finding concurrency bugs in java
play

Finding Concurrency Bugs in Java David Hovemeyer and William Pugh - PowerPoint PPT Presentation

Mar 27, 2023 •323 likes •521 views

Outline Introduction Concurrency Bug Patterns Conclusions Finding Concurrency Bugs in Java David Hovemeyer and William Pugh July 25, 2004 David Hovemeyer and William Pugh Finding Concurrency Bugs in Java Outline Introduction Concurrency

  1. Outline Introduction Concurrency Bug Patterns Conclusions Finding Concurrency Bugs in Java David Hovemeyer and William Pugh July 25, 2004 David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  2. Outline Introduction Concurrency Bug Patterns Conclusions Introduction Background Our Work Concurrency Bug Patterns Inconsistent Synchronization Double Checked Locking Unconditional Wait Other Bug Patterns Conclusions Conclusions Recommendations David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  3. Outline Introduction Background Concurrency Bug Patterns Our Work Conclusions Programmers are Not Scared Enough ◮ Java makes threaded programming “too easy” ◮ Language often hides consequences of incorrect synchronization ◮ Many (most?) Java programmers play fast and loose with synchronization ◮ Result: many production concurrent Java programs have serious, avoidable concurrency bugs ◮ Programmer intuition about behavior of programs with data races is almost always wrong ◮ Program usually works ◮ ...until deployed in a mission-critical application? David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  4. Outline Introduction Background Concurrency Bug Patterns Our Work Conclusions Our Work ◮ Develop simple, effective static analysis techniques for finding bugs ◮ Including concurrency bugs ◮ http://findbugs.sourceforge.net ◮ Idea: bug patterns ◮ Deviations from good practice ◮ Code idioms that are likely to be errors ◮ Analyze real applications and libraries ◮ Was analysis effective at finding real errors? ◮ Was the false positive rate acceptable? ◮ Can we convince developers bugs are worth fixing? ◮ Can we gain insight on why bugs are introduced? David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  5. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Concurrency Bug Patterns David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  6. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Finding and Eliminating Data Races ◮ Lots of techniques exist to find and eliminate data races: ◮ Race-free Java dialects (sound, but restrictive) ◮ Sophisticated static analysis (interprocedural, context-sensitive) ◮ Dynamic techniques ◮ How about simple techniques? ◮ Java programs usually have relatively simple concurrency patterns ◮ Look for violations of most common synchronization idiom ◮ Can we find real bugs? David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  7. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Inconsistent Synchronization ◮ Common idiom: synchronize on this reference ◮ Track scope of locks intraprocedurally, examine field accesses ◮ Ignore accesses in... ◮ non-public methods called only from locked contexts ◮ methods not likely to be reachable from multiple threads: constructors, finalizers, readObject() , etc. ◮ Report fields where accesses are usually, but not always, synchronized ◮ Result: this technique finds lots of data races ◮ 114 we verified in core J2SE libraries (JDK 1.5, build 42) ◮ 2 found in prerelease version of JDK 1.4.2, fixed by Sun in JDK 1.5 David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  8. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Ranking Warnings: The Hypothesis ◮ We believed that programmers would strive to synchronize all mutable field accesses for objects intended to be thread-safe ◮ Therefore: ◮ The higher the percentage of synchronized accesses, ◮ The more likely unsynchronized accesses would indicate genuine bugs ◮ So, we gave higher priority to warnings of fields synchronized between 75% and 99% of the time David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  9. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Ranking Warnings: The Reality ◮ The hypothesis was incorrect: Inconsistent synchronization false positive results for rt-1.5-b42 120 Serious Harmless and false 100 Number of warnings 80 60 40 20 0 50 60 70 80 90 100 Minimum accesses synchronized (percent) David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  10. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Interpretation ◮ Fields synchronized, e.g., 95% of the time not significantly more likely to be bugs than fields synchronized 50% of the time ◮ Programmers are deliberately using race conditions to communicate values between threads ◮ Some examples of unsynchronized accesses: ◮ Set methods (very common) ◮ Get methods (very common) ◮ Copying internal collection to an array ◮ Programs work “most of the time” ◮ Many bugs may not be exploitable in practice ◮ Still, not a comforting thought David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  11. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Double Checked Locking ◮ A common technique to avoid locking in lazy initialization of a singleton: if (singleton == null) { synchronized (lock) { if (singleton == null) singleton = new Singleton(); } } ◮ JVM can reorder writes! ◮ Without acquiring lock, may see incompletely initialized object ◮ Still widely used ◮ We found 78 doublecheck instances in core J2SE libraries ◮ And 4 doublecheck instances in JBoss David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  12. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Detecting Double Checked Locking ◮ State machine driven pattern recognition over bytecode ◮ Bytecode closely matches source ◮ Look for: 1. Load of field 2. Null comparison 3. Monitorenter 4. Load of field 5. Null comparison 6. Object creation, Store to field David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  13. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Unconditional Wait ◮ Triggered when monitor wait is done immediately upon entering a synchronized block: 1. monitorenter 2. invokevirtual Object.wait() ◮ Often means condition was checked without the lock held ◮ Usually a novice thread programmer error, but... ◮ 2 occurrences in JBoss! David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  14. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Example ◮ Example (JBoss 4.0.0 DR3) // If we are not enabled, then wait if (!enabled) { try { log.debug("Disabled, waiting for notification"); synchronized (lock) { lock.wait(); } } catch (InterruptedException ignore) {} } David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  15. Outline Inconsistent Synchronization Introduction Double Checked Locking Concurrency Bug Patterns Unconditional Wait Conclusions Other Bug Patterns Other Bug Patterns ◮ Some concurrency bug patterns more useful for finding mistakes in novice code: ◮ Wait Not In Loop ◮ Monitor waits must be in a loop which checks the condition ◮ Other threads can run between wakeup and reacquiring lock ◮ Java allows spurious wakeups ◮ Monitors used for multiple conditions ◮ Two Lock Wait ◮ Waiting with two locks creates possibility of deadlock ◮ Found bug in J2SE CORBA ORB implementation ◮ More patterns described in paper David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  16. Outline Introduction Conclusions Concurrency Bug Patterns Recommendations Conclusions Conclusions David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  17. Outline Introduction Conclusions Concurrency Bug Patterns Recommendations Conclusions Conclusions ◮ Trivial static inspection reveals a large number of concurrency bugs in widely-used applications and libraries ◮ Why are these bugs there? ◮ Benign reason: everyone makes mistakes ◮ Sinister reason: programmers are too willing to take chances ◮ Many bug patterns can be easily automated ◮ With tuning, false positive rate is acceptable (usually less than 50%) David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

  18. Outline Introduction Conclusions Concurrency Bug Patterns Recommendations Conclusions Recommendations ◮ Once introduced, bugs are difficult and expensive to fix ◮ Especially true of concurrency bugs, where reproducibility is low and likelihood of introducing other errors is high ◮ We should make early detection tools (static and dynamic) easy to use ◮ Tools that don’t require developers to change working style more likely to be adopted in practice ◮ Simplicity helps: ◮ If analysis is simple, it’s usually easy to explain results to user ◮ It makes sense to fix obvious bugs before tackling subtle bugs David Hovemeyer and William Pugh Finding Concurrency Bugs in Java

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Outline Bugs! 1 Avoiding and Finding bugs 2 Bugs still happen 3 Why do bugs still happen ?!

Outline Bugs! 1 Avoiding and Finding bugs 2 Bugs still happen 3 Why do bugs still happen ?!

Failure is not an option * A journey through software bugs Philippe Biondi Nov 20 th 2015 / GreHack Failure is not an option * Outline Bugs! 1 Avoiding and Finding bugs 2 Bugs still happen 3 Why do bugs still happen ?! 4 Living with bugs

966 views • 63 slides
Performance and Concurrency Bug Detection Tools for Java Programs Shan Lu University of Chicago

Performance and Concurrency Bug Detection Tools for Java Programs Shan Lu University of Chicago

Performance and Concurrency Bug Detection Tools for Java Programs Shan Lu University of Chicago 1 Fighting software bugs is crucial Software is everywhere http://en.wikipedia.org/wiki/List_of_software_bugs Software bugs are

396 views • 35 slides
Finding Bugs Last time Run-time reordering transformations Today Program Analysis for

Finding Bugs Last time Run-time reordering transformations Today Program Analysis for

Finding Bugs Last time Run-time reordering transformations Today Program Analysis for finding bugs, especially security bugs problem specification motivation approaches remaining issues CS553 Lecture Finding Bugs 2

461 views • 8 slides
Understanding and Genera-ng High Quality Patches for Concurrency Bugs Haopeng Liu , Yuxi Chen and

Understanding and Genera-ng High Quality Patches for Concurrency Bugs Haopeng Liu , Yuxi Chen and

1 Understanding and Genera-ng High Quality Patches for Concurrency Bugs Haopeng Liu , Yuxi Chen and Shan Lu 2 What are concurrency bugs Synchroniza-on mistakes in mul--threaded programs 3 What are concurrency bugs Synchroniza-on

826 views • 65 slides
Multi-Core in JAVA/JVM Tommi Zetterman Concurrency Prior to Java 5: Synchronization and Threads

Multi-Core in JAVA/JVM Tommi Zetterman Concurrency Prior to Java 5: Synchronization and Threads

Multi-Core in JAVA/JVM Tommi Zetterman Concurrency Prior to Java 5: Synchronization and Threads Java has been supporting concurrency from the beginning. Typical Java execution environment consists of Java Virtual Machine (JVM) which executes

353 views • 14 slides
SKI: Exposing Kernel Concurrency Bugs through Systematic Schedule Exploration Pedro Fonseca

SKI: Exposing Kernel Concurrency Bugs through Systematic Schedule Exploration Pedro Fonseca

SKI: Exposing Kernel Concurrency Bugs through Systematic Schedule Exploration Pedro Fonseca (MPI-SWS) Rodrigo Rodrigues Bjrn Brandenburg (MPI-SWS) (NOVA University of Lisbon) OSDI 2014 SKI: Exposing Kernel Concurrency Bugs

840 views • 67 slides
Detecting and Avoiding Concurrency Bugs Pil Jae Jang Cyril Agbi Paper similarities Testing

Detecting and Avoiding Concurrency Bugs Pil Jae Jang Cyril Agbi Paper similarities Testing

Detecting and Avoiding Concurrency Bugs Pil Jae Jang Cyril Agbi Paper similarities Testing Parallel programming is hard to debug due to interleaving bugs A viable solution is to better equip programmers to detect and fix these bugs

585 views • 41 slides
1 Example Bugs Type Qualifiers [Shankar, et al 01] Idea null dereference Add tainted and

1 Example Bugs Type Qualifiers [Shankar, et al 01] Idea null dereference Add tainted and

Finding Bugs Problem Last time What is a bug? a path in the code that causes a run-time exception Alias/Pointer analysis a path through the code that causes incorrect results Today Issues Program Analysis for finding bugs,

214 views • 4 slides
Advanced Java Concurrency Framework By Nisarg Shah Rutvi Joshi Advanced Java Concurrency

Advanced Java Concurrency Framework By Nisarg Shah Rutvi Joshi Advanced Java Concurrency

Advanced Java Concurrency Framework By Nisarg Shah Rutvi Joshi Advanced Java Concurrency Framework - By Nisarg Shah and Rutvi Joshi Concurrency in Java Developers had to create their own solution to solve concurrency problems Such

352 views • 23 slides
DCatch: Automatically Detecting Distributed Concurrency Bugs in Cloud Systems Haopeng Liu ,

DCatch: Automatically Detecting Distributed Concurrency Bugs in Cloud Systems Haopeng Liu ,

1 DCatch: Automatically Detecting Distributed Concurrency Bugs in Cloud Systems Haopeng Liu , Guangpu Li, Jeffrey Lukman, Jiaxin Li, Shan Lu, Haryadi Gunawi, and Chen Tian* * 2 Cloud systems 3 Cloud systems 4 Distributed concurrency bugs

1.3k views • 93 slides
1 Bug Triage Regression Testing Decide which bugs to fix Good: rerun the test that failed

1 Bug Triage Regression Testing Decide which bugs to fix Good: rerun the test that failed

What is a bug? Formally, a software defect A Bugs life SUT fails to perform to spec SUT causes something else to fail SUT functions, but does not satisfy Finding and Managing Bugs usability criteria CSE 403 If the

643 views • 3 slides
Concurrency Bugs Nima Honarmand (Based on slides by Prof. Andrea Arpaci-Dusseau) Fall 2017 ::

Concurrency Bugs Nima Honarmand (Based on slides by Prof. Andrea Arpaci-Dusseau) Fall 2017 ::

Fall 2017 :: CSE 306 Concurrency Bugs Nima Honarmand (Based on slides by Prof. Andrea Arpaci-Dusseau) Fall 2017 :: CSE 306 Concurrency Bugs are Serious The Therac-25 incident (1980s) The accidents occurred when the high-power electron

297 views • 27 slides
COMP30112: Concurrency Topics 2.2: Concurrency in FSP & 3.1: Java Threads Howard Barringer

COMP30112: Concurrency Topics 2.2: Concurrency in FSP & 3.1: Java Threads Howard Barringer

Topic 2.2: Modelling Processes with FSP - II Topic 3.1: Java Threads: Revision COMP30112: Concurrency Topics 2.2: Concurrency in FSP & 3.1: Java Threads Howard Barringer Room KB2.20: email: Howard.Barringer@manchester.ac.uk February 2009

785 views • 33 slides
Finding Inter-procedural Bugs at Scale with Infer Jules Villard <jul@fb.com> Facebook London

Finding Inter-procedural Bugs at Scale with Infer Jules Villard <jul@fb.com> Facebook London

Finding Inter-procedural Bugs at Scale with Infer Jules Villard <jul@fb.com> Facebook London Open-source static analyser Inter-procedural analyses + linters Infer For Java and C/C++/Objective-C Infer architecture PROJECT SOURCE CODE

653 views • 20 slides
Multi-core in JVM/Java Concurrent programming in java Prior Java 5 Java 5 (2006)

Multi-core in JVM/Java Concurrent programming in java Prior Java 5 Java 5 (2006)

Multi-core in JVM/Java Concurrent programming in java Prior Java 5 Java 5 (2006) Java 7 (2010) Other topics Basic concurrency in Java Java Memory Model describes how threads interact through memory Single thread

812 views • 34 slides
Concurrency www.thoughts-on-java.org Databases try to isolate concurrent transactions

Concurrency www.thoughts-on-java.org Databases try to isolate concurrent transactions

Concurrency www.thoughts-on-java.org Databases try to isolate concurrent transactions Concurrency Mechanism and isolation levels are database specific Hibernate inherits concurrency control from the database Uses database features

232 views • 7 slides
Generic Types in Java 4003-232-06 (Winter 2006-2007) Week 5: Generics, (Ch. 21 in Liang) Java

Generic Types in Java 4003-232-06 (Winter 2006-2007) Week 5: Generics, (Ch. 21 in Liang) Java

Computer Science II Generic Types in Java 4003-232-06 (Winter 2006-2007) Week 5: Generics, (Ch. 21 in Liang) Java Collection Framework Richard Zanibbi Rochester Institute of Technology What are Generic Types or Example: Comparable

334 views • 6 slides
OpenJDK & What it means for the Java Developer Dalibor Topi Java F/OSS Ambassador Sun

OpenJDK & What it means for the Java Developer Dalibor Topi Java F/OSS Ambassador Sun

OpenJDK & What it means for the Java Developer Dalibor Topi Java F/OSS Ambassador Sun Microsystems http://twitter.com/robilad Dalibor.Topic@Sun.com Java 2 Programming Language 3 Virtual Machine 4 Cross- platform Programming

2.24k views • 193 slides
Coroutines Update Seva Tolstopyatov @qwwdfsad October 13, 2020 Coroutines debugging Coroutines

Coroutines Update Seva Tolstopyatov @qwwdfsad October 13, 2020 Coroutines debugging Coroutines

Kotlin 1.4 Online Event Coroutines Update Seva Tolstopyatov @qwwdfsad October 13, 2020 Coroutines debugging Coroutines debugging Coroutines debugging Coroutines debugging Coroutines debugging IDEA 2020.1 Coroutines debugging Debugging

737 views • 41 slides
Principles of Software Construction: The Design of the Collections API Parts 1 & 2 Josh

Principles of Software Construction: The Design of the Collections API Parts 1 & 2 Josh

Principles of Software Construction: The Design of the Collections API Parts 1 & 2 Josh Bloch Charlie Garrod School of Computer Science 15-214 1 Administrivia Homework 4b due today Grab an API design quick reference!

1.11k views • 67 slides
Call Semantics Finding Remote Objects Method Call Semantics what does it mean to It

Call Semantics Finding Remote Objects Method Call Semantics what does it mean to It

Network Programming Paradigms Sockets programming: design a protocol CSCE 515: first, then implement clients and servers Computer Network that support the protocol. Programming RMI: Develop an application, then move ------ Remote Method

204 views • 4 slides
Duet Benchmarking Improving Measurement Accuracy in the Cloud Lubomr Bulej Franois Farquet

Duet Benchmarking Improving Measurement Accuracy in the Cloud Lubomr Bulej Franois Farquet

Duet Benchmarking Improving Measurement Accuracy in the Cloud Lubomr Bulej Franois Farquet Vojtch Hork Aleksandar Prokopec Petr Tma Software Regression Testing of Performance Common Testing Pipeline Write Check Write

357 views • 15 slides
JavaFX Basics Lecture 7 JavaFX Basics February 27, 2017 1 Wentworth Institute of Technology

JavaFX Basics Lecture 7 JavaFX Basics February 27, 2017 1 Wentworth Institute of Technology

Wentworth Institute of Technology COMP1050 Computer Science II | Spring 2017 | Derbinsky JavaFX Basics Lecture 7 JavaFX Basics February 27, 2017 1 Wentworth Institute of Technology COMP1050 Computer Science II | Spring 2017 |

824 views • 60 slides
Recap: What an object can do Label objects for example Public interface what clients need

Recap: What an object can do Label objects for example Public interface what clients need

Recap: What an object can do Label objects for example Public interface what clients need to know Defined by its interface Includes accessors: public String getText() Consists of public methods and public data And mutators:

625 views • 3 slides

More recommend