Better exceptions for invalid ranges #79
Comments
|
well, this is a prime example of why it's impossible to divide the world into catchable or uncatchable exceptions in general - an overflow when parsing a stint should naturally lead to an |
|
I think the distinction between catchable errors and defects is quite valuable. I'm not sure if that's what you mean when you argue against it, but if we abandon it because it's not perfect, this would really be a step backwards. It would be more accurate to say that most of the time the distinction is quite well-pronounced and there are only few occasions where we have a slightly grayer area. And even this "prime example" is not all that gray imo. An integer library should specify what happens in case of overflow. There are few possible choices:
A rich library will allow you to choose one of these options. This can be done several in ways:
When the library offers just one of the options, you can either follow the contract being offered or you can extend the library by adding the extra options. Errors such as |
|
If I have to distill it to a single paragraph, it goes like this: A library specifies a contract that you must follow. If you violate the contact, that's a defect. The contract may suggest some situations that you should recover from (that's the errors). If you don't like the contract, you can ask the author of the library to modify it. Some contracts are not perfect because they are too strict and require too much work from the user, other contracts are too loose and ask you to recover from situations that are unreasonable (then the user has to create a wrapper library to make the code more practical). |
|
which of those options should be encouraged though? which leads to the most favourable situation for the eco-system as a whole? generally, people will use whatever can be copy-pasted and conveniently accessed from the language first, then look to the other options. laziness first. The argument makes sense for a single library from a single developer, but in aggregation the story is a bit different. Tt's up to the language and std lib to provide these convenient defaults, so that you do the right thing cheaply without thinking about it. An eco-system of libraries is much more viable at 80% "perfect" libraries than at 50%. It is also inherently easier to construct a weaker api from a stronger one - for example, it's trivial to build a defective api from a infective one because you only need to look at the outcome - the other way around is tendentially more difficult as you must understand the inputs instead. |
|
Another way to put this is that the options are not equal, and neither is the relationship between library author and user - there's an asymmetry here that amplifies the benefits a good api - it's usually costly to enact change in a poor library. |
|
In the eco-system as a whole, the good stuff rises to the top. Eventually, libraries appear that have picked these right defaults and they get famous. Yes, there will be a lot of crap created along the way, but that's life. Remember, here we are arguing whether the errors vs defects distinction has value at all. I think it does, because without it, the end game is not the same. The "good stuff" that will raise to the top will be slightly different and not as good as it could be. |
|
Well the main issue is that the starting point is not the same, bad defaults are already in the standard library and might inspire further badness see nim-lang/RFCs#32 (crypto API). |
Showcased in status-im/nimbus-eth2#284, Stint exceptions should be better to improve unittesting in Eth2.
Currently for Overflow/Underflow it throws RangeError or AssertionError in the overflow tests of beacon chain:
nim-stint/stint/io.nim
Lines 130 to 132 in ccf87da
nim-stint/stint/io.nim
Line 35 in ccf87da
Since those tests does not involve computation we should probably use RangeError for all (and keep OverflowError for computation).
The text was updated successfully, but these errors were encountered: