filter: check if connection is open before and after filter read/write

[yxue]

Signed-off-by: Yan Xue yxyan@google.com

Description: Check if connection is open before and after filter read/write. In onData or onWrite, filter could close the underlying connection.
Risk Level: Low
Testing: unit test
Docs Changes: N/A
Release Notes: N/A
[Optional Fixes #Issue]
[Optional Deprecated:]

[mattklein123]

Thanks for working on this. While I think this change is generally correct, historically we have assumed that filters will stop iteration if they close the connection/stream. WDYT about just putting in asserts to this effect? it would be a much less scary change.

/wait-any

[yxue]

Thanks for working on this. While I think this change is generally correct, historically we have assumed that filters will stop iteration if they close the connection/stream. WDYT about just putting in asserts to this effect? it would be a much less scary change.

/wait-any

I think the assumption is totally correct but sometimes users might not follow it or they are not intend to break the assumption. I found this bug from a filter extended by istio/mixer.

I think either of them is ok. I would prefer providing some tolerance when users don't follow the convention rather than terminating the process. WDYT?

[mattklein123]

I think either of them is ok. I would prefer providing some tolerance when users don't follow the convention rather than terminating the process. WDYT?

Fair enough. Sounds good.

[mattklein123]

Thanks. My general preference here is to have a check after a filter runs, since I can see easily making that mistake, but asserts otherwise.

/wait

[mattklein123]

Thanks, do you have test coverage for all of these new cases?

/wait

[yxue]

Thanks, do you have test coverage for all of these new cases?

/wait

I have 2 tests which should cover these cases.

[mattklein123]

If you were able to change the if statement after the filter call without changing your tests, I don't think your tests are complete. Please make them more robust to cover all cases.

/wait

[yxue]

If you were able to change the if statement after the filter call without changing your tests, I don't think your tests are complete. Please make them more robust to cover all cases.

/wait

I didn't add test for onWrite. Now the test case should cover both read and write. @mattklein123 could you please take a look?

[mattklein123]

LGTM, thank you!

[yxue]

/retest

[repokitteh-read-only]

🤷‍♀️ nothing to rebuild.

🐱

Caused by: a #7256 (comment) was created by @crazyxy.

see: more, trace.

[yxue]

/azp run

[azure-pipelines]

Commenter does not have sufficient privileges for PR 7256 in repo envoyproxy/envoy