When is it okay to use `@assert`?

Nathan_Boyer · May 17, 2024, 2:08pm

I see @assert used frequently in the wild to check function inputs, and it looks a lot nicer than putting a bunch of if/throw statements at the top of every function.

However, ModernJuliaWorkflows says:

To test the arguments provided to the functions within your code (for instance their sign or value), avoid @assert (which can be deactivated) and use ArgCheck.jl instead.

and @assert’s docstring says:

Warning
│ An assert might be disabled at various optimization levels. Assert
│ should therefore only be used as a debugging tool and not used for
│ authentication verification (e.g., verifying passwords), nor should
│ side effects needed for the function to work correctly be used
│ inside of asserts.

So,

Why do I still see @assert in so many popular packages despite the warnings?
Can’t we just update @assert to natively do whatever makes ArgCheck better?

It seems silly to tell people to go find external package tools because the built-in tools are not reliable enough. (I wonder similarly about @time and @btime.)

adienes · May 17, 2024, 2:23pm

because

An assert might be disabled at various optimization levels

never actually happens, despite the fact that the docs warn it might

mikmoore · May 17, 2024, 5:28pm

||/&& are also really useful for these short error checks and not quite as large/tedious as the equivalent if block. They’re still longer than a naked @assert (with the auto-generated error message) but about as long as one with a custom message.

Like

x > 0 || throw(DomainError(x,"x must be positive"))

jar1 · May 17, 2024, 5:31pm

@assert removal might happen at some point.

github.com/JuliaLang/julia

implement a julia specific debug mode with `--debug`

JuliaLang:master ← JuliaLang:kc/debug_mode2

opened 01:42PM - 20 Feb 24 UTC

KristofferC

+186 -49

This PR adds a new flag to control when a "julia specific" debug mode is active.… When the debug mode is active the following happens: - The `@assert` macro is active - The `isdebug` function returns `true`. Currently, the `--debug` has three options: - `"yes"`: debug mode is active in scripts and packages - `"script"`: debug mode is active in scripts (default) - `"no"`: debug is not active anywhere The debug mode is a "compile time option" meaning that it will recompile packages if it changes. There are still many open questions regarding this: - Should this instead use `-g` and coexist with the current behavior of `-g` or should it just steal it? - Are the defaults here reasonable? - When running `Pkg.test` should assertions be enabled everywhere or only in the tested package etc? - Will it be expected that people run their tests under both debug and normal mode? - Should `--debug` has any influence on `--check-bounds`? - Probably many more Subsumes https://github.com/JuliaLang/julia/pull/37874 Ref https://github.com/JuliaLang/julia/pull/41342, https://github.com/JuliaLang/julia/pull/53223

Nathan_Boyer · May 17, 2024, 7:35pm

I personally do not like seeing Boolean logic for control flow like that. It seems like a computer science hack that is not very readable for mortals. Related Github Issue

I can’t really follow the discussion, but hopefully we get a suitable alternative before @asserts are just turned off!

jar1 · May 17, 2024, 8:04pm

p || error("p") or ArgCheck.@check are ways to write enforced checks.

greatpet · May 17, 2024, 8:32pm

Since @assert may be removed in future, you should avoid using @assert with side effects as an essential part the program flow. For example, code like this would be problematic:

v = [1, 2]
@assert pop!(v) == 2 # may stop working in future
println(last(v))

mbaz · May 17, 2024, 8:48pm

I don’t think the plan is to just turn them off, but rather to add flags or command-line options to allow a user to turn them on/off.