Assert in Python: Patterns for Cleaner Python

By

Sometimes a genuinely helpful language feature gets less attention than it deserves. For some reason, this is what happened to Python’s built-in assert statement.

In this chapter I’m going to give you an introduction to using assertions in Python. You’ll learn how to use them to help automatically detect errors in your Python programs. This will make your programs more reliable and easier to debug.

At this point, you might be wondering “What are assertions and what are they good for?” Let’s get you some answers for that.

At its core, Python’s assert statement is a debugging aid that tests a condition. If the assert condition is true, nothing happens, and your program continues to execute as normal. But if the condition evaluates to false, an AssertionError exception is raised with an optional error message.

Assert in Python —An Example

Here’s a simple example so you can see where assertions might come in handy. I tried to give this some semblance of a real-world problem you might actually encounter in one of your programs.

Suppose you were building an online store with Python. You’re working to add a discount coupon functionality to the system, and eventually you write the following apply_discount function:

def apply_discount(product, discount): 
    price = int(product['price'] * (1.0 - discount)) 
    assert 0 <= price <= product['price'] 
    return price

Notice the assert statement in there? It will guarantee that, no mat-

ter what, discounted prices calculated by this function cannot be lower than $0 and they cannot be higher than the original price of the product.

Let’s make sure this actually works as intended ifwe call this function to apply a valid discount. In this example, products for our store will be represented as plain dictionaries. This is probably not what you’d do for a real application, but it’ll work nicely for demonstrating assertions. Let’s create an example product—a pair of nice shoes at a price of $149.00:

>>> shoes = {'name': 'Fancy Shoes', 'price': 14900}

By the way, did you notice how I avoided currency rounding issues by using an integer to represent the price amount in cents? That’s generally a good idea… But I digress. Now, ifwe apply a 25% discount to these shoes, we would expect to arrive at a sale price of $111.75:

>>> apply_discount(shoes, 0.25) 11175

Alright, this worked nicely. Now, let’s try to apply some invalid discounts. For example, a 200% “discount” that would lead to us giving money to the customer:

>>> apply_discount(shoes, 2.0) Traceback (most recent call last): File

"<input>", line 1, in <module> apply_discount(prod, 2.0)

File "<input>", line 4, in apply_discount assert 0 <= price <= product['price']

AssertionError


As you can see, when we try to apply this invalid discount, our program halts with an AssertionError. This happens because a discount of 200% violated the assertion condition we placed in the

apply_discount function.

You can also see howthe exception stacktrace points out the exact line of code containing the failed assertion. If you (or another developer on your team) ever encounter one of these errors while testing the online store, it will be easy to find out what happened just by looking at the exception traceback.

This speeds up debugging efforts considerably, and it will make your programs more maintainable in the long-run. And that, my friend, is the power of assertions.


Why Not Just Use a Regular Exception?

Now, you’re probably wondering why I didn’t just use an if-statement and an exception in the previous example…

You see, the proper use of assertions is to inform developers about unrecoverable errors in a program. Assertions are not intended to signal expected error conditions, like a File-Not-Found error, where a user can take corrective actions or just try again.

Assertions are meant to be internal self-checks for your program. They work by declaring some conditions as impossible in your code. If one of these conditions doesn’t hold, that means there’s a bug in the program.

If your program is bug-free, these conditions will never occur. But if they do occur, the program will crash with an assertion error telling you exactly which “impossible” condition was triggered. This makes it much easier to track down and fix bugs in your programs. And I like anything that makes life easier—don’t you?

For now, keep in mind that Python’s assert statement is a debugging aid, not a mechanism for handling run-time errors. The goal of using assertions is to let developers find the likely root cause of a bug more quickly. An assertion error should never be raised unless there’s a bug in your program.

Let’s take a closer look at some other things we can do with assertions,and then I’ll cover two common pitfalls when using them in real-world scenarios.


Python’s Assert Syntax

It’s always a good idea to study up on how a language feature is actually implemented in Python before you start using it. So let’s take a quick look at the syntax for the assert statement, according to the Python docs:1

assert_stmt ::= "assert" expression1 ["," expression2]

In this case, expression1 is the condition we test, and the optional expression2 is an error message that’s displayed ifthe assertion fails. At execution time, the Python interpreter transforms each assert statement into roughly the following sequence of statements:

if __debug__: 
    if not expression1: 
        raise AssertionError(expression2)

Two interesting things about this code snippet:

Before the assert condition is checked, there’s an additional check for the __debug__ global variable. It’s a built-in boolean flag that’s true under normal circumstances and false if optimizations are requested. We’ll talk somemore about later that in the “common pitfalls” section.

Also, you can use expression2 to pass an optional error message that will be displayed with the AssertionError in the traceback. This can simplify debugging even further. For example, I’ve seen code like this:

>>> if cond == 'x':

       ... do_x()    

... elif cond == 'y': 

        ... do_y()

... else: ...

        assert False, ('This should never happen, but it does ' 'occasionally. We are currently trying to '                'figure out why. Email dbader if you ' 'encounter this in the wild. Thanks!')


Is this ugly? Well, yes. But it’s definitely a valid and helpful technique

if you’re faced with a Heisenbug2 in one of your applications.


Common Pitfalls With Using Asserts in Python 

Before you move on, there are two important caveats regarding the use of assertions in Python that I’d like to call out.

The first one has to do with introducing security risks and bugs into your applications, and the second one is about a syntax quirk that makes it easy to write useless assertions.

This sounds (and potentially is) quite horrible, so you should probably at least skim these two caveats below.

Caveat #1 – Don’t Use Asserts for Data Validation 

The biggest caveat with using asserts in Python is that assertions can be globally disabled3 with the -O and -OO command line switches, as well as the PYTHONOPTIMIZE environment variable in CPython.

This turns any assert statement into a null-operation: the assertions simply get compiled away and won’t be evaluated, which means that none of the conditional expressions will be executed.

This is an intentional design decision used similarly by many other programming languages. As a side-effect, it becomes extremely dangerous to use assert statements as a quick and easy way to validate input data.

Let me explain—if your program uses asserts to check if a function argument contains a “wrong” or unexpected value, this can backfire quickly and lead to bugs or security holes.

Let’s take a look at a simple example that demonstrates this problem. Again, imagine you’re building an online store application with Python. Somewhere in your application code there’s a function to delete a product as per a user’s request.

Because you just learned about assertions, you’re eager to use them in your code (hey, I know I would be!) and you write the following implementation:

def delete_product(prod_id, user): 
    assert user.is_admin(), 'Must be admin' 
    assert store.has_product(prod_id), 'Unknown product' 
    store.get_product(prod_id).delete()

Take a close look at this delete_product function. Now, what’s going to happen if assertions are disabled?

There are two serious issues in this three-line function example, and they’re caused by the incorrect use of assert statements:

  • Checking for admin privileges with an assert statement is dangerous. If assertions are disabled in the Python interpreter, this turns into a null-op. Therefore any user can now delete products. The privileges check doesn’t even run. This likely introduces a security problem and opens the door for attackers to destroy or severely damage the data in our online store. Not good.
  • The has_product() check is skipped when assertions are disabled. This means get_product() can now be called with invalid product IDs—which could lead to more severe bugs, depending on how our program is written. In the worst case, this could be an avenue for someone to launch Denial of Service attacks against our store. For example, if the store app crashes if someone attempts to delete an unknown product, an attacker could bombard it with invalid delete requests and cause an outage.

How might we avoid these problems? The answer is to never use assertions to do data validation. Instead, we could do our validation with regular if-statements and raise validation exceptions if necessary, like so:

def delete_product(product_id, user): 
    if not user.is_admin(): 
        raise AuthError('Must be admin to delete')
    if not store.has_product(product_id): 
        raise ValueError('Unknown product id') 
store.get_product(product_id).delete()

This updated example also has the benefit that instead of raising unspecific AssertionError exceptions, it now raises semantically correct exceptions like ValueError or AuthError (which we’d have to define ourselves.)

Caveat #2 – Asserts That Never Fail 

It’s surprisingly easy to accidentally write Python assert statements that always evaluate to true. I’ve been bitten by this myself in the past. Here’s the problem, in a nutshell:

When you pass a tuple as the first argument in an assert statement, the assertion always evaluates as true and therefore never fails.

For example, this assertion will never fail: assert(1 == 2, 'This should fail')

This has to do with non-empty tuples always being truthy inPython. If you pass a tuple to an assert statement, it leads to the assert condition always being true—which in turn leads to the above assert statement being useless because it can never fail and trigger an exception.

It’s relatively easy to accidentally write bad multi-line asserts due to this, well, unintuitive behavior. For example, I merrily wrote a bunch ofbroken test cases that gave a false sense of security in one ofmy test suites. Imagine you had this assertion in one of your unit tests:

assert (
counter == 10, 
'It should have counted all the items'
)

Upon first inspection, this test case looks completely fine. However, it would never catch an incorrect result: the assertion always evaluates to True, regardless of the state of the counter variable. And why is that? Because it asserts the truth value of a tuple object.

Like I said, it’s rather easy to shoot yourself in the foot with this (mine still hurts). A good countermeasure you can apply to prevent this syntax quirk from causing trouble is to use a code linter.4 Newer versions of Python 3 will also show a syntax warning for these dubious asserts.


Summary:

Despite these caveats I believe that Python’s assertions are a powerful debugging tool that’s frequently underused by Python developers.

Understanding howassertions work and when to apply them can help you write Python programs that are more maintainable and easier to debug.

It’s a great skill to learn that will help bring your Python knowledge to the next level and make you a more well-rounded Pythonista. I know it has saved me hours upon hours of debugging.

Comments

Post a Comment

Popular posts from this blog

What is Decorators in Python? How Decorators work.

By
Image
Python decorators are a powerful tool in the arsenal of every Python programmer. They provide a way to modify or enhance the behavior of functions and classes without changing their source code. Decorators allow developers to add new features or functionality to existing code, making it more flexible, modular, and reusable. In this blog post, we'll explore what decorators are, how they work, and how you can use them in your Python code. What are Decorators? Decorators are functions that take another function as input and return a new function as output. The new function can be used in place of the original function, with some additional behavior or functionality added to it. Decorators can be used to modify the behavior of a function without changing its source code, which makes them a powerful tool for code reuse and modular design. Here's an example of a simple decorator: Python Copy code def my_decorator ( func ): def wrapper (): print ( "Before the functi...
Read more