Attempt ordering exception handlers by exception class inheritance

[vytas7]

At the time of writing, exception handlers are matched in LIFO order, i.e. when searching for an error handler to match a raised exception, and more than one handler matches the exception type, the framework will choose the one that was most recently registered.

In case one has many error handlers for classes potentially inheriting from each other, this may become very error-prone and confusing in case a wrong handler swallows the exception.

Investigate if it is possible to order exceptions statically as they are being added (not at the time of catching).

Prior art: Flask/Werkzeug claim to handle this; investigate how it is done there.

[csojinb]

Since this is relevant to the other work I did with error-handling, I can dig into werkzeug and try to figure out what's going on there. Don't promise to finish said research though 😅

[csojinb]

Here are the relevant lines in Flask for using the most specific handler available. They have some additional levels of categorization for blueprints, or storing handlers by code instead of exception class, which don't seem relevant for Falcon.

So, basically, the error handlers are stored in a dict of {<exception class>: <handler callable>}. Then they iterate through <raised exception>.__mro__ (which produces a tuple of the class hierarchy from least to most general) until a match is found in the error handler dict.

If y'all decide to do this, it seems like it should be pretty straightforward.

[vytas7]

Great investigation, thanks a lot for joining us at sprints, Clara!
We'll discuss what's the best way forwards.

@csojinb there is unfortunately one thing that is complicating the matters a little bit: we have recently added support for handlers associated with more than one exception... 😬 [1]
I was thinking to myself how we could handle this case:

• Sort handlers by the most (or the least?) general exception in the tuple (should be simple)
• Split the tuple into separate handlers in case exception classes have different generality scoring
• (even better alternative that I've missed?)

1. https://falcon.readthedocs.io/en/stable/api/api.html#falcon.API.add_error_handler

[csojinb]

@vytas7 I might be misunderstanding the issue here... what is the problem with having handlers associated with more than one exception? Can't you just store that as {Exception1: handle_exceptions_1_and_2, Exception2: handle_exceptions_1_and_2}?

[vytas7]

@csojinb No, there is no problem per se, that is what my suggestion 2 is basically aiming at.
You could indeed store expanded handlers in the way you depict, however, if possible, for performance reasons it would be good to keep exceptions grouped together in a tuple in case they sort equal on the generality scale, and have a shared handler.

[kgriffs]

Where did we end up on this issue? Is #1527 still waiting on this?

[vytas7]

@kgriffs this is, strictly speaking, not blocking #1527 .
But it would make the implementation more straightforward and consistent by not having to care the default bare handler is invoked last (unless I completely misunderstood @csojinb 's comment)

[csojinb]

The relevance of this to #1527 is that the current LIFO order may result in surprising behavior if someone overrides the Exception handler, which is documented here.

Personally, I don't think this issue needs to block #1527 . IIUC, Falcon users who add a custom handler for Exception will already be overriding the default HTTPError and HTTPStatus handlers, so I don't think it's a dealbreaker to not solve that problem in order to address #1507.

[kgriffs]

OK, I'd love to have this smarter ordering implemented for 3.0 if we can swing it, otherwise push to 3.1.

[kgriffs]

Any volunteers? :)

[kgriffs]

P.S. When this is implemented, don't forget to update the note under the add_error_handler() docstring.

[vytas7]

I think Falcon users who (read: me 🙂 but I think @jmvrbanac also uses this pattern and has even advised users to do so) add a custom exception handler for Exception may also be re-raising HTTPError & HTTPStatus which are then caught in a special clause in API._handle_exception.

Not sure if we need to do much about this now though. The problematic should be gone once we introduce exception ordering.

[csojinb]

Hi, I put up a draft PR with an implementation for this. I was hoping to get some input on the approach before adding tests, etc.

I went with the simpler implementation because I didn't totally understand @vytas7's first suggestion for managing shared error handlers. Should I do a benchmark comparison or something for this implementation?

[vytas7]

Scratch those suggestions. Your proposed approach is way more scalable in the general case I think 👍 (it is only adding complexity traversing the MRO, but the class lookup itself is dict-based (O(1)-ish)).

Benchmark against the current implementation would nevertheless be good to take a look at. (As said, I think those are going to be in favour of your new approach)

[vytas7]

Resolved in #1603
Thanks @csojinb ! 🎉