Error handling in callbacks #88
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -108,16 +108,16 @@ v1::UAttributes ZenohUTransport::attachmentToUAttributes( | |
| .deserialize<std::vector<std::pair<std::string, std::string>>>(); | ||
|
|
||
| if (attachment_vec.size() != 2) { | ||
| throw std::invalid_argument("invalid attachment size"); | ||
| } | ||
|
|
||
| if (attachment_vec[0].second.size() == 1) { | ||
| if (attachment_vec[0].second[0] != UATTRIBUTE_VERSION) { | ||
| throw std::invalid_argument("incorrect UAttribute version"); | ||
| } | ||
| } else { | ||
| throw std::invalid_argument("incorrect UAttribute version size"); | ||
| } | ||
| v1::UAttributes res; | ||
| res.ParseFromString(attachment_vec[1].second); | ||
| return res; | ||
|
|
@@ -194,7 +194,11 @@ v1::UStatus ZenohUTransport::registerRequestListener_( | |
| zenoh::detail::loan(query)); | ||
|
|
||
| query_map_.emplace(std::move(id_str), std::move(cloned_query)); | ||
| try { | ||
| listener(queryToUMessage(query)); | ||
| } catch (const std::exception& e) { | ||
| spdlog::error("query processing failed: {}", e.what()); | ||
|
Comment on lines
+199
to
+200
There was a problem hiding this comment. What exceptions are possible here? We generally don't want to blanket catch all exceptions as they can mask programmatic mistakes. This should either catch specific exceptions that represent temporary failures (that is, failures where trying again may produce a different result), or catch nothing at all. Additionally, shouldn't a non-ok status be returned if an exception is caught here? Doesn't that represent a failure that needs to be communicated upward? There was a problem hiding this comment.
deserialization problem etc.
I had a question about this and there was a suggestion in the previous version of this PR, but the listener as it currently stands doesn't allow it. So, by advice from this comment #88 (comment), I just log and drop the message. |
||
| } | ||
| }; | ||
|
|
||
| auto on_drop = []() {}; | ||
|
|
@@ -223,7 +227,11 @@ v1::UStatus ZenohUTransport::registerPublishNotificationListener_( | |
| // NOTE: listener is captured by copy here so that it does not go out | ||
| // of scope when this function returns. | ||
| auto on_sample = [this, listener](const zenoh::Sample& sample) mutable { | ||
| try { | ||
| listener(sampleToUMessage(sample)); | ||
| } catch (const std::exception& e) { | ||
| spdlog::error("sample processing failed: {}", e.what()); | ||
sashacmc marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| } | ||
| }; | ||
|
|
||
| auto on_drop = []() {}; | ||
|
|
@@ -261,7 +269,11 @@ v1::UStatus ZenohUTransport::sendRequest_(const std::string& zenoh_key, | |
| const auto& sample = reply.get_ok(); | ||
| spdlog::debug("resp_callback: {}", | ||
| sample.get_payload().deserialize<std::string>()); | ||
| try { | ||
| resp_callback(sampleToUMessage(sample)); | ||
| } catch (const std::exception& e) { | ||
| spdlog::error("sample processing failed: {}", e.what()); | ||
sashacmc marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| } | ||
| spdlog::debug("resp_callback: done"); | ||
| } else { | ||
| spdlog::error( | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The error handling model we have been using for up-cpp requires that exceptions only be thrown in a situation where the caller has done something unrecoverable (i.e. passed an invalid UUri to an interface) - exceptions are a panic situation and are not expected to be caught. Faults on the network or with incoming messages should not throw an exception as those faults are transient and the developer of the entity could not have reasonably accounted for this - a bad actor on the network should be ignored.
These should not be exceptions. Maybe we need a way of reporting bad incoming messages to an upper layer, but that would be done in another way (e.g. via callback that receives a UStatus)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Zenoh-cpp also can throw the exception if something going wrong (ZException inherited from the std::exception) e.g. from deserialize. So there is nothing wrong with catching them together.
But yes, if we have a hard rule not to produce any exceptions zenoh-cpp allows to pass a parameter with a return code, then check it, pass it to the calling function, and so on. But IMHO it will be more cumbersome.