fix(lib): return an error instead of panic if execute fails

seanmonstar · seanmonstar · commit 482a5f589ea2 · 2018-06-18T16:01:04.000-07:00
If executing an internal task fails, a new variant of `hyper::Error` is returned to the user, with improved messaging. If a non-critical task fails to spawn, it no longer panics, instead just logging a warning. Closes #1566
diff --git a/src/client/mod.rs b/src/client/mod.rs
@@ -270,13 +270,20 @@ where C: Connect + Sync + 'static,
                                 .http2_only(pool_key.1 == Ver::Http2)
                                 .handshake(io)
                                 .and_then(move |(tx, conn)| {
-                                    executor.execute(conn.map_err(|e| {
+                                    let bg = executor.execute(conn.map_err(|e| {
                                         debug!("client connection error: {}", e)
                                     }));
 
+                                    // This task is critical, so an execute error
+                                    // should be returned.
+                                    if let Err(err) = bg {
+                                        warn!("error spawning critical client task: {}", err);
+                                        return Either::A(future::err(err));
+                                    }
+
                                     // Wait for 'conn' to ready up before we
                                     // declare this tx as usable
-                                    tx.when_ready()
+                                    Either::B(tx.when_ready())
                                 })
                                 .map(move |tx| {
                                     pool.pooled(connecting, PoolClient {
@@ -373,26 +380,32 @@ where C: Connect + Sync + 'static,
                         } else if !res.body().is_end_stream() {
                             let (delayed_tx, delayed_rx) = oneshot::channel();
                             res.body_mut().delayed_eof(delayed_rx);
-                            executor.execute(
-                                future::poll_fn(move || {
-                                    pooled.poll_ready()
-                                })
+                            let on_idle = future::poll_fn(move || {
+                                pooled.poll_ready()
+                            })
                                 .then(move |_| {
                                     // At this point, `pooled` is dropped, and had a chance
                                     // to insert into the pool (if conn was idle)
                                     drop(delayed_tx);
                                     Ok(())
-                                })
-                            );
+                                });
+
+                            if let Err(err) = executor.execute(on_idle) {
+                                // This task isn't critical, so just log and ignore.
+                                warn!("error spawning task to insert idle connection: {}", err);
+                            }
                         } else {
                             // There's no body to delay, but the connection isn't
                             // ready yet. Only re-insert when it's ready
-                            executor.execute(
-                                future::poll_fn(move || {
-                                    pooled.poll_ready()
-                                })
-                                .then(|_| Ok(()))
-                            );
+                            let on_idle = future::poll_fn(move || {
+                                pooled.poll_ready()
+                            })
+                                .then(|_| Ok(()));
+
+                            if let Err(err) = executor.execute(on_idle) {
+                                // This task isn't critical, so just log and ignore.
+                                warn!("error spawning task to insert idle connection: {}", err);
+                            }
                         }
                         Ok(res)
                     });
diff --git a/src/client/pool.rs b/src/client/pool.rs
@@ -407,12 +407,16 @@ impl<T: Poolable> Connections<T> {
 
         let start = Instant::now() + dur;
 
-        let interval = Interval::new(start, dur);
-        self.exec.execute(IdleInterval {
-            interval: interval,
+        let interval = IdleInterval {
+            interval: Interval::new(start, dur),
             pool: WeakOpt::downgrade(pool_ref),
             pool_drop_notifier: rx,
-        });
+        };
+
+        if let Err(err) = self.exec.execute(interval) {
+            // This task isn't critical, so simply log and ignore.
+            warn!("error spawning connection pool idle interval: {}", err);
+        }
     }
 }
 
diff --git a/src/common/exec.rs b/src/common/exec.rs
@@ -13,15 +13,21 @@ pub(crate) enum Exec {
 
 
 impl Exec {
-    pub(crate) fn execute<F>(&self, fut: F)
+    pub(crate) fn execute<F>(&self, fut: F) -> ::Result<()>
     where
         F: Future<Item=(), Error=()> + Send + 'static,
     {
         match *self {
             Exec::Default => {
                 #[cfg(feature = "runtime")]
                 {
-                    ::tokio_executor::spawn(fut)
+                    use ::tokio_executor::Executor;
+                    ::tokio_executor::DefaultExecutor::current()
+                        .spawn(Box::new(fut))
+                        .map_err(|err| {
+                            warn!("executor error: {:?}", err);
+                            ::Error::new_execute()
+                        })
                 }
                 #[cfg(not(feature = "runtime"))]
                 {
@@ -30,10 +36,11 @@ impl Exec {
                 }
             },
             Exec::Executor(ref e) => {
-                let _ = e.execute(Box::new(fut))
+                e.execute(Box::new(fut))
                     .map_err(|err| {
-                        panic!("executor error: {:?}", err.kind());
-                    });
+                        warn!("executor error: {:?}", err.kind());
+                        ::Error::new_execute()
+                    })
             },
         }
     }
diff --git a/src/error.rs b/src/error.rs
@@ -67,6 +67,9 @@ pub(crate) enum Kind {
 
     /// User polled for an upgrade, but low-level API is not using upgrades.
     ManualUpgrade,
+
+    /// Error trying to call `Executor::execute`.
+    Execute,
 }
 
 #[derive(Debug, PartialEq)]
@@ -114,7 +117,8 @@ impl Error {
             Kind::Closed |
             Kind::UnsupportedVersion |
             Kind::UnsupportedRequestMethod |
-            Kind::NoUpgrade => true,
+            Kind::NoUpgrade |
+            Kind::Execute => true,
             _ => false,
         }
     }
@@ -130,7 +134,7 @@ impl Error {
     }
 
     /// Returns the error's cause.
-    /// 
+    ///
     /// This is identical to `Error::cause` except that it provides extra
     /// bounds required to be able to downcast the error.
     pub fn cause2(&self) -> Option<&(StdError + 'static + Sync + Send)> {
@@ -244,6 +248,10 @@ impl Error {
         Error::new(Kind::Shutdown, Some(Box::new(cause)))
     }
 
+    pub(crate) fn new_execute() -> Error {
+        Error::new(Kind::Execute, None)
+    }
+
     pub(crate) fn new_h2(cause: ::h2::Error) -> Error {
         Error::new(Kind::Http2, Some(Box::new(cause)))
     }
@@ -297,6 +305,7 @@ impl StdError for Error {
             Kind::UnsupportedRequestMethod => "request has unsupported HTTP method",
             Kind::NoUpgrade => "no upgrade available",
             Kind::ManualUpgrade => "upgrade expected but low level API in use",
+            Kind::Execute => "executor failed to spawn task",
 
             Kind::Io => "an IO error occurred",
         }
diff --git a/src/proto/h2/client.rs b/src/proto/h2/client.rs
@@ -94,7 +94,7 @@ where
                             }
                             Err(Either::B((never, _))) => match never {},
                         });
-                    self.executor.execute(fut);
+                    self.executor.execute(fut)?;
                     State::Ready(request_tx, tx)
                 },
                 State::Ready(ref mut tx, ref conn_dropper) => {
@@ -129,7 +129,7 @@ where
                                         drop(conn_drop_ref);
                                         x
                                     });
-                                self.executor.execute(pipe);
+                                self.executor.execute(pipe)?;
                             }
 
                             let fut = fut
@@ -148,7 +148,7 @@ where
                                     }
                                     Ok(())
                                 });
-                            self.executor.execute(fut);
+                            self.executor.execute(fut)?;
                             continue;
                         },
 
diff --git a/src/proto/h2/server.rs b/src/proto/h2/server.rs
@@ -132,7 +132,7 @@ where
                 ::Body::h2(stream, content_length)
             });
             let fut = H2Stream::new(service.call(req), respond);
-            exec.execute(fut);
+            exec.execute(fut)?;
         }
 
         // no more incoming streams...
diff --git a/src/server/conn.rs b/src/server/conn.rs
@@ -641,7 +641,7 @@ where
                     // flatten basically
                     .and_then(|conn| conn.with_upgrades())
                     .map_err(|err| debug!("conn error: {}", err));
-                self.serve.protocol.exec.execute(fut);
+                self.serve.protocol.exec.execute(fut)?;
             } else {
                 return Ok(Async::Ready(()))
             }

Original file line number	Diff line number	Diff line change
`@@ -13,15 +13,21 @@ pub(crate) enum Exec {`
`13`	`13`
`14`	`14`
`15`	`15`	`impl Exec {`
`16`		`- pub(crate) fn execute<F>(&self, fut: F)`
	`16`	`+ pub(crate) fn execute<F>(&self, fut: F) -> ::Result<()>`
`17`	`17`	`where`
`18`	`18`	`F: Future<Item=(), Error=()> + Send + 'static,`
`19`	`19`	`{`
`20`	`20`	`match *self {`
`21`	`21`	`Exec::Default => {`
`22`	`22`	`#[cfg(feature = "runtime")]`
`23`	`23`	`{`
`24`		`- ::tokio_executor::spawn(fut)`
	`24`	`+ use ::tokio_executor::Executor;`
	`25`	`+ ::tokio_executor::DefaultExecutor::current()`
	`26`	`+ .spawn(Box::new(fut))`
	`27`	`+ .map_err(\|err\| {`
	`28`	`+ warn!("executor error: {:?}", err);`
	`29`	`+ ::Error::new_execute()`
	`30`	`+ })`
`25`	`31`	`}`
`26`	`32`	`#[cfg(not(feature = "runtime"))]`
`27`	`33`	`{`
`@@ -30,10 +36,11 @@ impl Exec {`
`30`	`36`	`}`
`31`	`37`	`},`
`32`	`38`	`Exec::Executor(ref e) => {`
`33`		`- let _ = e.execute(Box::new(fut))`
	`39`	`+ e.execute(Box::new(fut))`
`34`	`40`	`.map_err(\|err\| {`
`35`		`- panic!("executor error: {:?}", err.kind());`
`36`		`- });`
	`41`	`+ warn!("executor error: {:?}", err.kind());`
	`42`	`+ ::Error::new_execute()`
	`43`	`+ })`
`37`	`44`	`},`
`38`	`45`	`}`
`39`	`46`	`}`
Original file line number	Diff line number	Diff line change
`@@ -67,6 +67,9 @@ pub(crate) enum Kind {`
`67`	`67`
`68`	`68`	`/// User polled for an upgrade, but low-level API is not using upgrades.`
`69`	`69`	`ManualUpgrade,`
	`70`	`+`
	`71`	+ /// Error trying to call `Executor::execute`.
	`72`	`+ Execute,`
`70`	`73`	`}`
`71`	`74`
`72`	`75`	`#[derive(Debug, PartialEq)]`
`@@ -114,7 +117,8 @@ impl Error {`
`114`	`117`	`Kind::Closed \|`
`115`	`118`	`Kind::UnsupportedVersion \|`
`116`	`119`	`Kind::UnsupportedRequestMethod \|`
`117`		`- Kind::NoUpgrade => true,`
	`120`	`+ Kind::NoUpgrade \|`
	`121`	`+ Kind::Execute => true,`
`118`	`122`	`_ => false,`
`119`	`123`	`}`
`120`	`124`	`}`
`@@ -130,7 +134,7 @@ impl Error {`
`130`	`134`	`}`
`131`	`135`
`132`	`136`	`/// Returns the error's cause.`
`133`		`- ///`
	`137`	`+ ///`
`134`	`138`	/// This is identical to `Error::cause` except that it provides extra
`135`	`139`	`/// bounds required to be able to downcast the error.`
`136`	`140`	`pub fn cause2(&self) -> Option<&(StdError + 'static + Sync + Send)> {`
`@@ -244,6 +248,10 @@ impl Error {`
`244`	`248`	`Error::new(Kind::Shutdown, Some(Box::new(cause)))`
`245`	`249`	`}`
`246`	`250`
	`251`	`+ pub(crate) fn new_execute() -> Error {`
	`252`	`+ Error::new(Kind::Execute, None)`
	`253`	`+ }`
	`254`	`+`
`247`	`255`	`pub(crate) fn new_h2(cause: ::h2::Error) -> Error {`
`248`	`256`	`Error::new(Kind::Http2, Some(Box::new(cause)))`
`249`	`257`	`}`
`@@ -297,6 +305,7 @@ impl StdError for Error {`
`297`	`305`	`Kind::UnsupportedRequestMethod => "request has unsupported HTTP method",`
`298`	`306`	`Kind::NoUpgrade => "no upgrade available",`
`299`	`307`	`Kind::ManualUpgrade => "upgrade expected but low level API in use",`
	`308`	`+ Kind::Execute => "executor failed to spawn task",`
`300`	`309`
`301`	`310`	`Kind::Io => "an IO error occurred",`
`302`	`311`	`}`
Original file line number	Diff line number	Diff line change
`@@ -94,7 +94,7 @@ where`
`94`	`94`	`}`
`95`	`95`	`Err(Either::B((never, _))) => match never {},`
`96`	`96`	`});`
`97`		`- self.executor.execute(fut);`
	`97`	`+ self.executor.execute(fut)?;`
`98`	`98`	`State::Ready(request_tx, tx)`
`99`	`99`	`},`
`100`	`100`	`State::Ready(ref mut tx, ref conn_dropper) => {`
`@@ -129,7 +129,7 @@ where`
`129`	`129`	`drop(conn_drop_ref);`
`130`	`130`	`x`
`131`	`131`	`});`
`132`		`- self.executor.execute(pipe);`
	`132`	`+ self.executor.execute(pipe)?;`
`133`	`133`	`}`
`134`	`134`
`135`	`135`	`let fut = fut`
`@@ -148,7 +148,7 @@ where`
`148`	`148`	`}`
`149`	`149`	`Ok(())`
`150`	`150`	`});`
`151`		`- self.executor.execute(fut);`
	`151`	`+ self.executor.execute(fut)?;`
`152`	`152`	`continue;`
`153`	`153`	`},`
`154`	`154`
Original file line number	Diff line number	Diff line change
`@@ -132,7 +132,7 @@ where`
`132`	`132`	`::Body::h2(stream, content_length)`
`133`	`133`	`});`
`134`	`134`	`let fut = H2Stream::new(service.call(req), respond);`
`135`		`- exec.execute(fut);`
	`135`	`+ exec.execute(fut)?;`
`136`	`136`	`}`
`137`	`137`
`138`	`138`	`// no more incoming streams...`
Original file line number	Diff line number	Diff line change
`@@ -641,7 +641,7 @@ where`
`641`	`641`	`// flatten basically`
`642`	`642`	`.and_then(\|conn\| conn.with_upgrades())`
`643`	`643`	`.map_err(\|err\| debug!("conn error: {}", err));`
`644`		`- self.serve.protocol.exec.execute(fut);`
	`644`	`+ self.serve.protocol.exec.execute(fut)?;`
`645`	`645`	`} else {`
`646`	`646`	`return Ok(Async::Ready(()))`
`647`	`647`	`}`