Change ValueRangeAnalysis to a data-flow analysis #2073
Conversation
Currently, SpotBugs includes a value-range analysis which is only used for detecting redundant conditions. However, it could be used for detecting other kind of errors, such as arithmetic errors as well. This PR refactors this analysis to a data-flow based one while keeping the functionality of the existing redundant condition analysis based on top of it.
|
An example for the usefulness of this PR is finding arithmetic errors such as division by zero: baloghadamsoftware#3 |
|
I tested this on large projects. No crashes and no speed drop. |
|
I found a true positive (redundant condition) in an open-source project using this new approach: True positive in MATSim-Libs |
| private static final Map<String, TypeLongRange> typeRanges; | ||
|
|
||
| static { | ||
| typeRanges = new HashMap<>(); |
There was a problem hiding this comment.
Should it be Collections.unmodifiableMap()?
Also I would expect it to be UPPER_CASE as it is a constant map.
There was a problem hiding this comment.
I agree. This is also from the old code, but now now this whole map is constant so I made it unmodifiable.
| return typeRanges.containsKey(signature); | ||
| } | ||
|
|
||
| private SortedMap<Long, Long> map = new ConcurrentSkipListMap<>(); |
There was a problem hiding this comment.
Please give some meaningful name, like rangesMap and explanation what is the key and what is the value.
Is there a good reason to use concurrent map here? Do we really expect the set to be modified by multiple threads? If so, class javadoc should explain that this is supposed to be thread safe data structure.
There was a problem hiding this comment.
No, this was a misunderstanding. I got several ConcurrentModificationExceptions but they were because I tried to merge the same instance into itself. A check was missing to prevent this.
| import java.util.Set; | ||
|
|
||
| public class TypeLongRange { | ||
| long min, max; |
There was a problem hiding this comment.
Should the fields be final? If not, something should be done to avoid unintentional change of values for cases where they are used as constant values (like in LongRangeSet.typeRanges)
There was a problem hiding this comment.
Good point!
| @@ -0,0 +1,65 @@ | |||
| package edu.umd.cs.findbugs.ba; | |||
There was a problem hiding this comment.
Here and in all other classes, please add license headers.
There was a problem hiding this comment.
All the classes got license headers now, except the VariableData class and the ones in the spotbugs-tests and spotbugsTestCases directories.
|
|
||
| private void add(Long start, Long end) { | ||
| if (map.isEmpty()) { | ||
| map.put(start, end); |
There was a problem hiding this comment.
this "if" block is not thread safe, and two threads can enter the condition at same time. If this type is supposed to be thread safe, this is a bug.
Actually entire method is not thread safe, in almost all cases below.
There was a problem hiding this comment.
See my comment above: this class does not need to be thread safe.
| branch = null; | ||
| } | ||
|
|
||
| public void meetWith(ValueRangeMap other) { |
There was a problem hiding this comment.
meetWith is unusual. Did you mean mergeWith ?
There was a problem hiding this comment.
I saw meetWith() in LockSet which is the fact for LockAnalysis. Thus since ValueRangeMap is the fact for ValueRangeAnalysis I used the same name. However, I can change it if you think mergeWith is a better name.
| @@ -116,7 +116,7 @@ public void sawOpcode(int seen) { | |||
| fieldSummary.addWrittenOutsideOfConstructor(fieldOperand); | |||
| } | |||
| } | |||
| } else if (seen == Const.PUTSTATIC && !Const.STATIC_INITIALIZER_NAME.equals(getMethodName())) { | |||
| } else if (!Const.STATIC_INITIALIZER_NAME.equals(getMethodName())) { | |||
There was a problem hiding this comment.
Is this from unrelated fix? Please don't mix multiple fixes in one PR
There was a problem hiding this comment.
Not entirely. For some reasons RedundantConditions can now find more true positives. This is one of them. If I do not fix it then the build fails because of SpotBugs errors.
| @@ -170,7 +170,7 @@ public void visit(Code code) { | |||
| if (returnUnknown > 0) { | |||
| priority++; | |||
| } | |||
| if (returnNew > 0 && priority > NORMAL_PRIORITY) { | |||
| if (priority > NORMAL_PRIORITY) { | |||
There was a problem hiding this comment.
Is this from unrelated fix? Please don't mix multiple fixes in one PR
There was a problem hiding this comment.
This is the other true positive.
…hods & fields renamed
|
Thank you for your comments, @iloveeclipse! They were really useful and I did agree with all of them. Now I am considering adding test cases but I could not find any test case for analysises yet. We would need some kind of greybox testing here. Some framework where we can check facts of different data flows at some given points of the CFG. Do you know about one? |
Not really, I would have to search in the code. Note: I will be mostly offline for a week from tomorrow, so don't expect any feedback from me in that time. |
No problem, you already helped a lot. I think I found something that I could maybe use for testing. |
| } | ||
|
|
||
| @Override | ||
| public void meetInto(ValueRangeMap fact, Edge edge, ValueRangeMap result) throws DataflowAnalysisException { |
There was a problem hiding this comment.
Maybe I should split the logic of this method to edgeTransfer() and meetInto()?
spotbugs-tests/src/test/java/edu/umd/cs/findbugs/ba/ValueRangeDataflowTest.java
Outdated
Show resolved
Hide resolved
spotbugs-tests/src/test/java/edu/umd/cs/findbugs/ba/ValueRangeDataflowTest.java
Outdated
Show resolved
Hide resolved
spotbugs-tests/src/test/java/edu/umd/cs/findbugs/ba/ValueRangeDataflowTest.java
Outdated
Show resolved
Hide resolved
spotbugs/src/main/java/edu/umd/cs/findbugs/ba/ValueRangeMap.java
Outdated
Show resolved
Hide resolved
|
@KengoTODA Could you take a look on this one, please? This PR could be a huge improvement which could pave the way to more complex detectors based on the actual possible values of the variables. |
|
@KengoTODA? and/or @iloveeclipse? |
There was a problem hiding this comment.
The primitive type signatures are used in more classes (LongRangeSet, ValueRangeAnalysis, RedundantConditions) more times, wouldn't it be worth to use constants instead of the hardcoded signatures?
I think this feature seems really promising, and could improve the capabilities of Spotbugs in a great sense.
|
|
||
|
|
||
| /** | ||
| * This class describes an edge in the CFG which belongs to a branch statemen: IFCMP edges and the fallback edges |
There was a problem hiding this comment.
There is a missing 't' from the end of the word "statement".
| import edu.umd.cs.findbugs.classfile.Global; | ||
| import edu.umd.cs.findbugs.classfile.MethodDescriptor; | ||
|
|
||
| public class ValueRangeAnalysis extends ForwardDataflowAnalysis<ValueRangeMap> { |
There was a problem hiding this comment.
It would be really nice, if this class had a short javadoc explaining the purpose of the class. However, I'm not sure, what exactly decides whether a class needs javadoc or the licence header.
| @@ -193,7 +398,7 @@ private int getPriority(MethodDescriptor methodDescriptor, RedundantCondition co | |||
| return priority; | |||
| } | |||
|
|
|||
| /** | |||
| /* | |||
There was a problem hiding this comment.
Was the deletion of this '*' intentional?
Currently, SpotBugs includes a value-range analysis which is only used
for detecting redundant conditions. However, it could be used for
detecting other kind of errors, such as arithmetic errors as well. This
PR refactors this analysis to a data-flow based one while keeping the
functionality of the existing redundant condition analysis based on top
of it.
Make sure these boxes are checked before submitting your PR -- thank you!
CHANGELOG.mdif you have changed SpotBugs code