3

What are the applications and advantages of explicitly raising exceptions in a program. For example, if we consider Ada language specifically here provides an interface to raise exceptions in the program. Example:

raise <Exception>;

But what are the advantages and application areas where we would need to raise exceptions explicitly?

For example, in a procedure which accepts one of the parameters as string:

function Fixed_Str_To_Chr_Ptr (Source_String : String) return C.Strings.Chars_Ptr is
...
begin
...
  -- Check whether source string is of acceptable length
  if Source_String'Length <= 100 then
  ...
  else
    ...
    raise Constraint_Error;
  end if;

  return Ptr;

exception
     when Constraint_Error=>
        .. Do Something..
end Fixed_Str_To_Chr_Ptr;

Is there any advantage or good practice if I raise an exception in the above function and handle it when the passed string length bound exceeds the tolerable limits? Or a simple If-else handler logic should do the business?

Akay
  • 1,092
  • 12
  • 32
  • 2
    It's a very general design question. The general answer is simply "handle locally what you can; raise exceptions for the rest". (Exceptions are useful because (1) If the caller fails to handle errors it blows immediately; (2) information like source code location and call stack are provided to the caller, or the programmer; (3) the error can be passed further up through the immediate caller without any coding effort if the immediate caller itself cannot handle it properly.) – Peter - Reinstate Monica Apr 11 '16 at 16:02
  • As @PeterA.Schneider said; and in this case you definitely ought not to raise an exception, just `.. Do Something ..` in the `else` part. – Simon Wright Apr 11 '16 at 16:16
  • 1
    @SimonWright Are you sure? An exception may be the right thing to do here in such a utility function which has no idea in which context it will be used. (The caller may decide to open a dialogue, write a log message, abort because it's not recoverable -- we cannot know.) Btw, this has not much to do with Ada, except that exceptions are for historical and eco-system reasons more common in some languages than others (not sure where Ada is positioned). – Peter - Reinstate Monica Apr 11 '16 at 16:18
  • @PeterA.Schneider, Thanks for the suggestions. I would like to ask one more thing that, is it a good way of designing (in a professional product) the exception handler for **others** cases like: `when E : others =>` when you really don't know what all exceptions might get raised in future?, or should we confine them to whatever exceptions we analyse might me raised?. – Akay Apr 12 '16 at 08:26
  • 2
    @PeterA.Schneider, I see no point in raising an exception _and then handling it in the same subprogram_! @AKay, `when others => null;` is bad, because you’ll never find out your mistakes. `when others => Report_The_Exception_And_Reset;` would be more reasonable at top level. – Simon Wright Apr 12 '16 at 09:19

4 Answers4

3

I'll make my 2 cents an answer in order to bundle the various aspects. Let's start with the general question

But what are the advantages and application areas where we would need to raise exceptions explicitly?

There are a few typical reasons for raising exceptions. Most of them are not Ada-specific.

First of all there may be a general design decision to use or not use exceptions. Some general criteria:

  • Exception handlers may incur a run time cost even if an exception is actually never thrown (cf. e.g. https://gcc.gnu.org/onlinedocs/gnat_ugn/Exception-Handling-Control.html). That may be unacceptable.
  • Issues of inter-operability with other languages may preclude the use of exceptions, or at least require that none leave the part programmed in Ada.
  • To a degree the decision is also a matter of taste. A programmer coming from a language without exceptions may feel more confident with a design which just relies on checking return values.
  • Some programs will benefit from exceptions more than others. If traditional error handling obscures the actual program structure it may be time for exceptions. If, on the other hand, potential errors are few, easily detected and can be handled locally, exceptions may obscure potential execution paths more than handling errors traditionally would.

Once the general decision to use exceptions has been made the problem arises when and when not it is appropriate to raise them in your code. I mentioned one general criteria in my comment. What comes to mind:

  • Exceptions should not be part of normal, expected program flow (they are called exceptions, not expectations ;-) ). This is partly because the control flow is harder to see and partly because of the potential run time cost.
  • Errors which can be handled locally don't need exceptions. (It can still be useful to raise one in order to have a uniform error handling though. I'll discuss that below when I get to your code snippet.)
  • On the other hand, exceptions are great if a function has no idea how to handle errors. This is particularly true for utility and library functions which can be called from a variety of contexts (GUI, console program, embedded, server ...). Exceptions allow the error to propagate up the call chain until somebody can handle it, without any error handling code in the intervening layers.
  • Some people say that a library should only expose custom exceptions, at least for any anticipated errors. E.g. when an I/O exception occurs, wrap it in a custom exception and explicitly raise that custom exception instead.

Now to your specific code question:

Is there any advantage or good practice if I raise an exception in the above function and handle it when the passed string length bound exceeds the tolerable limits? Or a simple If-else handler logic should do the business?

I don't particularly like that (although I don't find it terrible) because my general argument above ("if you can handle it locally, don't raise") would indicate that a simple if/else is clearer.1 For example, if the function is long the exception handler will be far away from the error location, so one may wonder where exactly the exception could occur (and finding one raise location is no guarantee that one has found them all, so the reviewer must scrutinize the whole function!).

It depends a bit on the specific circumstances though. Raising an exception may be elegant if an error can happen in several places. For example, if several strings can be too short it may be nice to have a centralized error handling through the exception handler, instead of scattering if/then/elses (nested??) across the function body. The situation is so common that a legitimate case can be made for using goto constructs in languages without exceptions. An exception is then clearly superior.

1But in all reality, how do you handle that error there? Do you have a guaranteed logging facility? What do you return? Does the caller know the result can be invalid? Maybe you should throw and not catch.

Community
  • 1
  • 1
Peter - Reinstate Monica
  • 15,048
  • 4
  • 37
  • 62
  • Some Ada runtimes for bareboard systems don’t allow exception propagation at all; so you need to be extra careful not to allow exceptional situations to occur! – Simon Wright Apr 15 '16 at 07:19
2

You raise an exception explicitly to control which exception is reported to the user of a subprogram. - Or in some cases just to control the message associated with the raised exception.

In very special cases you may also raise an exception as a program flow control.

Jacob Sparre Andersen
  • 6,733
  • 17
  • 22
2

There are two problems with the given example:

  1. It's simple enough that control flow doesn't need the exception. That won't always be the case, however, and I'll come back to that in a moment.
  2. Constraint_Error is a spectacularly bad exception to raise, to detect a string length error. The standard exceptions Program_Error, Constraint_Error, Storage_Error ought to be reserved for programming error conditions, and in most circumstances ought to bring down the executable before it can do any damage, with enough debugging information (a stack traceback at the very least) to let you find the mistake and guarantee it never happens again.

It's remarkably satisfying to get a Constraint_Error pointing spookily close to your mistake, instead of whatever undefined behaviour happens much later on... (It's useful to learn how to turn on stack tracebacks, which aren't generally on by default).

Instead, you probably want to define your own String_Size_Error exception, raise that and handle it. Then, anything else in your unshown code that raises Constraint_Error will be properly debugged instead of silently generating a faulty Chars_Ptr.

For a valid use case for raising exceptions, consider a circuit simulator such as SPICE (or a CFD simulator for gas flow, etc). These tools, even when working properly, are prone to failures thanks to numerical problems that happen in matrix computations. (Two terms cancel, producing zero +/- rounding error, which causes infeasibly large numbers or divide-by-zero later on). It's often an iterative approximation, where the error should reduce in each step until it's an acceptably low value. But if a failure occurs, the error term will start growing...

Typically the simulation happens step by step, where each step is a sufficiently small time step, maybe 1 us or 1 ns. The main loop requests a step, and this request is passed to thousands of agents in the simulation representing components in a circuit, or triangles in a CFD mesh.

Any one of those agents may fail to compute a solution, and the cleanest way to handle a failure is to raise an exception, maybe Convergence_Error. There may be thousands of possible points where an exception can be raised.

Testing thousands of return codes would get ugly fast. But with exceptions, the main loop only needs one handler, which takes some corrective action such as reducing the simulation step size and running the step again.

Sanitizing user text input in a browser may be another good use case, closer to the example code.

One word on the runtime cost of exceptions : the Gnat compiler and its RTS supports a "Zero Cost Exception" (ZCX) model - at least for some targets. There's a larger penalty when an exception is raised, as a tradeoff against eliminating the penalty in the normal case. If the penalty matters to you, refer to the documentation to see if it's worthwhile 9or even possible) in your case.

  • Thanks for the great info! – Akay Apr 13 '16 at 08:46
  • In a function, suppose which calls a number of functions in between, is it a good idea to keep the exception handler in the main function only or in all intermediate called functions where respective exceptions can be raised? (I know this depends on the requirement, but just wanted to know a generic answer). I mean does it looks good to implement a myriad of exception handlers in each and every function (which are prone to exceptions)? – Akay Apr 13 '16 at 09:01
  • 1
    A myriad exception handlers is probably a code smell to me. If different functions' exceptions need different handling, they can raise different exceptions, or the "raise" can pass a string to the handler with additional information. –  Apr 13 '16 at 10:58
1

Exceptions should stay true to their name, which is to represent exceptional situations.