core: SynchronizationContext exposed by LoadBalancer.Helper

[zhangkun83]

Provides a SynchronizationContext for scheduling tasks, with and without delay, from LoadBalancer implementations. This absorbs and extends the internal utility ChannelExecutor. It supersedes Helper.runSerialized(), which is now deprecated.

Motivation

I see multiple cases that schedule tasks with a delay while requiring the task to run in the "Channel Executor". There have been repeated work to wrap scheduled tasks and handle races between cancellation and task run (see the diff in GrpclbState.java for example). The LoadBalancer implementation (e.g., GrpclbLoadBalancer) also has to acquire the ScheduledExecutorService from somewhere and release it upon shutdown.

The upcoming HealthCheckLoadBalancer (#4932), which would use back-off policy to retry health-checking streams, would have to do all the things above. At this point I think we need to provide something that combines runSerialized() with a scheduled executor with the same synchronization guarantees.

Design details

SynchronizationContext is a similar to ScheduledExecutorService but tailored for use in LoadBalancer and potentially other cases outside of LoadBalancer. It offers task queuing and serialization and delayed scheduling. It guarantees non-reentrancy and happens-before among tasks. It owns no thread, but run tasks on caller's or caller-provided threads.

All channel-level state mutations and callback methods on LoadBalancer are done in a SynchronizationContext, which was previously referred to as "Channel Executor".

SynchronizationContext.schedule() returns a ScheduledHandle for status checking and cancellation. ScheduedFuture from SchedulingExecutorService.schedule() is too broad for our use cases (e.g., the blocking get() should never be used).

SynchronizationContext.schedule() requires a ScheduledExecutorService, which is now available through Helper.getScheduledExecutorService(). LoadBalancers don't need to worry about where to get SchedulingExecutorService any more.

Alternatives

Alternatively, we could keep Helper.runSerialized() and add something like Helper.runSerialiezdWithDelay(), but having them on their own interface allows clean fake implementation by FakeClock for test, and allows other components (potentially InternalSubchannel for reconnection backoff) to use it too.

Instead of asking caller of schedule() to provide the ScheduledExecutorService, we considered having SynchronizationContext take a ScheduledExecutorService at construction. It would be inconvenient for LoadBalancer implementations that don't use schedule(), as they would be forced to provide a fake ScheduledExecutorService (which is cumbersome).

Instead of making SynchronizationContext a (semi-)concrete class, we considered making it an pure abstract class. However, we found it nontrivial to implement execute() correctly with the non-reentrancy guarantee.

[ejona86]

I'm not excited about making an easy way to make a zero-delay task. This just abuses the scheduled executor and is a strong code smell to me.

[zhangkun83]

I can instead abstract it and make schedule() call scheduleNow() when delay <= 0. Is it better?

[ejona86]

No. It would be surprising for a task to suddenly run in the current thread when the delay is 0. They are fundamentally different.

[zhangkun83]

It's the same as the current runSerialized(). I still don't understand the issue.

[ejona86]

I'm not sure what you're saying is the same. Today runSerialized() runs on the current thread:
https://github.com/grpc/grpc-java/blob/v1.15.0/core/src/main/java/io/grpc/internal/ManagedChannelImpl.java#L1236-L1238

And any schedule() would run on a separate thread. I'm against having schedule() turn into running on the current thread based on the timeout.

[zhangkun83]

Fair enough. I have decoupled schedule() with scheduleNow().

[ejona86]

This is a weird API to expose, since it will not agree with either currentTimeMillis nor nanoTime. Based on the documentation it would appear to be similar to nanoTime(), but the actual implementation uses a epoch of 1970 like currentTimeMillis, except if currentTimeMillis and nanoTime get out-of-sync. It seems this should just be nanoTime().

(I don't care really if it has a different offset than nanoTime(), but aligning it to 1970 seems like a bad idea since it can't be guaranteed to align with 1970.)

[ejona86]

s/Although task may run inline, but if/If/ . That seems more clear.

[ejona86]

The "typically" is hard to reason about. Could we just say, "Unlike {@link #scheduleNow}, will never be run inline."? (Or maybe even, just "Will never be run inline.")

[ejona86]

Can we simply use two queues instead? One for pending (ready to be executed) tasks and one for scheduled (for a future time) tasks? We'd keep the previous PriorityBlockingQueue and then just add a LinkedBlockingQueue for execute(). That more closely matches what would happen in practice and makes the code more clear.

[zhangkun83]

Done.

[ejona86]

Nit: the class could be made final and be passed a Thread.UncaughtExceptionHandler (with a note that the thread will not die after executing the handler, which is different from its documentation).

[zhangkun83]

Done.

[ejona86]

It might be good to point out this is useful for adding things from within a lock and then calling drain outside the lock.

[zhangkun83]

Done.

[zhangkun83]

Thanks @ejona86. All comments are addressed.

[zhangkun83]

Done.

[zhangkun83]

Done.

[zhangkun83]

Done.

[ejona86]

We could provide a zero-arg version that just logs by default. But we can do that at any time. This seems fine for now.