In cardano-wallet, we currently use the following conventions for dealing with exceptions.
Avoid partial functions.
Considering all corner cases does catch bugs.
Example: Do not use head, but use a pattern match, or consider using functions from Safe module, such as headMay.
Example: From the Data.Text.Encoding module, Use decodeUtf8' rather than decodeUtf8 when handling user-supplied data. The latter function is partial and will crash your program if it receives non-UTF-8 input.
Pure code vs IO actions
-
In pure code, use
errorinstead ofundefinedif really necessary. In this case, please also add aHasCallStackconstraint so that a backtrace can be shown when the impossible happens. -
In
IO, usethrowIOto throw a regular exception.
Asynchronous exceptions — never catch them
The purpose of asynchronous exceptions is to terminate the current thread. Use bracket or finally to quickly release resources if necessary.
Exception catching functions from UnliftIO are typically designed to only catch synchronous exceptions, which is what you want most of the time.
Therefore, import exception utilities from UnliftIO.Exception module rather than Control.Exception; these utilities have better default behavior for asynchronous exceptions.
Use the tracing framework
If you desire to log an exception, use the tracing framework.
Be specific when catching exceptions
For example, if you only want to catch errors when reading a file which doesn’t exist use tryJust, ioeGetErrorType, isDoesNotExistErrorType, etc.
Portability
Be aware that IOExceptions can have different forms on different platforms, especially with Windows and networking code. You need to test your exception handling on Windows.
Checked vs. unchecked exceptions
-
Please do not mix
IO (Either e a)orExceptT e IO awith unchecked exceptions. -
If using checked exceptions, do not add an
Exceptioninstance to your error type, because this will ensure that it cannot be thrown as an unchecked exception.
Guidelines
Guidelines on the question of checked vs. unchecked exceptions are in progress.
Callbacks
When using callbacks that involve monad transformers over IO, consider MonadUnliftIO.
References
- FPComplete: Safe exception handling https://www.fpcomplete.com/haskell/tutorial/exceptions/
- Tweag: The three kinds of Haskell exceptions https://www.tweag.io/blog/2020-04-16-exceptions-in-haskell/
- Well-Typed: Lightweight Checked Exceptions in Haskell https://www.well-typed.com/blog/2015/07/checked-exceptions/