Expose TLS error to Subscribers using on_tls_handshake_failed (#2855)

Mark-Simulacrum · web-flow · commit c5f139c493db · 2025-10-21T09:34:52.000-07:00
diff --git a/dc/s2n-quic-dc/src/stream/recv/error.rs b/dc/s2n-quic-dc/src/stream/recv/error.rs
@@ -37,7 +37,7 @@ impl fmt::Display for Error {
     }
 }
 
-impl std::error::Error for Error {}
+impl core::error::Error for Error {}
 
 impl IntoEvent<Error> for Error {
     fn into_event(self) -> Error {
diff --git a/dc/s2n-quic-dc/src/stream/send/error.rs b/dc/s2n-quic-dc/src/stream/send/error.rs
@@ -34,7 +34,7 @@ impl fmt::Display for Error {
     }
 }
 
-impl std::error::Error for Error {}
+impl core::error::Error for Error {}
 
 impl IntoEvent<Error> for Error {
     fn into_event(self) -> Error {
diff --git a/quic/s2n-quic-core/events/connection.rs b/quic/s2n-quic-core/events/connection.rs
@@ -345,6 +345,7 @@ struct TlsExporterReady<'a> {
 #[event("connectivity:tls_handshake_failed")]
 struct TlsHandshakeFailed<'a> {
     session: crate::event::TlsSession<'a>,
+    error: &'a (dyn core::error::Error + Send + Sync + 'static),
 }
 
 #[event("connectivity:path_challenge_updated")]
diff --git a/quic/s2n-quic-core/src/application/error.rs b/quic/s2n-quic-core/src/application/error.rs
@@ -18,8 +18,7 @@ use core::{fmt, ops};
 #[derive(Copy, Clone, Eq, PartialEq)]
 pub struct Error(VarInt);
 
-#[cfg(feature = "std")]
-impl std::error::Error for Error {}
+impl core::error::Error for Error {}
 
 impl fmt::Debug for Error {
     fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
diff --git a/quic/s2n-quic-core/src/buffer/deque.rs b/quic/s2n-quic-core/src/buffer/deque.rs
@@ -225,8 +225,7 @@ impl fmt::Display for FillError {
     }
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for FillError {}
+impl core::error::Error for FillError {}
 
 #[cfg(feature = "std")]
 impl From<FillError> for std::io::Error {
diff --git a/quic/s2n-quic-core/src/connection/error.rs b/quic/s2n-quic-core/src/connection/error.rs
@@ -101,8 +101,7 @@ pub enum Error {
     },
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for Error {}
+impl core::error::Error for Error {}
 
 impl fmt::Display for Error {
     fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
diff --git a/quic/s2n-quic-core/src/crypto/tls.rs b/quic/s2n-quic-core/src/crypto/tls.rs
@@ -166,6 +166,7 @@ pub trait Context<Crypto: crate::crypto::CryptoSuite> {
     fn on_tls_handshake_failed(
         &mut self,
         session: &impl TlsSession,
+        error: &(dyn core::error::Error + Send + Sync + 'static),
     ) -> Result<(), crate::transport::Error>;
 
     /// Receives data from the initial packet space
diff --git a/quic/s2n-quic-core/src/crypto/tls/offload.rs b/quic/s2n-quic-core/src/crypto/tls/offload.rs
@@ -21,7 +21,11 @@ pub trait Executor {
 
 /// Allows access to the TlsSession on handshake failure and when the exporter secret is ready.
 pub trait ExporterHandler {
-    fn on_tls_handshake_failed(&self, session: &impl TlsSession) -> Option<Box<dyn Any + Send>>;
+    fn on_tls_handshake_failed(
+        &self,
+        session: &impl TlsSession,
+        e: &(dyn core::error::Error + Send + Sync + 'static),
+    ) -> Option<Box<dyn Any + Send>>;
     fn on_tls_exporter_ready(&self, session: &impl TlsSession) -> Option<Box<dyn Any + Send>>;
 }
 
@@ -30,6 +34,7 @@ impl ExporterHandler for () {
     fn on_tls_handshake_failed(
         &self,
         _session: &impl TlsSession,
+        _e: &(dyn core::error::Error + Send + Sync + 'static),
     ) -> Option<Box<dyn std::any::Any + Send>> {
         None
     }
@@ -559,8 +564,9 @@ impl<S: CryptoSuite, H: ExporterHandler> tls::Context<S> for RemoteContext<'_, R
     fn on_tls_handshake_failed(
         &mut self,
         session: &impl tls::TlsSession,
+        e: &(dyn core::error::Error + Send + Sync + 'static),
     ) -> Result<(), crate::transport::Error> {
-        if let Some(context) = self.exporter_handler.on_tls_handshake_failed(session) {
+        if let Some(context) = self.exporter_handler.on_tls_handshake_failed(session, e) {
             match self.send_to_quic.push(Request::TlsContext(context)) {
                 Ok(_) => (),
                 Err(_) => self.error = Some(SLICE_ERROR),
diff --git a/quic/s2n-quic-core/src/crypto/tls/slow_tls.rs b/quic/s2n-quic-core/src/crypto/tls/slow_tls.rs
@@ -167,8 +167,9 @@ where
     fn on_tls_handshake_failed(
         &mut self,
         session: &impl tls::TlsSession,
+        e: &(dyn core::error::Error + Send + Sync + 'static),
     ) -> Result<(), transport::Error> {
-        self.0.on_tls_exporter_ready(session)
+        self.0.on_tls_handshake_failed(session, e)
     }
 
     fn receive_initial(&mut self, max_len: Option<usize>) -> Option<tls::Bytes> {
diff --git a/quic/s2n-quic-core/src/crypto/tls/testing.rs b/quic/s2n-quic-core/src/crypto/tls/testing.rs
@@ -779,6 +779,7 @@ where
     fn on_tls_handshake_failed(
         &mut self,
         _: &impl super::TlsSession,
+        _: &(dyn std::error::Error + Send + Sync),
     ) -> Result<(), crate::transport::Error> {
         Ok(())
     }
diff --git a/quic/s2n-quic-core/src/datagram/default.rs b/quic/s2n-quic-core/src/datagram/default.rs
@@ -49,8 +49,7 @@ pub enum BuilderError {
     ZeroCapacity,
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for BuilderError {}
+impl core::error::Error for BuilderError {}
 
 impl fmt::Display for BuilderError {
     fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
diff --git a/quic/s2n-quic-core/src/event.rs b/quic/s2n-quic-core/src/event.rs
@@ -66,7 +66,14 @@ ident_into_event!(
     connection::Error,
     endpoint::Location,
 );
-borrowed_into_event!([u8; 4], [u8; 16], [u8], [u32], [&'a [u8]]);
+borrowed_into_event!(
+    [u8; 4],
+    [u8; 16],
+    [u8],
+    [u32],
+    [&'a [u8]],
+    (dyn core::error::Error + Send + Sync + 'static)
+);
 
 impl<T: IntoEvent<U>, U> IntoEvent<Option<U>> for Option<T> {
     #[inline]
diff --git a/quic/s2n-quic-core/src/event/generated.rs b/quic/s2n-quic-core/src/event/generated.rs
@@ -2468,12 +2468,14 @@ pub mod api {
     #[non_exhaustive]
     pub struct TlsHandshakeFailed<'a> {
         pub session: crate::event::TlsSession<'a>,
+        pub error: &'a (dyn core::error::Error + Send + Sync + 'static),
     }
     #[cfg(any(test, feature = "testing"))]
     impl<'a> crate::event::snapshot::Fmt for TlsHandshakeFailed<'a> {
         fn fmt(&self, fmt: &mut core::fmt::Formatter) -> core::fmt::Result {
             let mut fmt = fmt.debug_struct("TlsHandshakeFailed");
             fmt.field("session", &self.session);
+            fmt.field("error", &self.error);
             fmt.finish()
         }
     }
@@ -4132,8 +4134,8 @@ pub mod tracing {
             event: &api::TlsHandshakeFailed,
         ) {
             let id = context.id();
-            let api::TlsHandshakeFailed { session } = event;
-            tracing :: event ! (target : "tls_handshake_failed" , parent : id , tracing :: Level :: DEBUG , { session = tracing :: field :: debug (session) });
+            let api::TlsHandshakeFailed { session, error } = event;
+            tracing :: event ! (target : "tls_handshake_failed" , parent : id , tracing :: Level :: DEBUG , { session = tracing :: field :: debug (session) , error = tracing :: field :: debug (error) });
         }
         #[inline]
         fn on_path_challenge_updated(
@@ -6300,13 +6302,15 @@ pub mod builder {
     #[derive(Clone, Debug)]
     pub struct TlsHandshakeFailed<'a> {
         pub session: crate::event::TlsSession<'a>,
+        pub error: &'a (dyn core::error::Error + Send + Sync + 'static),
     }
     impl<'a> IntoEvent<api::TlsHandshakeFailed<'a>> for TlsHandshakeFailed<'a> {
         #[inline]
         fn into_event(self) -> api::TlsHandshakeFailed<'a> {
-            let TlsHandshakeFailed { session } = self;
+            let TlsHandshakeFailed { session, error } = self;
             api::TlsHandshakeFailed {
                 session: session.into_event(),
+                error: error.into_event(),
             }
         }
     }
diff --git a/quic/s2n-quic-core/src/path/mtu.rs b/quic/s2n-quic-core/src/path/mtu.rs
@@ -241,8 +241,7 @@ impl Display for MtuError {
     }
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for MtuError {}
+impl core::error::Error for MtuError {}
 
 /// Information about the path that may be used when generating MTU configuration.
 #[non_exhaustive]
diff --git a/quic/s2n-quic-core/src/query.rs b/quic/s2n-quic-core/src/query.rs
@@ -132,5 +132,4 @@ impl core::fmt::Display for Error {
     }
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for Error {}
+impl core::error::Error for Error {}
diff --git a/quic/s2n-quic-core/src/stream/error.rs b/quic/s2n-quic-core/src/stream/error.rs
@@ -68,8 +68,7 @@ pub enum StreamError {
     },
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for StreamError {}
+impl core::error::Error for StreamError {}
 
 impl fmt::Display for StreamError {
     fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
diff --git a/quic/s2n-quic-core/src/transport/error.rs b/quic/s2n-quic-core/src/transport/error.rs
@@ -29,8 +29,7 @@ pub struct Error {
     pub reason: &'static str,
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for Error {}
+impl core::error::Error for Error {}
 
 impl Error {
     /// Creates a new `Error`
diff --git a/quic/s2n-quic-core/src/transport/parameters/mod.rs b/quic/s2n-quic-core/src/transport/parameters/mod.rs
@@ -259,8 +259,7 @@ impl From<core::convert::Infallible> for ValidationError {
     }
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for ValidationError {}
+impl core::error::Error for ValidationError {}
 
 /// Creates a transport parameter struct with the inner codec type
 macro_rules! transport_parameter {
diff --git a/quic/s2n-quic-core/src/varint/mod.rs b/quic/s2n-quic-core/src/varint/mod.rs
@@ -34,8 +34,7 @@ impl fmt::Display for VarIntError {
     }
 }
 
-#[cfg(feature = "std")]
-impl std::error::Error for VarIntError {}
+impl core::error::Error for VarIntError {}
 
 // === API ===
 
diff --git a/quic/s2n-quic-rustls/src/session.rs b/quic/s2n-quic-rustls/src/session.rs
@@ -381,8 +381,8 @@ impl tls::Session for Session {
         context: &mut C,
     ) -> Poll<Result<(), transport::Error>> {
         let result = self.poll_impl(context);
-        if let Poll::Ready(Err(_)) = &result {
-            context.on_tls_handshake_failed(self)?;
+        if let Poll::Ready(Err(e)) = &result {
+            context.on_tls_handshake_failed(self, e)?;
         }
         // attempt to emit server_name and application_protocol events prior to possibly
         // returning with an error
diff --git a/quic/s2n-quic-tests/src/tests/offload.rs b/quic/s2n-quic-tests/src/tests/offload.rs
@@ -18,6 +18,7 @@ impl ExporterHandler for Exporter {
     fn on_tls_handshake_failed(
         &self,
         _session: &impl s2n_quic_core::crypto::tls::TlsSession,
+        _e: &(dyn core::error::Error + Send + Sync + 'static),
     ) -> Option<Box<dyn std::any::Any + Send>> {
         None
     }
diff --git a/quic/s2n-quic-tls/src/session.rs b/quic/s2n-quic-tls/src/session.rs
@@ -162,7 +162,7 @@ impl tls::Session for Session {
                 Poll::Ready(Ok(()))
             }
             Poll::Ready(Err(e)) => {
-                context.on_tls_handshake_failed(self)?;
+                context.on_tls_handshake_failed(self, &e)?;
 
                 Poll::Ready(Err(e
                     .alert()
diff --git a/quic/s2n-quic-transport/src/space/session_context.rs b/quic/s2n-quic-transport/src/space/session_context.rs
@@ -570,10 +570,12 @@ impl<Config: endpoint::Config, Pub: event::ConnectionPublisher>
     fn on_tls_handshake_failed(
         &mut self,
         session: &impl tls::TlsSession,
+        e: &(dyn std::error::Error + Send + Sync + 'static),
     ) -> Result<(), transport::Error> {
         self.publisher
             .on_tls_handshake_failed(event::builder::TlsHandshakeFailed {
                 session: s2n_quic_core::event::TlsSession::new(session),
+                error: e,
             });
         Ok(())
     }
diff --git a/quic/s2n-quic/src/provider.rs b/quic/s2n-quic/src/provider.rs
@@ -77,7 +77,7 @@ cfg_if!(
 /// An error indicating a failure to start an endpoint
 pub struct StartError(Box<dyn 'static + fmt::Display + Send + Sync>);
 
-impl std::error::Error for StartError {}
+impl core::error::Error for StartError {}
 
 impl StartError {
     pub(crate) fn new<T: 'static + fmt::Display + Send + Sync>(error: T) -> Self {

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ impl fmt::Display for Error {`
`37`	`37`	`}`
`38`	`38`	`}`
`39`	`39`
`40`		`-impl std::error::Error for Error {}`
	`40`	`+impl core::error::Error for Error {}`
`41`	`41`
`42`	`42`	`impl IntoEvent<Error> for Error {`
`43`	`43`	`fn into_event(self) -> Error {`
Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,7 @@ impl fmt::Display for Error {`
`34`	`34`	`}`
`35`	`35`	`}`
`36`	`36`
`37`		`-impl std::error::Error for Error {}`
	`37`	`+impl core::error::Error for Error {}`
`38`	`38`
`39`	`39`	`impl IntoEvent<Error> for Error {`
`40`	`40`	`fn into_event(self) -> Error {`
Original file line number	Diff line number	Diff line change
`@@ -345,6 +345,7 @@ struct TlsExporterReady<'a> {`
`345`	`345`	`#[event("connectivity:tls_handshake_failed")]`
`346`	`346`	`struct TlsHandshakeFailed<'a> {`
`347`	`347`	`session: crate::event::TlsSession<'a>,`
	`348`	`+ error: &'a (dyn core::error::Error + Send + Sync + 'static),`
`348`	`349`	`}`
`349`	`350`
`350`	`351`	`#[event("connectivity:path_challenge_updated")]`
Original file line number	Diff line number	Diff line change
`@@ -225,8 +225,7 @@ impl fmt::Display for FillError {`
`225`	`225`	`}`
`226`	`226`	`}`
`227`	`227`
`228`		`-#[cfg(feature = "std")]`
`229`		`-impl std::error::Error for FillError {}`
	`228`	`+impl core::error::Error for FillError {}`
`230`	`229`
`231`	`230`	`#[cfg(feature = "std")]`
`232`	`231`	`impl From<FillError> for std::io::Error {`
Original file line number	Diff line number	Diff line change
`@@ -101,8 +101,7 @@ pub enum Error {`
`101`	`101`	`},`
`102`	`102`	`}`
`103`	`103`
`104`		`-#[cfg(feature = "std")]`
`105`		`-impl std::error::Error for Error {}`
	`104`	`+impl core::error::Error for Error {}`
`106`	`105`
`107`	`106`	`impl fmt::Display for Error {`
`108`	`107`	`fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {`
Original file line number	Diff line number	Diff line change
`@@ -779,6 +779,7 @@ where`
`779`	`779`	`fn on_tls_handshake_failed(`
`780`	`780`	`&mut self,`
`781`	`781`	`_: &impl super::TlsSession,`
	`782`	`+ _: &(dyn std::error::Error + Send + Sync),`
`782`	`783`	`) -> Result<(), crate::transport::Error> {`
`783`	`784`	`Ok(())`
`784`	`785`	`}`