Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(custom-resources): exceptions are not surfaced in cloudformation #31472

Closed
1 task
ben-lee-zocdoc opened this issue Sep 17, 2024 · 4 comments
Closed
1 task

(custom-resources): exceptions are not surfaced in cloudformation #31472

ben-lee-zocdoc opened this issue Sep 17, 2024 · 4 comments
Labels
@aws-cdk/custom-resources Related to AWS CDK Custom Resources bug This issue is a bug. closing-soon This issue will automatically close in 4 days unless further comments are made. p2 response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days.

Comments

@ben-lee-zocdoc
Copy link

Describe the bug

The doc says to
Specifically, to report success or failure, have your Lambda Function exit in the right way: return data for success, or throw an exception for failure.

When our lambda throws an exception, the details are not surfaced in the Cloudformation dashboard. Instead, it says a generic
Received response status [FAILED] from custom resource. Message returned: Error: Uncaught lambda exception,....

Regression Issue

  • Select this option if this issue appears to be a regression.

Last Known Working CDK Version

No response

Expected Behavior

I expect the Reason to be populated with the Exception message, something like
"Received response status FAILED from custom resource. Message returned: ." where the reason is lambda exception.

Current Behavior

We are seeing a generic error

Received response status [FAILED] from custom resource. Message returned: Error: Uncaught lambda exception, execution stopped Logs: /aws/lambda/my-lambda-function at invokeUserFunction (/var/task/framework.js:2:6) at process.processTicksAndRejections (node:internal/process/task_queues:95:5) at async onEvent (/var/task/framework.js:1:369) at async Runtime.handler (/var/task/cfn-response.js:1:1676) (RequestId: abcdef-ghij-1234-5678-333f1c96d6d3)

Reproduction Steps

CDK code:

export class MyResource extends Construct {
    constructor(scope: Construct, id: string) {
        super(scope, id);

        const crProps: CustomResourceProps = {
            resourceType: 'Custom::resource',
            serviceToken: Fn.importValue(
                'LambdaFunctionArn'
            )
        };
        const resource = new CustomResource(this, 'custom', crProps);
    }
}

Our dotnet Lambda code:

public async Task<CustomResourceResponse<ResponseContract>> OnEvent(
    CustomResourceRequest<CustomResourceProperties> request,
    ILambdaContext context
)
{
    throw new Exception("I want this reason to show up");
}

Possible Solution

No response

Additional Information/Context

No response

CDK CLI Version

2.145.0

Framework Version

No response

Node.js Version

20

OS

Mac

Language

TypeScript

Language Version

4.8.3

Other information

The lambda is in net8.0
@ben-lee-zocdoc ben-lee-zocdoc added bug This issue is a bug. needs-triage This issue or PR still needs to be triaged. labels Sep 17, 2024
@github-actions github-actions bot added the @aws-cdk/custom-resources Related to AWS CDK Custom Resources label Sep 17, 2024
@khushail khushail added needs-reproduction This issue needs reproduction. p2 and removed needs-triage This issue or PR still needs to be triaged. labels Sep 17, 2024
@khushail khushail self-assigned this Sep 17, 2024
@khushail khushail added investigating This issue is being investigated and/or work is in progress to resolve the issue. and removed needs-reproduction This issue needs reproduction. labels Sep 18, 2024
@pahud
Copy link
Contributor

pahud commented Sep 19, 2024

AWS CDK has a custom resource provider framework that comes as the Provider class as a wrapper for any user-provided lambda function and eventually exposed as a single provider to the native CFN custom resource. This means:

  1. From CFN's perspective, there would be a CustomResource with a provider lambda function associated.
  2. That lambda function is actually the provider wrapper that calls user function(onEvent handler).
  3. When onEvent handler returns to the provider, provider evaluate it and callback via cfn-response to CFN endpoint(a S3 endpoint URL).

The advantage is

  1. onEvent user handler just return a JSON object to the provider and provider takes anything rest.
  2. onEvent should handle exception when possible, however, if some unexpected exception is thrown, the provider framework should be able to capture that and gracefully callback cloudformation as resource fails to be created.
  3. you should be able to see all logs in cloudwatch logs as the provider framework would put necessary logs there.

However, based on your provided code:

export class MyResource extends Construct {
    constructor(scope: Construct, id: string) {
        super(scope, id);

        const crProps: CustomResourceProps = {
            resourceType: 'Custom::resource',
            serviceToken: Fn.importValue(
                'LambdaFunctionArn'
            )
        };
        const resource = new CustomResource(this, 'custom', crProps);
    }
}

Looks like you are not using CDK provider framework, instead, you are baking your own provider by passing serviceToken from an imported LambdaFunctionArn. We can't see how that lambda is created. Not sure if you use the provider framework or not.

If you actually didn't use provider framework, you will be responsible for:

  1. all exception handling in your own lambda
  2. you have to call back to cloudformation own your own, which provider framework takes care of you if you use the framework.

So please clarify if you are using the provider framework for cdk custom resources.

@pahud pahud added the response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days. label Sep 19, 2024
@khushail khushail removed the investigating This issue is being investigated and/or work is in progress to resolve the issue. label Sep 19, 2024
@khushail khushail assigned pahud and unassigned khushail Sep 19, 2024
@github-actions GitHub Actions
Copy link

This issue has not received a response in a while. If you want to keep this issue open, please leave a comment below and auto-close will be canceled.

@github-actions github-actions bot added the closing-soon This issue will automatically close in 4 days unless further comments are made. label Sep 22, 2024
@ben-lee-zocdoc
Copy link
Author

We are not using the provider framework for the lambda. Thanks for clarifying.

@github-actions GitHub Actions
Copy link

Comments on closed issues and PRs are hard for our team to see.
If you need help, please open a new issue that references this one.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 23, 2024
@pahud pahud removed their assignment Sep 25, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
@aws-cdk/custom-resources Related to AWS CDK Custom Resources bug This issue is a bug. closing-soon This issue will automatically close in 4 days unless further comments are made. p2 response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@pahud @ben-lee-zocdoc @khushail