-
Notifications
You must be signed in to change notification settings - Fork 124
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Native Command Error Handling #261
Changes from 50 commits
bafe2b2
bdd3ee9
dd58c11
d3ed694
5fd9c69
3dd0560
a7d6a75
6faa7dc
c454366
fb60588
f4edfcd
a6329e7
0641bb2
8dabf42
35ed896
5cf273d
07af6d2
da03165
8cdd56a
1bc65b1
6de0c3e
697327c
d6f6af4
889cad4
9439d35
51ec0f2
1f272cd
a58d4e8
800f653
ea14fcd
46b2382
b2f46ca
0cef8c3
ec0b745
493a3a7
8d0498e
34a3a62
3493c6b
04559ed
eaecab0
a97cbfe
0cfab18
07807c7
e6cf938
20d1ed9
52579cb
bb0a68d
a53678c
012e366
821e898
8603d2b
c7e1471
b9eb257
9642658
e46b595
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change | ||||
---|---|---|---|---|---|---|
@@ -0,0 +1,219 @@ | ||||||
--- | ||||||
RFC: RFC00XX | ||||||
Author: Jason Helmick | ||||||
Status: Draft | ||||||
Area: Core | ||||||
Comments Due: 10/31/2020 | ||||||
--- | ||||||
|
||||||
# Native Command Error Handling | ||||||
|
||||||
PowerShell scripts using native commands would benefit from being able to use error handling | ||||||
features like those used by cmdlets. | ||||||
|
||||||
## Motivation | ||||||
|
||||||
In PowerShell by default, script processing continues when non-terminating errors occur. This is a | ||||||
benefit when expecting non-terminating errors in normal execution such as non-responsive computers from | ||||||
a list. This default behavior is controlled with the preference variable | ||||||
`$ErrorActionPreference` default of `Continue`. | ||||||
|
||||||
In production, often customers prefer that script execution stops when a non-terminating error | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
|
||||||
occurs. This is particularly true in CI where the preference is to fail fast. PowerShell currently | ||||||
supports customers with this ability by setting the preference variable in the script. | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
|
||||||
```Powershell | ||||||
$ErrorActionPreference = 'Stop' | ||||||
``` | ||||||
|
||||||
Native commands usually return an exit code to the calling application which will be zero for | ||||||
success or non-zero for failure. However, native commands currently do not participate in the | ||||||
PowerShell error stream. Redirected `stderr` output is not interpreted the same as the PowerShell | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. stderr not being interpreted as an error by $ErrorActionPreference was a new experimental feature added to 7.1 |
||||||
error stream and many native commands use `stderr` as information/verbose stream and thus only the | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
exit code matters. Users working with native commands in their scripts will need to check the | ||||||
execution status after each call using a helper function similar to below: | ||||||
|
||||||
```Powershell | ||||||
if ($LASTEXITCODE -ne 0) | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Worth mentioning the v7+ alternative based on the pipeline-chain operators: # Note the need for $(...)
ls /no/such/path || $(throw "Command failed. See above errors for details") |
||||||
{ | ||||||
throw "Command failed. See above errors for details" | ||||||
} | ||||||
``` | ||||||
|
||||||
Simply relaying the errors through the error stream isn't the solution. The example itself doesn't | ||||||
support all cases as `$?` can be false from a cmdlet or function error, making `$LASTEXITCODE` | ||||||
stale. | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. this might also argue for improving |
||||||
|
||||||
In POSIX shells, this need to terminate on command error is addressed by the `set -e` configuration, | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I think it is implied by the current revision, but let me spell it out to see if my understanding is correct:
Examples: $PSNativeCommandErrorAction = 'Stop'
# SHOULD fail, if `ls` reports a nonzero exit code.
if (-not ($name = /bin/ls nosuch.txt)) {
$name = 'default.txt'
}
# Should NOT fail, because || is used to explicitly handle the failure:
/bin/ls nosuch.txt || 'default.txt' |
||||||
which causes the shell to exit when a command fails. | ||||||
|
||||||
This specification proposes a similar idea, but adapted to the PowerShell conventions of preference | ||||||
variables and catchable, self-describing, terminating error objects. This proposal further adds to | ||||||
the functionality of `set -e` with `set -o pipefail` to return an error if any command in a pipeline | ||||||
fails. This is planned to be equivalent to `set -eo pipefail`. | ||||||
|
||||||
- `set -e` - terminates on command error | ||||||
- `set -u`, a reference to any variable not previously defined results in an error. Similar to | ||||||
Set-StrictMode in PowerShell and not needed to be addressed in this RFC. | ||||||
- `set -o pipefail`, by default, pipeline success is determined by the last command executed. `Set | ||||||
-o pipefail` returns an error if any command in the pipeline fails. | ||||||
|
||||||
The specification and alternative proposals are based on the | ||||||
[Equivalent of bash `set -e` #3415](https://github.com/PowerShell/PowerShell/issues/3415) | ||||||
committee review of the associated | ||||||
[pull request](https://github.com/PowerShell/PowerShell/pull/3523), and | ||||||
[implementation plan](https://github.com/PowerShell/PowerShell-RFC/pull/88#issuecomment-613653678) | ||||||
|
||||||
## Specification | ||||||
|
||||||
This RFC proposes a preference variable to configure the elevation of errors produced by native | ||||||
commands to first-class PowerShell errors, so that native command failures will produce error | ||||||
objects that are added to the error stream and may terminate execution of the script without added | ||||||
boilerplate. | ||||||
|
||||||
The `$PSNativeCommandErrorAction` preference variable will implement a version of the | ||||||
`$ErrorActionPreference` variable for native commands. | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
|
||||||
- The value will default to `Ignore` for compatibility with existing behavior. | ||||||
- For non-zero exit codes and except for the value `Ignore`, an `ErrorRecord` will be added to | ||||||
`$Error` that wraps the exit code and the command executed that returned the exit code. | ||||||
- Initially, only the existing values of `$ErrorActionPreference` will be supported. | ||||||
- The set of values may be extended later to include `MatchErrorActionPreference`, which should | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Should move this to Considerations section |
||||||
apply the `$ErrorActionPreference` setting to native commands. | ||||||
- A conversion will occur between `$PSNativeCommandErrorAction` and `$ErrorActionPreference` | ||||||
values, where `MatchErrorActionPreference` is converted to the current value of | ||||||
`$ErrorActionPreference` | ||||||
|
||||||
Valid values for `$PSNativeCommandErrorAction` | ||||||
|
||||||
| Value | Definition | ||||||
---------------- | ------------------- | ||||||
| Break | Enter the debugger when an error occurs or when an exception is raised. | ||||||
| Continue | (Default) - Displays the error message and continues executing. | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. There's a mismatch here between Continue being default and line 83 |
||||||
| Ignore | Suppresses the error message and continues to execute the command. | ||||||
| Inquire | Displays the error message and asks you whether you want to continue. | ||||||
| SilentlyContinue| No effect. The error message isn't displayed and execution continues without interruption. | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Not really "no effect" as the error record is added to $Error |
||||||
| Stop | Displays the error message and stops executing. In addition to the error generated, the Stop value generates an ActionPreferenceStopException object to the error stream. stream | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Typo: "stream" is doubled. |
||||||
| Suspend | Automatically suspends a workflow job to allow for further investigation. | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Suspend is not supported as it's only for workflows |
||||||
|
||||||
The reported error record object should be type: `NativeCommandException` with the following details: | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
|
||||||
| Property | Definition | ||||||
---------------- | ------------------- | ||||||
| ExitCode: | The exit code of the failed command. | ||||||
| ErrorID: | `"Program {0} ended with non-zero exit code {1}"`, with the command name and the exit code, from resource string `ProgramFailedToComplete`. | ||||||
| ErrorCategory: | `ErrorCategory.NotSpecified`. | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Perhaps it's worth creating a specific category for this, such as |
||||||
| object: | exit code | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
| Source: | The full path to the application | ||||||
| ProcessInfo | details of failed command including path, exit code, and PID | ||||||
|
||||||
## Alternative Approaches and Considerations | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Add that additional configuration may be enabled to disable pipefail if there is a customer need for it |
||||||
|
||||||
One way of overriding `$PSStrictNativeCommand` for a single native command and handling its exit | ||||||
status explicitly would be to put this logic into a script block and call it with the invocation | ||||||
operator (`&`). | ||||||
|
||||||
### Add "strict" native command option | ||||||
|
||||||
An additional value to the `$PSStrictNativeCommand` preference enum could treat creation of an | ||||||
`ErrorRecord` for native commands in the same way as this is treated elsewhere. Described here as a | ||||||
Boolean, could be considered as an enum to allow for future expansion. Possible values are: | ||||||
|
||||||
- `$false`: (the default) ignore non-zero exit codes. This is the same as existing PowerShell | ||||||
treatment of this case. | ||||||
- `$true`: Populate the error stream of the native command with an `ErrorRecord` associated with an | ||||||
`ExitException` exception. | ||||||
|
||||||
### Modifying existing semantics to consider exit code and exit status | ||||||
|
||||||
The error will throw an exception, potentially terminating the execution, in the same situation as | ||||||
other non-terminating errors will do this, i.e. where `$ErrorActionPreference` is set to `"stop"`. | ||||||
This would not be the desired behavior on commands where the script already handles a non-zero exit | ||||||
code, which would require the addition of extra boilerplate to use multiple native commands in | ||||||
combination. There are a number of ways that this could be made more flexible by integrating exit | ||||||
code and exit status handling into the language syntax. | ||||||
|
||||||
#### Convert non-terminating errors to terminating where the command output is used | ||||||
|
||||||
This approach implements semantics equivalent to bash `set -eo pipefail` in the runtime layer. | ||||||
|
||||||
The `$PSStrictPipeLine` preference variable would govern promotion of a non-terminating error to a | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
terminating error on getting an object from the pipeline output stream. Possible values would be: | ||||||
|
||||||
- `$false`: (the default) an object can be collected from the pipeline output stream regardless of | ||||||
the command exit value. This is the same as existing PowerShell treatment of this case. | ||||||
- `$true`: where the exit status of a native command is `$false`, trying to get an object from its | ||||||
output stream will create a terminating error from the non-terminating errors in its error stream. | ||||||
Conversion to boolean would be structured to ensure that this returns `$false` if the output | ||||||
pipeline does not contain anything without trying to get an actual value from it. | ||||||
|
||||||
This would allow syntax like `if`, `while` and pipeline chain operators to be usefully combined with | ||||||
native commands. | ||||||
|
||||||
#### Sanitize semantics of treating a native command as a conditional value | ||||||
|
||||||
This option in combination with the above enables functionality analogous to bash `set -eo pipefail` | ||||||
|
||||||
PowerShell converts the output stream to a boolean value where a native command is used as a | ||||||
"condition", i.e. the `-not` operator, or an `if`, `elseif` or `while` statement. This is not | ||||||
particularly useful with native commands, which would tend to produce no output on success, at least | ||||||
when executed in batch as opposed to interactive mode. | ||||||
|
||||||
The `$PSUseNativeExitStatus` variable would govern whether exit status is used in determining the | ||||||
boolean value of a native command for a conditional context. Possible values would be: | ||||||
|
||||||
- `$false`: (the default) the boolean value of native command is defined as whether or not the | ||||||
length of the output stream is non-zero. This is the same as existing PowerShell treatment of this | ||||||
case. | ||||||
- `$true`: the boolean value of a native command is it's exit status (`$?`), and | ||||||
|
||||||
This would allow syntax like `if` and `while` to be usefully combined with native commands. | ||||||
|
||||||
#### Add strict pipeline chain failure semantics. | ||||||
|
||||||
Treat only ignored exit statuses as exceptions. | ||||||
|
||||||
The `$PSStrictPipeLineChain` preference variable would govern the exit status in the last command of | ||||||
a pipeline. Possible values would be: | ||||||
|
||||||
- `$false`: (the default) would ignore `$false` exit status on the last command. This is the same as | ||||||
existing PowerShell treatment of this case. | ||||||
- `$true`: for a pipeline that is being used in a conditional context (see above), and where the | ||||||
exist status of the last command in the pipeline is `$false`, would create a terminating error | ||||||
theJasonHelmick marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
from the non-terminating errors in the command error stream. | ||||||
|
||||||
This should improve on the basic specification by allowing the idiom to be usefully combined with | ||||||
pipeline chaining. | ||||||
|
||||||
### Use dynamic scope/Set-StrictMode | ||||||
|
||||||
This approach implements dynamic scoping for native command error management using a cmdlet. | ||||||
|
||||||
Some of the above would be enabled with `Set-StrictMode -version 6` instead of with boolean | ||||||
preference variables. | ||||||
|
||||||
The dynamic scoping approach would improve on earlier listed approaches by limiting the scope of | ||||||
error handling configuration so that script functions could not have an effect on the error handling | ||||||
mode in the calling scope. | ||||||
|
||||||
If `Set-StrictMode` is used for this, it would need to enable some combination of enhancements that | ||||||
will not raise errors on scripts that have already implemented strong native command error handling. | ||||||
|
||||||
### Use lexical scope/Exception handling extensions | ||||||
|
||||||
Dynamic scoping approach would have side-effects on called scripts. This is analogous to the | ||||||
behavior of Bourne type shells, which maintain this behavior for | ||||||
[historic compatibility](http://austingroupbugs.net/view.php?id=52) reasons. | ||||||
|
||||||
Lexical scoping of native command error handling would improve on earlier options by integrating | ||||||
native command error handling fully into the existing exception handling without any | ||||||
side-effects in calling or called scripts. | ||||||
|
||||||
With this approach, native command error handling mode would be used through language syntax instead | ||||||
of preference variables or cmdlets. A possible syntax might be to add a strictness option to the try | ||||||
statement which applies to the lexical scope of the try statement. | ||||||
|
||||||
Lexical scope requires more runtime overhead; a mapping must be maintained at runtime between each | ||||||
runtime scope and its corresponding lexical scope that existed at parse-time. In addition, lexical | ||||||
scope may not apply well to errors. Errors produce stack traces at runtime and should be handled in | ||||||
a runtime-facing way. For these reasons, this alternative is not under consideration. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'd like to see the PS team dogfood the implementation of this feature by using it instead of the Start-NativeExecution function used in the PS build module.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This was one of the motivations of doing this feature so we can remove that helper function