refactor(swarm)!: refactor ListenUpgradeError and DialUpgradeError

[jxs]

Description

Addresses #2894

Notes

In the protocols, moved the TimedOut variants from nested UpgradeError's to Event variants themselves. Like identify dcutr and relay.
Per commit review is suggested.

Change checklist

• I have performed a self-review of my own code
• I have made corresponding changes to the documentation
• I have added tests that prove my fix is effective or that my feature works
• A changelog entry has been made in the appropriate crates

[thomaseizinger]

I love the simplifications coming from this!

I don't quite agree with reporting a kind of error (timeout) next to other errors. I think that should be unified or not reported at all. I am tending towards the latter for a lot of protocols where we can make a decision on what that timeout means.

[thomaseizinger]

Suggested change

	log::debug!("Timeout expired during an inbound substream negotiation")
	log::debug!("Failed to negotiate protocol on inbound stream within {seconds}s")

That would be more useful IMO.

[jxs]

seconds doesn't seem to exist in this scope, we probably can make ConnectionHandlerUpgrErr::Timeout have it . I will implement after clarifying #3307 (comment)

[thomaseizinger]

seconds doesn't seem to exist in this scope, we probably can make ConnectionHandlerUpgrErr::Timeout have it . I will implement after clarifying #3307 (comment)

Yes, it was only meant to be illustrative on what I'd like to have printed!

[thomaseizinger]

Would it make sense for DialUpgradeError to be an enum with a Timeout and Upgrade variant?

[thomaseizinger]

#3268 is related to this. If we agree to remove the OpenInfo from ConnectionHandler a lot of this code would be simpler because we wouldn't need to track info here.

[jxs]

At first sight, making DialUpgradeError an enum with a Timeout and Upgrade variant sounded similar to what we currently have, where ConnectionHandlerUpgrErr then has the variants :

rust-libp2p/swarm/src/handler.rs

Lines 340 to 343 in 5b8c3d2

	pub struct DialUpgradeError<OOI, OP: OutboundUpgradeSend> {
	pub info: OOI,
	pub error: ConnectionHandlerUpgrErr<OP::Error>,
	}

But what you are suggesting seems to be in fact renaming ConnectionHandlerUpgradeError to DialUpgradeError and using it in ConnectionEvent::DialUpgradeError right?

rust-libp2p/swarm/src/handler.rs

Lines 442 to 448 in 021502c

	#[derive(Debug)]
	pub enum ConnectionHandlerUpgrErr<TUpgrErr> {
	/// The opening attempt timed out before the negotiation was fully completed.
	Timeout,
	/// Error while upgrading the substream to the protocol we want.
	Upgrade(UpgradeError<TUpgrErr>),
	}

In fact it probably makes sense (we are in fact reducing one indirection layer) even more sense than having Timeout as root variants where I agree with you that they are errors by themselves. Do you also agree @mxinden?

[mxinden]

Off the top of my head this sounds good to me. I will have to give this more thought with a clear mind to give a good answer.

[thomaseizinger]

Previously, we emitted an error (and thus closed the connection) when we ran into a timeout. Why are we changing this behaviour now?

[jxs]

Isn't the behaviour the same? In the sense that the connection was closed because of a timeout and we are bubbling it up? But after reading and replying on #3307 (comment) I now see that Timeout makes sense being a variant on the Error itself of DirectConnectionUpgradeFailed rather than a variant of Event.

[thomaseizinger]

Isn't the behaviour the same? In the sense that the connection was closed because of a timeout and we are bubbling it up?

Unless I am mistaken, the timeout refers to a stream upgrade. The connection can/should still be intact at this stage. Something like PendingUpgrade should trigger this timeout on the remote but the connection underneath works perfectly fine.

It does raise the question whether we should close an entire connection at all just because one protocol failed to upgrade a stream. Just disabling that protocol (and handler) and letting the collaborative keep-alive eventually close the connection seems like a better idea at first sight.

We may want to do this in a separate PR though, either before or after we merge this.

[thomaseizinger]

A timeout is an error so it seems odd that we have an Error variant and then this. I'd suggest we either log this internally and don't report it or create a dedicated error enum ourselves.

[jxs]

Since we are already reporting it up I'd go as we do in dcutr and expose it as an Error, updated to do that! Does it make sense to you to also do the same for relay?

[thomaseizinger]

Does it make sense to you to also do the same for relay?

Yes I think we should apply that thinking to all protocols.

[jxs]

thanks done, ptal! Also removed what seems to be unrequired inbound_hop::UpgradeError and shortcircuit to inbound_hop::FatalUpgradeError see c2eda37 and see if you agree.

[thomaseizinger]

Sorry for only mentioning this only now but it just came to me that once we have #2863, all of these errors will go away because there won't be any "upgrade" mechanism anymore for protocols defined through ConnectionHandlers.

Is it worth doing this refactoring here at all or should we just work towards #2863 instead? Personally, that would be my preference but it is also more work.

Thoughts?

[jxs]

Sorry for only mentioning this only now but it just came to me that once we have #2863, all of these errors will go away because there won't be any "upgrade" mechanism anymore for protocols defined through ConnectionHandlers.

Is it worth doing this refactoring here at all or should we just work towards #2863 instead? Personally, that would be my preference but it is also more work.

Thoughts?

No worries Thomas. Good question, no strong opinion though I think it probably doesn't makes sense to introduce this and release it, make libp2p users upgrade to this to then upgrade again with #2863 right? So I'd rather just jump to #2863 CC @mxinden wdyt?

[thomaseizinger]

I think it probably doesn't makes sense to introduce this and release it, make libp2p users upgrade to this to then upgrade again with #2863 right?

Yeah I thought so too which is why I brought it up. I updated the issue with a few more thoughts on how we could move forward there.

[thomaseizinger]

Whilst hacking on #3201, I got very confused in how the error handling for connection and upgrade errors is implemented across our protocols.

At the highest level, we have ConnectionHandlerUpgrErr which can be emitted for two different cases:

• Inbound streams
• Outbound streams

Confusingly enough, we call those ListenUpgradeError and DialUpgradeError. Usually we only use the listen and dial terminology for connections but not for streams.

ConnectionHandlerUpgrErr has three variants:

rust-libp2p/swarm/src/handler.rs

Lines 433 to 442 in e3c7023

	/// Error that can happen on an outbound substream opening attempt.
	#[derive(Debug)]
	pub enum ConnectionHandlerUpgrErr<TUpgrErr> {
	/// The opening attempt timed out before the negotiation was fully completed.
	Timeout,
	/// There was an error in the timer used.
	Timer,
	/// Error while upgrading the substream to the protocol we want.
	Upgrade(UpgradeError<TUpgrErr>),
	}

As you @jxs discovered in here, the Timer variant is not actually used.

The Timeout variant will go away once we ship #2863 because we won't be upgrading streams anymore.

What is left here is UpgradeError:

rust-libp2p/core/src/upgrade/error.rs

Lines 24 to 31 in e3c7023

	/// Error that can happen when upgrading a connection or substream to use a protocol.
	#[derive(Debug)]
	pub enum UpgradeError<E> {
	/// Error during the negotiation process.
	Select(NegotiationError),
	/// Error during the post-negotiation handshake.
	Apply(E),
	}

Once we ship #2863, the Apply variant here should also go away because we will directly hand the stream to the user and not perform any processing on it.

Meaning the only error that can actually happen after #2863 is NegotiationError. This one is a also a bit odd because it combines the Failed variant with ProtocolError.

• ProtocolError is fatal, it means some really bad error happened during our handshake
• Failed means we couldn't agree on any protocol. This one is not necessarily fatal, it just means the remote does not support the protocol we requested.

I am drawing three conclusions from this:

• We should prioritize Simplify ConnectionHandler trait by removing as many associated types as possible #2863 as it will make the entire error handling situation much clearer.
• We are currently mixing fatal and non-fatal errors. Most of our protocols close the entire connection on any error. That is not very nice. A protocol should simply disable itself if the remote doesn't support it. I think the best way to achieve this is by splitting the "not supported" part into a separate error that users can just ignore for the most part.
• Fatal errors should perhaps close the connection unconditionally? If we fail to negotiate protocols with an IO error or something similar, there isn't much a user can do about that. Why report it to the handlers?

[mxinden]

Agreed with everything in the latest comment from @thomaseizinger. Thanks for looking so deeply into this.

I think it probably doesn't makes sense to introduce this and release it, make libp2p users upgrade to this to then upgrade again with #2863 right? So I'd rather just jump to #2863 CC @mxinden wdyt?

I don't have an opinion on how to proceed, e.g. whether to first finish here, do #2863, or clean-up fatal and non-fatal errors. Up to you @jxs and @thomaseizinger.

[thomaseizinger]

I think it probably doesn't makes sense to introduce this and release it, make libp2p users upgrade to this to then upgrade again with #2863 right? So I'd rather just jump to #2863 CC @mxinden wdyt?

I don't have an opinion on how to proceed, e.g. whether to first finish here, do #2863, or clean-up fatal and non-fatal errors. Up to you @jxs and @thomaseizinger.

Any work that pushes #2863 forward would be much appreciated from my end!