Michał Klimczak
Head of Mobile
Often, both in analyzing business requirements and in implementation, we give a lot of attention to making the success path usable and fully functional but lack love for error handling. I get it, it’s not sexy, but you will have to deal with it at some point anyway, so why not do the right thing from the beginning? This article reviews the sacraments and sins around this topic.
Most often there is no problem with those exceptions. They are quite obvious and arise out of the application’s business logic or some access to external resources . If there’s a business logic in place, it’s possible that it could branch out into different paths, one of which will be successful, and the other will fail and result in an error.
Examples:
The application must be prepared for the fact that each process it implements will fall into exception paths - and the UI must be able to handle such situations .
Usually, when implemented, these paths are already reasonably evident. However, it is also important to remember about them in the case of business analysis, both for estimations and feature breakdown in sprint planning, and so on.
Additionally, it is worth making sure that the application cannot remain in a state that we did not expect - we should always have control over the possible states the UI may be in (see more below: Good practices).
We sometimes write code that is so unlikely to fail, that we don’t really need to care about handling the failure… right?
Examples:
I will not cast the stone here - there is such a thing as overly-defensive-programming and common sense has to be used. Indeed, there are situations where it is not worth making extra money at every step of error handling. Multiplying conditional paths and trying to deal with every exotic exception, etc., might make our code unreadable. In the worst case scenario, the app will start crashing in a particular place and we will know the real scale of our neglect.
If we reckon that this error may sometimes appear, or it actually started crashing the app (according to Crashlytics), then there is no way out: we need to deal with it. The most crucial thing in such a situation is to handle it wisely, i.e. not only to mute it with a dispassionate catch, but also to actually handle the path in which it can occur, e.g. by repeating the incorrect flow or displaying an appropriate message. Most often, it is also worth logging such a bug to Crashlytics as non-fatal in order to keep an eye on the scale of the problem. More on that can be found below.
In Catholic theology , Limbo (Latin limbus , edge or boundary, referring to the edge of Hell ) is the viewpoint concerning the afterlife condition of those who die in original sin without being assigned to the Hell of the Damned . It is not equated with Purgatory, but it is part of Hell.
Yes, if the app crashed, that's not good. But even worse would be to "handle" such a crash by muting the error and leaving the application in an undefined state. The simplest example of this is when we have to load something from the network and, for example, a 500 internal server response would end in a crash. If, instead of properly handling such an error, we simply catch the exception and print such an error message to the console, we would probably leave the user on the loading screen without any information. It’s an awful UX. A special place in hell ( limbus, pandemonium ) is reserved for developers who allow limbo from which it is impossible to escape, where the only option for the user is to restart the app (or, horror of horrors, reinstallation).
But the worst part is that if we do mute the error out of laziness, in many cases we may never notice it again. At least a crash would be reported to Crashlytics and therefore could be corrected.
Summing up, as a developer, if you don’t want to end up in hell, avoid these Cardinal Sins of Error Handling:
There are programmers who do not use exceptions, probably because they don't like to make the association “exception = crash”. Proper use of exceptions can work wonders for code that handles edge cases but wants to be clean at the same time. The main rule could be summed up like this:
In particular, exceptions are not a substitute for the normal control flow of an application, which is something that can be handled with a regular conditional expression. However, there are times when we call a function of a given class and that function simply wants to say " I tried, but I can't ." Then normal control flow would have to end up returning, e.g. a null, which is far from being useful or informative.
A nice extension of the topic can be found here .
As a quick reminder:
However, there may be other classes along the way that do not meet either of these conditions. Sometimes these intermediate classes can add more context to the exception - in that case wrap such exceptions. On the other hand, a common mistake leading to latency of side effects is catching the exception too deeply: in a class that doesn't know what to do with it. Most often it ends in such a way that when a given exception pops up, it is only logged, but there is no meaningful handling of it in the UI.
It is very often worth using your own exceptions that provide useful information in the context of your application’s business logic. If our class does not know how to handle a given exception, but knows what exceptions may appear and what they may mean in its context, it can wrap them into something more understandable . For example, if we support encryption, system APIs can crash into a number of strange scenarios, each throwing a different exception. If our class is used to store an encrypted password, we can wrap all these strange errors into one exception PasswordDecryptionException - clients of this class will decide what to do with it, and if it ends up unhandled, at least the original stacktrace will be kept.
try { decryptString(encryptedPassword) } catch (e: UnrecoverableKeyException, KeyStoreException, IllegalStateException) { //yeah, like we have multicatch in Kotlin :P throw PasswordDecryptionException(e) }
Better to throw an exception and risk crashing the application than trying to continue executing the program in an undefined state. This behavior primarily allows you to create processes that are predictable, as well as detect errors early. Attempting to proceed with the code in an undefined state may cause the app to go into a state of limbo and you may never find out about it.
To make sure that a particular view does not end up in an undefined, unforeseen state, it is worth using closed state hierarchies based on enum or sealed class. As a bonus, this approach fits perfectly with unit tests - in the test ViewModel it is easy to notice whether among our strictly defined outputs there is any edge case for a given set of inputs.
sealed class SubscriptionState { object Unknown: SubscriptionState () object NotSubscribed: SubscriptionState () object Canceled: SubscriptionState () data class Subscribed (val nextBilling: LocalDateTime): SubscriptionState () }
In MV * class architectures, the View layer should no longer know anything about deeper layers’ exceptions. At most in the ViewModel, they should be changed to some view state. For example, if data is downloaded from the API on a given screen and it may end with an HttpException, then such information should be sent to the view as e.g. ItemsLoadingError state.
Due to the fact that, in every project, sooner or later you will have to log a non-fatal error to Crashlytics, it is worth having a tool that is easy to use anywhere. For example, on Android it can be a custom TimberTree:
class MyTimberTree: Tree () { override fun log (priority: Int, tag: String ?, message: String, throwable: Throwable?) { If (throwable! = null) { logToLogcat (priority, tag, Log.getStackTraceString (throwable)) reportToCrashlytics (throwable) } else { logToLogcat (priority, tag, message) } } } // and then when you need to report a non fatal Timber.e (throwable)
Yes, Crashlytics is free, but there is a hidden cost of logging in everything blindly - it quickly becomes a mess. As a result, it is difficult for us to notice essential errors among the mass of irrelevant non fatals. As a rule of thumb, log the non fatal in places where you have already handled the error but want to explore it further or understand the scale of the problem in order to handle it better.
Last, but not least, writing testable code and the unit tests themselves makes it very easy to spot edge cases and any paths beyond the happy path.
When working on a project for a long time, it is important to periodically review Crashlytics, especially directly after releases.
It is worth using the notes feature mainly to link tasks in Jira. This allows you to find on the list of failures those that have already been addressed somehow, and it is easy to navigate to them.
Do not be afraid of closing issues in Crashlytics - they won’t mute. If, for example, there is a bug in version 1.2, and we fixed it in the version released as 1.3, it is worth closing the crash even before this version is released. Then, it disappears from the default view of the crash list, but if it turns out that the bug still exists in 1.3, it will not only appear there again, but you will also get an "Issue Resurfaced" email.
Crashlytics allows you to set various keys that enable you to better understand when a given error occurred. It is especially helpful to set the userId, because it allows you to find errors that were reported by a specific user in another system.
FirebaseCrashlytics.getInstance (). setUserId (registrationId) FirebaseCrashlytics.getInstance (). setCustomKey ("appMode", appMode.name)
P.Wasilewski - Head of Solutions
J.Dogadalski - Business Development Lead
P.Wasilewski - Head of Solutions
J.Dogadalski - Business Development Lead
