SlideShare ist ein Scribd-Unternehmen logo

Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)

Als PPTX, PDF herunterladen
Tao Xie
Tao Xie

The document describes an approach called CAR-Miner for mining sequence association rules from software repositories to detect defects in exception handling. CAR-Miner constructs exception flow graphs from code examples, generates static traces, and mines sequence association rules of the form (context) Λ (trigger) => (recovery). It detects violations by checking if context sequences match rule contexts before missing recoveries. An evaluation on open source projects found that over 50% of mined rules represented real patterns, CAR-Miner detected more defects than previous approaches, and sequence rules helped uncover new defects.

Technologie
1 von 58
Making Exceptions on Exception Handling Tao Xie Department of Computer Science North Carolina State University Raleigh, USA Joint work with Suresh Thummalapenta (IBM Research India) WEH 2012
Software Reuse  Programmers commonly reuse APIs of existing frameworks or libraries – Advantages: High productivity of development – Challenges: Complexity and lack of documentation – Consequences: • Spend efforts in understanding APIs • Introduce defects in API client code 2 2
Exception Handling  APIs throw exceptions during runtime errors Example: Session API of Hibernate framework throws HibernateException  APIs expect client applications to implement recovery actions after exceptions occur Example: Session API of Hibernate expect client application to rollback open uncommitted transactions after HibernateException occurs 3 [Weimer&Necula 05]
Exception Handling  Failing to handle exceptions results in  Fatal issues: Database lock won’t be released if the transaction is not rolled back  Performance degradation due to resource leaks: 17% increase in the performance is found in a 34KLOC program after properly handling exceptions [Weimer and Necula04]  Use specification that describes exception- handling behavior  Write correct API client code  Detect defects in API client code 4
Problem  Problem: Often specifications are not documented  Solution: Mine specifications from existing code bases using APIs Mining Software Repositories (MSR) Bugzilla Mailings International effort to make software repositories actionable Code Execution CVS 5 http://msrconf.org repository traces
Solution-Driven Problem-Driven Where can I apply X miner? What patterns do we really need? Basic Advanced mining mining New/adapted algorithms algorithms mining algorithms E.g., association rule mining, E.g., frequent partial order frequent itemset mining… mining [ESEC/FSE 07] E.g., [ICSE 09], [ASE 09] 6
Solution-Driven Problem-Driven Where can I apply X miner? What patterns do we really need? Basic Advanced mining mining New/adapted algorithms algorithms mining algorithms E.g., association rule E.g., frequent partial order mining, frequent itemset mining [ESEC/FSE 07] E.g., [ICSE 09], [ASE 09] mining… 7
Example Scenario 1 1.1: ...  Defect: No rollback done 1.2: OracleDataSource ods = null; Session session = null; Connection conn = null; Statement statement = null; when SQLException occurs 1.3: logger.debug("Starting update"); 1.4: try {  Requires specification such 1.5: ods = new OracleDataSource(); 1.6: ods.setURL("jdbc:oracle:thin:scott/tiger@192.168.1.2:1521:catfish"); as “Connection should be 1.7: conn = ods.getConnection(); 1.8: statement = conn.createStatement(); rolled back when a 1.9: statement.executeUpdate("DELETE FROM table1"); 1.10: connection.commit(); } connection is created and 1.11: catch (SQLException se) { SQLException occurs” 1.13: logger.error("Exception occurred"); } 1.14: finally { 1.15: if(statement != null) { statement.close(); }  Q: Should every connection 1.16: if(conn != null) { conn.close(); } instance has to be rolled 1.17: if(ods != null) { ods.close(); } } 1.18: } back when SQLException occurs? Missing “conn.rollback()” 8
Example (cont.) Scenario 1 Scenario 2 1.1: ... 2.1: Connection conn = null; 1.2: OracleDataSource ods = null; Session session = null; 2.2: Statement stmt = null; Connection conn = null; Statement statement = null; 2.3: BufferedWriter bw = null; FileWriter fw = null; 1.3: logger.debug("Starting update"); 2.3: try { 1.4: try { 2.4: fw = new FileWriter("output.txt"); 1.5: ods = new OracleDataSource(); 2.5: bw = BufferedWriter(fw); 1.6: ods.setURL("jdbc:oracle:thin:scott/tiger@192.168.1.2:1521:catfish"); 2.6: conn = DriverManager.getConnection("jdbc:pl:db", "ps", "ps"); 1.7: conn = ods.getConnection(); 2.7: Statement stmt = conn.createStatement(); 1.8: c statement = conn.createStatement(); 2.8: ResultSet res = stmt.executeQuery("SELECT Path FROM Files"); 1.9: statement.executeUpdate("DELETE FROM table1"); 2.9: while (res.next()) { 1.10: connection.commit(); } 2.10: bw.write(res.getString(1)); 1.11: catch (SQLException se) { 2.11: } 1.12: if (conn != null) { conn.rollback(); } 2.12: res.close(); 1.13: logger.error("Exception occurred"); } 2.13: } catch(IOException ex) { logger.error("IOException occurred"); 1.14: finally { 2.14: } finally { 1.15: if(statement != null) { statement.close(); } 2.15: if(stmt != null) stmt.close(); 1.16: if(conn != null) { conn.close(); } 2.16: if(conn != null) conn.close(); 1.17: if(ods != null) { ods.close(); } } 2.17: if (bw != null) bw.close(); 1.18: } 2.18: } Specification: “Connection creation => Connection rollback”  Satisfied by Scenario 1 but not by Scenario 2  But Scenario 2 has no defect 9
Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = Connection.createStatement() FCa -> stmt.executeUpdate() FCe1 -> conn.rollback() 10
Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = Connection.createStatement() FCa -> stmt.executeUpdate() //Triggering Action FCe1 -> conn.rollback() 11
Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = Connection.createStatement() FCa -> stmt.executeUpdate() FCe1 -> conn.rollback() //Recovery Action 12
Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = conn.createStatement() //Context FCa -> stmt.executeUpdate() FCe1 -> conn.rollback() 13
CAR-Miner Approach Issue queries and collect relevant code examples. Eg: “lang:java Construct exception- java.sql.Statement executeUpdate” flow graphs Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Functions Extract classes Collect static traces and functions Mine static traces reused Sequence Input Violations Association Application Rules Check whether there are any exception-related Detect violations defects 14
CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Functions Sequence Input Violations Association Application Rules 15
Exception-Flow-Graph Construction  Based on a previous algorithm [Sinha&Harrold TSE 00] : normal execution path ----: exceptional execution path
Exception-Flow-Graph Construction  Prevent infeasible edges using a sound static analysis [Robillard&Murphy FSE 99] 17
CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Methods Sequence Input Violations Association Application Rules 18
Static Trace Generation  Collect static traces with the actions taken when exceptions occur  A static trace for Node 7: “4 -> 5 -> 6 -> 7 -> 15 -> 16 -> 17” 19
Static Trace Generation  Includes 3 sections:  Normal function- call sequence (4 -> 5 -> 6)  Function call (7)  Exception function-call sequence (15 -> 16 -> 17)  A static trace for Node 7: “4 -> 5 -> 6 -> 7 -> 15 -> 16 -> 17” 20
Trace Post-Processing  Identify and remove unrelated function calls using data dependency  “4 -> 5 -> 6 -> 7 -> 15 -> 16 -> 17” 4: FileWriter fw = new FileWriter(“output.txt”) 5: BufferedWriter bw = new BufferedWriter(fw) ... 7: Statement stmt = conn.createStatement() ...  Filtered sequence “6 -> 7 -> 15 -> 16“ 21
CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Methods Sequence Input Violations Association Application Rules 22
Static Trace Mining  Handle traces of each function call (triggering function call) individually  Input: Two sequence databases with a one-to-one mapping • normal function-call sequences (context) • exception function-call sequences (recovery)  Objective: Generate sequence association rules of the form (FCc1 ... FCcn) Λ FCa => FCe1 ... FCen Context Trigger Recovery 23
Mining Problem Definition  Input: Two sequence databases with a one-to-one mapping Context Recovery  Objective: To get association rules of the form FC1 FC2 ... FCm -> FE1 FE2 ... FEn where {FC1, FC2, ..., Fcm} Є SDB1 and {FE1, FE2, ..., Fen} Є SDB2  Existing association rule mining algorithms cannot be directly applied on multiple sequence databases 24
Mining Problem Solution  Annotate the sequences to generate a single combined database  Apply frequent subsequence mining algorithm [Wang and Han, ICDE 04] to get frequent sequences  Transform mined sequences into sequence association rules (3 10) Λ FCa => (2 8) Context Trigger Recovery  Rank rules based on the support assigned by frequent subsequence mining algorithm 25
CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Methods Sequence Input Violations Association Application Rules 26
Violation Detection  Analyze each call site of triggering call FCa  Step 1: Extract context call sequence “CC1 CC2 ... CCm” from the beginning of the function to the call site of FCa  Step 2: If CC1 CC2 ... CCm is super-sequence of FCc1 ... FCcn  Report any missing function calls of {FCe1 ... FCen} in any exception path API client: (CC1 CC2 ... CCm) Λ FCa => Missing any? isSuperSeqOf API Rule: (FCc1 ... FCcn) Λ FCa => FCe1 ... FCen Context Trigger Recovery 27
Evaluation Research Questions: 1. Do the mined rules represent real rules? 2. Do the detected violations represent real defects? 3. Does CAR-Miner perform better than WN- miner [Weimer&Necula 05]? 4. Do the sequence association rules help detect new defects? 28
Subjects  Internal Info: classes and methods belonging to the app  External Info: classes and methods used by the app  Code examples: #files collected through code search engine 29
RQ1: Real Rules  Do the mined rules represent real rules? Real rules: 55% (Total: 294) Usage patterns: 3% 30 False positives: 43%
RQ1: Distribution of Real Rules for Axion  Distribution of rules based on ranks assigned by CAR-Miner  #false positives is quite low between 1 to 60 rules 31
RQ2: Detected Violations  Do the detected violations represent real defects?  Total number of defects: 160  New defects not found by WN-Miner approach: 87 32
RQ2: Status of Detected Violations  HsqlDB developers responded on the first 10 reported defects  Accepted 7 defects  Rejected 3 defects  Reason given by HsqlDB developers for rejected defects: “Although it can throw exceptions in general, it should not throw with HsqlDB, So it is fine” 33
RQ3: Comparison with WN-miner  Does CAR-Miner performs better than WN-miner?  Found 224 new rules and missed 32 rules  CAR-Miner detected most of the rules mined by WN-miner  Two major factors:  sequence association rules 34  Increase in the data scope
RQ4: New defects by sequence association rules  Do the sequence association rules detect new defects?  Detected 21 new real defects among all applications 35
Agenda  Motivation  Mining Sequence Association Rules (CAR-Miner) [ICSE 09]  Detecting Exception-Handling Defects  Mining Alternative Patterns (Alattin) [ASE 09]  Detecting Neglected Condition Defects  Conclusion 36
Large Number of False Positives  Existing approaches produce a large number of false positives  One major observation:  Programmers often write code in different ways for achieving the same task  Some ways are more frequent than others Frequent Infrequent ways ways mine patterns detect violations Mined Patterns 37 37
Example: java.util.Iterator.next() Java.util.Iterator.next() throws NoSuchElementException when invoked on a list without any elements Code Example 2 Code Sample 1 Code Sample 2 PrintEntries1(ArrayList<string> PrintEntries2(ArrayList<string> entries) entries) { { … … Iterator it = entries.iterator(); if(entries.size() > 0) { if(it.hasNext()) { Iterator it = entries.iterator(); string last = (string) it.next(); string last = (string) it.next(); } } … … } } 38
Example: java.util.Iterator.next() Code Sample 1 Code Sample 2 PrintEntries1(ArrayList<string> PrintEntries2(ArrayList<string> entries) entries) { { … … Iterator it = entries.iterator(); if(entries.size() > 0) { if(it.hasNext()) { Iterator it = entries.iterator(); string last = (string) it.next(); string last = (string) it.next(); } } … … } } Sample 2 (6/1243) Sample 1 (1218 / 1243) 1243 code examples Mined Pattern from existing approaches: “boolean check on return of Iterator.hasNext before Iterator.next” 39
Example: java.util.Iterator.next() Code Sample 1 Code Sample 2 PrintEntries1(ArrayList<string> PrintEntries2(ArrayList<string> entries) entries) { { … … Iterator it = entries.iterator(); if(entries.size() > 0) { if(it.hasNext()) { Iterator it = entries.iterator(); string last = (string) it.next(); string last = (string) it.next(); } } … … } }  Require more general patterns (alternative patterns): P1 or P2 P1 : boolean check on return of Iterator.hasNext before Iterator.next P2 : boolean check on return of ArrayList.size before Iterator.next  Cannot be mined by existing approaches, since alternative P2 40 is infrequent
Our Solution: ImMiner Algorithm  Mines alternative patterns of the form P1 or P2  Based on the observation that infrequent alternatives such as P2 are frequent among code examples that do not support P1 1243 code examples Sample 2 (6/1243) Sample 1 (1218 / 1243) P2 is infrequent among entire P2 is frequent among code 1243 code examples examples not supporting P1 41
Alternative Patterns  ImMiner mines three kinds of alternative patterns of the general form “P1 or P2” Balanced: all alternatives (both P1 and P2) are frequent Imbalanced: some alternatives (P1) are frequent and others are infrequent (P2). Represented as “P1 or P^2” Single: only one alternative 42
ImMiner Algorithm  Uses frequent-itemset mining [Burdick et al. ICDE 01] iteratively  An input database with the following APIs for Iterator.next() Input database Mapping of IDs to APIs 43
ImMiner Algorithm: Frequent Alternatives Input database Frequent itemset mining (min_sup 0.5) Frequent item: 1 P1: boolean-check on the return of Iterator.hasNext() before Iterator.next() 44
ImMiner: Infrequent Alternatives of P1  Split input database into two databases: Positive and Negative Positive database (PSD) Negative database (NSD)  Mine patterns that are frequent in NSD and are infrequent in PSD Reason: Only such patterns serve as alternatives for P1   Alternative Pattern : P “const check on the return of ArrayList.size() 2 before Iterator.next()”  Alattin applies ImMiner algorithm to detect neglected conditions 45
Neglected Conditions  Neglected conditions refer to  Missing conditions that check the arguments or receiver of the API call before the API call  Missing conditions that check the return or receiver of the API call after the API call  One of the primary reasons for many fatal issues  security or buffer-overflow vulnerabilities [Chang et al. ISSTA 07] 46
Evaluation  Research Questions: 1. Do alternative patterns exist in real applications? 2. How high percentage of false positives are reduced (with low or no increase of false negatives) in detected violations? 47
Subjects #Samples: #code examples collected from Google code search  Two categories of subjects:  3 Java default API libraries  3 popular open source libraries 48
RQ1: Balanced and Imbalanced Patterns  How high percentage of balanced and imbalanced patterns exist in real apps?  Balanced patterns: 0% to 30% (average: 9.69%)  Imbalanced patterns:  30% to 100% (average: 65%) for Java default API libraries  0% to 9.5% (average: 5%) for open source libraries  Explanation: Java default API libraries provide more different ways of 49 writing code compared to open source libraries
RQ2: False Positives and False Negatives  How high % of false positives are reduced (with low or no increase of false negatives)?  Applied mined patterns (“P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”) in three modes:  Existing mode: “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”  P1 ,P2, ... , Pi  Balanced mode: “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”  “P1 or P2 or ... or Pi”  Imbalanced mode: “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”  “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”50
RQ2: False Positives and False Negatives  Existing Mode vs Balanced Mode Application Existing Mode Balanced Mode Defects False Defects False % of False Positives Positives reduction Negatives Java Util 37 104 37 104 0 0 Java 51 105 51 105 0 0 Transaction Java SQL 56 143 56 90 37.06 0 BCEL 2 14 2 8 42.86 0 HSqlDB 1 0 1 0 0 0 Hibernate 10 9 10 8 11.11 0 AVERAGE/ 15.17 0 TOTAL  Balanced mode reduced false positives by 15.17% without any increase in false negatives 51
RQ2: False Positives and False Negatives  Existing Mode vs Imbalanced Mode Application Existing Mode Imbalanced Mode Defects False Defects False % of False Positives Positives reduction Negatives Java Util 37 104 36 74 28.85 1 Java 51 105 47 76 27.62 4 Transaction Java SQL 56 143 53 81 43.36 3 BCEL 2 14 2 6 57.04 0 HSqlDB 1 0 1 0 0 0 Hibernate 10 9 10 8 11.11 0 AVERAGE/ 28.01 8 TOTAL  Imbalanced mode reduced false positives by 28% with quite small increase in false negatives 52
Conclusion  Problem-driven methodology by identifying new problems, patterns mining algorithms, defects  CAR-Miner [ICSE 09]: mining sequence association rules of the form (FCc1 ... FCcn) Λ FCa => (FCe1 ... Fcen) Context Trigger Recovery  reduce false negatives  Alattin [ASE 09]: mining alternative patterns classified into three categories: balanced, imbalanced, and single P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j  reduce false positives  Combining both 53  NLP on API documents [Pandita et al. ICSE 12]
Solution-Driven Problem-Driven Where can I apply X miner? What patterns do we really need? Basic Advanced mining mining New/adapted algorithms algorithms mining algorithms E.g., association rule mining, E.g., frequent partial order frequent itemset mining… mining [ESEC/FSE 07] E.g., [ICSE 09], [ASE 09] 54
Road Ahead: Software Analytics Software analytics is to enable software practitioners to perform data exploration and analysis in order to obtain insightful and actionable information for data-driven tasks around software and services. •Get research problems from real practice •Get feedback from real practice •Collaborate across disciplines •Collaborate with industry Dongmei Zhang and Tao Xie, Software Analytics in Practice, mini-tutorial ICSE 2012 SEIP. 55 http://research.microsoft.com/en-us/groups/sa/softwareanalyticsinpractice_minitutorial_icse2012.pdf
Thank You Questions? https://sites.google.com/site/asergrp/ This work is supported in part by NSF grants CCF-0845272, CCF-0915400, 56 CNS-0958235, and ARO grant W911NF-08-1-0443.
Alattin Approach Phase 1: Issue queries and collect relevant code samples. Eg: “lang:java Phase 2: Generate java.util.Iterator next” pattern candidates Open Source Projects on web 1 2 … N Pattern … Candidates Classes and methods Extract classes and methods Phase 3: Mine reused alternative patterns Application Alternative Violations Under Analysis Patterns Detect neglected Phase 4: Detect neglected conditions conditions statically 57
Keys to Making Real Impact  Engagement of practitioners ¤ Solving their problem ¤ Champions in product teams ¤ Timing ¤ Culture  Walking the last mile ¤ Targeting at real scenarios ¤ Trying out tool has cost ¤ “It works” is not enough ¤ Getting engineering support  Combination of expertise ¤ Research capabilities ¤ Engineering skills to build systems ¤ Visualization & design ¤ Communication MSR 2012 58

Empfohlen

Pure Java RAD and Scaffolding Tools Race
Pure Java RAD and Scaffolding Tools RacePure Java RAD and Scaffolding Tools Race
Pure Java RAD and Scaffolding Tools RaceBaruch Sadogursky
 
Servletand sessiontracking
Servletand sessiontrackingServletand sessiontracking
Servletand sessiontrackingvamsi krishna
 
Java util concurrent
Java util concurrentJava util concurrent
Java util concurrentRoger Xia
 
Jdk 7 4-forkjoin
Jdk 7 4-forkjoinJdk 7 4-forkjoin
Jdk 7 4-forkjoinknight1128
 
追求Jdbc on oracle最佳性能?如何才好?
追求Jdbc on oracle最佳性能?如何才好?追求Jdbc on oracle最佳性能?如何才好?
追求Jdbc on oracle最佳性能?如何才好?maclean liu
 
Java7
Java7Java7
Java7Dinesh Guntha
 
Don't Make Android Bad... Again
Don't Make Android Bad... AgainDon't Make Android Bad... Again
Don't Make Android Bad... AgainPedro Vicente
 
ZooKeeper Recipes and Solutions
ZooKeeper Recipes and SolutionsZooKeeper Recipes and Solutions
ZooKeeper Recipes and SolutionsJeff Smith
 

Empfohlen

Pure Java RAD and Scaffolding Tools Race
Pure Java RAD and Scaffolding Tools RacePure Java RAD and Scaffolding Tools Race
Pure Java RAD and Scaffolding Tools RaceBaruch Sadogursky
 
Servletand sessiontracking
Servletand sessiontrackingServletand sessiontracking
Servletand sessiontrackingvamsi krishna
 
Java util concurrent
Java util concurrentJava util concurrent
Java util concurrentRoger Xia
 
Jdk 7 4-forkjoin
Jdk 7 4-forkjoinJdk 7 4-forkjoin
Jdk 7 4-forkjoinknight1128
 
追求Jdbc on oracle最佳性能?如何才好?
追求Jdbc on oracle最佳性能?如何才好?追求Jdbc on oracle最佳性能?如何才好?
追求Jdbc on oracle最佳性能?如何才好?maclean liu
 
Java7
Java7Java7
Java7Dinesh Guntha
 
Don't Make Android Bad... Again
Don't Make Android Bad... AgainDon't Make Android Bad... Again
Don't Make Android Bad... AgainPedro Vicente
 
ZooKeeper Recipes and Solutions
ZooKeeper Recipes and SolutionsZooKeeper Recipes and Solutions
ZooKeeper Recipes and SolutionsJeff Smith
 
Conf soat tests_unitaires_Mockito_jUnit_170113
Conf soat tests_unitaires_Mockito_jUnit_170113Conf soat tests_unitaires_Mockito_jUnit_170113
Conf soat tests_unitaires_Mockito_jUnit_170113SOAT
 
50 new features of Java EE 7 in 50 minutes
50 new features of Java EE 7 in 50 minutes50 new features of Java EE 7 in 50 minutes
50 new features of Java EE 7 in 50 minutesAntonio Goncalves
 
Spring3.0 JaxItalia09
Spring3.0 JaxItalia09Spring3.0 JaxItalia09
Spring3.0 JaxItalia09Massimiliano Dessì
 
JEEConf 2017 - The hitchhiker’s guide to Java class reloading
JEEConf 2017 - The hitchhiker’s guide to Java class reloadingJEEConf 2017 - The hitchhiker’s guide to Java class reloading
JEEConf 2017 - The hitchhiker’s guide to Java class reloadingAnton Arhipov
 
Making Java more dynamic: runtime code generation for the JVM
Making Java more dynamic: runtime code generation for the JVMMaking Java more dynamic: runtime code generation for the JVM
Making Java more dynamic: runtime code generation for the JVMRafael Winterhalter
 
Server1
Server1Server1
Server1FahriIrawan3
 
What`s new in Java 7
What`s new in Java 7What`s new in Java 7
What`s new in Java 7Georgian Micsa
 
Jdk(java) 7 - 6 기타기능
Jdk(java) 7 - 6 기타기능Jdk(java) 7 - 6 기타기능
Jdk(java) 7 - 6 기타기능knight1128
 
Keynote HotSWUp 2012
Keynote HotSWUp 2012Keynote HotSWUp 2012
Keynote HotSWUp 2012Martin Pinzger
 
JavaScript and AJAX
JavaScript and AJAXJavaScript and AJAX
JavaScript and AJAXFrane Bandov
 
A topology of memory leaks on the JVM
A topology of memory leaks on the JVMA topology of memory leaks on the JVM
A topology of memory leaks on the JVMRafael Winterhalter
 
Jersey framework
Jersey frameworkJersey framework
Jersey frameworkknight1128
 
To inject or not to inject: CDI is the question
To inject or not to inject: CDI is the questionTo inject or not to inject: CDI is the question
To inject or not to inject: CDI is the questionAntonio Goncalves
 
What's new in Java EE 6
What's new in Java EE 6What's new in Java EE 6
What's new in Java EE 6Antonio Goncalves
 
Spring Framework Petclinic sample application
Spring Framework Petclinic sample applicationSpring Framework Petclinic sample application
Spring Framework Petclinic sample applicationAntoine Rey
 
The Ring programming language version 1.8 book - Part 9 of 202
The Ring programming language version 1.8 book - Part 9 of 202The Ring programming language version 1.8 book - Part 9 of 202
The Ring programming language version 1.8 book - Part 9 of 202Mahmoud Samir Fayed
 
How to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsHow to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsAlex Soto
 
Programming Sideways: Asynchronous Techniques for Android
Programming Sideways: Asynchronous Techniques for AndroidProgramming Sideways: Asynchronous Techniques for Android
Programming Sideways: Asynchronous Techniques for AndroidEmanuele Di Saverio
 
Vaadin 7
Vaadin 7Vaadin 7
Vaadin 7Joonas Lehtinen
 
News the New Way: Semantics in the Driver's Seat
News the New Way: Semantics in the Driver's SeatNews the New Way: Semantics in the Driver's Seat
News the New Way: Semantics in the Driver's SeatPhilipp Dudchuk
 
[Entregas Recentes] Pablo Campos de Miranda
[Entregas Recentes] Pablo Campos de Miranda[Entregas Recentes] Pablo Campos de Miranda
[Entregas Recentes] Pablo Campos de MirandaPablo Miranda
 
Testing for Educational Gaming and Educational Gaming for Testing
Testing for Educational Gaming and Educational Gaming for TestingTesting for Educational Gaming and Educational Gaming for Testing
Testing for Educational Gaming and Educational Gaming for TestingTao Xie
 

Weitere ähnliche Inhalte

Was ist angesagt?

Conf soat tests_unitaires_Mockito_jUnit_170113
Conf soat tests_unitaires_Mockito_jUnit_170113Conf soat tests_unitaires_Mockito_jUnit_170113
Conf soat tests_unitaires_Mockito_jUnit_170113SOAT
 
50 new features of Java EE 7 in 50 minutes
50 new features of Java EE 7 in 50 minutes50 new features of Java EE 7 in 50 minutes
50 new features of Java EE 7 in 50 minutesAntonio Goncalves
 
JEEConf 2017 - The hitchhiker’s guide to Java class reloading
JEEConf 2017 - The hitchhiker’s guide to Java class reloadingJEEConf 2017 - The hitchhiker’s guide to Java class reloading
JEEConf 2017 - The hitchhiker’s guide to Java class reloadingAnton Arhipov
 
Making Java more dynamic: runtime code generation for the JVM
Making Java more dynamic: runtime code generation for the JVMMaking Java more dynamic: runtime code generation for the JVM
Making Java more dynamic: runtime code generation for the JVMRafael Winterhalter
 
Jdk(java) 7 - 6 기타기능
Jdk(java) 7 - 6 기타기능Jdk(java) 7 - 6 기타기능
Jdk(java) 7 - 6 기타기능knight1128
 
JavaScript and AJAX
JavaScript and AJAXJavaScript and AJAX
JavaScript and AJAXFrane Bandov
 
A topology of memory leaks on the JVM
A topology of memory leaks on the JVMA topology of memory leaks on the JVM
A topology of memory leaks on the JVMRafael Winterhalter
 
Jersey framework
Jersey frameworkJersey framework
Jersey frameworkknight1128
 
To inject or not to inject: CDI is the question
To inject or not to inject: CDI is the questionTo inject or not to inject: CDI is the question
To inject or not to inject: CDI is the questionAntonio Goncalves
 
Spring Framework Petclinic sample application
Spring Framework Petclinic sample applicationSpring Framework Petclinic sample application
Spring Framework Petclinic sample applicationAntoine Rey
 
The Ring programming language version 1.8 book - Part 9 of 202
The Ring programming language version 1.8 book - Part 9 of 202The Ring programming language version 1.8 book - Part 9 of 202
The Ring programming language version 1.8 book - Part 9 of 202Mahmoud Samir Fayed
 
How to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsHow to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsAlex Soto
 
Programming Sideways: Asynchronous Techniques for Android
Programming Sideways: Asynchronous Techniques for AndroidProgramming Sideways: Asynchronous Techniques for Android
Programming Sideways: Asynchronous Techniques for AndroidEmanuele Di Saverio
 

Was ist angesagt? (19)

Conf soat tests_unitaires_Mockito_jUnit_170113
Conf soat tests_unitaires_Mockito_jUnit_170113Conf soat tests_unitaires_Mockito_jUnit_170113
Conf soat tests_unitaires_Mockito_jUnit_170113
 
50 new features of Java EE 7 in 50 minutes
50 new features of Java EE 7 in 50 minutes50 new features of Java EE 7 in 50 minutes
50 new features of Java EE 7 in 50 minutes
 
Spring3.0 JaxItalia09
Spring3.0 JaxItalia09Spring3.0 JaxItalia09
Spring3.0 JaxItalia09
 
JEEConf 2017 - The hitchhiker’s guide to Java class reloading
JEEConf 2017 - The hitchhiker’s guide to Java class reloadingJEEConf 2017 - The hitchhiker’s guide to Java class reloading
JEEConf 2017 - The hitchhiker’s guide to Java class reloading
 
Making Java more dynamic: runtime code generation for the JVM
Making Java more dynamic: runtime code generation for the JVMMaking Java more dynamic: runtime code generation for the JVM
Making Java more dynamic: runtime code generation for the JVM
 
Server1
Server1Server1
Server1
 
What`s new in Java 7
What`s new in Java 7What`s new in Java 7
What`s new in Java 7
 
Jdk(java) 7 - 6 기타기능
Jdk(java) 7 - 6 기타기능Jdk(java) 7 - 6 기타기능
Jdk(java) 7 - 6 기타기능
 
Keynote HotSWUp 2012
Keynote HotSWUp 2012Keynote HotSWUp 2012
Keynote HotSWUp 2012
 
JavaScript and AJAX
JavaScript and AJAXJavaScript and AJAX
JavaScript and AJAX
 
A topology of memory leaks on the JVM
A topology of memory leaks on the JVMA topology of memory leaks on the JVM
A topology of memory leaks on the JVM
 
Jersey framework
Jersey frameworkJersey framework
Jersey framework
 
To inject or not to inject: CDI is the question
To inject or not to inject: CDI is the questionTo inject or not to inject: CDI is the question
To inject or not to inject: CDI is the question
 
What's new in Java EE 6
What's new in Java EE 6What's new in Java EE 6
What's new in Java EE 6
 
Spring Framework Petclinic sample application
Spring Framework Petclinic sample applicationSpring Framework Petclinic sample application
Spring Framework Petclinic sample application
 
The Ring programming language version 1.8 book - Part 9 of 202
The Ring programming language version 1.8 book - Part 9 of 202The Ring programming language version 1.8 book - Part 9 of 202
The Ring programming language version 1.8 book - Part 9 of 202
 
How to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsHow to Test Enterprise Java Applications
How to Test Enterprise Java Applications
 
Programming Sideways: Asynchronous Techniques for Android
Programming Sideways: Asynchronous Techniques for AndroidProgramming Sideways: Asynchronous Techniques for Android
Programming Sideways: Asynchronous Techniques for Android
 
Vaadin 7
Vaadin 7Vaadin 7
Vaadin 7
 

Andere mochten auch

News the New Way: Semantics in the Driver's Seat
News the New Way: Semantics in the Driver's SeatNews the New Way: Semantics in the Driver's Seat
News the New Way: Semantics in the Driver's SeatPhilipp Dudchuk
 
[Entregas Recentes] Pablo Campos de Miranda
[Entregas Recentes] Pablo Campos de Miranda[Entregas Recentes] Pablo Campos de Miranda
[Entregas Recentes] Pablo Campos de MirandaPablo Miranda
 
Testing for Educational Gaming and Educational Gaming for Testing
Testing for Educational Gaming and Educational Gaming for TestingTesting for Educational Gaming and Educational Gaming for Testing
Testing for Educational Gaming and Educational Gaming for TestingTao Xie
 
Harding Functional Resume
Harding Functional ResumeHarding Functional Resume
Harding Functional ResumeMelvyn Harding
 
Common Technical Writing Issues
Common Technical Writing IssuesCommon Technical Writing Issues
Common Technical Writing IssuesTao Xie
 
Consequences[1]
Consequences[1]Consequences[1]
Consequences[1]Rocigm
 
Automated Developer Testing: Achievements and Challenges
Automated Developer Testing: Achievements and ChallengesAutomated Developer Testing: Achievements and Challenges
Automated Developer Testing: Achievements and ChallengesTao Xie
 

Andere mochten auch (7)

News the New Way: Semantics in the Driver's Seat
News the New Way: Semantics in the Driver's SeatNews the New Way: Semantics in the Driver's Seat
News the New Way: Semantics in the Driver's Seat
 
[Entregas Recentes] Pablo Campos de Miranda
[Entregas Recentes] Pablo Campos de Miranda[Entregas Recentes] Pablo Campos de Miranda
[Entregas Recentes] Pablo Campos de Miranda
 
Testing for Educational Gaming and Educational Gaming for Testing
Testing for Educational Gaming and Educational Gaming for TestingTesting for Educational Gaming and Educational Gaming for Testing
Testing for Educational Gaming and Educational Gaming for Testing
 
Harding Functional Resume
Harding Functional ResumeHarding Functional Resume
Harding Functional Resume
 
Common Technical Writing Issues
Common Technical Writing IssuesCommon Technical Writing Issues
Common Technical Writing Issues
 
Consequences[1]
Consequences[1]Consequences[1]
Consequences[1]
 
Automated Developer Testing: Achievements and Challenges
Automated Developer Testing: Achievements and ChallengesAutomated Developer Testing: Achievements and Challenges
Automated Developer Testing: Achievements and Challenges
 

Ähnlich wie Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)

Hadoop: Code Injection, Distributed Fault Injection
Hadoop: Code Injection, Distributed Fault InjectionHadoop: Code Injection, Distributed Fault Injection
Hadoop: Code Injection, Distributed Fault InjectionCloudera, Inc.
 
香港六合彩 &raquo; SlideShare
香港六合彩 &raquo; SlideShare香港六合彩 &raquo; SlideShare
香港六合彩 &raquo; SlideShareyayao
 
TorqueBox at DC:JBUG - November 2011
TorqueBox at DC:JBUG - November 2011TorqueBox at DC:JBUG - November 2011
TorqueBox at DC:JBUG - November 2011bobmcwhirter
 
A exception ekon16
A exception ekon16A exception ekon16
A exception ekon16Max Kleiner
 
All bugfixes are incompatibilities
All bugfixes are incompatibilitiesAll bugfixes are incompatibilities
All bugfixes are incompatibilitiesnagachika t
 
OGRE v2.1 manual - Technical Overview
OGRE v2.1 manual - Technical OverviewOGRE v2.1 manual - Technical Overview
OGRE v2.1 manual - Technical OverviewRiver Wang
 
Handling Exceptions In C &amp; C++ [Part B] Ver 2
Handling Exceptions In C &amp; C++ [Part B] Ver 2Handling Exceptions In C &amp; C++ [Part B] Ver 2
Handling Exceptions In C &amp; C++ [Part B] Ver 2ppd1961
 
55 new things in Java 7 - Devoxx France
55 new things in Java 7 - Devoxx France55 new things in Java 7 - Devoxx France
55 new things in Java 7 - Devoxx FranceDavid Delabassee
 
Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014
Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014
Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014Susan Potter
 
No Callbacks, No Threads - RailsConf 2010
No Callbacks, No Threads - RailsConf 2010No Callbacks, No Threads - RailsConf 2010
No Callbacks, No Threads - RailsConf 2010Ilya Grigorik
 
Continuations in scala (incomplete version)
Continuations in scala (incomplete version)Continuations in scala (incomplete version)
Continuations in scala (incomplete version)Fuqiang Wang
 
Python concurrency: libraries overview
Python concurrency: libraries overviewPython concurrency: libraries overview
Python concurrency: libraries overviewAndrii Mishkovskyi
 
No callbacks, No Threads - Cooperative web servers in Ruby 1.9
No callbacks, No Threads - Cooperative web servers in Ruby 1.9No callbacks, No Threads - Cooperative web servers in Ruby 1.9
No callbacks, No Threads - Cooperative web servers in Ruby 1.9Ilya Grigorik
 

Ähnlich wie Making Exceptions on Exception Handling (WEH 2012 Keynote Speech) (20)

Hadoop: Code Injection, Distributed Fault Injection
Hadoop: Code Injection, Distributed Fault InjectionHadoop: Code Injection, Distributed Fault Injection
Hadoop: Code Injection, Distributed Fault Injection
 
香港六合彩 &raquo; SlideShare
香港六合彩 &raquo; SlideShare香港六合彩 &raquo; SlideShare
香港六合彩 &raquo; SlideShare
 
Java On CRaC
Java On CRaCJava On CRaC
Java On CRaC
 
55j7
55j755j7
55j7
 
TorqueBox at DC:JBUG - November 2011
TorqueBox at DC:JBUG - November 2011TorqueBox at DC:JBUG - November 2011
TorqueBox at DC:JBUG - November 2011
 
Panama.pdf
Panama.pdfPanama.pdf
Panama.pdf
 
A exception ekon16
A exception ekon16A exception ekon16
A exception ekon16
 
All bugfixes are incompatibilities
All bugfixes are incompatibilitiesAll bugfixes are incompatibilities
All bugfixes are incompatibilities
 
OGRE v2.1 manual - Technical Overview
OGRE v2.1 manual - Technical OverviewOGRE v2.1 manual - Technical Overview
OGRE v2.1 manual - Technical Overview
 
Handling Exceptions In C &amp; C++ [Part B] Ver 2
Handling Exceptions In C &amp; C++ [Part B] Ver 2Handling Exceptions In C &amp; C++ [Part B] Ver 2
Handling Exceptions In C &amp; C++ [Part B] Ver 2
 
Java
JavaJava
Java
 
Extending and scripting PDT
Extending and scripting PDTExtending and scripting PDT
Extending and scripting PDT
 
55 new things in Java 7 - Devoxx France
55 new things in Java 7 - Devoxx France55 new things in Java 7 - Devoxx France
55 new things in Java 7 - Devoxx France
 
Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014
Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014
Scalaz By Example (An IO Taster) -- PDXScala Meetup Jan 2014
 
No Callbacks, No Threads - RailsConf 2010
No Callbacks, No Threads - RailsConf 2010No Callbacks, No Threads - RailsConf 2010
No Callbacks, No Threads - RailsConf 2010
 
Continuations in scala (incomplete version)
Continuations in scala (incomplete version)Continuations in scala (incomplete version)
Continuations in scala (incomplete version)
 
Java 7 & 8
Java 7 & 8Java 7 & 8
Java 7 & 8
 
Python concurrency: libraries overview
Python concurrency: libraries overviewPython concurrency: libraries overview
Python concurrency: libraries overview
 
No callbacks, No Threads - Cooperative web servers in Ruby 1.9
No callbacks, No Threads - Cooperative web servers in Ruby 1.9No callbacks, No Threads - Cooperative web servers in Ruby 1.9
No callbacks, No Threads - Cooperative web servers in Ruby 1.9
 
55 New Features in Java 7
55 New Features in Java 755 New Features in Java 7
55 New Features in Java 7
 

Mehr von Tao Xie

MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...
MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...
MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...Tao Xie
 
DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...
DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...
DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...Tao Xie
 
Intelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software EngineeringIntelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software EngineeringTao Xie
 
Diversity and Computing/Engineering: Perspectives from Allies
Diversity and Computing/Engineering: Perspectives from AlliesDiversity and Computing/Engineering: Perspectives from Allies
Diversity and Computing/Engineering: Perspectives from AlliesTao Xie
 
Intelligent Software Engineering: Synergy between AI and Software Engineering...
Intelligent Software Engineering: Synergy between AI and Software Engineering...Intelligent Software Engineering: Synergy between AI and Software Engineering...
Intelligent Software Engineering: Synergy between AI and Software Engineering...Tao Xie
 
MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...
MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...
MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...Tao Xie
 
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...Tao Xie
 
ISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven Research
ISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven ResearchISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven Research
ISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven ResearchTao Xie
 
ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...
ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...
ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...Tao Xie
 
Intelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software EngineeringIntelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software EngineeringTao Xie
 
Software Analytics: Data Analytics for Software Engineering and Security
Software Analytics: Data Analytics for Software Engineering and SecuritySoftware Analytics: Data Analytics for Software Engineering and Security
Software Analytics: Data Analytics for Software Engineering and SecurityTao Xie
 
Planning and Executing Practice-Impactful Research
Planning and Executing Practice-Impactful ResearchPlanning and Executing Practice-Impactful Research
Planning and Executing Practice-Impactful ResearchTao Xie
 
Software Analytics: Data Analytics for Software Engineering
Software Analytics: Data Analytics for Software EngineeringSoftware Analytics: Data Analytics for Software Engineering
Software Analytics: Data Analytics for Software EngineeringTao Xie
 
Transferring Software Testing Tools to Practice (AST 2017 Keynote)
Transferring Software Testing Tools to Practice (AST 2017 Keynote)Transferring Software Testing Tools to Practice (AST 2017 Keynote)
Transferring Software Testing Tools to Practice (AST 2017 Keynote)Tao Xie
 
Transferring Software Testing Tools to Practice
Transferring Software Testing Tools to PracticeTransferring Software Testing Tools to Practice
Transferring Software Testing Tools to PracticeTao Xie
 
Advances in Unit Testing: Theory and Practice
Advances in Unit Testing: Theory and PracticeAdvances in Unit Testing: Theory and Practice
Advances in Unit Testing: Theory and PracticeTao Xie
 
HotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William Enck
HotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William EnckHotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William Enck
HotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William EnckTao Xie
 
Transferring Software Testing and Analytics Tools to Practice
Transferring Software Testing and Analytics Tools to PracticeTransferring Software Testing and Analytics Tools to Practice
Transferring Software Testing and Analytics Tools to PracticeTao Xie
 
User Expectations in Mobile App Security
User Expectations in Mobile App SecurityUser Expectations in Mobile App Security
User Expectations in Mobile App SecurityTao Xie
 
Impact-Driven Research on Software Engineering Tooling
Impact-Driven Research on Software Engineering ToolingImpact-Driven Research on Software Engineering Tooling
Impact-Driven Research on Software Engineering ToolingTao Xie
 

Mehr von Tao Xie (20)

MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...
MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...
MSR 2022 Foundational Contribution Award Talk: Software Analytics: Reflection...
 
DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...
DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...
DSML 2021 Keynote: Intelligent Software Engineering: Working at the Intersect...
 
Intelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software EngineeringIntelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software Engineering
 
Diversity and Computing/Engineering: Perspectives from Allies
Diversity and Computing/Engineering: Perspectives from AlliesDiversity and Computing/Engineering: Perspectives from Allies
Diversity and Computing/Engineering: Perspectives from Allies
 
Intelligent Software Engineering: Synergy between AI and Software Engineering...
Intelligent Software Engineering: Synergy between AI and Software Engineering...Intelligent Software Engineering: Synergy between AI and Software Engineering...
Intelligent Software Engineering: Synergy between AI and Software Engineering...
 
MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...
MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...
MSRA 2018: Intelligent Software Engineering: Synergy between AI and Software ...
 
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
 
ISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven Research
ISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven ResearchISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven Research
ISEC'18 Tutorial: Research Methodology on Pursuing Impact-Driven Research
 
ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...
ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...
ISEC'18 Keynote: Intelligent Software Engineering: Synergy between AI and Sof...
 
Intelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software EngineeringIntelligent Software Engineering: Synergy between AI and Software Engineering
Intelligent Software Engineering: Synergy between AI and Software Engineering
 
Software Analytics: Data Analytics for Software Engineering and Security
Software Analytics: Data Analytics for Software Engineering and SecuritySoftware Analytics: Data Analytics for Software Engineering and Security
Software Analytics: Data Analytics for Software Engineering and Security
 
Planning and Executing Practice-Impactful Research
Planning and Executing Practice-Impactful ResearchPlanning and Executing Practice-Impactful Research
Planning and Executing Practice-Impactful Research
 
Software Analytics: Data Analytics for Software Engineering
Software Analytics: Data Analytics for Software EngineeringSoftware Analytics: Data Analytics for Software Engineering
Software Analytics: Data Analytics for Software Engineering
 
Transferring Software Testing Tools to Practice (AST 2017 Keynote)
Transferring Software Testing Tools to Practice (AST 2017 Keynote)Transferring Software Testing Tools to Practice (AST 2017 Keynote)
Transferring Software Testing Tools to Practice (AST 2017 Keynote)
 
Transferring Software Testing Tools to Practice
Transferring Software Testing Tools to PracticeTransferring Software Testing Tools to Practice
Transferring Software Testing Tools to Practice
 
Advances in Unit Testing: Theory and Practice
Advances in Unit Testing: Theory and PracticeAdvances in Unit Testing: Theory and Practice
Advances in Unit Testing: Theory and Practice
 
HotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William Enck
HotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William EnckHotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William Enck
HotSoS16 Tutorial "Text Analytics for Security" by Tao Xie and William Enck
 
Transferring Software Testing and Analytics Tools to Practice
Transferring Software Testing and Analytics Tools to PracticeTransferring Software Testing and Analytics Tools to Practice
Transferring Software Testing and Analytics Tools to Practice
 
User Expectations in Mobile App Security
User Expectations in Mobile App SecurityUser Expectations in Mobile App Security
User Expectations in Mobile App Security
 
Impact-Driven Research on Software Engineering Tooling
Impact-Driven Research on Software Engineering ToolingImpact-Driven Research on Software Engineering Tooling
Impact-Driven Research on Software Engineering Tooling
 

Kürzlich hochgeladen

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Zilliz
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu SubbuApidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbuapidays
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MIND CTI
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdflior mazor
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...apidays
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWERMadyBayot
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfOverkill Security
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra
 

Kürzlich hochgeladen (20)

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu SubbuApidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 

Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)

  • 1. Making Exceptions on Exception Handling Tao Xie Department of Computer Science North Carolina State University Raleigh, USA Joint work with Suresh Thummalapenta (IBM Research India) WEH 2012
  • 2. Software Reuse  Programmers commonly reuse APIs of existing frameworks or libraries – Advantages: High productivity of development – Challenges: Complexity and lack of documentation – Consequences: • Spend efforts in understanding APIs • Introduce defects in API client code 2 2
  • 3. Exception Handling  APIs throw exceptions during runtime errors Example: Session API of Hibernate framework throws HibernateException  APIs expect client applications to implement recovery actions after exceptions occur Example: Session API of Hibernate expect client application to rollback open uncommitted transactions after HibernateException occurs 3 [Weimer&Necula 05]
  • 4. Exception Handling  Failing to handle exceptions results in  Fatal issues: Database lock won’t be released if the transaction is not rolled back  Performance degradation due to resource leaks: 17% increase in the performance is found in a 34KLOC program after properly handling exceptions [Weimer and Necula04]  Use specification that describes exception- handling behavior  Write correct API client code  Detect defects in API client code 4
  • 5. Problem  Problem: Often specifications are not documented  Solution: Mine specifications from existing code bases using APIs Mining Software Repositories (MSR) Bugzilla Mailings International effort to make software repositories actionable Code Execution CVS 5 http://msrconf.org repository traces
  • 6. Solution-Driven Problem-Driven Where can I apply X miner? What patterns do we really need? Basic Advanced mining mining New/adapted algorithms algorithms mining algorithms E.g., association rule mining, E.g., frequent partial order frequent itemset mining… mining [ESEC/FSE 07] E.g., [ICSE 09], [ASE 09] 6
  • 7. Solution-Driven Problem-Driven Where can I apply X miner? What patterns do we really need? Basic Advanced mining mining New/adapted algorithms algorithms mining algorithms E.g., association rule E.g., frequent partial order mining, frequent itemset mining [ESEC/FSE 07] E.g., [ICSE 09], [ASE 09] mining… 7
  • 8. Example Scenario 1 1.1: ...  Defect: No rollback done 1.2: OracleDataSource ods = null; Session session = null; Connection conn = null; Statement statement = null; when SQLException occurs 1.3: logger.debug("Starting update"); 1.4: try {  Requires specification such 1.5: ods = new OracleDataSource(); 1.6: ods.setURL("jdbc:oracle:thin:scott/tiger@192.168.1.2:1521:catfish"); as “Connection should be 1.7: conn = ods.getConnection(); 1.8: statement = conn.createStatement(); rolled back when a 1.9: statement.executeUpdate("DELETE FROM table1"); 1.10: connection.commit(); } connection is created and 1.11: catch (SQLException se) { SQLException occurs” 1.13: logger.error("Exception occurred"); } 1.14: finally { 1.15: if(statement != null) { statement.close(); }  Q: Should every connection 1.16: if(conn != null) { conn.close(); } instance has to be rolled 1.17: if(ods != null) { ods.close(); } } 1.18: } back when SQLException occurs? Missing “conn.rollback()” 8
  • 9. Example (cont.) Scenario 1 Scenario 2 1.1: ... 2.1: Connection conn = null; 1.2: OracleDataSource ods = null; Session session = null; 2.2: Statement stmt = null; Connection conn = null; Statement statement = null; 2.3: BufferedWriter bw = null; FileWriter fw = null; 1.3: logger.debug("Starting update"); 2.3: try { 1.4: try { 2.4: fw = new FileWriter("output.txt"); 1.5: ods = new OracleDataSource(); 2.5: bw = BufferedWriter(fw); 1.6: ods.setURL("jdbc:oracle:thin:scott/tiger@192.168.1.2:1521:catfish"); 2.6: conn = DriverManager.getConnection("jdbc:pl:db", "ps", "ps"); 1.7: conn = ods.getConnection(); 2.7: Statement stmt = conn.createStatement(); 1.8: c statement = conn.createStatement(); 2.8: ResultSet res = stmt.executeQuery("SELECT Path FROM Files"); 1.9: statement.executeUpdate("DELETE FROM table1"); 2.9: while (res.next()) { 1.10: connection.commit(); } 2.10: bw.write(res.getString(1)); 1.11: catch (SQLException se) { 2.11: } 1.12: if (conn != null) { conn.rollback(); } 2.12: res.close(); 1.13: logger.error("Exception occurred"); } 2.13: } catch(IOException ex) { logger.error("IOException occurred"); 1.14: finally { 2.14: } finally { 1.15: if(statement != null) { statement.close(); } 2.15: if(stmt != null) stmt.close(); 1.16: if(conn != null) { conn.close(); } 2.16: if(conn != null) conn.close(); 1.17: if(ods != null) { ods.close(); } } 2.17: if (bw != null) bw.close(); 1.18: } 2.18: } Specification: “Connection creation => Connection rollback”  Satisfied by Scenario 1 but not by Scenario 2  But Scenario 2 has no defect 9
  • 10. Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = Connection.createStatement() FCa -> stmt.executeUpdate() FCe1 -> conn.rollback() 10
  • 11. Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = Connection.createStatement() FCa -> stmt.executeUpdate() //Triggering Action FCe1 -> conn.rollback() 11
  • 12. Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = Connection.createStatement() FCa -> stmt.executeUpdate() FCe1 -> conn.rollback() //Recovery Action 12
  • 13. Example (cont.)  Simple association rules of the form “FCa => FCe” are not expressive [Weimer&Necula 05]  Requires more general association rules (sequence association rules) such as (FCc1 FCc2) Λ FCa => FCe1, where FCc1 -> Connection conn = OracleDataSource.getConnection() FCc2 -> Statement stmt = conn.createStatement() //Context FCa -> stmt.executeUpdate() FCe1 -> conn.rollback() 13
  • 14. CAR-Miner Approach Issue queries and collect relevant code examples. Eg: “lang:java Construct exception- java.sql.Statement executeUpdate” flow graphs Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Functions Extract classes Collect static traces and functions Mine static traces reused Sequence Input Violations Association Application Rules Check whether there are any exception-related Detect violations defects 14
  • 15. CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Functions Sequence Input Violations Association Application Rules 15
  • 16. Exception-Flow-Graph Construction  Based on a previous algorithm [Sinha&Harrold TSE 00] : normal execution path ----: exceptional execution path
  • 17. Exception-Flow-Graph Construction  Prevent infeasible edges using a sound static analysis [Robillard&Murphy FSE 99] 17
  • 18. CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Methods Sequence Input Violations Association Application Rules 18
  • 19. Static Trace Generation  Collect static traces with the actions taken when exceptions occur  A static trace for Node 7: “4 -> 5 -> 6 -> 7 -> 15 -> 16 -> 17” 19
  • 20. Static Trace Generation  Includes 3 sections:  Normal function- call sequence (4 -> 5 -> 6)  Function call (7)  Exception function-call sequence (15 -> 16 -> 17)  A static trace for Node 7: “4 -> 5 -> 6 -> 7 -> 15 -> 16 -> 17” 20
  • 21. Trace Post-Processing  Identify and remove unrelated function calls using data dependency  “4 -> 5 -> 6 -> 7 -> 15 -> 16 -> 17” 4: FileWriter fw = new FileWriter(“output.txt”) 5: BufferedWriter bw = new BufferedWriter(fw) ... 7: Statement stmt = conn.createStatement() ...  Filtered sequence “6 -> 7 -> 15 -> 16“ 21
  • 22. CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Methods Sequence Input Violations Association Application Rules 22
  • 23. Static Trace Mining  Handle traces of each function call (triggering function call) individually  Input: Two sequence databases with a one-to-one mapping • normal function-call sequences (context) • exception function-call sequences (recovery)  Objective: Generate sequence association rules of the form (FCc1 ... FCcn) Λ FCa => FCe1 ... FCen Context Trigger Recovery 23
  • 24. Mining Problem Definition  Input: Two sequence databases with a one-to-one mapping Context Recovery  Objective: To get association rules of the form FC1 FC2 ... FCm -> FE1 FE2 ... FEn where {FC1, FC2, ..., Fcm} Є SDB1 and {FE1, FE2, ..., Fen} Є SDB2  Existing association rule mining algorithms cannot be directly applied on multiple sequence databases 24
  • 25. Mining Problem Solution  Annotate the sequences to generate a single combined database  Apply frequent subsequence mining algorithm [Wang and Han, ICDE 04] to get frequent sequences  Transform mined sequences into sequence association rules (3 10) Λ FCa => (2 8) Context Trigger Recovery  Rank rules based on the support assigned by frequent subsequence mining algorithm 25
  • 26. CAR-Miner Approach Open Source Projects on web 1 2 … N Exception-Flow … Graphs Static Traces Classes and Methods Sequence Input Violations Association Application Rules 26
  • 27. Violation Detection  Analyze each call site of triggering call FCa  Step 1: Extract context call sequence “CC1 CC2 ... CCm” from the beginning of the function to the call site of FCa  Step 2: If CC1 CC2 ... CCm is super-sequence of FCc1 ... FCcn  Report any missing function calls of {FCe1 ... FCen} in any exception path API client: (CC1 CC2 ... CCm) Λ FCa => Missing any? isSuperSeqOf API Rule: (FCc1 ... FCcn) Λ FCa => FCe1 ... FCen Context Trigger Recovery 27
  • 28. Evaluation Research Questions: 1. Do the mined rules represent real rules? 2. Do the detected violations represent real defects? 3. Does CAR-Miner perform better than WN- miner [Weimer&Necula 05]? 4. Do the sequence association rules help detect new defects? 28
  • 29. Subjects  Internal Info: classes and methods belonging to the app  External Info: classes and methods used by the app  Code examples: #files collected through code search engine 29
  • 30. RQ1: Real Rules  Do the mined rules represent real rules? Real rules: 55% (Total: 294) Usage patterns: 3% 30 False positives: 43%
  • 31. RQ1: Distribution of Real Rules for Axion  Distribution of rules based on ranks assigned by CAR-Miner  #false positives is quite low between 1 to 60 rules 31
  • 32. RQ2: Detected Violations  Do the detected violations represent real defects?  Total number of defects: 160  New defects not found by WN-Miner approach: 87 32
  • 33. RQ2: Status of Detected Violations  HsqlDB developers responded on the first 10 reported defects  Accepted 7 defects  Rejected 3 defects  Reason given by HsqlDB developers for rejected defects: “Although it can throw exceptions in general, it should not throw with HsqlDB, So it is fine” 33
  • 34. RQ3: Comparison with WN-miner  Does CAR-Miner performs better than WN-miner?  Found 224 new rules and missed 32 rules  CAR-Miner detected most of the rules mined by WN-miner  Two major factors:  sequence association rules 34  Increase in the data scope
  • 35. RQ4: New defects by sequence association rules  Do the sequence association rules detect new defects?  Detected 21 new real defects among all applications 35
  • 36. Agenda  Motivation  Mining Sequence Association Rules (CAR-Miner) [ICSE 09]  Detecting Exception-Handling Defects  Mining Alternative Patterns (Alattin) [ASE 09]  Detecting Neglected Condition Defects  Conclusion 36
  • 37. Large Number of False Positives  Existing approaches produce a large number of false positives  One major observation:  Programmers often write code in different ways for achieving the same task  Some ways are more frequent than others Frequent Infrequent ways ways mine patterns detect violations Mined Patterns 37 37
  • 38. Example: java.util.Iterator.next() Java.util.Iterator.next() throws NoSuchElementException when invoked on a list without any elements Code Example 2 Code Sample 1 Code Sample 2 PrintEntries1(ArrayList<string> PrintEntries2(ArrayList<string> entries) entries) { { … … Iterator it = entries.iterator(); if(entries.size() > 0) { if(it.hasNext()) { Iterator it = entries.iterator(); string last = (string) it.next(); string last = (string) it.next(); } } … … } } 38
  • 39. Example: java.util.Iterator.next() Code Sample 1 Code Sample 2 PrintEntries1(ArrayList<string> PrintEntries2(ArrayList<string> entries) entries) { { … … Iterator it = entries.iterator(); if(entries.size() > 0) { if(it.hasNext()) { Iterator it = entries.iterator(); string last = (string) it.next(); string last = (string) it.next(); } } … … } } Sample 2 (6/1243) Sample 1 (1218 / 1243) 1243 code examples Mined Pattern from existing approaches: “boolean check on return of Iterator.hasNext before Iterator.next” 39
  • 40. Example: java.util.Iterator.next() Code Sample 1 Code Sample 2 PrintEntries1(ArrayList<string> PrintEntries2(ArrayList<string> entries) entries) { { … … Iterator it = entries.iterator(); if(entries.size() > 0) { if(it.hasNext()) { Iterator it = entries.iterator(); string last = (string) it.next(); string last = (string) it.next(); } } … … } }  Require more general patterns (alternative patterns): P1 or P2 P1 : boolean check on return of Iterator.hasNext before Iterator.next P2 : boolean check on return of ArrayList.size before Iterator.next  Cannot be mined by existing approaches, since alternative P2 40 is infrequent
  • 41. Our Solution: ImMiner Algorithm  Mines alternative patterns of the form P1 or P2  Based on the observation that infrequent alternatives such as P2 are frequent among code examples that do not support P1 1243 code examples Sample 2 (6/1243) Sample 1 (1218 / 1243) P2 is infrequent among entire P2 is frequent among code 1243 code examples examples not supporting P1 41
  • 42. Alternative Patterns  ImMiner mines three kinds of alternative patterns of the general form “P1 or P2” Balanced: all alternatives (both P1 and P2) are frequent Imbalanced: some alternatives (P1) are frequent and others are infrequent (P2). Represented as “P1 or P^2” Single: only one alternative 42
  • 43. ImMiner Algorithm  Uses frequent-itemset mining [Burdick et al. ICDE 01] iteratively  An input database with the following APIs for Iterator.next() Input database Mapping of IDs to APIs 43
  • 44. ImMiner Algorithm: Frequent Alternatives Input database Frequent itemset mining (min_sup 0.5) Frequent item: 1 P1: boolean-check on the return of Iterator.hasNext() before Iterator.next() 44
  • 45. ImMiner: Infrequent Alternatives of P1  Split input database into two databases: Positive and Negative Positive database (PSD) Negative database (NSD)  Mine patterns that are frequent in NSD and are infrequent in PSD Reason: Only such patterns serve as alternatives for P1   Alternative Pattern : P “const check on the return of ArrayList.size() 2 before Iterator.next()”  Alattin applies ImMiner algorithm to detect neglected conditions 45
  • 46. Neglected Conditions  Neglected conditions refer to  Missing conditions that check the arguments or receiver of the API call before the API call  Missing conditions that check the return or receiver of the API call after the API call  One of the primary reasons for many fatal issues  security or buffer-overflow vulnerabilities [Chang et al. ISSTA 07] 46
  • 47. Evaluation  Research Questions: 1. Do alternative patterns exist in real applications? 2. How high percentage of false positives are reduced (with low or no increase of false negatives) in detected violations? 47
  • 48. Subjects #Samples: #code examples collected from Google code search  Two categories of subjects:  3 Java default API libraries  3 popular open source libraries 48
  • 49. RQ1: Balanced and Imbalanced Patterns  How high percentage of balanced and imbalanced patterns exist in real apps?  Balanced patterns: 0% to 30% (average: 9.69%)  Imbalanced patterns:  30% to 100% (average: 65%) for Java default API libraries  0% to 9.5% (average: 5%) for open source libraries  Explanation: Java default API libraries provide more different ways of 49 writing code compared to open source libraries
  • 50. RQ2: False Positives and False Negatives  How high % of false positives are reduced (with low or no increase of false negatives)?  Applied mined patterns (“P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”) in three modes:  Existing mode: “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”  P1 ,P2, ... , Pi  Balanced mode: “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”  “P1 or P2 or ... or Pi”  Imbalanced mode: “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”  “P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j ”50
  • 51. RQ2: False Positives and False Negatives  Existing Mode vs Balanced Mode Application Existing Mode Balanced Mode Defects False Defects False % of False Positives Positives reduction Negatives Java Util 37 104 37 104 0 0 Java 51 105 51 105 0 0 Transaction Java SQL 56 143 56 90 37.06 0 BCEL 2 14 2 8 42.86 0 HSqlDB 1 0 1 0 0 0 Hibernate 10 9 10 8 11.11 0 AVERAGE/ 15.17 0 TOTAL  Balanced mode reduced false positives by 15.17% without any increase in false negatives 51
  • 52. RQ2: False Positives and False Negatives  Existing Mode vs Imbalanced Mode Application Existing Mode Imbalanced Mode Defects False Defects False % of False Positives Positives reduction Negatives Java Util 37 104 36 74 28.85 1 Java 51 105 47 76 27.62 4 Transaction Java SQL 56 143 53 81 43.36 3 BCEL 2 14 2 6 57.04 0 HSqlDB 1 0 1 0 0 0 Hibernate 10 9 10 8 11.11 0 AVERAGE/ 28.01 8 TOTAL  Imbalanced mode reduced false positives by 28% with quite small increase in false negatives 52
  • 53. Conclusion  Problem-driven methodology by identifying new problems, patterns mining algorithms, defects  CAR-Miner [ICSE 09]: mining sequence association rules of the form (FCc1 ... FCcn) Λ FCa => (FCe1 ... Fcen) Context Trigger Recovery  reduce false negatives  Alattin [ASE 09]: mining alternative patterns classified into three categories: balanced, imbalanced, and single P1 or P2 or ... or Pi or A^1 or A^2 or ... or A^j  reduce false positives  Combining both 53  NLP on API documents [Pandita et al. ICSE 12]
  • 54. Solution-Driven Problem-Driven Where can I apply X miner? What patterns do we really need? Basic Advanced mining mining New/adapted algorithms algorithms mining algorithms E.g., association rule mining, E.g., frequent partial order frequent itemset mining… mining [ESEC/FSE 07] E.g., [ICSE 09], [ASE 09] 54
  • 55. Road Ahead: Software Analytics Software analytics is to enable software practitioners to perform data exploration and analysis in order to obtain insightful and actionable information for data-driven tasks around software and services. •Get research problems from real practice •Get feedback from real practice •Collaborate across disciplines •Collaborate with industry Dongmei Zhang and Tao Xie, Software Analytics in Practice, mini-tutorial ICSE 2012 SEIP. 55 http://research.microsoft.com/en-us/groups/sa/softwareanalyticsinpractice_minitutorial_icse2012.pdf
  • 56. Thank You Questions? https://sites.google.com/site/asergrp/ This work is supported in part by NSF grants CCF-0845272, CCF-0915400, 56 CNS-0958235, and ARO grant W911NF-08-1-0443.
  • 57. Alattin Approach Phase 1: Issue queries and collect relevant code samples. Eg: “lang:java Phase 2: Generate java.util.Iterator next” pattern candidates Open Source Projects on web 1 2 … N Pattern … Candidates Classes and methods Extract classes and methods Phase 3: Mine reused alternative patterns Application Alternative Violations Under Analysis Patterns Detect neglected Phase 4: Detect neglected conditions conditions statically 57
  • 58. Keys to Making Real Impact  Engagement of practitioners ¤ Solving their problem ¤ Champions in product teams ¤ Timing ¤ Culture  Walking the last mile ¤ Targeting at real scenarios ¤ Trying out tool has cost ¤ “It works” is not enough ¤ Getting engineering support  Combination of expertise ¤ Research capabilities ¤ Engineering skills to build systems ¤ Visualization & design ¤ Communication MSR 2012 58