Error Handling Strategies – Defensive Programming
Catching exceptions prevents crashes. But what happens after you catch an error? How do you recover? This lesson teaches you defensive programming patterns—strategic decisions about how to handle different types of errors. You'll learn when to retry, when to use fallback values, when to degrade gracefully, and how to log errors for debugging.
Professional developers don't just catch errors and move on. They think strategically: What kind of error is this? Is it temporary? Can I recover? Should I notify the user? What should I log?
Beyond Catching – The Four Error Handling Strategies
By now, you've learned try/except/finally blocks and custom exceptions. But catching an exception is just the first step. The real skill is deciding what to do when an error occurs.
Let's explore four defensive programming strategies:
Strategy 1: Retry Logic – "Try Again"
When to use: Errors that are transient (temporary). Network hiccups, briefly unavailable services, temporary file locks.
The idea: If an operation fails, wait a moment and try again. Many transient errors resolve themselves on retry.
Pattern:
def fetch_data_with_retry(url: str, max_retries: int = 3) -> str:
"""Fetch data from URL, retry on failure."""
for attempt in range(1, max_retries + 1):
try:
response = fetch_url(url)
return response
except ConnectionError as e:
if attempt == max_retries:
print(f"Failed after {max_retries} attempts: {e}")
raise
print(f"Attempt {attempt} failed, retrying...")
Key idea: Count attempts. On the last attempt, re-raise the exception so the caller knows it failed completely.
💬 AI Colearning Prompt
"Show me the difference between retry logic and just catching an exception and returning a default value. When would you choose retry vs. fallback?"
🎓 Instructor Commentary
In AI-native development, you don't guess at error handling—you analyze the error type. Transient errors (network timeouts) demand retry. Permanent errors (file not found) demand fallback or graceful degradation.
Strategy 2: Fallback Values – "Use a Default"
When to use: Errors that are permanent or unrecoverable. Missing files, invalid data, unavailable services with no option to retry.
The idea: When an operation fails, use a sensible default value instead.
Pattern:
def load_config(config_file: str) -> dict:
"""Load configuration, fallback to defaults if missing."""
try:
with open(config_file) as f:
return json.load(f)
except FileNotFoundError:
print(f"Config file {config_file} not found, using defaults")
return {
"theme": "light",
"language": "en",
"notifications": True
}
except json.JSONDecodeError:
print(f"Config file {config_file} is invalid, using defaults")
return {"theme": "light", "language": "en", "notifications": True}
Key idea: The program continues with sensible defaults. User gets a notice, but doesn't lose functionality.
🚀 CoLearning Challenge
Ask your AI Co-Teacher:
"For a social media app, if loading the user's profile picture fails, what's a good fallback? Why? If loading the feed fails, is fallback appropriate?"
Expected Outcome: You'll understand that some features are essential (feed must load), while others can gracefully fail (profile picture can be placeholder).
Strategy 3: Graceful Degradation – "Keep Going With Less"
When to use: Non-critical features fail, but the system should continue. Feature unavailability doesn't mean complete failure.
The idea: When a secondary feature fails, skip it and continue. The user loses functionality but doesn't lose the whole program.
Pattern:
def process_csv_with_validation(filename: str) -> list[dict]:
"""Process CSV file, skip invalid rows gracefully."""
rows = []
skipped = 0
try:
with open(filename) as f:
reader = csv.DictReader(f)
for row_num, row in enumerate(reader, start=1):
try:
age = int(row["age"])
if age < 0 or age > 150:
raise ValueError(f"Age {age} out of range")
rows.append(row)
except ValueError as e:
skipped += 1
print(f"Row {row_num}: {e}, skipping")
except FileNotFoundError:
print(f"File {filename} not found")
return []
print(f"Processed {len(rows)} rows, skipped {skipped}")
return rows
Key idea: The program doesn't crash on bad data. Invalid rows are skipped with logging. Valid rows are processed. User gets partial results.
✨ Teaching Tip
Use Claude Code to test graceful degradation: "Create a CSV file with 10 rows: 7 valid, 3 with bad data. Run my parser and show what happens. Does it handle all error types?"
Strategy 4: Logging Errors – "Keep a Record"
When to use: All the above strategies benefit from logging. Record errors with context for debugging without crashing the program.
The idea: Print or record error details: what failed, when, why, and what data was involved. This record helps diagnose issues later.
Pattern:
import sys
from datetime import datetime
def divide_with_logging(a: float, b: float) -> float | None:
"""Divide a by b, log errors."""
try:
result = a / b
return result
except ZeroDivisionError as e:
timestamp = datetime.now().isoformat()
error_msg = f"[{timestamp}] ERROR: Division by zero. a={a}, b={b}"
print(error_msg, file=sys.stderr) # Print to error stream
return None
except TypeError as e:
timestamp = datetime.now().isoformat()
error_msg = f"[{timestamp}] ERROR: Invalid types. a={type(a).__name__}, b={type(b).__name__}"
print(error_msg, file=sys.stderr)
return None
Key idea: Log includes timestamp, error type, context (the actual values), and human-readable message. This helps debugging.
💬 AI Colearning Prompt
"What should error logs include to be useful for debugging? What context is essential?"
Code Example 1: Retry Logic with Exponential Backoff
Many production systems use exponential backoff—wait longer between retries. First retry after 1 second, second after 2 seconds, third after 4 seconds. This prevents overwhelming a service.
import time
def fetch_with_exponential_backoff(url: str, max_retries: int = 3) -> str:
"""Fetch data with exponential backoff between retries."""
for attempt in range(1, max_retries + 1):
try:
print(f"Attempt {attempt}: Fetching {url}")
# Simulate fetch (would use requests.get() in real code)
if attempt < 2:
raise ConnectionError("Network timeout")
return "Success: Data retrieved"
except ConnectionError as e:
if attempt == max_retries:
raise
wait_time = 2 ** (attempt - 1) # 1, 2, 4, 8 seconds
print(f"Failed: {e}. Waiting {wait_time}s before retry {attempt + 1}")
time.sleep(wait_time)
# Test it
try:
result = fetch_with_exponential_backoff("https://api.example.com/data")
print(result)
except ConnectionError:
print("All retries exhausted")
Output:
Attempt 1: Fetching https://api.example.com/data
Failed: Network timeout. Waiting 1s before retry 2
Attempt 2: Fetching https://api.example.com/data
Failed: Network timeout. Waiting 2s before retry 3
Attempt 3: Fetching https://api.example.com/data
Success: Data retrieved
Specification Reference: This code demonstrates B1 application—student applies retry pattern to realistic network scenario.
Code Example 2: Combining Fallback with Logging
Real code often combines multiple strategies. Here's fallback + logging:
import json
from datetime import datetime
def load_user_preferences(user_id: int) -> dict:
"""Load user preferences, fallback to defaults, log failures."""
default_prefs = {
"theme": "light",
"font_size": 12,
"notifications": True
}
try:
with open(f"preferences_{user_id}.json") as f:
data = json.load(f)
print(f"Loaded preferences for user {user_id}")
return data
except FileNotFoundError:
timestamp = datetime.now().isoformat()
print(f"[{timestamp}] WARN: Preferences file not found for user {user_id}, using defaults")
return default_prefs
except json.JSONDecodeError as e:
timestamp = datetime.now().isoformat()
print(f"[{timestamp}] ERROR: Preferences file corrupted for user {user_id}: {e}. Using defaults.")
return default_prefs
except Exception as e:
timestamp = datetime.now().isoformat()
print(f"[{timestamp}] ERROR: Unexpected error loading preferences for user {user_id}: {e}. Using defaults.")
return default_prefs
Key details:
- Catches specific exceptions first (FileNotFoundError, JSONDecodeError)
- Falls back to sensible defaults
- Logs each failure with timestamp and context
- Generic catch-all for unexpected errors
- All errors are logged—none are silent
Code Example 3: Graceful Degradation in Data Processing
This example processes data, skipping invalid entries:
from dataclasses import dataclass
@dataclass
class User:
name: str
age: int
email: str
def validate_and_process_users(users_data: list[dict]) -> tuple[list[User], list[str]]:
"""Process users, return valid users and list of validation errors."""
valid_users = []
errors = []
for idx, user_dict in enumerate(users_data):
try:
# Validate name
name = user_dict.get("name", "").strip()
if not name:
raise ValueError("Name is required")
# Validate age
age = int(user_dict["age"])
if age < 0 or age > 150:
raise ValueError(f"Age {age} out of valid range")
# Validate email
email = user_dict.get("email", "")
if "@" not in email:
raise ValueError("Email must contain @")
valid_users.append(User(name=name, age=age, email=email))
except (ValueError, KeyError) as e:
error_msg = f"User {idx + 1}: {e}"
errors.append(error_msg)
print(f"WARN: {error_msg}, skipping")
return valid_users, errors
# Test
test_data = [
{"name": "Alice", "age": 30, "email": "[email protected]"},
{"name": "", "age": 25, "email": "[email protected]"}, # Invalid: empty name
{"name": "Charlie", "age": "invalid", "email": "[email protected]"}, # Invalid: age not int
{"name": "Diana", "age": 28, "email": "[email protected]"},
]
valid, errors = validate_and_process_users(test_data)
print(f"Valid users: {len(valid)}, Errors: {len(errors)}")
for user in valid:
print(f" - {user.name} (age {user.age})")
for error in errors:
print(f" ERROR: {error}")
Output:
WARN: User 2: Name is required, skipping
WARN: User 3: invalid literal for int() with base 10: 'invalid', skipping
Valid users: 2, Errors: 2
- Alice (age 30)
- Diana (age 28)
ERROR: User 2: Name is required
ERROR: User 3: invalid literal for int() with base 10: 'invalid'
This demonstrates:
- Validation happens row-by-row
- Invalid rows are skipped gracefully
- Valid data is processed completely
- Errors are reported without crashing
Code Example 4: Logging with Structured Context
Professional systems log with enough detail to diagnose issues:
import sys
from datetime import datetime
from typing import Any
def safe_json_parse(data: str, context: dict[str, Any]) -> dict | None:
"""Parse JSON with detailed logging."""
try:
result = json.loads(data)
return result
except json.JSONDecodeError as e:
timestamp = datetime.now().isoformat()
log_entry = {
"timestamp": timestamp,
"error_type": "JSONDecodeError",
"error_message": str(e),
"context": context,
"data_sample": data[:100] if len(data) > 100 else data
}
# In real systems, this would go to a logging service
print(f"ERROR: {log_entry}", file=sys.stderr)
return None
# Usage
result = safe_json_parse(
'{"name": "Alice", invalid json}',
{"user_id": 42, "operation": "load_profile"}
)
Logging includes:
- Timestamp: When the error occurred
- Error type: Specific exception class
- Error message: Details from exception
- Context: Related information (user ID, operation)
- Data sample: What data caused the problem (truncated for safety)
This information helps debuggers understand: What failed, when, why, and what triggered it.
Choosing the Right Strategy
Here's a decision matrix for choosing error handling strategies:
| Error Type | Best Strategy | Why | Example |
|---|---|---|---|
| Transient (temporary) | Retry | Error resolves on retry | Network timeout, service briefly down |
| Permanent, predictable | Fallback | Operation will always fail | File not found, invalid format |
| Non-critical feature | Graceful degradation | Core function continues | Thumbnail loading fails, app still works |
| All errors | Logging | Track for debugging | Record what happened for diagnosis |
Exercise 1: Implement Retry Logic
Write a function that simulates a network request, fails twice, succeeds on third attempt. Add logging.
def unreliable_fetch(attempt: int = 0) -> str:
"""Simulate unreliable network—fails twice, succeeds on third."""
attempt += 1
if attempt < 3:
raise ConnectionError(f"Attempt {attempt}: Network timeout")
return "Data received"
# Your task: Write retry_wrapper() that calls unreliable_fetch()
# with retry logic, logging each attempt, returning success on success
# or raising an exception after 4 failed attempts.
def retry_wrapper(max_attempts: int = 4) -> str:
"""Your implementation here."""
pass
# Test: Should log 2 failures, then succeed on attempt 3
result = retry_wrapper()
Expected outcome: Your function retries the operation, logs each attempt, and succeeds when the underlying function succeeds.
Exercise 2: Implement Fallback for Missing Configuration
Write a function that loads configuration from a file, but falls back to defaults if missing or corrupted.
# You have: config_defaults = {"port": 8000, "host": "localhost", "debug": False}
# You need: load_config(filename: str) that:
# - Tries to load JSON from filename
# - Falls back to defaults if FileNotFoundError
# - Falls back to defaults if JSONDecodeError
# - Logs what happened
# - Returns the config (loaded or default)
def load_config(filename: str) -> dict:
"""Your implementation here."""
pass
# Test with missing file
config = load_config("missing_config.json")
# Should print warning and return defaults
Expected outcome: Function gracefully handles missing or corrupted files, returning sensible defaults while logging what happened.
Exercise 3: Combine Strategies – Robust Data Processing
Write a function that processes a list of user data, implementing all four strategies:
- Retry: Attempts validation multiple times (in case data quality issue is temporary)
- Fallback: Uses default values for missing fields
- Graceful degradation: Skips invalid rows, continues processing others
- Logging: Records errors with context
def process_user_data(users: list[dict], max_validation_attempts: int = 2) -> list[dict]:
"""Process users with retry, fallback, graceful degradation, logging."""
processed = []
for idx, user in enumerate(users):
# Implement retry loop: attempt validation up to max_validation_attempts times
# Implement fallback: use defaults for missing fields
# Implement graceful degradation: skip invalid users
# Implement logging: record errors
pass
return processed
# Test data
test_users = [
{"name": "Alice", "age": 30, "email": "[email protected]"},
{"name": "Bob"}, # Missing age and email
{"name": "Charlie", "age": "invalid"}, # Invalid age
]
result = process_user_data(test_users)
Expected outcome: Function processes valid data, skips invalid, uses defaults where possible, logs all issues.
Key Takeaway: Defensive Programming Mindset
Professional developers ask:
- What errors are possible? (What exceptions could this raise?)
- Are they transient or permanent? (Will retry help?)
- What's the right recovery strategy? (Retry, fallback, degrade?)
- What should I log? (What context helps debugging?)
This systematic thinking transforms error handling from "catch and hope" to "anticipate and recover."
Try With AI
Use your preferred AI companion (Claude Code CLI, Gemini CLI, or ChatGPT web).
Prompt 1: Apply – Implement Retry Logic (Bloom's Level 3: Apply)
Write a Python function that:
1. Takes a URL as input
2. Attempts to fetch data (you can simulate with a helper function that fails
twice then succeeds)
3. Implements retry logic with max 4 attempts
4. Logs each attempt with timestamp and result
5. Returns the data on success or raises an exception after all retries exhausted
Then ask your AI: "Why use exponential backoff instead of immediate
retries? When would you use each approach?"
Expected Outcome: You'll implement working retry logic and understand the tradeoffs between different retry strategies.
Prompt 2: Analyze – Compare Error Handling Strategies (Bloom's Level 4: Analyze)
You're building a weather app. Here are three scenarios:
1. Fetching current temperature from API (critical feature)
2. Fetching user's profile picture (nice to have)
3. Loading local cache of weather history (useful but not essential)
For each scenario, determine:
- Which error handling strategy is most appropriate (retry, fallback, graceful degradation)?
- What error types might occur?
- What's your recovery strategy?
- What should you log?
Ask your AI: "For each scenario, what's the best error handling strategy
and why? What's a good fallback for each?"
Expected Outcome: You'll analyze realistic scenarios and match error handling strategies to error types and context.
Prompt 3: Design – Plan Error Handling for File Upload (Bloom's Level 5: Evaluate)
You're building a file upload feature. Users can upload profile pictures.
Ask your AI to help you design error handling:
"I'm building a file upload feature. Possible errors:
- Network timeout (user's connection)
- Server temporarily overloaded
- File is too large
- File format not supported
- Disk space full
For each error, should I retry, fallback, degrade, or fail?
Create a table showing: error type, strategy, user message, logging."
Then ask: "What errors are my responsibility to handle vs. user's responsibility?"
Expected Outcome: You'll think systematically about error categories and design recovery strategies that balance user experience with system reliability.
Prompt 4: Criticize – Review Real Error Handling (Bloom's Level 6: Create)
Share your Lesson 5 capstone code (CSV parser) with your AI:
"Review my CSV parser error handling:
1. What error types did I handle well?
2. What error types did I miss?
3. For each error I catch, is my recovery strategy appropriate?
4. What should I log that I'm not logging?
5. Could I add graceful degradation anywhere?
6. If this runs in production, what would I regret not logging?"
Take the feedback and improve your parser.
Expected Outcome: You'll critically evaluate your own error handling through professional lens and learn what production systems require.
Safety and Responsible Error Handling
As you implement error handling, remember:
- Log securely: Don't log passwords, API keys, or personal data
- User-friendly messages: Tell users what went wrong and what to do (not internal error codes)
- Graceful failure: Never silently ignore errors—log and inform
- Test error paths: Intentionally trigger errors to verify recovery works