[For 10.4] Set 599 HTTP code on error

[jvillafanez]

Description

web page shows a 200 status instead of a 500 (or similar) in case of error

Related Issue

#36072

Motivation and Context

How Has This Been Tested?

Load any ownCloud web page without having connection to the DB (ownCloud was installed but the DB connection was cut later)

Screenshots (if appropriate):

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Database schema changes (next release will require increase of minor version instead of patch)
• Breaking change (fix or feature that would cause existing functionality to change)
• Technical debt
• Tests only (no source changes)

Checklist:

• Code changes
• Unit tests added
• Acceptance tests added
• Documentation ticket raised:
• Changelog item, see TEMPLATE

[codecov]

Codecov Report

Merging #36413 into master will decrease coverage by 0.02%.
The diff coverage is 0%.

@@             Coverage Diff              @@
##             master   #36413      +/-   ##
============================================
- Coverage     64.68%   64.66%   -0.03%     
+ Complexity    19023    19022       -1     
============================================
  Files          1268     1268              
  Lines         74362    74386      +24     
  Branches       1309     1309              
============================================
  Hits          48100    48100              
- Misses        25876    25900      +24     
  Partials        386      386

Flag	Coverage Δ	Complexity Δ
#javascript	54% <ø> (ø)	0 <ø> (ø)	⬇️
#phpunit	65.84% <0%> (-0.03%)	19022 <2> (-1)

Impacted Files	Coverage Δ	Complexity Δ
lib/private/Log/ErrorHandler.php	8% <ø> (+1.75%)	9 <0> (-3)	⬇️
lib/private/Setup.php	24.68% <0%> (-0.11%)	57 <0> (ø)
public.php	0% <0%> (ø)	0 <0> (ø)	⬇️
status.php	0% <0%> (ø)	0 <0> (ø)	⬇️
index.php	0% <0%> (ø)	0 <0> (ø)	⬇️
remote.php	0% <0%> (ø)	0 <0> (ø)	⬇️
lib/base.php	3.81% <0%> (-0.22%)	151 <2> (+2)
console.php	0% <0%> (ø)	0 <0> (ø)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update d1fe5d2...3674fa0. Read the comment docs.

[jvillafanez]

Summing up the changes:

• Shutdown log is removed due to unreliability. There is no guarantee the ownCloud's logger will be available during the shutdown (seen when there is no connection to the DB)
• /favicon.ico route will be rewritten to /core/img/favicon.ico. This happens when there is no connection to the DB. The browser doesn't load any page due to the server crash, and make a request to "/favicon.ico" to get the favicon. The change will make the favicon load properly under these circunstances.
• New logger for crashes and improved error handling on the endpoints.

---

Notes on the error handling:

The request processing goes as follows:

1. Try to process the request normally. If there isn't any problem, this will generate a normal response.

2. In case the request isn't handled properly and throws an exception that isn't handled, the endpoint should try to log that exception using ownCloud's logging facility and show a proper error message to the user.

   This will likely depend on the endpoint, but generally, the expected HTTP status should be 500 and an error message should be presented to the user. ownCloud already provides some templates that can be used, such as OC_Template::printExceptionErrorPage. In this case, we can assume that ownCloud is working properly, and it's an app the one that failed to process the request.

   Note that this exception handling is expected to be light, mostly log the error and show a nice message to the user

3. In case we can't handle the exception, this means that ownCloud is broken and we can't report the error properly to the user. This has been seen if the connection to the DB is stopped, but there could be some additional scenarios.

   In this case we assume that ownCloud is unreliable (we've decided to just log and show an error in step 2, but we couldn't even do that). In order to provide a similar behaviour in all the endpoints, we'll perform the following actions:

   • For web environments (not CLI):
     1. send a "599 Broken" HTTP status to the client. This is intended to help to distinguish between this situation and a 500, which could mean that an app failed the processing but ownCloud still works.
     2. log the exceptions in the "crash-Y-m-d.log" ("crash-2019-11-13.log", for example) file.
   • For CLI:
     1. log the exceptions in the "crash-Y-m-d.log" file (same as above)
     2. log the original exception in the console.

This new crash log file will be generated in the configured data directory, unless the crashdirectory is present in the config.php file. If it's present, that directory must exists and must be writable by the web server.

[jvillafanez]

I checked the code list from mozilla, and the 599 didn't appear... it might not be the best code.
I'm opened to suggestions, but I'd like to avoid 500 and 503 in order to distinguish this particular case from other "normal" errors.

[sharidas]

Haven't tested. But code wise looks ok to me.

[micbar]

please add a changelog item

[phil-davis]

@micbar should this be added to 10.4.0 project?
It might be difficult to add acceptance tests, because we would have to induce a server error to make code paths happen. Existing CI being green is good!

[micbar]

@phil-davis 10.4 is ok.
IMO this could be done via Changelog testing.

[phil-davis]

Someone needs to decide what to do about the codecov result.

[VicDeo]

@micbar
ErrorHandler: only removed lines, adding tests won't increase coverage (and the method is static too)
Setup.php: 1 line was added into a static method with no proper DI
base.php: static method once again technically it is possible to cover crashLog method but it would be not a classic unit-test.

the rest is too low-level for unit tests
console.php
index.php
public.php
remote.php
status.php

[micbar]

Accepted the PR, Needs a manual Release test during QA phase.
@davitol Please post an example of the crashlog contents.

[phil-davis]

LGTM - as in the discussion, automated tests are not realistic.
Someone with privs needs to override the codecov result and merge.