Or was the code tolerant of multiple calls?

[arjan-bal]

Going through the references, it seems like closeStream can be called concurrently. The race seems rare because the call to deleteStream below removes the stream from the activeStreams map of the server. Most code paths try to get the stream from activeStreams, so they can't call closeStream anymore.

When the function does execute multiple times, the only symptoms seem to be overcounting of channelz metrics here

grpc-go/internal/transport/http2_server.go

Lines 1287 to 1293 in 8528f43

	if channelz.IsOn() {
	if eosReceived {
	t.channelz.SocketMetrics.StreamsSucceeded.Add(1)
	} else {
	t.channelz.SocketMetrics.StreamsFailed.Add(1)
	}
	}

and possibly sending multiple RST streams to the peer because of enqueuing a cleanupStream event in the controlBuf.

[dfawley]

Do we always call cancel? Can we piggyback the timer cancellation with it if so?

[arjan-bal]

Yes we do, changed to use cancel.