Fix "server closed the stream without sending trailers" error

[guggero]

This PR adds a test to reproduce the elusive server closed the stream without sending trailers error that we first discovered through user feedback in lightninglabs/pool#225.

Apparently this is a bug in the net/http/httputil package itself, so we can not really fix it but add a workaround.
The tl;dr is that sometimes, the HTTP/2 trailer fields aren't sent back to the client correctly when an error occurs on the proxied connection. We add our own HTTP transport implementation that fixes the problem.

[wpaulino]

Awesome find! My guess is that there's a race condition somewhere within the ReverseProxy/Transport code making this reproducible only sometimes. We should probably report this upstream.

[guggero]

This could be somewhat related to golang/go#34413. Maybe the backend closes the stream after sending an error. I'm not sure if I should invest more time into a repro scenario. Would be cool to fix something in golang though :)

[Roasbeef]

Lint fails:

proxy/proxy.go:363:22: resp.Header.Values undefined (type http.Header has no field or method Values) (typecheck)
		if len(resp.Header.Values(hdrGrpcStatus)) > 0 {
		                   ^
		                 ```

[Roasbeef]

Any link handy to allow me to better understand whcih headers we're setting here and why?

[guggero]

It's not a very good doc, but that's the best I could find: https://github.com/grpc/grpc/blob/master/doc/PROTOCOL-HTTP2.md

The Grpc-Status is the field that holds the numerical value for the gRPC specific states (e.g. OK, INTERNAL, UNKNOWN, UNIMPLEMENTED, UNAVAILABLE and so on). The Grpc-Message field contains the actual error message in case the gRPC status isn't OK (0). Those two fields should be sent as a HTTP/2 trailer field and not header field. That's what we tell the golang http2 library by setting the Trailer field with the name of those two fields.

The Content-Length and :status are probably not necessary as they would be set anyway by the proxy. Maybe I should remove them as they are from trying out stuff.

[Roasbeef]

Could use a comment stating that the OK code is zero, so anything beyond that is actually considered an error: https://pkg.go.dev/google.golang.org/grpc/codes

[guggero]

Okay, I'll rewrite this to make it a bit more clear. We don't look at the actual value. This just checks "if there is no Trailer (as in HTTP/2 trailer data field) set but we have a Grpc-Status Header field, then, per gRPC convention, we need to set the same value in the Trailer part of the message". This is the actual fix as the client complains that there are no trailers set when the proxy closes the connection.

[Roasbeef]

What's the goal w/ this added iteration of the test case? Given that the iteration index (or no other new information) is actually propagated into the test context.

[guggero]

The error is only hit every 3 or 4 tries. That's why suspect a race condition in the underlying code. Without the fix we'd never get 20 successful runs, so this just "brute forces" the test to make sure it doesn't flake anymore.

[Roasbeef]

Would this serve to resolve those issues we observed when we attempted to expose Aperture directly over the load balancer?

[guggero]

Hmm, maybe, yes. I think we should look into that again.

[Roasbeef]

Woah, new proto syntax change?

[guggero]

Not really. You can use the {} notation if you add additional metadata (for example the REST options) or use a semicolon directly if there is no "body".

[guggero]

Fixed the linter by bumping the golang versions.

[guggero]

Argh, now there's a data race in the built in library...

EDIT: All fixed now.

[Roasbeef]

LGTM 🌛