rpc: Reconsider HTTP proxy handling

[bdarnell]

It has come to my attention that GRPC uses the HTTPS_PROXY environment variables by default. This is surprising, and likely undesirable for CRDB because it turns the proxy into an availability risk and a throughput bottleneck.

I think we should probably disable the use of proxies by default for intra-node connections (but continue to use them for e.g. connecting to cloud storage in backup/restore/import). We
could add a command-line flag to re-enable them.

Whether we change the default or not, we should log at startup if a proxy is being used. This logging is worth backporting to current releases even though disabling the proxy couldn't happen until 21.1.

[blathers-crl]

Hi @bdarnell, please add a C-ategory label to your issue. Check out the label system docs.

While you're here, please consider adding an A- label to help keep our repository tidy.

_{🦉 Hoot! I am a Blathers, a bot for CockroachDB. My owner is otan.}

[bdarnell]

After more digging, this turns out to be an issue introduced by the join rpc. Most of our RPC connections use the GRPC WithContextDialer option, which has the side effect of disabling proxy use. However, the join rpc doesn't (so an existing cluster upgrade to 20.2 wouldn't use the proxy until a node was added). We should add the WithNoProxy option to rpc.Context.grpcDialOptions to ensure that we don't use the proxy whether we end up using a WithContextDialer or not.

Since we require the use of WithContextDIaler for our main connections, it would be a substantial amount of work to support proxies, and not just a simple command-line flag to re-enable them.