Exception handling - PowerPoint PPT Presentation

About This Presentation
Title:

Exception handling

Description:

What is an exception? An abnormal event Not a very precise definition. Informally: something that you don t want to happen – PowerPoint PPT presentation

Number of Views:247
Avg rating:3.0/5.0
Slides: 40
Provided by: eth115
Category:

less

Transcript and Presenter's Notes

Title: Exception handling


1
-5- Exception handling

2
What is an exception?
  • An abnormal event
  • Not a very precise definition
  • Informally something that you dont want to
    happen

3
Exception vocabulary
  • Raise, trigger or throw an exception
  • Handle or catch an exception

4
How to use exceptions?
  • Two opposite styles
  • Exceptions as a control structure Use an
    exception to handle all cases other than the
    most favorable ones (e.g. a key not found in a
    hash table triggers an exception)
  • Exceptions as a technique of last resort

5
How not to do it
  • (From an Ada textbook)
  • sqrt (x REAL) return REAL is
  • begin
  • if x lt 0.0 then
  • raise Negative
  • else
  • normal_square_root_computation
  • end
  • exception
  • when Negative gt
  • put ("Negative argument")
  • return
  • when others gt ?
  • end -- sqrt

6
Dealing with erroneous cases
  • Calling a.f (y ) with
  • f (x T )
  • require
  • x.pre
  • do
  • ensure
  • Result.pre
  • end
  • Normal way (a priori scheme) is either
  • if y.pre then a.f (y ) else Error case end
  • ensure_pre a.f (y)

7
A posteriori scheme
  • a.try_to_invert (b)
  • if a.could_invert then
  • x  a.inverted
  • else
  • ? Error case ?
  • end
  • .

8
C, Java, C raising programmer-defined
exception
  • Instruction
  • throw my_exception
  • try catch (Exception e)
  • try finally
  • The enclosing routine should be of the form
  • my_routine () throws my_exception
  • if abnormal_condition
  • throw my_exception
  • The calling routine must handle the exception
    (even if the handling code does nothing).

9
How not to do it Java
b ? Normal or Exception?
Does this program compile in C?
b 4 Normal
10
Example Return and finally
Return 2
11
Example Return and finally
return ?
return1
b?
b2
12
Checked vs unchecked exceptions
  • Checked raised by program, caller must handle
  • Unchecked usually raised by external sources,
    dont have to be handled

13
Exception handling another approach
  • Introduce notion of contract
  • The need for exceptions arises when a contract is
    broken by either of its parties (client,
    supplier)
  • Two concepts
  • Failure a routine, or other operation, is unable
    to fulfill its contract.
  • Exception an undesirable event occurs during the
    execution of a routine as a result of the
    failure of some operation called by the routine.

14
The original strategy
  • r (...)
  • require
  • ...
  • do
  • op1
  • op2
  • ...
  • opi
  • ...
  • opn
  • ensure
  • ...
  • end

15
Not going according to plan
  • r (...)
  • require
  • ...
  • do
  • op1
  • op2
  • ...
  • opi
  • ...
  • opn
  • ensure
  • ...
  • end

16
Causes of exceptions in O-O programming
  • Four major kinds
  • Operating system signal arithmetic overflow, no
    more memory, interrupt ...
  • Assertion violation (if contracts are being
    monitored)
  • Void call (x.f with no object attached to x)
  • Programmer-triggered

Not any more in Eiffel Spec
17
Handling exceptions properly
  • Exception handling principle
  • There are only two acceptable ways to react for
    the recipient of an exception
  • Failure Concede impossibility of fulfilling
    contract, and trigger an exception in the
    caller (also called Organized Panic).
  • Retry Try again, using a different strategy (or
    repeating the same one)

(Rare third case false alarm)
18
The call chain
Routine call
r0
r1
r2
r3
r4
19
Exception mechanism
  • Two constructs
  • A routine may contain a rescue clause.
  • A rescue clause may contain a retry instruction.
  • A rescue clause that does not execute a retry
    leads to failure of the routine (this is the
    organized panic case).

20
Exception mechanism (2)
  • f (...) require precondition
  • local local entity declarations
  • do body
  • ensure postcondition
  • rescue
  • rescue_clause
  • end

21
If no exception clause (1)
  • Absence of a rescue clause is equivalent, in a
    first approximation, to an empty rescue clause
  • f (...) do ... end
  • is an abbreviation for
  • f (...) do ...
  • rescue
  • -- Nothing here end
  • (This is a provisional rule see next.)

22
Transmitting over an unreliable line (1)
  • Max_attempts INTEGER 100
  • attempt_transmission (message STRING) --
    Transmit message in at most
  • -- Max_attempts attempts. local failures
    INTEGER do unsafe_transmit (message)
  • rescue
  • failures failures 1 if failures lt
    Max_attempts then
  • retry
  • end end

23
Transmitting over an unreliable line (2)
  • Max_attempts INTEGER 100
  • failed BOOLEAN
  • attempt_transmission (message STRING) -- Try
    to transmit message
  • -- if impossible in at most Max_attempts
  • -- attempts, set failed to true.
  • local failures INTEGER do if failures lt
    Max_attempts then
  • unsafe_transmit (message)
  • else
  • failed True
  • end
  • rescue
  • failures failures 1
  • retry
  • end

24
Another Ada textbook example
  • procedure attempt is begin
  • ltltStartgtgt -- Start is a label
  • loop
  • begin
  • algorithm_1
  • exit -- Alg. 1 success
  • exception
  • when others gt
  • begin
  • algorithm_2
  • exit -- Alg. 2 success
  • exception
  • when others gt
  • goto Start
  • end
  • end
  • end
  • end main

In Eiffel
attempt local even BOOLEAN do if even
then algorithm_2 else algorithm_1 end r
escue even not even Retry end
25
Dealing with arithmetic overflow
  • quasi_inverse (x REAL) REAL
  • -- 1/x if possible, otherwise 0
  • local
  • division_tried BOOLEAN
  • do
  • if not division_tried then
  • Result 1/x
  • end
  • rescue
  • division_tried True
  • Retry
  • end

26
Transmitting over an unreliable line (3)
  • Max_attempts INTEGER 100
  • failed BOOLEAN
  • attempt_transmission (message STRING) --
    Transmit message in at most
  • -- Max_attempts attempts. local failures
    INTEGER do unsafe_transmit (message)
  • rescue
  • failures failures 1 if failures lt
    Max_attempts then
  • retry
  • end failed true
  • end

27
Pseudo code
  • from unsafe_transmit (message)
  • until not exceptions
  • loop
  • failures failures 1 if failures lt
    Max_attempts then
  • continue l
  • end failed true raise exception
  • l unsafe_transmit (message)
  • end
  • Retry allows to transfer control flow to the
    beginning of a routine without executing the rest
    of the rescue block

28
ETL3 Exception mechanism
  • Two constructs
  • A routine may contain a rescue clause
  • A rescue clause may set the Retry boolean
    variable
  • A rescue clause that ends with Retry not set
    leads to failure of the routine (organized
    panic).

29
ETL3Transmitting over an unreliable line (1)
  • Max_tries INTEGER 100

attempt_transmission_1 (message STRING )
-- Transmit message in at most Max_tries
attempts.
local failures INTEGERdo
unsafe_transmit (message)
rescue
failures failures 1 Retry (failures lt
Max_tries)
end
30
ETL3 Transmitting over an unreliable line (2)
could_notBOOLEAN
  • Max_tries INTEGER 100

attempt_transmission_2 (message STRING )
-- Try to transmit message in at most Max_tries
-- attempts if impossible, set could_not to
True.
local failures INTEGERdo
if failures lt Max_tries then unsafe_transmit
(message) else could_not True end
rescue
Retry True
end
31
ETL3 Dealing with arithmetic overflow
  • quasi_inverse (x REAL) REAL
  • -- 1/x if possible, otherwise 0
  • local
  • division_tried BOOLEAN
  • do
  • if not division_tried then
  • Result 1/x
  • end
  • rescue
  • division_tried True
  • Retry True
  • end

32
The correctness of a class
  • For every exported routine r INV and
    Prer dor INV and Postr
  • For every creation procedure cp
  • Precp docp INV and Postcp

create a.make ()
S1
a.f ()
S2
a.g ()
S3
a.f ()
S4
33
Exception correctness
  • For the normal body
  • INV and Prer dor INV and Postr
  • For the exception clause ???
    rescuer ???

34
Exception correctness
  • For the normal body
  • INV and Prer dor INV and Postr
  • For the exception clause True
    rescuer INV

35
If no exception clause (2)
  • Absence of a rescue clause is equivalent to a
    default rescue clause
  • f (...) do ... end
  • is an abbreviation for
  • f (...)
  • do ...
  • rescue
  • default_rescue end
  • The task of default_rescue is to restore the
    invariant.

36
For finer-grain exception handling
  • Exceptions are objects
  • Library mechanisms to raise exceptions,
    distinguish between exception types, and access
    details of an exception

37
The full rule
Retry invariant

P ? P
INV ? P
b
  • INV ? Q



Q
Q r INV ? (Retry ? P ) ? (? Retry ? R )
INV ? R

___________________________________________

INV ? R
INV ? P do b rescue r end INV ? Q
Normal postcondition
Error postcondition
38
Summary and conclusion
  • Exceptions as a control structure (internally
    triggered)
  • Benefits are dubious at best
  • An exception mechanism is needed for unexpected
    external events
  • Need precise methodology must define what is
    normal and abnormal. Key notion is
    contract.
  • Next challenge is concurrency distribution

39
Further reading
  • Bertrand Meyer Object-Oriented Software
    Construction, 2nd edition, Prentice Hall, 1997
  • Chapter 12 When the contract is broken
    exception handling
  • ECMA-367 Standard, Section 8.26
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Exception handling" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!