# Elegant Exception Handling
## Eyal Trabelsi

- thanks for coming out, I hope you enjoyed all the amazing talks by now.
- today I am going to talk to you about Elegent Exception Handling.

# About Me 🙈


- Software Engineer at Salesforce 👷

- Big passion for python, data and performance optimisations 🐍🤖

- Online at [medium.com/@Eyaltra](https://medium.com/@Eyaltra) | [@eyaltra](https://twitter.com/eyaltra) 🌐

## Restaurant Recommendation 🍔

- Get user info 👨👩


- Retrieve relevant restaurants 🍕🍗🍩🍔

- Pick the best ones 🍗🍔


In [24]:
! pip install typeguard rollbar returns tenacity > /dev/null 2>&1

In [25]:
import contextlib
import json
import logging
import pathlib
import os
from typing import Union

import requests
from typeguard import typechecked

In [26]:
# Naive code snippets

def get_relevant_restaurants(user):
    base_url = "https://en.wikipedia.org/wiki"
    return requests.get(f"{base_url}/{user}").content

def get_config(path):
    with open(path, 'r') as json_file:
        return json.load(json_file)

def pick_best_restaurants(restaurants):
    pass

In [27]:
def get_restaurant_recommendation(path):
    config = get_config(path)
    user = config["user"]
    candidates = get_relevant_restaurants(user)
    pick_best_restaurants(candidates)
    
get_restaurant_recommendation("MY_AMAZING_FILE.json")

  ## We Can Proud of Ourselves 💃

- Implemented restaurant recommendation 💪

- Clean code 💄

<img src="https://github.com/eyaltrabelsi/my-notebooks/raw/master/Lectures/unicorn_rainbow.png" width="400"/>

## Why Exception Handling? 🤨

- Hardware can fail 🌲

- Software often fail 🚪

- [How complex systems fail](https://www.researchgate.net/publication/228797158_How_complex_systems_fail) 🧩

<img src="https://github.com/eyaltrabelsi/my-notebooks/raw/master/Lectures/unicorn.png" width="400"/>

## Unexceptable 😡

## Lesson 1: We want to build a fault tolerant system.

## Types of errors
- error that can be detected at compile time
- errors that can be deteled at run time
- errors that can be infered
- reproducieable erros
- non reproduceable errors

## We want our code to be safe 👷


## Exception Handling to the Rescue 👨‍🚒

- Detect errors 🕵

- Do something about them 🔒

## Naive Approach 👶

- Log all exceptions 📝

- Ignore all exceptions 🙈

In [28]:
def get_restaurant_recommendation(path):
    try:
        config = get_config(path)
        user = config["user"]
        candidates = get_relevant_restaurants(user)
        pick_best_restaurants(candidates)
    except BaseException:
        logging.error("VERY UNINFORMATIVE INFORMATION")
        raise BaseException("VERY UNINFORMATIVE INFORMATION")

## Are we done ?! 🍰 

- Code is very clean 🧹

- Code seems safe 🔒

## The lurking problems  🐲

- Unintentional exceptions being caught 😧

- KeyboardInterrupt as we want the user to be able to kill the program.
- SynatxError as we want our code to be valid.


- Exceptions are not distinguishable 😵

- the invoker of this function can't really destinguise between the diffrent types of errors and allow to recover from certain expected issues.
- For example, if we have flaky internet i would like to retry, but if a file is actually missing I dont.

- Not safe 🔓

- generaly it’s better for a program to fail fast and crash than to silence the error and continue running the program. 

- The bugs that inevitably happen later on will be harder to debug since they are far removed from the original cause. 

- Just because programmers often ignore error messages doesn’t mean the program should stop emitting them. 

- Unfortunately very common 😱

## Types of exception handling
- EAFP (it’s easier to ask for forgiveness than permission) 
- LBYL (Look before you leap)
- Each has its own pros and cons (whether the thread-safty or readability)
- but both are legitimate in python as oppose to other languages.

## Take 2: Exception Handling 🎬


- Catch relevant exceptions only ☝

- Recover when possible 🔧

In [29]:
def get_restaurant_recommendation(path):
    try:
        config = get_config(path)
        user = config["user"]
    except FileNotFoundException:
        logging.error("VERY UNINFORMATIVE INFORMATION")
        raise
    except JSONDecodeError:
        logging.error("VERY UNINFORMATIVE INFORMATION")
        raise
    except KeyError:
        user = "default_user"
    candidates = get_relevant_restaurants(user)
    pick_best_restaurants(candidates)

- When a file does not exists or when the file is not a valid json we  raise FileNotFoundException and JSONDecodeError and log it away

- We will reraise the same exact exception that occured instead raising a generic exception and allow the invoker to handle them diffrently.

- Altough this code is far from pretty is much safer, we added deafault patiserie and  the invoker of this function can destinguise between the diffrent types of errors and handle them in a diffrent manner if needed.

## Lesson 2: Catch relevant exceptions only. 

## Our code is bad 😭

- Dominated by exception handling

- Business logic is not clear

## Lesson 3:  Error handling should not obscures business logic

- Error handling is important, but we should strives to make our job easier.
- as the zen of python state "If the implementation is hard to explain, it's a bad idea."

## Take 3: Exception Handling 🎬


## A Bit of Mackup 💄


- Sharing exception blocks.

- Use else clause.

- Use dictionary built-in method

In [30]:
def get_restaurant_recommendation(path):
    try:
        config = get_config(path)
        user = config["user"]
    except FileNotFoundException:
        logging.error("VERY UNINFORMATIVE INFORMATION")
        raise
    except JSONDecodeError:
        logging.error("VERY UNINFORMATIVE INFORMATION")
        raise
    except KeyError:
        user = "default_user"
    candidates = get_relevant_restaurants(user)
    pick_best_restaurants(candidates)

- First since we handle both FileNotFoundException and JSONDecodeError in the same manner they can "share the except block"
  as except clause may name multiple exceptions as a parenthesized tuple.
- Secondly we can use else  clause which occur when the try block executed and did not raise an exception.

- Thirdly, we use dictionary builtin function get which allow us to define default values.            


## Lesson 4: Frequent flows probably have clean existing solution.

## Suppressing Exceptions 🤫


- There is another common flow for exception handling
- i want to cover which is suppressing exceptions using suppress
- supported from python>=3.5    

In [31]:
def run_unstopable_animation():
    pass

**This**


In [32]:
try:
    os.remove('somefile.pyc')
except FileNotFoundError:
    pass

In [33]:
try:
    run_unstopable_animation()
except KeyboardInterrupt:
    pass

**Becomes**


In [34]:
from contextlib import suppress

with suppress(FileNotFoundError):
    os.remove('somefile.pyc')

In [35]:
from contextlib import suppress

with suppress(KeyboardInterrupt):
    run_unstopable_animation()   

## Reasons for errors
- The obious one is that something exceptional happened.
- As a control flow mechanism.
- Can be triggered due to a bug in our code.

## Still dominated by exception handling code😟

## Take 3: Exception Handling 🎬

- Separate business logic from exception handling code ✂

- Handled exceptions in other layer 📚

![](https://vignette.wikia.nocookie.net/memepediadankmemes/images/8/80/Acb.jpg/revision/latest/scale-to-width-down/340?cb=20180822064733)

In [36]:
def get_config(path):
    with open(path, 'r') as json_file:
        return json.load(json_file) 
    
def get_restaurant_recommendation(path):
    try:
        config = get_config(path)
    except (FileNotFoundException, JSONDecodeError):
        logging.error("VERY UNINFORMATIVE INFORMATION")
        raise
    else:
        user = get_config.get("user", "default_user")
        candidates = get_relevant_restaurants(user)
        pick_best_restaurants(candidates)    

## Lesson 5: Push the exception handling down/up in the abstraction level


## Are we completly safe now? 👷

# Silent Errors 🔇

- Does not crash code 🤯

- Delivers incorrect results 😠

- Much harder to detect 😠😠

- Makes matter worse 🤬

## Lesson 6: Fail fast to avoid hard to detect errors.

## Contract 📜

- Output/Input types

- Output/Input values

- Postconditions/Preconditions

- Side-effects/Invariants

## Vanilla Exceptions 🍧


- All the validations are supported ✅ 

- Happens in runtime ✅ but not in compilation time ❌

- Not clean❌

## Why not assertions ? ❌

- Raises the wrong exception type 😮

 - Can be compiled away 😥

## Type Hints 🔍

- Support validating input/output types ✅

- Doesn't support other validation ❌

- Support both Runtime ✅ / Compile time ✅


- Clean and elegant ✅

### mypy for compile time

In [37]:
def get_config(path: Union[str, pathlib.PurePath]) -> str:
    with open(path, 'r') as json_file:
        try:
            data = json.load(json_file)
        except (FileNotFoundException, JSONDecodeError):
            logging.error("VERY INFORMATIVE INFORMATION")
            raise
        else:
            return data.get("user","default_user")

### typeguard for runtime

In [38]:
@typechecked
def get_user(path: Union[str, pathlib.PurePath]) -> str:
    with open(path, 'r') as json_file:
        try:
            data = json.load(json_file)
        except (FileNotFoundException, JSONDecodeError):
            logging.error("VERY INFORMATIVE INFORMATION")
            raise
        else:
            return data.get("user","default_user")

## Contract Testing Libraries 📜

- All the validations are supported ✅ 

- Happens in runtime ✅ but not in compilation time ❌

- Clean and elegant ✅

- No mature/maintained option ❌

- [icontract](https://github.com/Parquery/icontract)- not matured 🍼

- [contracts](https://github.com/deadpixi/contracts)- not maintained 🤕

## Lesson 7: Protect your code from silent errors  using contracts.

## There are still problems lurking 🐉

In [39]:
def get_relevant_restaurants(user):
    base_url = "cool_restaurants.com"
    resp = requests.get(f"{base_url}/{user}")
    resp.raise_for_status()
    return resp.json()

## Unstable environment 🤪

- Your network might be down 😑

- The server might be down 😣

- The server might be too busy and you will face a timeout 😭


In [40]:
def get_relevant_restaurants(user):
    base_url = "cool_restaurants.com"
    
    allowed_retries = 5
    for i in range(allowed_retries):
        try:
            resp = requests.get(f"{base_url}/{user}")
            resp.raise_for_status()
        except (requests.ConnectionError):
            if i == allowed_retries:
                raise
        else:
            return resp.json()

## There must be better way 😇

- Decorators extend our function capabilities beyond its core intent🎊

- Context Managers wrap around enter and exit logic over a given resource 🌉

- Common usecases already implemented 💪

In [41]:
from functools import wraps
def retry(exceptions, allowed_retries=5):
    def callable(func):
        @wraps(func)
        def wrapped(*args, **kwargs):
            for i in range(allowed_retries):
                try:
                    res = func()
                except exceptions:
                    continue
                else:
                    return res       
        return wrapped
    return callable

In [42]:
@retry(exceptions=requests.ConnectionError)
def get_relevant_restaurants(country):
    base_url = "cool_restaurants.com"
    resp = requests.get(f"{base_url}/{user}")
    resp.raise_for_status()
    return resp.json()

In [43]:
import tenacity

@tenacity.retry(retry=tenacity.retry_if_exception_type(ConnectionError))
def get_relevant_restaurants(user):
    base_url = "cool_restaurants.com"
    resp = requests.get(f"{base_url}/{user}")
    resp.raise_for_status()
    return resp.json()

## Useful usecases 🧠
- **Decorator**: [ratelimit](https://github.com/tomasbasham/ratelimit), [Retry](https://github.com/jd/tenacity), [logger.catch](https://github.com/Delgan/loguru)
- **Context manager**: [Database Connections](), [Transactions](), [Temporary Files]() and [Output Redirections]()

- important note retry can be handled in the request itself by [writing an adapter](https://findwork.dev/blog/advanced-usage-python-requests-timeouts-retries-hooks/), but for the example sake i wont use it. 

## Lesson 8: Use patterns like decorators and context managers for better code reuse

## Python hooks 🎣


- Python has builtin hooks for various events 

- [sys.excepthook](https://dev.to/joshuaschlichting/catching-every-single-exception-with-python-40o3) for uncaught exceptions

- Doesn't require modifying existing code.

## sys's excepthook example! 🎣


- Uncaught exception print traceback to STDERR before closing

- Unacceptable in production environment

- Graceful exit by notify incident system

In [44]:
import sys
import rollbar

rollbar.init("Super Secret Token")

def rollbar_except_hook(exc_type, exc_value, traceback):
    rollbar.report_exc_info((exc_type, exc_value, traceback))
    sys.__excepthook__(exc_type, exc_value, traceback)
    
sys.excepthook = rollbar_except_hook

## Useful usecases 🧠

- [Format Diffrently](https://dev.to/joshuaschlichting/catching-every-single-exception-with-python-40o3)
- [Redirect To Incident System](https://sweetcode.io/using-rollbar-capturing-logging-python-exceptions/)
- [Multi Threading Behaviour](https://www.scrygroup.com/tutorial/2018-02-06/python-excepthook-logging/)
- [Search Stackoverflow](https://gist.github.com/WoLpH/88e3222ac57d9c3bff113ff83afddda4/) 😛😛😛

- We can format the exceptions diffrently, to provide more/less information.
- We can redirect Exceptions to an incident system like rollbar or pager-duty.
- Since threading/multiprocessing have their own unhandled exception machinery.
  that is a bit customized so no unhandled exception exists at the top level.
  we might want to overide it to support KeyboardInterupt for example.
- Search Stackoverflow for the exception that was being raise

## Lesson 9: Python has some useful builtin hooks

## Exceptions Components 📑

- Exception message 💬

- Exception type 🍅🍇🍆

- Exception cause 🤯

## Exception Types 🍅🍇🍆

- Helps distinguish between different exceptions

- Helps emphasis our intent

- Builtin and Custom exceptions

## Builtin Exception Types 🍅🍇🍆

- Dozens of built-in exceptions

- Well documented, we can use some stackoverflow magic 

- Should use builtin exceptions

<img src="https://github.com/eyaltrabelsi/my-notebooks/raw/master/Lectures/builtin_exceptions.png" width="300"/>

## Custom Exception Types 🍅🍇🍆

- Emphasis our intent 

- Distinguish between different exceptions.

Lets say we have ValueError and we want to recover in diffrent way between TooBig/TooSmall.


- Group different exceptions.

- Wrapping third party apis.

- when we wrap third party api we minimize our dependecy on it. for example uppon recovery shouldn't have to import exceptions from your dependecies for example requests.exceptions
- Also the users that use your library does not need/want to know about the implementation details.
        

## Wrapping third party example 👀

- get_restaurant_recommendation can raise requests.ConnectionError

- Recovering in get_restaurant_recommendation 

- Require import requests for exceptions


## Lesson 10: Pick the right exception types and messages.

## Exception __ cause __ 🤯

- __ cause __ indicates the reason of the error 

- We can overide the __ cause __ to replace exception  raised

**Python default behavior**

- When a modern Python developer catches an exception and raises a new one to replace it, they can enjoy seeing the complete information for both tracebacks. 
- This is very helpful for debugging, and is a win for everybody.

In [45]:
try:
    1/0
except ZeroDivisionError:
    raise

ZeroDivisionError: division by zero

**Replace exception type with both traces**

In [None]:
try:
    1/0
except ZeroDivisionError as e:
    raise Exception from e

**Replace exception type with only one trace**

In [None]:
try:
    1/0
except ZeroDivisionError as e:
    raise Exception from None

## Lesson 11: Replace exceptions using __cause__.

## Not all programs made equal  👯


- Extremely reliable ✈ ✨


- Highly reliable 🚘

-  Reliable 💳


-  Dodgy 📱

- Crap 💩

## Lesson 12: We want to build a fault tolerant to a certain degree

## Sensative information 🕵

- Messages will be spread far and wide 🇫🇷🇺🇸🇫🇷

 through logging, reporting, and monitoring software.

- Personal data privacy 🕵

In a world where regulation around personal data is constantly getting stricter, 

- Never reveal your weaknesses, bad actors are everywhere 👺

- You can never be too careful 🤓

In [None]:
def login(user):
    raise CommonPasswordException(f"password: {password} is too common")

## Lesson 13: Don’t use sensitive information in exception messages.

## Still not perfect 💯

- Hard to tell what exceptions can be thrown 


- Hard to tell where exceptions will be handled


- No static analysis

## Functional Exception Handling for the rescue 🚔

- Use success/failure container values

- functions are typed, and safe


- Railway oriented programming

- [returns library](https://github.com/dry-python/returns#result-container)


![](https://image.slidesharecdn.com/railway-oriented-programming-slideshare-140312155941-phpapp01/95/railway-oriented-programming-75-638.jpg?cb=1427456657)

## Lesson 14: Consider functional exception handling for complicated flows

## Lesson 12: Split nested try catch blocks to separated try blocks


- Avoid nested exception handling

- Split to multiple exception blocks

- zen of python state "Flat is better than nested".



## Lessons: 👨‍🏫👩‍🏫

- **Lesson 1:** We want to build a fault tolerant system.

- **Lesson 2:** Catch relevant exceptions only.

- **Lesson 3:** Error handling should not obscures the logic.

- **Lesson 4:** Frequent flows probably have clean existing solution.


- **Lesson 5:** Push the exception handling down/up in the abstraction level


- **Lesson 6:** Fail fast to avoid hard to detect errors.

- **Lesson 7:** Protect your code from silent errors using contracts.


- **Lesson 8:** Use patterns like decorators and context managers for better code reuse

- **Lesson 9:** Python has some useful builtin hooks.

- **Lesson 10:** Pick the right exception types and messages.

- **Lesson 11:** Replace exceptions using __cause__.

- **Lesson 12**: We want to build a fault tolerant to a certain degree.

- **Lesson 13:** Don’t use sensitive information in exception messages.

- **Lesson 14:** Consider functional exception handling for complicated flows.

- **Lesson 15:** Split nested try catch blocks to separated try blocks


## Additional Resources 📚

- [Intro to Exception Handling](https://www.freecodecamp.org/news/exception-handling-python/)
- [Exceptional Exceptions](https://www.youtube.com/watch?v=V2fGAv2R5j8)
- [The Do's and Don'ts of Error Handling](https://www.youtube.com/watch?v=TTM_b7EJg5E)
- [Exception Chaining](https://blog.ram.rachum.com/post/621791438475296768/improving-python-exception-chaining-with)
- [Railway oriented programming](https://fsharpforfunandprofit.com/posts/recipe-part2/)
- [The error model](http://joeduffyblog.com/2016/02/07/the-error-model/)


![](https://i.pinimg.com/originals/b9/0a/79/b90a79b4c361d079144597d0bcdd61de.jpg)

### Recoverability 🩹

- How do i recover
   - how can  you make sure all bad state is cleared away to retry
       
- what is recoverable:
    - network flakiness
    - database out of connection
    - disk unavailable
    - recoverable database out of connections
    
    
Bugs Aren’t Recoverable Errors!
A critical distinction we made early on is the difference between recoverable errors and bugs:

A recoverable error is usually the result of programmatic data validation. Some code has examined the state of the world and deemed the situation unacceptable for progress. Maybe it’s some markup text being parsed, user input from a website, or a transient network connection failure. In these cases, programs are expected to recover. The developer who wrote this code must think about what to do in the event of failure because it will happen in well-constructed programs no matter what you do. The response might be to communicate the situation to an end-user, retry, or abandon the operation entirely, however it is a predictable and, frequently, planned situation, despite being called an “error.”

A bug is a kind of error the programmer didn’t expect. Inputs weren’t validated correctly, logic was written wrong, or any host of problems have arisen. Such problems often aren’t even detected promptly; it takes a while until “secondary effects” are observed indirectly, at which point significant damage to the program’s state might have occurred. Because the developer didn’t expect this to happen, all bets are off. All data structures reachable by this code are now suspect. And because these problems aren’t necessarily detected promptly, in fact, a whole lot more is suspect. Depending on the isolation guarantees of your language, perhaps the entire process is tainted.    

### Concurrent/Parallal Exception handling 🎸🎺🎻🎷
- **Multi-threading/processing** [1](https://stackoverflow.com/questions/51071378/exception-handling-in-concurrent-futures-executor-map), [2](https://docs.python.org/3/library/concurrent.futures.html)
- **Async** [1](https://stackoverflow.com/questions/30361824/asynchronous-exception-handling-in-python),[2](https://www.roguelynn.com/words/asyncio-exception-handling/), [3](https://medium.com/@yeraydiazdiaz/asyncio-coroutine-patterns-errors-and-cancellation-3bb422e961ff)

### Error codes 👾
### When
- WITHIN a program one should always use exceptions. 
- Any time the error must leave the program you are left with error error codes as exceptions can't propagate beyond a program. 
- If, however, I'm writing a piece of code which I must know the behaviour of in every possible situation, then I want error codes.
- It's tedious and hard to write code that reacts appropriately to every situatio, but that's because writing error-free code is tedious and hard, not because you're passing error code


### Pros
- That being said, errors, whether in code form or simple error response, are a bit like getting a shot — unpleasant, but incredibly useful. Error codes are probably the most useful diagnostic element in the API space, and this is surprising, given how little attention we often pay them.

- In general, the goal with error responses is to create a source of information to not only inform the user of a problem, but of the solution to that problem as well. Simply stating a problem does nothing to fix it – and the same is true of API failures.


- [1](https://docs.python.org/3.8/library/errno.html),[2](https://medium.com/vaidikkapoor/understanding-non-blocking-i-o-with-python-part-1-ec31a2e2db9b),[3](https://nordicapis.com/best-practices-api-error-handling/),[4](https://stackoverflow.com/questions/253314/conventions-for-exceptions-or-error-codes),[5](https://www.joelonsoftware.com/2003/10/13/13/)




## [Release it](https://github.com/singh4java/Books/blob/master/Release%20It!%20Design%20and%20Deploy%20Production-Ready%20Software.pdf) 📪

- you can always reboot the world by restarding every single server layer by layer thats 
- almost always effective but takes long time
- its like a doctor diagnosing desease, theyou could treat a patient,


- counter integration point with circuit breaker and decoupling middleware
- a cascading failure happens after something else already gone wrong. circuit breaker protect your system by avoiding calls out to the troubled integration point. using timeout ensure that you can come back from a call out to the troubled one