proto: Make DataWriter::close actually do something.

Previously we had a bug where <DataWriter as AsyncWrite>::close (or shutdown in tokio-land) would not actually have any effect. It would drop the StreamTarget held by the DataWriter, but since the DataReader also held a StreamTarget, the MPSC channel would not get closed, and the circuit reactor would not realize that the stream wanted to shut down.

Now we use mpsc::Sender::close_channel to make our closes effectual.

Closes #1368 (closed).

requested review from @nickm

assigned to @nickm

marked this merge request as draft

mentioned in issue #1368 (closed)

added 1 commit

• 4bd59c01 - proto: Improve documentation about DataStream lifetimes and closing

Compare with previous version

marked this merge request as ready

removed review request for @nickm

requested review from @jnewsome

cc @Diziet if you want to have a look. Also cc @richard as original reporter.

It's a little surprising that the reader has its own StreamTarget. Digging a little, I see that it's so that it can signal that the application is reading (by sending sendmes), and so that it can signal protocol errors.

The former might eventually go away once we no longer support pre-prop324 flow control, but that's a long ways off. I suppose it'd still need it for signaling errors though, barring some further refactor to move that up a level or something. In any case, I agree that doing an explicit close seems more robust than just dropping the object.

Maybe tweak the comment here along the lines of "it's difficult to be certain that no other clones of the sender, and in particular StreamReader currently has its own copy"? It'd also be helpful to comment the target field in StreamReader to explain a bit why it has it.

changed this line in version 3 of the diff

approved this merge request

It'd be nice to have a regression test for this bug too. Is there currently a reasonable way to write one?

Maybe the repro in #1368 (closed) could be checked in as a standalone test?

Oh, I just realized that talks to the real network.

It could probably be adapted to something that runs under shadow against the test network. It might be a little work to write the first such test, but it seems like a useful strategy in general. If you want you can file an issue to set up a framework for such tests, starting with this repro.

Of course, if you have an idea for a simpler regression test in the meantime that'd be good too :)

You could accomplish the same thing with a temporary onion service as the endpoint. I have a functional test in my tor-interface crate which discovered this behaviour:

• https://github.com/blueprint-freespeech/gosling/blob/6a9728d927023192c49936b96f77d804e280ad48/source/gosling/crates/tor-interface/tests/tor_provider.rs#L165

I'd like to get something 100% in tor-proto, but I think I can do that with the testing support we already have.

(That's the good news. The bad news is that the test I wrote is not passing, so I need to figure out why. Blah.)

added 3 commits

• f2bb7092 - proto: Add a test for closing streams.
• 1f036c5e - squash! proto: Make DataWriter::close actually do something.
• d86cc7bc - proto: Try to clarify why StreamReader has a StreamTarget.

Compare with previous version

marked this merge request as draft from nickm/arti@1f036c5e

Pushed a few more commits to address your comments. In particular, it seems that there was a second bug that had been keeping close() from working. With both bugs fixed, the new tests pass.

requested review from @jnewsome and removed approval

Optional nit: can unnest with refutable let.

let AnyChanMsg::Relay(r) = msg else {
  panic!()
};
let rmsg = AnyRelayMsgOuter::decode_singleton(RelayCellFormat::V0, r.into_relay_body()).unwrap();

Optional nit: can unnest with refutable let.

I'd rather solve this in one place with #1426, given how many times this pattern appears.

sounds good

approved this merge request

added 4 commits

• 6739f337 - proto: Make DataWriter::close actually do something.
• 99dcd037 - proto: Improve documentation about DataStream lifetimes and closing
• e358e5f8 - proto: Add a test for closing streams.
• b077b68e - proto: Try to clarify why StreamReader has a StreamTarget.

Compare with previous version

Squashed!

marked this merge request as ready

@nickm invited me to take a look at this.

I have reviewed the new API docs and commentary. This all looks good to me. I think the behaviour described is the desired behaviour.

I haven't reviewed the implementation in detail, nor double checked that the new test case expects the same behaviour as is documented. I'm trusting @jnewsome to do that as part of his review :-).

merged

mentioned in commit ee96fa6f