Standardized Error Handling and Error Codes

[SenRamakri]

This is the implementation for Standardized error coding and handling for mbed-os.
The changes with this pull request implements standardized error code handling and error code definitions/encoding. With this, error handling is implemented as a Core-os service which captures and
logs the errors with context information. Each error code is captured with error location, error message,
error file(this is configurable as this can cause increase in binary size), calling thread info, module generating the error etc. Relevant APIs are provided to log and retrieve errors from error logging system.
A build time flag has been provided to switch off error logging system on memory constrained platforms.
Error reporting itself is logically separated and implemented in mbed_error_reporting.c/h. By doing this both exception handling and error handling can use the same reporting infrastructure. A sample error report is as below. Note that error status value captures error type, entity and error code. Error reporting prints these values separately as well to enable developers to search the source tree with error code.
Error handling service also provides an API to save the error log in file system if required.

++ MbedOS Error Info ++
Error Status: 0x80040103
Error Code: 259
Error Entity: 04
Error Message: HAL Entity error
Error Location: 0x000067C7
Error Value: 0x00005566
Current Thread: Id: 0x200024A8 EntryFn: 0x0000FB0D StackSize: 0x00001000 StackMem: 0x200014A8 SP: 0x2002FFD8
-- MbedOS Error Info --

The implementation is tested using the Greentea tests under TESTS/mbed_platform/error_handling.
Note that exception handling and reporting testing cannot be done using Greentea and was manually tested.

Pull request type

[ ] Fix
[ ] Refactor
[ ] New target
[X] Feature
[ ] Breaking change

The APIs/data structures/macros are all documented using Doxygen. In addition handbook documentation will also be generated for release.

Overall impact of this feature is ~1K(ROM) including logging. Logging can be disabled and if disabled
the overall impact would be around 0.75K.

[deepikabhavnani]

Please remove the dead code and printf's from all tests

[SenRamakri]

Yep, we can remove it

[deepikabhavnani]

Printf should be removed

[SenRamakri]

Can be removed

[deepikabhavnani]

Printf's - should be removed

[SenRamakri]

@deepikabhavnani - These are printf in the case of errors, its helpful for debugging. Do you think it needs to be taken out? I don't think they are normally hit and shouldnt cause any adverse effects.

[SenRamakri]

Im changing them to TEST_FAIL_MESSAGE, hope that works

[deepikabhavnani]

Does the test take this long (300 sec) to finish?

[SenRamakri]

I noticed that it takes quite a long for some slow targets(I saw one of them took 80secs it could be some test delays as well) as I see. But I can cut that down to 2 mins or less. Ill do that.

[deepikabhavnani]

From the comments above, it does not look like we need mbed_error here till we actually replace error with mbed_error in EvrRtxTimerError.

[SenRamakri]

The intention is when the error happens we have more info to debug the issue. Thats the reason why we are replacing them. Hope that works since its a good direction.

[deepikabhavnani]

Code will not be called, till we actual update EvrRtxTimerError. We can add this later when we are making changes to CMSIS/RTX code. As it helps in keeping track of all CMSIS/RTX changes in single PR and dependencies as well when updating to higher versions.

[deepikabhavnani]

Do we need this code here?

[SenRamakri]

Can you please explain it? Do you mean we can have it under macro?

[deepikabhavnani]

My comment was inline to previous one, till we replace error call from CMSIS/RTX lib, we should not add this code. Its should be part of same commit, to help in keeping track of CMSIS changes for updates.

[deepikabhavnani]

I would recommend not to replace API in library/feature code (even when deprecating), let the feature owners do it after thorough testing.

[deepikabhavnani]

You can share the samples and examples, but actual API usage should be done by feature owners.

[SenRamakri]

@deepikabhavnani - Lot of these changes are already talked about during design review. In addition we are going to write separate requirements for each team once this is in. So, my understanding it is better to capture more info as long as they are not changing the behavior in any way. Do you still think we should remove them?

[deepikabhavnani]

Yes Senthil, I believe it should be done and verified by feature owners

[deepikabhavnani]

Same comment, please dont replace the API everywhere in Mbed OS code, it should not be part of API addition. API addition and API adoption should be separate PR's

[SenRamakri]

Same reason as above, we are only changing places where it doesnt cause any behavior change. We will be writing requirements for other teams as well to adopt this more broadly.

[geky]

Is it possible to pass addr and size to the MBED_ERROR macro?

Should we just not take any arguments in MBED_ERROR?

[deepikabhavnani]

Spinning is fine in case of critical error, but in case of warnings we are unnecessary holding the CPU here

[SenRamakri]

Good point, I thought about that. But how do we sync-up with the current "error" API without this. Until we remove that we have to do something like this. I was thinking of returning but thats not desirable to return from warning API when some code is already in distress and doesn't know how to handle the situation. Do you think we should call some sort of wait to free up the cpu?What would you suggest

[deepikabhavnani]

Wait will have its own side effects, but do we support these warning/error from interrupts? if no then wait is fine

[deepikabhavnani]

Query: Will this function be called in case of warning/non-fatal errors as well? If yes then I would say it is lacking synchronization with existing mbed_trace library.
I know the prints in the call are under critical section, but prints from application and mbed_trace are not in critical section. Consider a scenario where thread1 is in between printing mbed_trace log and context switches to thread_2 which has non-fatal error. It will start printing on UART console without previous log message dumped completely. Logging in this module does not guarantee line interleaving with existing libraries

[deepikabhavnani]

I have added my comments at specific code section, major concern is line interleave (sync with other libraries) in case of warning messages and updating existing 'error` API's in feature and other libraries.

[SenRamakri]

@deepikabhavnani - See my new changes. The serial print functions are removed and now we print the error report only in the case of fatal errors, so it shouldn't cause issues when mbed_trace is active.
I have removed the MBED_ERROR calls from lwip. For all other files which are changed to use MBED_ERROR we do have component experts already in this review. "error" function is no longer deprecated. It will internally call mbed_error to capture the error info. In future, we may deprecate "error" once we have other components using the new mbed error apis.

[kjbracey]

Do still need to remove all the hard-coded console device stuff from here (later), but in that regard this version is no worse than the existing error, and a teeny bit better in having ITM hard-coded. So I'm okay to approve this - no other concerns.

Open issue with my thoughts on that here: #6521

[c1728p9]

@SenRamakri you have addressed the concerns I had. I would have liked more visibility on this during the concept phase, but what you have here looks good to me and matches the proposed design.

[deepikabhavnani]

@SenRamakri - Changes look good. I will request just one more change in API to have it more aligned with other logging/tracing systems, const char string message as first arg.

--#define MBED_WARNING( error_status, error_msg, error_value ) 
++define MBED_WARNING( error_msg, error_status, error_value )

[geky]

Existing error does not take arguments, so most calls will not know what to pass as an error_value. I do see it as useful, but a single error_value is both additional work and limiting.

Since we're stuck once this lands, can we change MBED_ERROR to take two parameters and add MBED_ERROR1 or similar to take the error_value argument?

This would allow use to increase the arg count in the future if we decide that we want to do that.

MBED_ERROR(MBED_MAKE_ERROR(MBED_MODULE_BLOCK_DEVICE, MBED_ERROR_CODE_WRITE_PROTECTED), "ReadOnlyBlockDevice::program() not allowed");
MBED_ERROR1(MBED_MAKE_ERROR(MBED_MODULE_BLOCK_DEVICE, MBED_ERROR_CODE_WRITE_PROTECTED), "ReadOnlyBlockDevice::program() not allowed", addr);
MBED_ERROR2(MBED_MAKE_ERROR(MBED_MODULE_BLOCK_DEVICE, MBED_ERROR_CODE_WRITE_PROTECTED), "ReadOnlyBlockDevice::program() not allowed", addr, size);

[geky]

@deepikabhavnani, interesting, I disagree, in this case error_status is not an argument, but the object as a target of the MBED_WARNING call:

Consider the order of arguments for sprintf:

#define MBED_WARNING(error_status, error_msg, error_value)
// vs
sprintf(buffer, msg, args);

[deepikabhavnani]

@SenRamakri @geky - As discussed internally will keep error_status as first arg

[SenRamakri]

Pushed a minor change to split the MBED_ERROR macros into MBED_ERROR and MBED_ERROR1.

[geky]

From an external discussion:

I'm happy with this as long as we plan to unify POSIX and Mbed error codes in the future. Having them separate creates a challenge for users.

Thanks for responding to all my feedback 👍

[cmonr]

Starting CI since comments indicate multiple reviewers are good with the changes.
Note: It's possible that export and test builds may get shuffled around tomorrow.

/morph build

[mbed-ci]

Build : SUCCESS

Build number : 2134
Build artifacts/logs : http://mbed-os.s3-website-eu-west-1.amazonaws.com/?prefix=builds/6983/

Triggering tests

/morph test
/morph uvisor-test
/morph export-build
/morph mbed2-build

[mbed-ci]

Test : FAILURE

Build number : 1929
Test logs :http://mbed-os-logs.s3-website-us-west-1.amazonaws.com/?prefix=logs/6983/1929

[adbridge]

Test failed trying to gather gcov data on Nordic device.
Will try re-running the tests.
/morph test

[mbed-ci]

Exporter Build : SUCCESS

Build number : 1761
Build artifacts/logs : http://mbed-os.s3-website-eu-west-1.amazonaws.com/?prefix=builds/exporter/6983/

[0xc0170]

Test aborted, this needs rebuild to have a fix in that was merged today

/morph build

[SenRamakri]

@0xc0170 - Do we need to rebase to get the fix that merged today?

[mbed-ci]

Build : SUCCESS

Build number : 2136
Build artifacts/logs : http://mbed-os.s3-website-eu-west-1.amazonaws.com/?prefix=builds/6983/

Triggering tests

/morph test
/morph uvisor-test
/morph export-build
/morph mbed2-build

[0xc0170]

@0xc0170 - Do we need to rebase to get the fix that merged today?

not needed. CI does merge. Thus I restarted it

[mbed-ci]

Test : SUCCESS

Build number : 1931
Test logs :http://mbed-os-logs.s3-website-us-west-1.amazonaws.com/?prefix=logs/6983/1931

[mbed-ci]

Exporter Build : SUCCESS

Build number : 1763
Build artifacts/logs : http://mbed-os.s3-website-eu-west-1.amazonaws.com/?prefix=builds/exporter/6983/

[cmonr]

Bringing it in!

[0xc0170]

I overlooked one commit change (suffixed 1 macros).

Where is docs PR ?

[0xc0170]

MBED_WARNING1 or this ERROR1 are confusing to me - what does 1 stands for, which one should I use. From the commit message and the changes I see there is error value, so we either have it or not, but having these 2 ?

[SenRamakri]

@0xc0170 - I'm working on Examples and Docs, example has been completed and available. Docs are in progress, will land the PR in Handbook early next week. The code changes will be reflected in docs changes as well.

[canhkha]

IAR warning without including string.h
Warning[Pe223]: function "memcpy" declared implicitly ...mbed\platform\mbed_error_hist.c 39

[0xc0170]

+1, I sent a fix here #7136