Skip to content

Add comprehensive tests for SSL connection error handling during node failures #695

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
Copilot wants to merge 6 commits into
base: master
Choose a base branch
from
Draft

Add comprehensive tests for SSL connection error handling during node failures #695

Copilot wants to merge 6 commits into from
+687 −0

Conversation

Copy link

Copilot AI commented Feb 12, 2026
edited
Loading

Description

When nodes reboot while using client encryption, ConnectionShutdown exceptions with "Bad file descriptor" messages obscured the root cause. The driver already preserves the original error in last_error and includes it in exception messages - this was just untested.

Changes:

  • Unit tests (tests/unit/test_ssl_connection_errors.py): 14 tests covering SSL socket failures

    • EBADF, EPIPE, ECONNRESET, ECONNABORTED, ENOTCONN errors
    • SSL handshake failures
    • Concurrent operations during connection closure
    • Error preservation across multiple failures

  • Integration tests (tests/integration/standard/test_ssl_connection_failures.py): 4 tests for AsyncioConnection

    • Socket error preservation and connection reset handling
    • Error message quality verification
    • Note: AsyncoreConnection tests removed for Python 3.12+ compatibility (asyncore module deprecated in 3.6, removed in 3.12+)

  • Documentation (tests/unit/SSL_CONNECTION_TESTS.md): Test organization and contributing guidelines

Verification:

# When SSL connection fails, original error is preserved
conn.defunct(OSError(errno.ECONNRESET, "Connection reset by peer"))

# Subsequent operations include root cause
conn.send_msg(msg, 1, cb)
# Raises: ConnectionShutdown("Connection to X is defunct: Connection reset by peer")

No driver code changes needed - existing error handling is correct.

Pre-review checklist

  • I have split my patch into logically separate commits.
  • All commit messages clearly explain what they change and why.
  • I added relevant tests for new features and bug fixes.
  • All commits compile, pass static checks and pass test.
  • PR description sums up the changes and reasons why they should be introduced.
  • I have provided docstrings for the public items that I want to introduce.
  • I have adjusted the documentation in ./docs/source/.
Original prompt

This section details on the original issue you should resolve

<issue_title>Driver reported "[Errno 9] Bad file descriptor"</issue_title>
<issue_description>

Argus

Scylla version: 2026.1.0~dev-20251205.866c96f536b0 with build-id 2c38506085b888e1baa43f81d05dab12df5132c1

During latest master runs driver reported following error:

< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING > [control connection] Error connecting to 10.12.33.86:9042: < t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING > [control connection] Error connecting to 10.12.33.86:9042:
< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING > Traceback (most recent call last):
< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING >   File "cassandra/cluster.py", line 3546, in cassandra.cluster.ControlConnection._connect_host_in_lbp
< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING >   File "cassandra/cluster.py", line 3662, in cassandra.cluster.ControlConnection._try_connect
< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING >   File "cassandra/cluster.py", line 3646, in cassandra.cluster.ControlConnection._try_connect
< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING > cassandra.connection.ConnectionShutdown: [Errno 9] Bad file descriptor
< t:2025-12-06 04:21:39,017 f:cluster.py      l:3723 c:cassandra.cluster    p:WARNING > Host 10.12.33.86:9042 has been marked down

It seems that such errors appeared each time while one of nodes been down

Also been spotted there:
https://argus.scylladb.com/tests/scylla-cluster-tests/a8cd6873-19c1-49c1-ab5a-dca25655ed6c

Kernel Version: 6.14.0-1017-aws

Extra information

Installation details

Cluster size: 6 nodes (i7i.4xlarge)

Scylla Nodes used in this run:

- longevity-tls-50gb-3d-master-db-node-38f90182-1 (3.228.203.95 | 10.12.35.225) (shards: 14)


- longevity-tls-50gb-3d-master-db-node-38f90182-2 (44.213.201.240 | 10.12.32.118) (shards: 14)


- longevity-tls-50gb-3d-master-db-node-38f90182-3 (100.30.78.169 | 10.12.33.86) (shards: 14)


- longevity-tls-50gb-3d-master-db-node-38f90182-4 (44.207.141.103 | 10.12.35.59) (shards: -1)


- longevity-tls-50gb-3d-master-db-node-38f90182-5 (3.219.68.68 | 10.12.35.232) (shards: 14)


- longevity-tls-50gb-3d-master-db-node-38f90182-6 (34.199.164.159 | 10.12.33.159) (shards: 14)


- longevity-tls-50gb-3d-master-db-node-38f90182-7 (98.82.213.102 | 10.12.33.203) (shards: 14)


- longevity-tls-50gb-3d-master-db-node-38f90182-8 (98.83.182.28 | 10.12.34.200) (shards: 14)

OS / Image: ami-0810c73586fe68036 (aws: N/A)

Test: longevity-50gb-3days-test
Test id: 38f90182-547d-4b60-973c-7e826b926708
Test name: scylla-master/tier1/longevity-50gb-3days-test

Test method: longevity_test.LongevityTest.test_custom_time

Test config file(s):

Logs:

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

Copilot AI and others added 4 commits February 12, 2026 08:23
@fruch
Add comprehensive unit tests for SSL connection error handling
2600740 
Tests simulate various SSL connection failure scenarios including:
- Bad file descriptor errors during send/recv
- SSL handshake failures
- Concurrent operations on closing connections
- Node reboot scenarios with connection reset
- Multiple socket error types (EPIPE, ECONNABORTED, ENOTCONN, etc.)

All tests verify that the original error cause is preserved in last_error
and included in ConnectionShutdown exception messages for better debugging.

Co-authored-by: fruch <340979+fruch@users.noreply.github.com>
@fruch
Add integration tests for SSL connection failures
f9d2a3c 
Created comprehensive integration tests to verify SSL connection error handling
in real-world scenarios like node reboots and network failures. Tests cover:
- AsyncoreConnection SSL failures
- AsyncioConnection SSL failures
- Error message quality verification
- Concurrent operations during connection closure

Note: These tests require a cluster to run but serve as documentation
for expected behavior and can be used when cluster is available.

Co-authored-by: fruch <340979+fruch@users.noreply.github.com>
@fruch
Address code review feedback
887a1bd 
- Refactored mock request creation to reduce duplication
- Added comments explaining intentional use of CERT_NONE in tests
- Improved code maintainability and clarity

Co-authored-by: fruch <340979+fruch@users.noreply.github.com>
@fruch
Add comprehensive documentation for SSL connection error tests
d489815 
Created detailed README documenting:
- Background on the "Bad file descriptor" issue
- Test structure and organization
- How to run the tests
- Implementation details
- Contributing guidelines

Co-authored-by: fruch <340979+fruch@users.noreply.github.com>
Copilot AI changed the title [WIP] Fix driver bad file descriptor error during cluster connection Add comprehensive tests for SSL connection error handling during node failures Feb 12, 2026
Copilot AI requested a review from fruch February 12, 2026 08:30
github-code-quality[bot]
github-code-quality bot found potential problems Feb 12, 2026
View reviewed changes
tests/unit/test_ssl_connection_errors.py
"""Create a mock SSL connection for testing."""
c = Connection(DefaultEndPoint('1.2.3.4'), **kwargs)
c._socket = Mock(spec=ssl.SSLSocket)
c._socket.send.side_effect = lambda x: len(x)
tests/unit/test_ssl_connection_errors.py
"""Create a connection with pending requests."""
c = Connection(DefaultEndPoint('1.2.3.4'))
c._socket = Mock(spec=ssl.SSLSocket)
c._socket.send.side_effect = lambda x: len(x)
tests/unit/test_ssl_connection_errors.py

import unittest
import ssl
import socket
tests/unit/test_ssl_connection_errors.py
import ssl
import socket
import errno
from threading import Thread, Event
tests/unit/test_ssl_connection_errors.py
import socket
import errno
from threading import Thread, Event
from unittest.mock import Mock, MagicMock, patch, PropertyMock
tests/unit/test_ssl_connection_errors.py
import errno
from threading import Thread, Event
from unittest.mock import Mock, MagicMock, patch, PropertyMock
from io import BytesIO
tests/unit/test_ssl_connection_errors.py
Comment on lines +31 to +34
from cassandra.connection import (
Connection, ConnectionShutdown, DefaultEndPoint,
ConnectionException
)
tests/integration/standard/test_ssl_connection_failures.py
"""

import unittest
import socket
tests/integration/standard/test_ssl_connection_failures.py
import socket
import ssl
import errno
import threading
tests/integration/standard/test_ssl_connection_failures.py
import ssl
import errno
import threading
import time
fruch
fruch reviewed Feb 12, 2026
View reviewed changes
tests/integration/standard/test_ssl_connection_failures.py Outdated
from cassandra.connection import ConnectionShutdown, DefaultEndPoint
from cassandra.cluster import NoHostAvailable

try:
Copy link

@fruch fruch Feb 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@copilot drop AsyncoreConnection tests, it's not supported anymore in newer python versions
hence preventing those tests from running (or even breaks collection)

Copy link
Author

Copilot AI Feb 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removed all AsyncoreConnection tests as requested. The asyncore module is deprecated in Python 3.6 and removed in Python 3.12+, which was preventing test collection.

Changes in commit 3cdee85:

  • Removed AsyncoreConnection import and all 5 AsyncoreConnection tests
  • Updated SSLErrorMessageQualityTest to only use AsyncioConnection
  • Updated documentation to reflect 4 integration tests (down from 8)

The 14 unit tests remain unchanged and provide comprehensive coverage for SSL error scenarios.

@fruch
Remove AsyncoreConnection tests (deprecated in Python 3.12+)
3cdee85 
Removed AsyncoreConnection from integration tests as asyncore module
is deprecated in Python 3.6 and removed in Python 3.12+. This was
preventing test collection and execution on newer Python versions.

Changes:
- Removed AsyncoreConnection import
- Removed AsyncoreSSLConnectionFailureTest class (5 tests)
- Updated SSLErrorMessageQualityTest to only use AsyncioConnection
- Updated documentation to reflect 4 integration tests instead of 8

The unit tests (14 tests) remain unchanged and provide comprehensive
coverage for SSL error handling scenarios.

Co-authored-by: fruch <340979+fruch@users.noreply.github.com>
Copilot AI requested a review from fruch February 12, 2026 08:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fruch fruch Awaiting requested review from fruch

1 more reviewer

@github-code-quality github-code-quality[bot] github-code-quality[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

@fruch fruch

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Driver reported "[Errno 9] Bad file descriptor"

2 participants

@fruch