fix: plumb mtls endpoint to TransportChannelProvider

[rmehta19]

This PR plumbs the MTLS endpoint (separately from the resolved endpoint) from the EndpointContext to the InstantiatingGrpcChannelProvider.

Why not just set the MTLS endpoint in EndpointContext if S2A can be used?

• Although we can decide whether or not to try to use S2A in EndpointContext, we could fail to use S2A in InstantiatingGrpcChannelProvider (if autoconfig doesn't return an address), in which case we fall back to using a TLS connection
• DirectPath supersedes S2A in InstantiatingGrpcChannelProvider, and the decision to use DirectPath is made in InstantiatingGrpcChannelProvider, not EndpointContext. We may decide to use S2A in EndpointContext, but when we go to create the channel in InstantiatingGrpcChannelProvider, we may find that we should be using DirectPath, in which case we need to use the non-MTLS endpoint

[rmehta19]

@lqiu96 , please review, thanks!

[rmehta19]

Friendly ping @lqiu96 . Thanks!

[lqiu96]

Would you be able to add @InternalApi to all the new public methods? We have a few ways to configure endpoints (i.e. ClientSettings and TransportChannelProvider for endpoint and led us to have to account for it in EndpointContext). If we add these ways for users to configure the mtls value, I think we'll need to account for it in EndpointContext as well.

Given that we can't make this package-private scope, we should let users know that they really shouldn't be tinkering with these values since they're really used to help S2A (one flow for now).

I think a small note in the comment (for this method and all the other public ones) as well warning users This public method is used by Gax to help configure S2A fallback and not intended for users or something of that variant.

[rmehta19]

Done in 7e36d1a. Would you prefer making the change in EndpointContext in this PR, or a follow up?

[lqiu96]

My thoughts are that we just leave EndpointContext as-is since we have publicly noted that these public methods have been marked with @InternalApi and shouldn't be set/customized by the user at all. If users do set these values via these new methods, they shouldn't expect support (as this is used to help to support S2A).

The existing way of setting the mtlsEndpoint in StubSettings is supported

[rmehta19]

Thanks for the review @lqiu96 !

[lqiu96]

@rmehta19 FYI I think there are lint issues and you need to run mvn fmt:format

[rmehta19]

Thanks @lqiu96 ! synced to HEAD and formatted.

[lqiu96]

/gcbrun

[rmehta19]

@lqiu96 , resolved merge conflict, could you run gcbrun again? Thanks!

[lqiu96]

/gcbrun

[lqiu96]

LGTM. This follows the approach that we had discussed in the previous S2A PR.

[rmehta19]

Thanks @lqiu96 ! I see all the checks have passed, would you be able to merge once you get a chance?

[lqiu96]

Adding @blakeli0 to take a quick glance as well in case there is anything missed.

[rmehta19]

friendly ping, @blakeli0. Thanks!

[blakeli0]

I know we tried to avoid introducing these new public interfaces by encapsulating the logic to determine if we should use S2A in EndpointContext. Now that we need to have access to mtlsEndpoint in TransportChannelProvider anyway, maybe we can move shouldUseS2A to InstantiatingGrpcChannelProvider.java? And remove withUseS2A from this interface? This could be separate PR.

[rmehta19]

Agreed that by plumbing the MTLS endpoint separately, we no longer need the shouldUseS2A logic in EndpointContext. I'll take care of this in a followup PR.

[rmehta19]

@blakeli0 I started working on this and I realized that we should keep shouldUseS2A in EndpointContext. The reason being is that we want to skip S2A if using GDCH, or if the client sets a custom endpoint. This info is only available in EndpointContext.

Given this, we probably want to keep things as is. WDYT?

[blakeli0]

if the client sets a custom endpoint

I see, yeah I think this info only exists in EndpointContext. cc: @lqiu96 in case there are more ideas.

[rmehta19]

Thanks for reviewing @blakeli0 !