GH-109564: add asyncio.Server state machine

[ordinary-jamie]

Supersedes #126660 and implements a state machine as suggested by this comment: #126660 (review)

Analysis

Addressed issues

This addresses two issues raised in GH-109564:

1. A transport will first check if a server is closed before attempting to attach. This will prevent raising an AssertionError (changed to a RuntimeError here)
2. When a connection is accepted by BaseSelectorEventLoop._accept_connection but is not handled in BaseSelectorEventLoop._accept_connection2, then it will fail to correctly construct and raise an "unclosed transport" ResourceWarning on __del__; this will raise an error as it will call Server._detach -> Server._wakeup after close and attempt to access the Server._waiters=None attribute.

These errors can be seen in the new test test_close_before_transport_attach against main:

0:00:00 load avg: 2.05 [1/1] test_asyncio.test_server
Error on transport creation for incoming connection
handle_traceback: Handle created at (most recent call last):
  File "cpython/Lib/unittest/async_case.py", line 120, in _callMaybeAsync
    return self._asyncioRunner.run(
  File "cpython/Lib/asyncio/runners.py", line 127, in run
    return self._loop.run_until_complete(task)
  File "cpython/Lib/asyncio/base_events.py", line 706, in run_until_complete
    self.run_forever()
  File "cpython/Lib/asyncio/base_events.py", line 677, in run_forever
    self._run_once()
  File "cpython/Lib/asyncio/base_events.py", line 2029, in _run_once
    handle._run()
  File "cpython/Lib/asyncio/events.py", line 98, in _run
    self._context.run(self._callback, *self._args)
  File "cpython/Lib/asyncio/selector_events.py", line 215, in _accept_connection
    self.create_task(accept)
  File "cpython/Lib/asyncio/base_events.py", line 470, in create_task
    task = tasks.Task(coro, loop=self, **kwargs)
protocol: <Mock id='4354243424'>
Traceback (most recent call last):
  File "cpython/Lib/asyncio/selector_events.py", line 234, in _accept_connection2
    transport = self._make_socket_transport(
        conn, protocol, waiter=waiter, extra=extra,
        server=server)
  File "cpython/Lib/asyncio/selector_events.py", line 72, in _make_socket_transport
    return _SelectorSocketTransport(self, sock, protocol, waiter,
                                    extra, server)
  File "cpython/Lib/asyncio/selector_events.py", line 941, in __init__
    super().__init__(loop, sock, protocol, extra, server)
    ~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "cpython/Lib/asyncio/selector_events.py", line 799, in __init__
    self._server._attach(self)
    ~~~~~~~~~~~~~~~~~~~~^^^^^^
  File "cpython/Lib/asyncio/base_events.py", line 297, in _attach
    assert self._sockets is not None
           ^^^^^^^^^^^^^^^^^^^^^^^^^
AssertionError
Warning -- Unraisable exception
Exception ignored while calling deallocator <function _SelectorTransport.__del__ at 0x1037d1900>:
Traceback (most recent call last):
  File "cpython/Lib/asyncio/selector_events.py", line 881, in __del__
    self._server._detach(self)
  File "cpython/Lib/asyncio/base_events.py", line 303, in _detach
    self._wakeup()
  File "cpython/Lib/asyncio/base_events.py", line 308, in _wakeup
    for waiter in waiters:
TypeError: 'NoneType' object is not iterable
test test_asyncio.test_server failed -- Traceback (most recent call last):
  File "cpython/Lib/asyncio/runners.py", line 127, in run
    return self._loop.run_until_complete(task)
           ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^
  File "cpython/Lib/asyncio/base_events.py", line 719, in run_until_complete
    return future.result()
           ~~~~~~~~~~~~~^^
  File "cpython/Lib/test/test_asyncio/test_server.py", line 293, in test_close_before_transport_attach
    proto.connection_lost.assert_called()
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^
  File "cpython/Lib/unittest/mock.py", line 949, in assert_called
    raise AssertionError(msg)
AssertionError: Expected 'connection_lost' to have been called.

0:00:00 load avg: 2.05 [1/1/1] test_asyncio.test_server failed (1 failure)

[ordinary-jamie]

Hi @1st1 and @ZeroIntensity !

Very sorry for the major delay on this! I had to go on leave for personal reasons.

I've created a new PR for #126660 which implements a state machine as @1st1 suggested.

This change is a bit bigger than what I'm used to (and qualified for 😅 ) so please let me know if there needs to be any changes. There was some areas I wasn't quite sure about, which I will mark up with comments

[ordinary-jamie]

Not sure about the name SHUTDOWN here, but needed something more "definitive" than closed.

If we do use SHUTDOWN should I also rename Server._wakeup -> Server._shutdown?

[ZeroIntensity]

If we do use SHUTDOWN should I also rename Server._wakeup -> Server._shutdown?

I think that makes sense.

I'm more worried about INITIALIZED here; nothing is really initialized, other than the Python object, which isn't particularly useful knowledge. Let's call it something like NOT_SERVING or NOT_YET_STARTED.

[ordinary-jamie]

Addressed in 07129e5

[ordinary-jamie]

Not sure if PEP 636 match-case statements are permitted; can change to if-else statement if needed.

[ZeroIntensity]

They're permitted, but it's not particularly useful to use match here (no pattern is being matched).

[kumaraditya303]

let's stick to if else as i am not so used to match case.

[ordinary-jamie]

Addressed in 8e409b7

[ordinary-jamie]

This is a functional change over main.. In my head, if a transport was constructed with server != None, then the transport should not be created/serviced if its corresponding server was shutdown.

Used transport.abort over transport.close to force clear the buffer, since no server exists to service that.

A return statement was added to the else block to prevent the transport getting tracked in loop._transports

[ZeroIntensity]

This is looking a lot better! I'll do a thorough review sometime soon :)

[ZeroIntensity]

They're permitted, but it's not particularly useful to use match here (no pattern is being matched).

[ZeroIntensity]

Sorry for the delay!

[ZeroIntensity]

What happens if something magically goes wrong after this has been set? Is the server still alive while thinking it's closed? It might be worth adding a try/except to undo this.

[ordinary-jamie]

Ah great point! Although I'm not sure how that would look from a user's point of view. Should we give them a warning to let them know they must try to close the server again? Alternatively, should we expose something like a force kwarg/flag?

I pushed an initial fix with a simple try/except to recover the previous state on fail in 48a3c0d

[ZeroIntensity]

If we do use SHUTDOWN should I also rename Server._wakeup -> Server._shutdown?

I think that makes sense.

I'm more worried about INITIALIZED here; nothing is really initialized, other than the Python object, which isn't particularly useful knowledge. Let's call it something like NOT_SERVING or NOT_YET_STARTED.

[ZeroIntensity]

This error message isn't making much sense to me. We'll never reach here "after closing," right? This can only be triggered when the state is SERVING or INITIALIZED.

[ordinary-jamie]

Sorry this is bad wording, I was trying to say that the Server must be closed before it can be shutdown (i.e. we cannot shutdown from the SERVING state, nor the INITIALIZED/NOT_STARTED state)

Made a fix in: 7f3481b

[ZeroIntensity]

Why abort the whole transport? This is seemingly a change in behavior.

[ordinary-jamie]

Ah yup sorry, my misunderstanding! Addressed in 5832655

I commented here my original thinking:

This is a functional change over main.. In my head, if a transport was constructed with server != None, then the transport should not be created/serviced if its corresponding server was shutdown.

But I re-read the docs for Server.close and see I was thinking about it incorrectly:

https://docs.python.org/3/library/asyncio-eventloop.html#asyncio.Server.close

The sockets that represent existing incoming client connections are left open.

[ordinary-jamie]

Sorry for the delay!

No worries; I'm really grateful for the review!

Sorry for my delay on responding too, had a busy week and just got around to this 🙏

I've tried to address all your comments in each of their threads and linked the respective commits. Please let me know if there's anything else that needs addressing/fixing.

[ZeroIntensity]

I'm really happy to report that I can confirm this fixes the original reproducer reported in #109564, without ResourceWarning spam.

Thanks, @ordinary-jamie!

[kumaraditya303]

I think the existing message was clear enough, it would avoid changing tests too.

[ordinary-jamie]

Addressed in 6c8d3df :)

[kumaraditya303]

Please add new tests for the race mentioned, it would be nice to check if this addresses #123720 and similar issue and add regression tests for them