Tackling Lack of Software Specifications...Tackling Lack of Software Specifications A Sustained,...

TacklingLackofSoftwareSpecificationsASustained,SustainabilityandProductivityCrisis

HrideshRajanCollaborationwithHoan A.Nguyen,Tien Nguyen,GaryLeavens,SamanthaKhairunnesa, JohnSingleton,HungPhan,RobertDyer,andVasant Honavar

Sustainabilityandproductivitychallenge

• Toproducecriticalsoftwareinfrastructuresoitis:– ofhighestqualityandfreeofdefects,– producedethicallyandwithinbudget,and– maintainable,upgradeable,portable,scalable,secure.

• Pervasivenessofsoftwareinfrastructuresinsuchcriticalareasaspower,bankingandfinance,airtrafficcontrol,telecommunication,transportation,nationaldefense,andhealthcareneedustoaddressthischallenge.

Softwarespecifications*canhelpachievethissustainabilityandproductivitychallenge.

*Softwarespecifications:formal,oftenmachinereadable,descriptionofsoftware’sintendedbehavior,e.g.{Pre}S{Post} behavioralspecifications

• Ifspecificationsarewidelyavailable,awidevarietyoftechniquesforaddressingthesustainabilityandproductivitycrisiscanbeenabled.–Maintenanceofcodecanbecomeeasier– Lowercostofcodeunderstanding&totallifecyclecost– Specification-guidedcodeoptimization– Preventintroducingnewbugsduringmaintenance– Codereuse– Specification-guidedsynthesis–Modularanalysisandverification,scalabletools

• Ifspecificationsarewidelyavailable,awidevarietyoftechniquesforaddressingthesustainabilityandproductivitycrisiscanbeenabled.– Maintenanceofcodecanbecomeeasier,becauseengineerswillnotneedtospendtimereverseengineeringcode.

– Lowercostofcodeunderstanding,lowertotallifecyclecost.– Optimizationofcodewillbegreatlyfacilitated– Preventintroducingnewbugsduringmaintenance– Codereuse– Synthesisofcode– Modularanalysisandverificationleadingtoscalabletools

Despitethesebenefitsuseful,non-trivial

specificationsaren’twidelyavailable

Whyaren’tsoftwarespecificationswidely

available?

CostEducationTools

Libraries

CostEducationTools

Libraries

Unspecifiedlibrariesarerootcause- increasecostofspecification

- makeeducationharder- maketoolsupportdifficult

- makespecifyinglibrariesharder

HowtoSolveit?Specifykeylibraries- decreasecostofspecification

- makeeducationeasier(examples)- maketoolsupporteasier

- makespecifyinglibrarieseasier

HowtoSolveit?SpecifykeylibrariesChallenge#1:lowermanualcostof

specifyinglibraries,infermostChallenge#2:inferrich,butpracticalspecifications,allowcodeevolution

KeyIdeas

PreconditionscanbeminedfromguardedconditionsatthecallsitesofthecodeusingtheAPIs

Preconditionsminedfrommultipleprojects inalarge-scalecodecorpuscanbeusedtofilteroutchaff

voidm(…){…if(pred)lib.api();

MiningPreconditionsofAPIsinLarge-scaleCodeCorpus,FSE’14.

Hoan NguyenRobertDyer* Tien N.Nguyen

Client codeofAPIString.substring(int,int) inprojectSeMoA atrevision1929

completePath_.substring(servletPathStart,extraPathStart)

servletPathStart >=0extraPathStart >=0servletPathStart <=completePath_.length()extraPathStart <=completePath_.length()servletPathStart <=extraPathStart

KeyIdeas

PreconditionscanbeminedfromguardedconditionsatthecallsitesofthecodeusingtheAPIsPreconditionsminedfrommultipleprojects inalarge-scale codecorpuscanbeused tofilteroutchaff

completePath_.substring(servletPathStart,extraPathStart)

completePath_.charAt(servletPathStart)==‘/’

completePath_.charAt(extraPathStart)==‘/’

KeyIdeas

PreconditionscanbeminedfromguardedconditionsatthecallsitesofthecodeusingtheAPIsPreconditionsminedfrommultipleprojects inalarge-scale codecorpuscanbeused tofilteroutchaff

ClientmethodM1

Conditions

0<=startstart<=endend<=lengthcontains(‘@’)

BuildCFG

Extractand

Normalize

Infer0<=startstart<=endend<=length

ClientmethodMN

0<startstart<=endend<=lengthends(‘\n’)

ClientmethodM2

Preconditions

0=startstart<=endend<=lengthstarts(‘/’)

api(...)

BuildCFG

Extractand

Normalize

BuildCFG

Extractand

Normalize

FilterandRank

CandidatePreconditions

0<=startstart<=endend<=lengthcontains(‘@’)

api(...)

KeyIdeas

PreconditionscanbeminedfromguardedconditionsatthecallsitesofthecodeusingtheAPIsPreconditionsminedfrommultipleprojects inalarge-scale codecorpuscanbeused tofilteroutchaff:a.infer, b.filterandrank

Evaluation– Accuracy

DatacollectionSourceForge Apache

Projects 3,413 146

Totalsourcefiles 497,453 132,951

Totalclasses 600,274 173,120

Totalmethods 4,735,151 1,243,911

TotalSLOCs 92,495,410 25,117,837

TotalusedJDKclasses 806(63%) 918(72%)

TotalusedJDKmethods 7,592(63%) 6,109(55%)

Totalmethodcalls 22,308,251 5,544,437

TotalJDKmethodcalls 5,588,487 1,271,210

Almost120millionsSLOCs

Extractedpreconditions frompublished formalspecification forJDKAPIsonJMLwebsite• 797Methods• 1155preconditions

www.jmlspecs.org

GroundTruth

/*@ public normal_behavior@ requires 0 <= beginIndex@ && beginIndex <= endIndex@ && endIndex <= length();@ …

/*@ public behavior@ …@ signals (NoSuchElementException) isEmpty();@*/

AccuracyofPreconditionsMining

Precision Recall Time

SourceForge 84% 79% 17h35m

Apache 82% 75% 34m

Both 83% 80% 18h03m

Performance- ~1minute/condition- 5preconditionsare

newlyfoundfortheJDKAPImethodsthathasalreadyhadJMLspecifications

- Effectivefornewspecs

Class Method Suggest Accept

StringBuffer delete(int,int) 3 Y

replace(int,int,String) 2 Y*

setLength(int) 1 Y

subSequence(int,int) 3 Y

substring(int,int) 3 Y

LinkedList add(int,Object) 2 Y

addAll(int,Collection) 3 Y

get(int) 2 Y

listIterator(int) 2 Y

remove(int) 2 Y

set(int,Object) 2 Y

2classes 11methods 25

Accuracybysize

0% 10% 20% 30% 40% 50% 60% 70% 80% 90%

Datasize(projects)

Precision Recall Fscore

0% 10% 20% 30% 40% 50% 60% 70% 80% 90%

1 2 4 8 16 32 64 Full

Datasize(projects)

Precision Recall Fscore

SourceForge Apache

63% 19%

Correctness

Correct

GoodStartingPoint

Incorrect

13% 6%

Usefulness

StronglyAgree

Disagree

StronglyDisagree

UsefulnessEvaluationWeb-basedSurveyhttp://boa.cs.iastate.edu/jml

KeyIdeas

AdditionallabelscanbeminedfromimplicitbeliefsatthecallsitesofthecodeusingtheAPIs

Implicitbeliefsminedfrommultipleprojects inalarge-scalecodecorpuscanbeusedtostrengthenexplicitlabels

voidm(…){…Oo=newO()lib.api(o);…

ExploitingImplicitBeliefstoResolveSparseUsageProbleminUsage-basedSpecification

Mining,OOPSLA’17.Hoan NguyenS.Khairunnessa Tien N.Nguyen

Problem:Sparselabelsinminedcodecorpus

KeyIdeas

Strongestpostconditioninferenceproducesimplicitlyparallelformulas

Flattening,andrecombiningparallelformulascanleadtomuchsimplerinferredspecifications.

AnAlgorithmandTooltoInferPracticalPostconditions,

Ongoingwork.JohnSingleton GaryT.Leavens

Problem:Usingextantwork,e.g.strongestpostcondition(sp),forpostcondition inferenceproducesimpracticalspecs

sp (IF B THEN S1 ELSE S2) P = (sp S1(P ^B)) _ (sp S2(P ^ ¬B))

SpecificationReduction

Impact: 84%ofspecifications<¼pageinlength

Weareovercominglackofsoftwarespecifications,acriticalhurdleforhighassuranceSE,bycombining

programanalysisanddatamining.

boa.cs.iastate.edu

hridesh@iastate.edu

Tackling Lack of Software Specifications...Tackling Lack of Software Specifications A Sustained,...

Documents

Tackling Returns

Tackling Social Exclusion. Why do we care about social exclusion So far we have mostly talked about social exclusion because of the lack of human rights

Tackling Syntax

Tackling Exam

Tackling rootcausesofcost

Chapter 1. Tackling Inequality -- Tackling Inequality ... · CHAPTER 1 TACKLING INEQUALITY ... technological advancement has contributed to the skill premium, ... technological progress

Tackling challenges within a tackling environment

WTO AND INDIA PRESENTED BY -: ASHWANI MOYAL HARPREET SINGH HRIDESH SHARMA NAVJOT SINGH

Tackling Employer-Supported Childcare Webinar 7 …weprinciples.org/files/attachments/Tackling... · Intro to Tackling Employer-Supported Childcare- Carmen Niethammer, ... Business

Tackling Cybersecurity With Compromise Assessments ... · Tackling Cybersecurity With Compromise Assessments Incident Response 3 ... questions beyond what ... Tackling Cybersecurity

TACKLING WATER CHALLENGES IN RURAL AFRICA€¦ · Although physical water scarcity is an issue in many African communities, economic water scarcity or the lack of resources (infrastructure,

TACKLING INACTIVITY

Tackling a global crisis: International Year of Sanitation ...esa.un.org/iys/docs/IYS_flagship_web_small.pdf · 1. Sanitation is vital for health Lack of toilets and the safe conﬁnement

Tackling DDW

Summary...was moderated by Gayatri Nair Lobo from India School Leadership Institute. These school leaders spoke very candidly on tackling challenges such as lack of parent …

Tackling Controversial Issues Tackling Controversial ... · PDF fileTackling Controversial Issues Tackling Controversial Issues in the in the Citizenship ClassroomCitizenship Classroom

Tackling disruptive and dysfunctional behaviour in ... · The five dysfunctions of a team Inattention to results Avoidance of accountability Lack of commitment Fear of conflict Absence

Effects of Applying Mobility Localization on Source Routing Algorithms for Mobile Ad Hoc Network Hridesh Rajan presented by Metin Tekkalmaz

Communities Tackling Vermont’s Energy Challenges · • Communities Tackling Vermont’s Energy Challenges • 2 Acknowledgements Communities Tackling Vermont’s Energy Challenges

Tackling Pronunciation