Since this is tagged ctc-review, @nodejs/ctc

I don’t have a strong personal opinion about this, but I see @mscdex’ point, and I would be okay with considering these semver-major while Node 8 is Current (but trying to clearly message that that is going to change with the next major version).

Generally I don't see the point in pushing it out further like that. Switching to the new mechanism is already semver-major which means the overwhelming majority of changes in this area already won't be in 8.x at any point in time. Those that are in 8.x were also semver-major changes that users will already be adapting to -- which involves moving away from checking the error message text in favor of checking the code. Requiring that these all be semver-major while 8.x is current won't provide any tangible benefit.

Should this be put on the LTS WG agenda? I'm OK with LTS being the final arbiter on what is and isn't a breaking change. (And if that isn't written into their charter, perhaps it ought to be?)

(Might also be good to clarify if LTS WG is the small-ish number of people listed in the LTS repo README or the considerably larger group of people on the @nodejs/lts team.)

(Might also be good to clarify if LTS WG is the small-ish number of people listed in the LTS repo README or the considerably larger group of people on the @nodejs/lts team.)

See https://github.com/nodejs/LTS/pull/223

I'd like to see a citgm run - I think we can actually test if this _must be_ semver major or not relatively quickly. I'm not sure on what PR I should run the citgm run against though - would love assistance with that.

~CITGM for #13834: https://ci.nodejs.org/view/Node.js-citgm/job/citgm-smoker/891/~
CITGM on master: https://ci.nodejs.org/view/Node.js-citgm/job/citgm-smoker/892/
CITGM for #13834: https://ci.nodejs.org/view/Node.js-citgm/job/citgm-smoker/893/

I think we can actually test if this must be semver major or not relatively quickly

IMHO this is one of those things where end user code could be just as easily affected as modules on npm.

@mscdex my point was that if CITGM is red (and it is red) we have to mark it semver-major (and we should). Since it breaks stuff in the ecosystem we can be sure it breaks user code.

We should also probably notify those 50 packages in NPM about the breakage.

I'm thinking we need a communications push along with some period of time for people to adjust. Ideally we'd have all of the messages moved over and then do a fair bit of communications/evangelism. Its going to be easier to say it applies to all messages than explaining a different policy based on the message.

For messages that we have moved over (semver-major) and are changing again the main question to me is if there has been enough communication/knowledge transfer so that developers know that they should no longer be checking the error message and instead use the error code so that they don't get affected by the second change. Until then I was thinking it would be safer to continue to mark them as semver-major.

@mhdawson it will take some time. Module author needs to adjust, and old versions of Node.js phase out. I would say we should wait until Node 10 goes LTS, i.e. we might stop considering these changed after 2 current releases (one of which LTS) with the new system.

So anyway I marked https://github.com/nodejs/node/pull/13730 that's already in master dont-land-on-v8.x

@mcollina I agree it might take some time. I don't think we need to decide when we might be ready, but we do want agreement on whether we are not ready yet and should continue to mark them SemVer major for now.

@nodejs/ctc do we want to talk about this in the next meeting?

I've tagged with ctc-agenda

@nodejs/ctc Currently, this is the only issue for the meeting this week. If I'm understanding everyone's text and GitHub reaction emoji things correctly, expressed opinions thus far are:

CTC folks

• these changes are semver-major for the time being: @mscdex @mhdawson @mcollina
• no strong opinion but I can see why they might still be considered semver-major: @addaleax
• not semver-major: @jasnell @cjihrig

Other Collaborators and Contributors

• not semver-major: @refack @BridgeAR
• whether or not these sorts of changes should be considered semver major may depend on individual CITGM runs for each change: @benjamingr

Anyone else care to weigh in? @nodejs/collaborators

As of now, we don't have consensus and I don't think we are likely to get consensus before the meeting. If I had to guess, I'd say this is going to end up going to a CTC vote. I'd therefore ask that @nodejs/ctc members decide that either they are OK with any result or else invest whatever time is needed to come to an opinion before the meeting this week.

Of course, you may change your mind during the meeting based on conversation etc. But if it comes to a vote, I would prefer we actually have resolution on the vote quickly.

My opinion: While I really want message changes to not be semver-major anymore, the fact is our own docs say:

• in onboarding.md: "If a change has the remote chance of breaking something, use the semver-major label"
• and again in onboarding-extras.md: "be conservative – that is, if a change has the remote chance of breaking something, go for semver-major"

True, it says in the "Using Internal Errors" guide that "once using internal/errors, changes to internal/errors error messages will be handled as semver-minor or semver-patch."

However, by definition, guides are more advisory and less binding than other docs. (I know that I certainly review all CTC governance doc changes very closely while I tend to be less granular in my reviews for guides unless the guide happens to be on a topic I am extremely interested in. And I suspect I'm not the only person for whom that's true.)

When a guide contradicts our governance docs or other docs, the contradictory element of the guide should be disregarded at least until the docs are updated. (I'm using "should" and not "must" very deliberately in that previous sentence.)

There is clearly at least a "remote chance of breaking something" with message changes. That's why we're having this conversation.

Therefore, these sorts of changes should be treated as semver-major at the current time.

Response to some obvious objections:

• This line of reasoning all becomes invalid as soon as someone PRs and lands changes to those two docs.
  
  
  
  • My response: I'm honestly not sure a change that invalidates this line of thinking completely would pass without objection. You can probably change "remote chance" to "reasonable chance" but that doesn't invalidate my line of thinking here.
  
  

• We have treated things that have a "remote chance of breaking something" as not-semver-major before.
  
  
  
  • My response: Just because we did something incorrectly in the past is not (in this case, anyway) a reason to continue doing something incorrectly.
  
  

• Really, nearly any change has a "remote chance of breaking something". A literal interpretation of the wording is unworkable.
  
  
  
  • My response: The reasoning above all holds up without a hyper-literal interpretation of "remote chance". Treating "remote chance" as "reasonable chance" doesn't change anything here.
  
  

I had an idea for a middle ground solution. Declare that the move to the new Errors and their messages are experimental for the pre-v9.0 timeframe, and changes carry a blanket do-not-land-on-*.
The motivation is to enable the Contributors the freedom to work on this without the need to involve CTC members for every comma moved.

The motivation is to enable the Contributors the freedom to work on this without the need to involve CTC members for every comma moved.

Has getting sufficient CTC approval on message changes been a significant problem? (Honest question. I don't know the answer.)

Has getting sufficient CTC approval on message changes been a significant problem? (Honest question. I don't know the answer.)

A bit.
https://github.com/nodejs/node/pull/14057 has been open for 25 days (spin off of https://github.com/nodejs/node/pull/13834)
https://github.com/nodejs/node/pull/13976 was open for 13 days
https://github.com/nodejs/node/pull/11384 Opened on 2/14/2017
https://github.com/nodejs/node/pull/13994 Open for 16 days
https://github.com/nodejs/node/pull/13476 Opened on 5/6 (still needs one more reviewer)
https://github.com/nodejs/node/pull/13829 been open 25 days
And the one that triggered this thread https://github.com/nodejs/node/pull/13730 landed without 2 CTC approvals.
Since most of those are "busy-work" IMHO they should not be encumbered by the semver-major policy, since AFAIK the move to internal/Error has general approval. They just should not land in v8.x....

@refack Thanks for compiling that list.

A few things:

14057 has been open for 25 days (spin off of #13834)

Correction: That PR itself has only been open for 12 days and had two CTC approvals after 9 days.

More importantly, two things:

First, I was asking specifically about PRs for message changes. Most of these are about initial implementation of the internal errors stuff so will be subject to the two-CTC-approvals rule no matter what we decide on this issue. Simple message changes should be easy to review and thus likely incur a smaller cost in terms of delay waiting for two CTC approvals.

Second, I think the useful metric here is the time difference between when a PR could have landed if it wasn't semver-major vs. how long it took as a semver-major.

So let's remove the ones that were about more than straightforward changing the text of an error message or two. We're left with only one PR from that list:

• #13730 was delayed, I would argue, 0 days. It was going on 6 days delay when it landed, but for 3 of those days, it was blocked from landing anyway by a collaborator request for changes and a block label. During that time, @jasnell commented on it saying that it wasn't semver-major but not leaving an approval, quite possibly because he already saw it had amassed four approvals and that seemed like plenty. That comment from @jasnell came before the block was lifted, so his approval wouldn't have made it land-able anyway. But his approval would have been the second CTC approval. So semver-major or not, it (I would argue, at least) could have landed (if there had been consensus that it was in fact semver-major) at exactly the same time it became available for landing as a non-semver-major, which is when the block was removed.

That said, that is only one data point and I wouldn't want to draw too sweeping a conclusion (or, really, any conclusion) from it. I'd say at this point that we don't really know if keeping message changes as semver major is going to greatly delay PRs from landing.

Probably the right place to look for more data (if anyone is so inclined!) would be message changes on old-style errors. There is unanimity that those should be semver-major so that will tell us what the cost is rather than incorporate the cost of uncertainty and in-tracker debate about it.

A bit.

That said, that is only one data point and I wouldn't want to draw too sweeping a conclusion (or, really, any conclusion) from it. I'd say at this point that we don't really know if keeping message changes as semver major is going to greatly delay PRs from landing.

When I wrote "a bit" I meant it literally, not as an understatements 😃 Also the list is not comprehensive.

I used to believe error messages were a gray area - ie, technically major, but probably patch.

I recently changed an error message in https://www.npmjs.com/package/resolve, and broke ember-cli and angular-cli. I had to revert it.

Naturally, I then prioritized the PR that adds error codes, and the resulting change to rely on them was made in ember-cli and angular-cli.

The reality tho, is that error codes don't force people to use them over a message - they're just a better, more reliable way to distinguish errors. It's forever going to be possible that a project who's not as widespread as angular-cli or ember-cli might be broken by me changing an error message in a non-major, so as a responsible maintainer, I'm never going to do that.

node has an even wide responsibility imo, because it's got so many versions and it's used so widely. I've got many node projects that support back to 0.4 or 0.6, even, so even if node 7 (or whichever) adds error codes, I'd still theoretically have to fall back to error messages in older node versions, until I drop support for them. Now, of course you could backport the error codes super far back - but even if you released a new 0.6.x with them (which I know would never happen), the possibility would still remain, forever, that someone could rely on the error messages.

node could certainly take the position that after adding the codes, changing the messages is non-major, and could document that thoroughly - and that'd be better than nothing - but it still means that node users could be broken in a non-major release. To me, that's not worth the risk on anything I maintain. It's ofc up to yall if it's worth the risk in node.

Since this thread seems to converge towards "semver-major for the foreseeable future", I would like to jackknife it, with a semi-orthogonal idea:
For the duration of the development phase of v9.x, all Error message changes, and internal/Error changes (i.e. all PRs marked with the Errors tag) are deemed dont-land-on-* but semver-patch (precluding the need for two CTC sign offs).
/cc @nodejs/release

Reasoning

The internal/Error mechanism _is_ de facto experimental, with several unresolved questions, but we are treating those with a heavy hand. For example:

• first and foremost migration — _{AFAICT there is consensus (and CTC approval) that core errors should be generated by internal/errors, so IMHO there shouldn't be a need to reaffirm every case of migration.}
• new error codes — over-specialization vs. over-generalization — _{IMHO after the migration is done we should go over the result and re-group the Error-Code list}
• assertion of: messages (to assert or not to assert), special properties, Type (is it an Error or is it a NodeError)
• message rephrasing — as discussed above
• means for Error grouping — e.g. Runtime Exceptions vs. wrong usage Errors
• lint for non-Internal errors

IMHO if we can agree to put a blanket approval for Error changes (with dont-land-on-*) we could resolve those faster and more effectively.

I think having each change to be individually approved, with CTC and CitGM runs etc is a good thing. Even if we do think error messages are okay in general, we should still be conservative about which ones we accept (and some may be more breaking than others).

Also marking semver-majors as patches is making an exception to a rule we're normally pretty strict on, and also puts us at risk of accidentally backporting one of the changes if someone forgets a dont-land-on tag.

The only thing this really gains us is ability to land these PRs quicker, but I'm not sure what benefit that brings us. All but the last of the things you mentioned can be started now with the changes that have already landed can they not?

The internal/Error mechanism is de facto experimental, with several unresolved questions, but we are treating those with a heavy hand. For example:

But what we're removing (existing error messages) is not.

Also marking semver-majors as patches is making an exception to a rule we're normally pretty strict on, and also puts us at risk of accidentally backporting one of the changes if someone forgets a dont-land-on tag.

I agree it's a trade-off ⚖️

• We could agree to keep marking them as semver-major but preclude 2 CTC signoffs on semver-major + errors.
• labeling with semver-major or errors is also human-error-sensitive
• An argument I raised before; if a PR is dependant on a semver-major PR, what does it make it? even if it's patch by itself, it shouldn't/couldn't land in a minor release. On the other hand even if it's by-the-book major (e.g. change in error message or error code) if its "parent" is major shouldn't that "mask" the "child" PR.

The only thing this really gains us is ability to land these PRs quicker, but I'm not sure what benefit that brings us. All but the last of the things you mentioned can be started now with the changes that have already landed can they not?

I believe that smaller changes with shorter cycles will lead to a better solution. Since we still have a couple of months for v9 to be in development, IMHO we should resolve all Error issues for that milestone, but sooner is better... But the biggest blocker is that not all Errors have been migrated.

The internal/Error mechanism is de facto experimental

I don't agree with that. Experimental features are ones end users can opt into. There is no way for end users to opt in, or even opt out, of this in a given release.

Since the 2-CTC signoff thing has come up a few times:

There are 22 people on the CTC. If it's difficult to get 2 of them to review a change (and I'm not saying there is; this is hypothetical), then that suggests to me that there's something (hypothetically) wrong with the CTC make-up and we (hypothetically) need more active/engaged folks. If that's what's really happening (and isn't merely hypothetical), then let's fix the CTC, not work around it.

Hypothetically.

The internal/Error mechanism is de facto experimental

I don't agree with that. Experimental features are ones end users can opt into. There is no way for end users to opt in, or even opt out, of this in a given release.

Ack. Wrong term. "Unstable" would have been a better term. With the old Errors fitting the description of "Deprecated" (even though they were not declared as such).

There's 22 people on the CTC. If it's difficult to get 2 of them to review a change (and I'm not saying there is; this is hypothetical), then that suggests to me that there's something (hypothetically) wrong with the CTC make-up and we (hypothetically) need more active/engaged folks. If that's what's really happening (and isn't merely hypothetical), then let's fix the CTC, not work around it.

Hypothetically.

I'm not suggesting that.
I thought I saw an opportunity to streamline things, but it's turns out to be too subtle of an issue, and I can't find the way to correctly convey my thoughts...

It seems to me that the biggest issue is that not all error codes have transitioned to the new system. The last thing we need are downstream developers having to check for error.code and not having an obvious contract. It should be a goal to make error message changes Semver Patch / Semver Minor but it feels odd doing so before all error messages are compatible.

What % of the apis do we have covered right now? Seems like a push to cover all APIs should be done for 9.x. We can then attempt to completely flip the bit on error messages and re-evaluate for 10.x if it is too disruptive.

https://github.com/nodejs/node/issues/11273 tracks the progress of the migration. It's status is about 10 days behind what actually landed in master.
IMHO for this task to be complete we need to finish the migration, ___and___ audit/refactor the final list of error codes, messages, and places they are used.

I was hoping for the transition to go much faster but went a couple months without active participation from ctc members until @fhinkel and @mhdawson jumped in to help. It's tedious work that requires patience, but the key difficulty has been on getting enough ctc signoff to land.

Something that might help users make the transition is a standalone npm package, that can take an Error instance from node core, and returns an error code.

This package could be used inside node core to produce the error code (it could map both ways, from message to code, code to message), and would be able to contain error messages per node version - meaning, I'd be able to use it to depend on explicit error codes in all node versions, even unsupported ones. In node versions that supplied a code, you could just return that code directly from the function, by reading it off the error instance.

That way, you could publish that package - the transition tool - independently of node core, asap. Users could proactively refactor to use it (even if, like me, they support node 0.6), and then future message changes would not break them (so users are incentivized to use this package). The new "best practice" could be to always use require('node-error-codes'), pass error instances into that function, and then use the code it returns (the package could also export code constants, so people don't have to hardcode them).

Thoughts?

@ljharb having a package to help in tests would be handy. However, supporting multiple versions of Node.js would quickly become a mess.

As a side note, I'm currently -1 on any changes to error messages in any streams API, because we currently have no solution on how to export them to readable-stream. A change has already landed, but we have not reverted it yet on the assumption that we could get a solution (as @jasnell is working on it). If that is not the case, I might send some PR to remove those messages for the 9.0.0 release. As most people involved in errors are reading this, __please tag me when you change the error messages in the to stream module__. If you would like to help.. please chime in https://github.com/nodejs/readable-stream/issues/297.

@mcollina i'm not sure why it would be a mess; it'd be a static nonchanging map for any non-LTS versions, and LTS versions would be relatively minor to maintain. I'd be happy to volunteer to maintain it going forward if anyone's afraid of keeping things working on older nodes; it's not actually that difficult in practice, in my experience.

@ljharb that sounds (to me) like a really really good idea.

We know people will be dealing with this transition for a long time (at the very least until Node 8 goes EoL in Dec 2019, and for people who still support Node 0.6 today, possibly indefinitely). Spinning out the compatibility layer into a separate module that we still maintain allows us to offer users a simple, documented way to just "resolve this problem forever". If we never bump the major version on that, node-error-codes@^1.0.0 just works indefinitely.

I guess it's kinda like NaN, and it also reminds me of React codemods, which several people have told me dramatically eases the pain of breaking changes.

i'm not sure why it would be a mess; it'd be a static nonchanging map for any non-LTS versions, and LTS versions would be relatively minor to maintain. I'd be happy to volunteer to maintain it going forward if anyone's afraid of keeping things working on older nodes; it's not actually that difficult in practice, in my experience.

My experience maintaining a module across a wide range of Node.js versions is that it gets extremely complicated over time as core move _faster_ than the community. Look at the rig we have to maintain to make readable-stream work from Node 0.6+ (https://github.com/nodejs/readable-stream/tree/master/build). It is a lot of work, and everyone just expect it to "just work" with 50 millions of monthly downloads. Eventually, it became extremely hard to make effective change.
If we have a solution that does not require such a module to exist, I would prefer it. That being said, it seems there is no other alternative. Have a look at https://github.com/jasnell/internal-errors from @jasnell to help readable-stream.

If that initiative starts, I think both myself and @calvinmetcalf should be on the team, as we might need something clever there to support streams.

That way, you could publish that package - the transition tool - independently of node core, asap. Users could proactively refactor to use it (even if, like me, they support node 0.6), and then future message changes would not break them (so users are incentivized to use this package). The new "best practice" could be to always use require('node-error-codes'), pass error instances into that function, and then use the code it returns (the package could also export code constants, so people don't have to hardcode them).

Not so ASAP since we didn't finish mapping all the errors 😞. But otherwise sounds like a great idea.

At the CTC meeting today, consensus was these message changes are still semver-major for the time being.

The issue of difficulty getting two CTC approvals came up and there was some discussion around how we might address that. /cc @MylesBorins @jasnell

CTC (and this thread)'s decision:
Error message change are still semver-major.
Will be reviseted after the completion of migration and the release of v9

If landing time will be an issue I'll open a new thread.

At the CTC meeting today, consensus was these message changes are still semver-major for the time being.

One thing to note: once we declare that policy (which we in fact did here), changing that policy itself would be a semver-major imo.

Was there any discussion of my suggestion for a cross-node core-included error code package?

Was there any discussion of my suggestion for a cross-node core-included error code package?

@ljharb No. TBH I encouraged us to make a decision on whether these are breaking changes, and to discuss other issues (2-CTC approval issues, how to get the new errors implemented faster, etc.) in GitHub issues.

@ljharb I believe @jasnell talked about making the internal error system an npm package that readable-stream can depend on?

EDIT: oh I see it is already mentioned in https://github.com/nodejs/node/issues/13937#issuecomment-316310210, it currently needs a bit of work to work on older versions of node.

Was there any discussion of my suggestion for a cross-node core-included error code package?

AFAICT That's orthogonal. Maybe if it's up and running and adopted, we could trigger a reevaluation of the severity policy.

P.S. I have been thinking of way to assemble a map of error messages to error code, efficiently, and across release line... Not so trivial 🤔

I read in this article https://medium.com/the-node-js-collection/node-js-errors-changes-you-need-to-know-about-dc8c82417f65 that there is a plan to change the error.name to contain the 'code' as part of the name string like CustomErrorName [ERROR_CODE]. I think this is a bad idea because:

1. A common strategy for handling errors up until now involve setting a custom name before throwing the error and then later checking the error name with if (err.name == 'NotAuthorizedError'); if we start adding error codes as part of the name string like NotAuthorizedError [SOME_ERROR_CODE] then it would break backwards compatibility with respect to that error handling strategy.
2. Adding the error code to the error name would be different from how the JavaScript error.name appears in the browser which does not contain any error code or brackets as part of the error name. Being as consistent with browsers as possible is a good thing.

there is a plan to change the error.name to contain the 'code' as part of the name string like CustomErrorName [ERROR_CODE]. I think this is a bad idea...

@jondubois valid comment, so just to be clear this change will only affect Errors that node core it throwing. AFAIK there is no plan to touch "userland" Errors in any way.
For example if you did:

dgram.createSocket('i like rabbits')

core would throw

new Error('Bad socket type specified. Valid types are: udp4, udp6');

now instead the Error will have a code and it's name will include it:

{
   code: 'ERR_SOCKET_BAD_TYPE',
   type: Error,
   message: /^Bad socket type specified\. Valid types are: udp4, udp6$/
   name: `Error [ERR_SOCKET_BAD_TYPE]`
}

I agree that adding the code to the name is weird. For me name is a programmatically-inspectable property, just like code, and not for "human consumption" like message. Having pretty formatting in there with a space and brackets goes against that.
Browser errors have no code property, they always use name, so that's where this intuition is coming from. For example, for fetch you would have to check if err.name === 'AbortError'. The only other option is using instanceof, but that is bad practice (assert on interfaces, not implementations).

Personally I see code as a subcategory of name, e.g. name can be TypeError and code ERR_SOCKET_BAD_TYPE. It's both useful to be able to make assertions about the broader category of and error _as well_ as the exact error reason. For example, in an Express error handler, I might want to never return any TypeErrors to the client because they are programming errors. Or take p-retry as an example (emphasis mine):

Returns a Promise that is fulfilled when calling input returns a fulfilled promise. If calling input returns a rejected promise, input is called again until the max retries are reached, it then rejects with the last rejection reason.
It doesn't retry on TypeError as that's a user error.

Checking code here wouldn't be helpful.

I would prefer if both name and code are for programmatic inspection without fancy formatting, and Error.prototype.toString() could be modified to include both error.name and error.code in the output, as toString() _is_ unarguably purely for human consumption. Doing this for all errors, including user errors, would be a great feature and encourage users to make use of error codes too. Alternatively it could only be an internal base error class.

encourage users to make use of error codes too

Please, allow us to set error.code as well as the message from the constructor if you want to do this.

throw new Error("Message", "ERR_CODE");

@haykam821 that's part of the JS language itself, and is not something node should do. You can do Object.assign(new Error('message'), { code: 'ERR_CODE' }) if you need to.

@ljharb Yes

Though, Node can (and in my opinion - should) expose helper function for creating errors with code.

Eventually, perhaps. For now the focus is on making sure all of node.js' own errors have assigned codes and consistent error messages