Fix Errors

1---2name: fix-errors3description: Guidelines for fixing unhandled errors from the VS Code error telemetry dashboard. Use when investigating error-telemetry issues with stack traces, error messages, and hit/user counts. Covers tracing data flow through call stacks, identifying producers of invalid data vs. consumers that crash, enriching error messages for telemetry diagnosis, and avoiding common anti-patterns like silently swallowing errors.4---5 6When fixing an unhandled error from the telemetry dashboard, the issue typically contains an error message, a stack trace, hit count, and affected user count.7 8## Approach9 10### 1. Do NOT fix at the crash site11 12The error manifests at a specific line in the stack trace, but **the fix almost never belongs there**. Fixing at the crash site (e.g., adding a `typeof` guard in a `revive()` function, swallowing the error with a try/catch, or returning a fallback value) only masks the real problem. The invalid data still flows through the system and will cause failures elsewhere.13 14### 2. Trace the data flow upward through the call stack15 16Read each frame in the stack trace from bottom to top. For each frame, understand:17- What data is being passed and what is expected18- Where that data originated (IPC message, extension API call, storage, user input, etc.)19- Whether the data could have been corrupted or malformed at that point20 21The goal is to find the **producer of invalid data**, not the consumer that crashes on it.22 23### 3. When the producer cannot be identified from the stack alone24 25Sometimes the stack trace only shows the receiving/consuming side (e.g., an IPC server handler). The sending side is in a different process and not in the stack. In this case:26 27- **Enrich the error message** at the consuming site with diagnostic context: the type of the invalid data, a truncated representation of its value, and which operation/command received it. This information flows into the error telemetry dashboard automatically via the unhandled error pipeline.28- **Do NOT silently swallow the error** — let it still throw so it remains visible in telemetry, but with enough context to identify the sender in the next telemetry cycle.29- Consider adding the same enrichment to the low-level validation function that throws (e.g., include the invalid value in the error message) so the telemetry captures it regardless of call site.30 31### 4. When the producer IS identifiable32 33Fix the producer directly:34- Validate or sanitize data before sending it over IPC / storing it / passing it to APIs35- Ensure serialization/deserialization preserves types correctly (e.g., URI objects should serialize as `UriComponents` objects, not as strings)36 37## Example38 39Given a stack trace like:40```41at _validateUri (uri.ts)       ← validation throws42at new Uri (uri.ts)            ← constructor43at URI.revive (uri.ts)         ← revive assumes valid UriComponents44at SomeChannel.call (ipc.ts)   ← IPC handler receives arg from another process45```46 47**Wrong fix**: Add a `typeof` guard in `URI.revive` to return `undefined` for non-object input. This silences the error but the caller still expects a valid URI and will fail later.48 49**Right fix (when producer is unknown)**: Enrich the error at the IPC handler level and in `_validateUri` itself to include the actual invalid value, so telemetry reveals what data is being sent and from where. Example:50```typescript51// In the IPC handler — validate before revive52function reviveUri(data: UriComponents | URI | undefined | null, context: string): URI {53    if (data && typeof data !== 'object') {54        throw new Error(`[Channel] Invalid URI data for '${context}': type=${typeof data}, value=${String(data).substring(0, 100)}`);55    }56    // ...57}58 59// In _validateUri — include the scheme value60throw new Error(`[UriError]: Scheme contains illegal characters. scheme:"${ret.scheme.substring(0, 50)}" (len:${ret.scheme.length})`);61```62 63**Right fix (when producer is known)**: Fix the code that sends malformed data. For example, if an authentication provider passes a stringified URI instead of a `UriComponents` object to a logger creation call, fix that call site to pass the proper object.64 65## Understanding error construction before fixing66 67Before proposing any fix, **always find and read the code that constructs the error**. Search the codebase for the error class name or a unique substring of the error message. The construction code reveals:68 69- **What conditions trigger the error** — thresholds, validation checks, state assertions70- **What classifications or categories the error encodes** — the error may have subtypes that require different fix strategies71- **What the error's parameters mean** — numeric values, ratios, or flags embedded in the message often encode diagnostic context72- **Whether the error is actionable** — some errors are threshold-based warnings where the threshold may be legitimately exceeded by design73 74Use this understanding to determine the correct fix strategy. The construction code is the source of truth — do NOT assume what the error means from its message alone.75 76### Example: Listener leak errors77 78Searching for `ListenerLeakError` leads to `src/vs/base/common/event.ts`, where the construction code reveals:79 80```typescript81const kind = topCount / listenerCount > 0.3 ? 'dominated' : 'popular';82const error = new ListenerLeakError(kind, message, topStack);83```84 85Reading this code tells you:86- The error has two categories based on a ratio87- **Dominated** (ratio > 30%): one code path accounts for most listeners → that code path is the problem, fix its disposal88- **Popular** (ratio ≤ 30%): many diverse code paths each contribute a few listeners → the identified stack trace is NOT the root cause; it's just the most identical stack among many. Investigate the emitter and its aggregate subscribers instead89- For popular leaks: do NOT remove caching/pooling/reuse patterns that appear in the top stack — they exist to solve other problems. If the aggregate count is by design (e.g., many menus subscribing to a shared context key service), close the issue as "not planned"90 91This analysis came from reading the construction code, not from memorized rules about listener leaks.92 93## Guidelines94 95- Prefer enriching error messages over adding try/catch guards96- Truncate any user-controlled values included in error messages (to avoid PII and keep messages bounded)97- Do not change the behavior of shared utility functions (like `URI.revive`) in ways that affect all callers — fix at the specific call site or producer98- Run the relevant unit tests after making changes99- Check for compilation errors via the build task before declaring work complete