Skip to content

Update invalid date error to return 400#5344

Closed
ritvibhatt wants to merge 1 commit into
opensearch-project:mainfrom
ritvibhatt:invalid-date-error-fix
Closed

Update invalid date error to return 400#5344
ritvibhatt wants to merge 1 commit into
opensearch-project:mainfrom
ritvibhatt:invalid-date-error-fix

Conversation

@ritvibhatt

@ritvibhatt ritvibhatt commented Apr 14, 2026

Copy link
Copy Markdown
Contributor

Description

Invalid dates were returning a 500 when query was pushed down, updates to return a 400

Related Issues

Check List

  • New functionality includes testing.
  • New functionality has been documented.
  • New functionality has javadoc added.
  • New functionality has a user manual doc added.
  • New PPL command checklist all confirmed.
  • API changes companion pull request created.
  • Commits are signed per the DCO using --signoff or -s.
  • Public documentation issue/PR created.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@ritvibhatt
update invalid date error to return 400
42a3670 
Signed-off-by: Ritvi Bhatt <ribhatt@amazon.com>
@github-actions

github-actions Bot commented Apr 14, 2026

Copy link
Copy Markdown
Contributor

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

🧪 No relevant tests
🔒 No security concerns identified
✅ No TODO sections
🔀 Multiple PR themes

Sub-PR theme: Fix legacy SQL error handling to return 400 for invalid dates

Relevant files:

  • legacy/src/main/java/org/opensearch/sql/legacy/executor/format/ErrorMessageFactory.java
  • legacy/src/main/java/org/opensearch/sql/legacy/executor/format/OpenSearchErrorMessage.java
  • legacy/src/main/java/org/opensearch/sql/legacy/plugin/RestSqlAction.java
Sub-PR theme: Fix PPL/OpenSearch error handling to return 400 for invalid dates

Relevant files:

  • opensearch/src/main/java/org/opensearch/sql/opensearch/response/error/ErrorMessageFactory.java
  • opensearch/src/main/java/org/opensearch/sql/opensearch/response/error/OpenSearchErrorMessage.java
  • opensearch/src/main/java/org/opensearch/sql/opensearch/executor/OpenSearchExecutionEngine.java
  • plugin/src/main/java/org/opensearch/sql/plugin/rest/RestPPLQueryAction.java
⚡ Recommended focus areas for review

Status Override

The original code used the OpenSearchException's own status code (via exception.status().getStatus()), but now the caller-provided status parameter is always used instead. This means if an OpenSearchException has its own meaningful HTTP status (e.g., 404 Not Found), it will be overridden by whatever status is passed in. Verify that all callers always pass the correct status, especially for non-400/500 cases.

 
  return new OpenSearchErrorMessage((OpenSearchException) e, status);
} else if (unwrapCause(e) instanceof OpenSearchException) {
  OpenSearchException exception = (OpenSearchException) unwrapCause(e);
  return new OpenSearchErrorMessage(exception, status);
Status Override

Same concern as in the legacy module: the OpenSearchException's own status is no longer used; the caller-supplied status is always used. If the OpenSearch exception carries a meaningful status (e.g., 404), it will be silently replaced. Ensure all callers pass the correct status.

 
return new OpenSearchErrorMessage((OpenSearchException) cause, status);
Metrics Counting

The new logic increments PPL_FAILED_REQ_COUNT_CUS only when status == BAD_REQUEST, but previously it was always incremented for any OpenSearchException. Non-400 OpenSearch exceptions (e.g., 503, 429) will now increment PPL_FAILED_REQ_COUNT_SYS instead of PPL_FAILED_REQ_COUNT_CUS. Verify this is the intended behavior change and that dashboards/alerts relying on these metrics are updated accordingly.

 
if (status == BAD_REQUEST) {
  Metrics.getInstance()
      .getNumericalMetric(MetricName.PPL_FAILED_REQ_COUNT_CUS)
      .increment();
} else {
  Metrics.getInstance()
      .getNumericalMetric(MetricName.PPL_FAILED_REQ_COUNT_SYS)
      .increment();
}
Duplicate Logic

The SearchPhaseExecutionException shard-failure inspection logic is duplicated between RestPPLQueryAction and RestSqlAction. Consider extracting this into a shared utility method to avoid maintenance burden and inconsistency.

 
if (e instanceof SearchPhaseExecutionException) {
  for (ShardSearchFailure failure :
      ((SearchPhaseExecutionException) e).shardFailures()) {
    Throwable cause = failure.getCause();
    if (cause instanceof Exception
        && isClientError((Exception) cause)) {
      status = BAD_REQUEST;
      break;
    }
  }
}
Error Wrapping

Non-VirtualMachineError Throwables (e.g., Error subclasses like OutOfMemoryError or StackOverflowError that are not VirtualMachineError) are now wrapped in a RuntimeException and passed to listener.onFailure. This may cause these serious JVM errors to be silently swallowed or reported as generic failures instead of propagating. Consider also rethrowing Error subclasses that are not VirtualMachineError.

 
} catch (Throwable t) {
  if (t instanceof VirtualMachineError) {
    throw (VirtualMachineError) t;
  }
  Exception e = (t instanceof Exception) ? (Exception) t : new RuntimeException(t);
  listener.onFailure(e);

@github-actions

github-actions Bot commented Apr 14, 2026

Copy link
Copy Markdown
Contributor

PR Code Suggestions ✨

Explore these optional code suggestions:

CategorySuggestion                                                                                                                                    Impact
General
Rethrow all JVM errors, not just VirtualMachineError

VirtualMachineError is a subclass of Error, but other serious Error types like
ThreadDeath or LinkageError are also not safe to swallow. Consider rethrowing all
Error instances, not just VirtualMachineError, to avoid masking critical JVM-level
problems.

opensearch/src/main/java/org/opensearch/sql/opensearch/executor/OpenSearchExecutionEngine.java [225-231]

 } catch (Throwable t) {
-        if (t instanceof VirtualMachineError) {
-          throw (VirtualMachineError) t;
+        if (t instanceof Error) {
+          throw (Error) t;
         }
-        Exception e = (t instanceof Exception) ? (Exception) t : new RuntimeException(t);
-        listener.onFailure(e);
+        listener.onFailure((Exception) t);
       }
Suggestion importance[1-10]: 5

__

Why: Rethrowing all Error instances (not just VirtualMachineError) is a valid defensive practice to avoid masking critical JVM-level issues like ThreadDeath or LinkageError. However, the improved code also removes the wrapping of non-Exception Throwable types, which could cause a ClassCastException if a non-Error, non-Exception Throwable is thrown.

Low
Consistent cause-chain traversal for shard failures

The isClientError method now traverses the cause chain, but for
SearchPhaseExecutionException shard failures, only the direct cause is checked. If
the relevant client error is wrapped deeper in the shard failure's cause chain, it
won't be detected. Consider passing the shard failure cause to isClientError which
already handles cause chain traversal, but also ensure the shard failure cause
itself is checked recursively.

plugin/src/main/java/org/opensearch/sql/plugin/rest/RestPPLQueryAction.java [117-130]

 } else if (e instanceof OpenSearchException) {
               OpenSearchException exception = (OpenSearchException) e;
               RestStatus status = exception.status();
               if (e instanceof SearchPhaseExecutionException) {
+                for (ShardSearchFailure failure :
+                    ((SearchPhaseExecutionException) e).shardFailures()) {
+                  Throwable cause = failure.getCause();
+                  // isClientError already traverses the cause chain
+                  if (cause instanceof Exception && isClientError((Exception) cause)) {
+                    status = BAD_REQUEST;
+                    break;
+                  }
+                }
+              }
Suggestion importance[1-10]: 2

__

Why: The isClientError method already traverses the cause chain, so passing failure.getCause() to it already handles recursive checking. The suggestion's improved_code is essentially identical to the existing code, making this a non-improvement.

Low
Possible issue
Add null check before casting shard failure cause

The SearchPhaseExecutionException check only looks at the first level of shard
failure causes. If shardFailures() returns an empty array (null-safe concern),
iterating is safe, but if failure.getCause() is null, passing null to isClientError
could cause a NullPointerException. Add a null check before calling isClientError.

legacy/src/main/java/org/opensearch/sql/legacy/plugin/RestSqlAction.java [177-186]

 if (exception instanceof SearchPhaseExecutionException) {
     for (ShardSearchFailure failure :
         ((SearchPhaseExecutionException) exception).shardFailures()) {
       Throwable cause = failure.getCause();
-      if (cause instanceof Exception && isClientError((Exception) cause)) {
+      if (cause instanceof Exception && cause != null && isClientError((Exception) cause)) {
         status = BAD_REQUEST;
         break;
       }
     }
   }
Suggestion importance[1-10]: 1

__

Why: The cause instanceof Exception check already implicitly handles the null case since null instanceof Exception evaluates to false, making the additional cause != null check redundant. The suggestion is technically incorrect in its premise.

Low

@ritvibhatt ritvibhatt closed this Apr 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ps48 ps48 Awaiting requested review from ps48 ps48 will be requested when the pull request is marked ready for review ps48 is a code owner

@joshuali925 joshuali925 Awaiting requested review from joshuali925 joshuali925 will be requested when the pull request is marked ready for review joshuali925 is a code owner

@dai-chen dai-chen Awaiting requested review from dai-chen dai-chen will be requested when the pull request is marked ready for review dai-chen is a code owner

@mengweieric mengweieric Awaiting requested review from mengweieric mengweieric will be requested when the pull request is marked ready for review mengweieric is a code owner

@vamsimanohar vamsimanohar Awaiting requested review from vamsimanohar vamsimanohar will be requested when the pull request is marked ready for review vamsimanohar is a code owner

@Swiddis Swiddis Awaiting requested review from Swiddis Swiddis will be requested when the pull request is marked ready for review Swiddis is a code owner

@penghuo penghuo Awaiting requested review from penghuo penghuo will be requested when the pull request is marked ready for review penghuo is a code owner

@anirudha anirudha Awaiting requested review from anirudha anirudha will be requested when the pull request is marked ready for review anirudha is a code owner

@acarbonetto acarbonetto Awaiting requested review from acarbonetto acarbonetto will be requested when the pull request is marked ready for review acarbonetto is a code owner

@ykmr1224 ykmr1224 Awaiting requested review from ykmr1224 ykmr1224 will be requested when the pull request is marked ready for review ykmr1224 is a code owner

@LantaoJin LantaoJin Awaiting requested review from LantaoJin LantaoJin will be requested when the pull request is marked ready for review LantaoJin is a code owner

@noCharger noCharger Awaiting requested review from noCharger noCharger will be requested when the pull request is marked ready for review noCharger is a code owner

@qianheng-aws qianheng-aws Awaiting requested review from qianheng-aws qianheng-aws will be requested when the pull request is marked ready for review qianheng-aws is a code owner

@yuancu yuancu Awaiting requested review from yuancu yuancu will be requested when the pull request is marked ready for review yuancu is a code owner

@RyanL1997 RyanL1997 Awaiting requested review from RyanL1997 RyanL1997 will be requested when the pull request is marked ready for review RyanL1997 is a code owner

@ahkcs ahkcs Awaiting requested review from ahkcs ahkcs will be requested when the pull request is marked ready for review ahkcs is a code owner

@songkant-aws songkant-aws Awaiting requested review from songkant-aws songkant-aws will be requested when the pull request is marked ready for review songkant-aws is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ritvibhatt