I'd like to not propagate this usage.
At the very least we can catch grpc errors in the API package and produce the correct error code from there.

Thanks for your feedback. Like you mentioned, I tried to move that part into api/server/httputils/errors.go. PTAL
@cpuguy83

This is a mouthful.

newHTTPErrorFromGRPC

This is incorrect. 408 is only used when the client doesn't send a complete request.

A 504 would work here.

Conflict is a specific http error. This should be a 400 or some other error. There is already an open issue about the incorrect usage of 409. @justincormack

This is a specific http error that doesn't map to the same thing as the GRPC error code.

typo s/non-exsiting/non-existing/ :joy:

Can we move this up to top of the default case and instead pass the error directly rather than checking the error string?

Then we can gate the horrid string checking pattern currently above this with something like:

if statusCode == http.StatusInternalServerError {
    // horrible string parser
}

Then we can gate the horrid string checking pattern currently above this with something like:

Sorry, actually I cannot follow this one.

Basically, move this above this stuff:

			{"not found", http.StatusNotFound},
			{"cannot find", http.StatusNotFound},
			{"no such", http.StatusNotFound},
			{"bad parameter", http.StatusBadRequest},
			{"no command", http.StatusBadRequest},
			{"conflict", http.StatusConflict},
			{"impossible", http.StatusNotAcceptable},
			{"wrong login/password", http.StatusUnauthorized},
			{"unauthorized", http.StatusUnauthorized},
			{"hasn't been activated", http.StatusForbidden},
			{"this node", http.StatusServiceUnavailable},
			{"needs to be unlocked", http.StatusServiceUnavailable},
			{"certificates have expired", http.StatusServiceUnavailable},

And only check that stuff if the parsed statusCode from the grpc check is 500.

Why not implemented? Wouldn't this be StatusForbidden?

This does not seem like the correct code.
This is used when the server is acting as a proxy. In this case something just went really wrong. I think this would just be a 500.

While the engine may technically be acting as a proxy to containerd/swarm, I don't think this is something that should propagate up to the user.

What do you propose instead?

500

Yeah, in failed test:

11:17:28 docker_api_swarm_test.go:342:
11:17:28     c.Assert(status, checker.Equals, http.StatusInternalServerError, check.Commentf("deadline exceeded", string(out)))
11:17:28 ... obtained int = 504
11:17:28 ... expected int = 500
11:17:28 ... deadline exceeded%!(EXTRA string={"message":"rpc error: code = 4 desc = context deadline exceeded"}
11:17:28 )
11:17:28 
11:17:28 [d0f11ccd4b298] exiting daemon

Original code is 500

This should be conflict, I think

Not 400?

400 works too, just not 500.

well, technically I think 400 is for the HTTP server and shouldn't be used by us, but we do :)

We probably shouldn't make up new status code usages here. The description of this status does not seem like anything we'd ever require.

OutOfRange should just be mapped to 400 Bad Request.

Is swarm or containerd returning this ever? If so, is the HTTP code documented in the API?

Can move this to the default case

I don't think this would ever happen?

Yeah, updated. PTAL

This string check is probably more expensive, and certainly more fragile, than just checking statusCodeFromGRPCError in all cases.

If we move this to the top of the default case, in many cases we won't have to mess around with this string handling.
so...

default:
    statusCode = statusCodeFromGRPCError(err)
    if statusCode == http.StatusInternalServerError {
        // nasty string comparison stuff
    }

Thanks for your feedback. @cpuguy83 I think what you said is reasonable. Thanks a lot.
While I think CI fails according to accident. Can you re-trigger that? @thaJeztah

Probably we need to update the swagger.yml as well?

I think there is no need to update swagger.yml.