Add streamTimeout option to WebSocketService/WebSocketClient; send close frame on inbound failure; clean up related resources

[sjy982]

Motivation

• Instead of asking each handler to wrap the inbound stream with StreamMessage.timeout(..., UNTIL_NEXT), expose it as an option on WebSocketServiceBuilder / WebSocketClientBuilder so both server and client can enable it consistently and easily.
• When the inbound completes abnormally (cancel/abort/timeout, etc.), further outbound sends are meaningless. We should immediately tidy up outbound and the stream/channel. If the connection is still valid and the termination is initiated locally, prefer sending a WebSocket close frame (with an appropriate status + reason) over a transport reset, for better reason propagation, interoperability, and observability.

Modifications

• Add WebSocketServiceBuilder#streamTimeout(Duration).

  • When set, wrap inbound in TimeoutStreamMessage with StreamTimeoutMode.UNTIL_NEXT inside DefaultWebSocketService#serve(...).

• Update DefaultWebSocketService#serve(...):

  • If inbound completes with an error, call outbound.abort(mappedCause) so recoverAndResume sends a CloseWebSocketFrame.
  • Map CancelledSubscriptionException / AbortedStreamException to InboundCompleteException to avoid being skipped by the recovery logic.

• Add WebSocketClientBuilder#streamTimeout(Duration).

  • When set, wrap inbound in TimeoutStreamMessage with StreamTimeoutMode.UNTIL_NEXT inside DefaultWebSocketClient#connect(...).

• Update WebSocketSession#setOutbound(...):

  • Attach recoverAndResume(...) to outbound so that on send failure it emits a CloseWebSocketFrame and records the exception in RequestLog (endRequest(cause) / endResponse(cause)). For ClosedStreamException, do not send a close frame—just abort.
  • When inbound completes exceptionally, abort(...) outbound with the mapped cause so the recovery stream kicks in.

• Add InboundCompleteException extends CancellationException:

  • Signals that inbound completed due to cancellation/abort.

• Add a client-side newCloseWebSocketFrame(Throwable) in WebSocketUtil.

Result

• WebSocketService / WebSocketClient can apply StreamMessage.timeout(..., UNTIL_NEXT) to inbound via the simple streamTimeout(Duration) option.
• When inbound completes with an error:
  • If the channel is still usable, abort outbound with the mapped cause so a close frame is sent (skip sending for ClosedStreamException).
  • Record request/response causes in RequestLog.
  • On HTTP/1.x, close the channel; on HTTP/2, clean up the stream.

[github-actions]

🔍 Build Scan® (commit: 7315e52)

Job name	Status	Build Scan®
build-ubicloud-standard-16-jdk-8	✅	https://ge.armeria.dev/s/bm43lhrrpegnw
build-ubicloud-standard-16-jdk-21-snapshot-blockhound	✅	https://ge.armeria.dev/s/wcgst5gh5tzzm
build-ubicloud-standard-16-jdk-17-min-java-17-coverage	❌ (failure)	https://ge.armeria.dev/s/4s265c27yqdgc
build-ubicloud-standard-16-jdk-17-min-java-11	✅	https://ge.armeria.dev/s/35mkbdpex4q76
build-ubicloud-standard-16-jdk-17-leak	❌ (failure)	https://ge.armeria.dev/s/vswshzqvpsino
build-ubicloud-standard-16-jdk-11	✅	https://ge.armeria.dev/s/nu3wjct2nb57c
build-macos-latest-jdk-21	✅	https://ge.armeria.dev/s/2uuqvzlyy2bia

[jrhee17]

Looks good overall, left some comments

[codecov]

Codecov Report

❌ Patch coverage is 80.00000% with 19 lines in your changes missing coverage. Please review.
✅ Project coverage is 74.16%. Comparing base (8150425) to head (2184b0c).
⚠️ Report is 215 commits behind head on main.

Files with missing lines	Patch %	Lines
...rp/armeria/common/stream/TimeoutStreamMessage.java	73.68%	5 Missing ⚠️
...orp/armeria/client/websocket/WebSocketSession.java	77.77%	2 Missing and 2 partials ⚠️
...corp/armeria/common/logging/DefaultRequestLog.java	82.35%	1 Missing and 2 partials ⚠️
...ecorp/armeria/common/InboundCompleteException.java	50.00%	2 Missing ⚠️
...ommon/websocket/WebSocketIdleTimeoutException.java	50.00%	2 Missing ⚠️
...meria/client/websocket/WebSocketClientBuilder.java	80.00%	0 Missing and 1 partial ⚠️
.../linecorp/armeria/common/stream/StreamMessage.java	0.00%	0 Missing and 1 partial ⚠️
...eria/server/websocket/WebSocketServiceBuilder.java	80.00%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##               main    #6357      +/-   ##
============================================
- Coverage     74.46%   74.16%   -0.30%     
- Complexity    22234    23035     +801     
============================================
  Files          1963     2064     +101     
  Lines         82437    86188    +3751     
  Branches      10764    11317     +553     
============================================
+ Hits          61385    63922    +2537     
- Misses        15918    16859     +941     
- Partials       5134     5407     +273     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[ikhoon]

Nice work, @sjy982! 🚀 🎉

[jrhee17]

Question) Is it possible to just use InboundCompleteException to indicate the outbound stream was cancelled by the inbound stream? If users would like to differentiate the reason, they could just check InboundCompleteException#cause?

Suggested change

	if (cause instanceof StreamTimeoutException) {
	wrapped = new WebSocketIdleTimeoutException("WebSocket inbound idle-timeout exceeded",
	cause);
	} else {
	wrapped = new InboundCompleteException("inbound stream was cancelled", cause);
	}
	wrapped = new WebSocketIdleTimeoutException("WebSocket inbound idle-timeout exceeded", cause);

[sjy982]

If we apply the code you suggested, non-timeout exceptions would also be wrapped with WebSocketIdleTimeoutException.
Or were you suggesting that we should instead use only InboundCompleteException as the single wrapper and let callers distinguish the concrete exception via its cause?

[jrhee17]

Or were you suggesting that we should instead use only InboundCompleteException as the single wrapper and let callers distinguish the concrete exception via its cause?

Right, I understood that the meaning of InboundCompleteException is that "the outbound was cancelled due to the inbound".

[sjy982]

The reason we use WebSocketIdleTimeoutException is that the existing StreamTimeoutException may not clearly convey its meaning to WebSocket users. That’s why it was introduced, and since it already makes the intention explicit, we didn’t wrap it again with InboundCompleteException.

Do you think it would be better to wrap it once more using InboundCompleteException and include it as the cause?

[jrhee17]

I realized that I copy-pasted the incorrect exception in the suggestion above, I meant to modify the above block to:

wrapped = new InboundCompleteException("inbound stream was cancelled", cause);

because WebSocketIdleTimeoutException seems like a very specific exception that likely won't be used anywhere else - less exception types users have to handle/worry about

If you prefer to introduce the above exception, feel free to leave as-is as this is a nit comment.

[ikhoon]

Let me elaborate on why WebSocketIdleTimeoutException was added.
Many WebSocket implementations disable request timeouts and instead detect and close idle sessions. Since this behavior is quite common for users working with WebSockets, I thought it would be better to introduce a more specific error type to convey the state clearly.