Skip to content

ADR-10: Add proposal ADR for addressing lack of stack-traces in cardano-api #65

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

ADR-10: Add proposal ADR for addressing lack of stack-traces in cardano-api #65

Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
7edd91a
Add proposal ADR for addressing lack of stack-traces in `cardano-api`
palas Feb 10, 2025
5582a19
Clarify motivation for unifying stacktrace printing
palas Feb 12, 2025
b3676b9
Remove unnecessary usage of GADTs
palas Feb 12, 2025
989c8fc
Add haskell tag to snippet
palas Feb 12, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
296 changes: 296 additions & 0 deletions docs/ADR-10-Callstacks-for-API-errors.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,296 @@
# Status
- [ ] Adopted YYYY/MM/DD

# Recommended Reading

- [ADR 8](https://github.com/input-output-hk/cardano-node-wiki/blob/main/docs/ADR-8-Use-RIO-in-cardano%E2%80%90cli.md)

# Context

Currently, errors in `cardano-api` are instances of the class `Error`, which only requires one method:

```haskell
class Error e where
prettyError :: e -> Doc ann
```

In `cardano-api`, each error is typically specific to a function, and the way errors are aggregated is by wrapping errors within other errors.

The issue with wrapping is that finding out the original source of an error is a lot of work.
Because it requires following the execution path manually, and tracking where each constructor is applied.

It would be more convenient to have a stack-trace, that points to the offending line and their callers.
This would allow to find the exact points in the code where the issue happened.

Because we are using `Error` almost everywhere.
It would make most sense to modify it to ensure that it provides a stack-trace.

There is a known constraint for providing stack-traces in Haskell (`HasStackTrace`).
It would be ideal to just modify the definition of `Error` to require `HasStackTrace`.
But this doesn't work, because it can only be applied to functions.

# Proposal

As a work-around, we propose adding a requirement for an error to be able to provide a value of the type `CallStack`.
This is not a guarantee, that the `CallStack` provided corresponds to the exact place where the `Error` was crafted, but we can leave that to the good will of the developer.
But it does guarantee that the developer won't forget to add a `CallStack`.

```haskell
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What about the following:

data WithCallStack e = WithCallStack e CallStack

class Error e where
  prettyError :: WithCallStack e -> Doc ann

We modify the existing Error class and wrap our error e with WithCallStack. Each error has a callstack included with the original pretty printing functionality. No need to introduce additional type classes and/or methods to capture the notion of a callstack.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it is a good point that we don't need the classes, we could just use WithCallStack always. But:

  1. Having each error print their own stacktrace is unnecessary, because it is done the same way for every error. So, I think it would be equivalent to renaming prettyError to prettyErrorWithoutCallStack and creating a method outside of the class that has the signature prettyError :: Error e => WithCallStack e -> Doc ann that uses prettyErrorWithoutCallStack and appends the stacktrace.
  2. There is still the issue of dealing with the nested errors. We could either, unwrap and re-wrap every time we nest (and that would keep the innermost call-stack), or we could keep the cause field in WithCallStack. But we have to make sure that the field in cause is an error WithCallStack and that is were the GADT comes in.

Copy link
Collaborator

@Jimbo4350 Jimbo4350 Feb 11, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Having each error print their own stacktrace is unnecessary,

You're not forced to render the CallStack if you don't want to in a given Error instance.

There is still the issue of dealing with the nested errors

What about data WithCallStack e = WithCallStack e (Last CallStack)? We only care about the innermost callstack right? We can recurse and mappend on Last CallStack.

Copy link
Collaborator Author

@palas palas Feb 11, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You're not forced to render the CallStack if you don't want to in a given Error instance.

We could still decide to not print it by calling prettyErrorWithoutCallStack instead of prettyError (which is probably the time where we want to make the choice anyway). Right?
But also:

  • We would save a bunch of boilerplate each time we write an Error.
  • We would have much more consistency in the format in which we print errors.

What about data WithCallStack e = WithCallStack e (Last CallStack)?

So, we could have WitCallStack e1 c1 <> WitCallStack e2 c2 = WitCallStack (e1 $ e2) (c1 <> c2).

Nice, I think it may work.

We only care about the innermost callstack right? We can recurse and mappend on Last CallStack.

That is definitely the most important one. It is not always where the issue is, so it can make sense to see the stacktrace of the other errors too. Also, if the stack of the innermost error was long enough, then we wouldn't need anything else, because it includes callers, (but it probably isn't long enough all the time, especially because in Haskell functions are recursive). On the other hand, having several stacktraces clutters the error output a lot, so it may be a good compromise to just have the innermost.

class Error e where
prettyError :: e -> Doc ann
getErrorCallStack :: e -> CallStack
```

We could leave it there but, we don't want each error to manually print their own stack-trace as part of their implementation of `prettyError`, we would rather implement that functionality once and for all.
We want different errors to customize their own error message, but we expect the overall template of `error message + stack-trace` to be presented in the same consistent way.
Also, we want to be able to print the error descriptions without stack-trace if necessary.

We can achieve both things by separating the actual error from our extended `Error` type.
So we can rename the old `Error` as `ErrorContent`.
Which would leave us with a class just like this:

```haskell
class ErrorContent e where
prettyErrorContent :: e -> Doc ann
```

And then, we could define our extended `Error` as:

```haskell
data Content = forall e. ErrorContent e => Content e

class Error e where
getErrorContent :: e -> Content
getErrorCallStack :: e -> CallStack
```

We need `e` in `Content` wrapper to be an existential type, to prevent the type of the `ErrorContent` from propagating to the type of `Error`, while ensuring that it is indeed an `ErrorContent`.
If we do this, we could define two generic functions for every `Error e`.

One to print the original error, without a stack-trace:

```haskell
prettyErrorWithoutStack :: Error e => e -> Doc ann
prettyErrorWithoutStack e =
case getErrorContent e of
Content content -> prettyErrorContent content
```

And one to print the extended error, with the stack-trace:

```haskell
prettyError :: Error e => e -> Doc ann
prettyError e =
vsep
[ prettyErrorWithoutStack e
, "Call stack:\n"
, nest 2 $ pretty $ prettyCallStack (getErrorCallStack e)
]
```

## Going deeper

Unfortunately, this will only get us a stack trace for the outmost wrapper error.
And the inner error, which is the most important one, will remain hidden.

One easy solution is to replace the call to `prettyErrorWithoutStack` in `prettyError` with a call to itself (`prettyError`), and ensuring that the error pretty printed by each `ErrorContent e` in its `prettyErrorContent` function recursively calls `prettyError`.

That will make sure that all `Error`s in the stack will have their chance to print their stack-trace.
And we could nest them for better readability.

But this is not ideal becuase they would be shown like this:

```
Error A: The function failed because:
Error B: The function failed because:
...
Stack trace for Error B
Stack trace for Error A
```

Which pushes the stack trace as far as possible form the description of the error.

While it would be much better like this:

```
Error A: The function failed because:
Stack trace for Error A
Caused by:
Error B: The function failed because:
Stack trace for Error B
Caused by:
...
```

And we can achieve that by extending our class `Error` with yet another function (`getCause`).
This is how it would look like:

```haskell
class Error e where
getErrorContent :: e -> Content
getErrorCallStack :: e -> CallStack
getCause :: e -> Maybe Cause
```

Where `Cause` is another wrapper like `Content`:

```haskell
data Cause = forall c. Error c => Cause c
```

And that would allow us to define `prettyError` as follows:

```haskell
prettyError :: Error e => e -> Doc ann
prettyError e =
vsep
[ prettyErrorWithoutStack e
, "Call stack:\n"
, nest 2 $ pretty $ prettyCallStack (getErrorCallStack e)
, case getCause e of
Nothing -> mempty
Just (Cause cause) ->
vsep
[ "Caused by:"
, nest 2 $ "Caused by:" <+> prettyError cause
]
]
```

This allows us to keep the error structures as they are, while annotating them with their stack-traces at each point.

# Consequences

The tricky bit is updating the existing code to comply with the new instance.

The types need to be extended someway to allocate for the stack-trace, and there is no clean way around it.
It may be possible to do this in a more or less transparent way by using `Deriving` and/or `Template Haskell`.
But, other than that, it comes down to adding a space for the stack-trace in the types that implement the `Error` instance.

At least, we can have a reusable wrapper for errors (that must now implement the `ErrorContent` class).

So we can define an `ErrorWithStack` data type:

```haskell
data ErrorWithStack e =
ErrorContent e => RootErrorWithStack e CallStack
| forall c. (ErrorContent e, Error c) => CausedErrorWithStack e CallStack c
```

The difference between the constructors is that one has a causing error, and the other one doesn't.

We can then create convenience functions for creating them from existing `ErrorContent`s:

```haskell
mkError :: (ErrorContent e, HasCallStack) => e -> ErrorWithStack e
mkError e = RootErrorWithStack e callStack

mkErrorWithCause :: (ErrorContent e, Error c, HasCallStack) => e -> c -> ErrorWithStack e
mkErrorWithCause e = CausedErrorWithStack e callStack
```

And we can trivially derive an `Error` instance for `ErrorWithStack`:

```haskell
instance ErrorContent e => Error (ErrorWithStack e) where
getErrorContent :: ErrorWithStack e -> Content
getErrorContent (RootErrorWithStack e _) = Content e
getErrorContent (CausedErrorWithStack e _ _) = Content e

getErrorCallStack :: ErrorWithStack e -> CallStack
getErrorCallStack (RootErrorWithStack _ cs) = cs
getErrorCallStack (CausedErrorWithStack _ cs _) = cs

getCause :: ErrorWithStack e -> Maybe Cause
getCause (RootErrorWithStack _ _) = Nothing
getCause (CausedErrorWithStack _ _ c) = Just $ Cause c
```

## Adapting existing code

Adapting existing code does require modifying the existing code quite a bit in principle, and it is not always obvious how.

For example, we can adapt the following error:

```haskell
data ProtocolParametersConversionError
= PpceOutOfBounds !ProtocolParameterName !Rational
| PpceVersionInvalid !ProtocolParameterVersion
| PpceInvalidCostModel !CostModel !CostModelApplyError
| PpceMissingParameter !ProtocolParameterName
deriving (Eq, Show, Data)

instance Error ProtocolParametersConversionError where
prettyError = \case
PpceOutOfBounds name r ->
"Value for '" <> pretty name <> "' is outside of bounds: " <> pretty (fromRational r :: Double)
PpceVersionInvalid majorProtVer ->
"Major protocol version is invalid: " <> pretty majorProtVer
PpceInvalidCostModel cm err ->
"Invalid cost model: " <> pretty @Text (display err) <> " Cost model: " <> pshow cm
PpceMissingParameter name ->
"Missing parameter: " <> pretty name
```

By first renaming it as `ProtocolParametersConversionErrorContent`, changing the instance to `ErrorContent` and the function implemented to `prettyErrorContent`, and by creating a type synonym for `ErrorWithStack ProtocolParametersConversionErrorContent` for convenience:

```haskell
data ProtocolParametersConversionErrorContent
= PpceOutOfBounds !ProtocolParameterName !Rational
| PpceVersionInvalid !ProtocolParameterVersion
| PpceInvalidCostModel !CostModel !CostModelApplyError
| PpceMissingParameter !ProtocolParameterName
deriving (Eq, Show, Data)

instance ErrorContent ProtocolParametersConversionErrorContent where
prettyErrorContent = \case
PpceOutOfBounds name r ->
"Value for '" <> pretty name <> "' is outside of bounds: " <> pretty (fromRational r :: Double)
PpceVersionInvalid majorProtVer ->
"Major protocol version is invalid: " <> pretty majorProtVer
PpceInvalidCostModel cm err ->
"Invalid cost model: " <> pretty @Text (display err) <> " Cost model: " <> pshow cm
PpceMissingParameter name ->
"Missing parameter: " <> pretty name

type ProtocolParametersConversionError = ErrorWithStack ProtocolParametersConversionErrorContent
```

We can then just resolve type errors that appear at those places where `ProtocolParametersConversionErrorContent` is created by appending `mkError` before.
For example, we get an error here:

```haskell
mkProtVer :: (Natural, Natural) -> Either ProtocolParametersConversionError Ledger.ProtVer
mkProtVer (majorProtVer, minorProtVer) =
maybeToRight (PpceVersionInvalid majorProtVer) $
(`Ledger.ProtVer` minorProtVer) <$> Ledger.mkVersion majorProtVer
```

And after fixing it we would get:
```haskell
mkProtVer :: (Natural, Natural) -> Either ProtocolParametersConversionError Ledger.ProtVer
mkProtVer (majorProtVer, minorProtVer) =
maybeToRight (mkError $ PpceVersionInvalid majorProtVer) $
(`Ledger.ProtVer` minorProtVer) <$> Ledger.mkVersion majorProtVer
```

Note that we have added `mkError` before the `PpceVersionInvalid` constructor.


## Errors within errors

In the previous example, the errors inside `ProtocolParametersConversionError` were all defined outside of the package, so we left them untouched.
But when dealing with errors within errors within inside `cardano-api`, we would remove the recursive call from the pretty-printer of the error, and we would pass the inner error to `mkTestWithCause` instead.

We can still keep the nested `ErrorContent` if we want, to be able to access it from code that may handle the error.
It won't consume any additional space, since Haskell treats it is as a reference.

We can also inspect `ErrorContent` inside `Error`s by just using the `getErrorContent` function.

# Conclusion

The proposed approach ensures every error in `cardano-api` has a stack-trace associated, and it provides a way of displaying all the layers of errors in a readable way, without losing any of the information that is currently available, and altering the existing code very minimally.

On the other hand, it does require a big refactoring, and it complicates the error types a little.