GH-683: Well structualized blockchain errors

[bertllll]

No description provided.

[kauri-hero]

Hey @utkarshg6 & @bertllll Cursor code review via Claude 4.1 Opus:

Code Review for PR #684: Well-Structured Blockchain Errors

📋 Summary

This PR introduces an excellent architectural improvement to blockchain error handling by creating a clear separation between errors for logging (BlockchainLoggableError) and errors for database storage (BlockchainDbError). This two-tier approach is well thought out and addresses real concerns about error persistence and sensitive data handling.

✅ Strengths

1. Excellent Error Hierarchy Design

The separation between verbose logging errors and minimal database errors is elegant:

• BlockchainLoggableError - Full details for debugging/logging
• BlockchainDbError - Minimal, stable representation for storage
• Clean downgrade() method for conversion

2. Improved Error Tracking

The new ValidationStatus with PreviousAttempts provides valuable error analytics:

pub struct ErrorStats {
    pub first_seen: SystemTime,
    pub attempts: u16,
}

This enables better monitoring of recurring issues and error patterns.
3. Consistent Serialization

Smart approach to strip volatile data before persistence:

Error messages removed, only stable error codes retained
Prevents database schema issues from changing error messages
Custom serialization ensures consistent JSON representation

4. Comprehensive Test Coverage

   ✅ Serialization/deserialization tests
   ✅ Error conversion tests
   ✅ Hash implementation tests
   ✅ Partial equality tests

🔧 Required Fixes

1. Critical: Typo in Method Names

Please fix costume_* → custom_* throughout:

// Current (incorrect)
fn costume_serialize(&self) -> Result<Value, serde_json::Error>;
fn costume_deserialize(str: &str) -> Result<Box<dyn BlockchainDbError>, serde_json::Error>
fn costume_hash(&self, hasher: &mut dyn Hasher);

// Should be
fn custom_serialize(&self) -> Result<Value, serde_json::Error>;
fn custom_deserialize(str: &str) -> Result<Box<dyn BlockchainDbError>, serde_json::Error>
fn custom_hash(&self, hasher: &mut dyn Hasher);

2. Inconsistent Error Message

Line 420 in payable_dao.rs:

// Current
"Multi-row update to mark pending payable hit these app_rpc_web3_error_kind: {:?}"
// Should be
"Multi-row update to mark pending payable hit these errors: {:?}"

💡 Suggestions for Improvement
Documentation

Consider adding module-level documentation:

//! # Blockchain Error Handling
//! 
//! This module implements a two-tier error system:
//! - `BlockchainLoggableError`: Full error details for logging and debugging
//! - `BlockchainDbError`: Minimal, stable representation for database storage
//! 
//! Use `downgrade()` to convert from loggable to storable errors.

Error Tracking Bounds

The PreviousAttempts HashMap could grow unbounded. Consider:

Adding a maximum number of tracked error types
Implementing cleanup for old errors
Or documenting the expected bounded nature

Minor Improvements

Consider aligning naming: ServerUnreachable vs Unreachable
The manual hash implementation with hardcoded u8 values (0-7) could use constants
Document the assumption that Web3 RPC error codes are stable across providers

🔒 Security Review

The implementation is security-conscious:

✅ Sensitive error details stripped before storage
✅ No credentials or private keys in error messages
✅ Error downgrade prevents information leakage

⚡ Performance Impact

Minimal and acceptable:

Trait objects (Box<dyn BlockchainDbError>) have minor overhead but provide good flexibility
HashMap lookups in PreviousAttempts are efficient
Serialization overhead is negligible for error paths

🎯 Verdict

Recommendation: Approve with minor changes ✅

This is a well-designed refactoring that significantly improves error handling architecture. The two-tier error system elegantly solves real problems around error persistence and logging. Once the typos are fixed (especially costume_* → custom_*), this PR will be ready to merge.

Great work on this architectural improvement! The separation of concerns and thoughtful approach to error handling will make the system more maintainable long-term.

[kauri-hero]

Here is the verbose review with prioritized list:

Top 20 Improvements (Priority Order)

Fix all "costume" typos → "custom" (Critical)
    Affects: Lines 20, 24, 26, 34, 49, 50, 53, 78 across multiple files
    Impact: Breaking API change if public

Fix test function typo "app_arp" → "app_rpc"
    Line 169: hashing_for_app_arp_error_kind_works
    Impact: Confusing test name

Improve hash test efficiency - Replace O(n²) algorithm with HashSet
    Lines 191-195: Current implementation is inefficient
    Suggestion: Use HashSet to verify all hashes are unique

Add overflow protection for ErrorStats::increment
    Line 56: self.attempts += 1 could panic
    Suggestion: self.attempts = self.attempts.saturating_add(1)

Optimize deserializer - Avoid double serialization
    Lines 45-47: Value → String → Type is inefficient
    Suggestion: Match on Value directly using pattern matching

Replace magic numbers in hash implementation
    Lines 52-63: Hardcoded 0-7 values
    Suggestion: Define const DECODER_DISCRIMINANT: u8 = 0; etc.

Make add_attempt more efficient
    Line 27-37: Takes ownership unnecessarily
    Suggestion: pub fn add_attempt(&mut self, error: Box<dyn BlockchainDbError>, clock: &dyn ValidationFailureClock) -> &mut Self

Consider enum keys for HashMap
    Line 17: HashMap<Box<dyn BlockchainDbError>, ErrorStats>
    Performance impact: Trait object hashing is slower than enum

Rename dup() method to clone_boxed()
    Lines 42-43: Non-idiomatic method name
    Suggestion: More descriptive Rust naming

Fix naming inconsistency - IO vs Io
    Line 72, 88, 128, etc.: Mixed casing
    Suggestion: Choose one convention (prefer Io as Rust standard)

Align error naming - ServerUnreachable vs Unreachable
    Lines 58, 61, 94, 150: Inconsistent naming
    Impact: Confusing API

Replace .unwrap() in tests with .expect()`
    Lines 107, 120, 133, 144: Poor error messages on failure
    Suggestion: .expect("Failed to get decoder error stats")

Remove unnecessary clone in hash uniqueness test
    Line 191: hashes.clone().iter() is wasteful
    Suggestion: Use indices or enumerate

Flatten nested match statements
    Lines 82-97: Deep nesting reduces readability
    Suggestion: Use match guards or combine patterns

Use unit struct for ValidationFailureClockReal
    Line 65: Empty struct with Default
    Suggestion: pub struct ValidationFailureClockReal;

Remove redundant type annotations
    Line 29: Box<dyn BlockchainDbError> annotation unnecessary
    Suggestion: Use type inference with as _

Fix comment inconsistencies
    Line 10: "app_rpc_web3_error_kind" should be "errors"
    Multiple occurrences throughout codebase

Create test helper functions
    Lines 104-145: Repetitive test setup
    Suggestion: fn create_test_error(kind: ErrorKind) -> Box<dyn BlockchainDbError>

Use for loops instead of .into_iter().for_each()
    Lines 226-235, 250-257: Unnecessarily functional style
    Suggestion: Standard for loops are clearer

Add bounds checking for PreviousAttempts HashMap
    Line 17: HashMap could grow unbounded
    Suggestion: Add max entries limit or document expected bounds

Additional Observations

Critical Security Consideration

The PreviousAttempts HashMap with trait objects as keys could be a memory leak vector if errors accumulate indefinitely. Consider implementing:

Maximum tracked error types (e.g., 100)
TTL for error entries
Periodic cleanup mechanism

Performance Hot Spots

Trait object dispatch in hot paths (error handling)
Double boxing in HashMap keys
Sequential error type checking in deserializer

Suggested Architecture Improvement

Consider a hybrid approach:

enum ErrorKind {
    Known(KnownErrorKind),
    Unknown(Box<dyn BlockchainDbError>),
}

This would optimize for common cases while maintaining extensibility.

Testing Improvements Needed

Property-based testing for serialization round-trips
Benchmarks for HashMap operations with many error types
Stress tests for PreviousAttempts growth

The code shows good architectural thinking with the two-tier error system, but needs polish on Rust idioms, performance optimizations, and safety considerations.

[utkarshg6]

Thank you for your hard work @bertllll!