15 June 2016
Detect and Correct Concurrency IssuesDelivering full-featured applications requires developers to take advantage of multi-core processor capabilities. This added complexity brings additional security/quality challenges that developers must understand and mitigate early in the development lifecycle. GrammaTech provides advanced analyses for finding defects in multi-core development.
Advanced Multi-Core DevelopmentThe defects that are unique to multi-threaded and multi-core code are notoriously difficult to find, let alone replicate in a testing environment. CodeSonar detects these complex concurrency-related defects, discovering and reporting problems such as deadlocks, livelocks, resource starvation, and race conditions.
Developers responsible for building sophisticated multi-threaded code consistently choose GrammaTech to help identify and eliminate complex concurrency defects early in the development lifecycle when they are most cost effective to fix.
CodeSonar checks many different scenarios for misusing concurrency APIs. Deadlocks and data races are particularly time-consuming and expensive to fix when left undetected throughout development because they cause a disproportionate number of concurrency-related bugs throughout a program.
The GrammaTech AdvantageManual testing is not very effective at detecting and debugging data races, for example, because it is infeasible to test every interleaving in real-world systems. This is where CodeSonar’s data race detection is extremely effective. CodeSonar detects data races by focusing on the causes of the data race, not the symptoms. CodeSonar examines the code and creates an abstract model of what locks are held by what threads. It considers possible interleavings in an automated way, examining patterns of access to shared memory locations, and finds situations in which code is susceptible to problematic interleavings.
CodeSonar’s advanced concurrency checks for C/C++ were developed and commercialized through a GrammaTech Research project funded by DARPA. In addition to multi-threaded software, CodeSonar also finds bugs in signal handlers.
Concurrency checks for Java are available through ThreadSafe™, the most advanced concurrency bug finder available for Java, which finds problems that are missed by other tools.
In addition to identifying race conditions and deadlocks, ThreadSafe can pinpoint unpredictable results caused by incorrect use of the concurrent collection libraries provided by java.util.concurrent, bad error handling, or incorrect synchronization when coordinating access to shared non-concurrent collections. It can also help diagnose performance bottlenecks caused by incorrect API usage, redundant synchronization, and unnecessary use of a shared mutable state.
Concurrency checks for Multi-threaded and Multi-core CodeCodeSonar catches complex concurrency-related defects in multi-threaded and multi-core code, like data race, deadlocks and incorrect use of synchronization techniques.
Detect Data Races
Data races cause a disproportionate number of concurrency-related bugs, that are detected extremely effective by CodeSonar. A data race can be caused by
1. Multiple threads of execution access a shared piece of data.
2. One thread that changes the value of the data.
3. An access that is not separated by explicit synchronization.
Data races can leave a system in an inconsistent state, which can remain undetected and only show up in unusual cases with curious symptoms.
Because of the huge number of possible execution the detection and debugging of data races, and concurrency problems in general, cause difficulties for traditional testing methods.
As can be seen from the figure above, there are six possible interleavings of two threads with two instructions each. With three instructions each, there are twenty possible interleavings. Due to the variety of combinations, it is infeasible to test every interleaving in real-world systems. The diagnosis of data races proves to be rather difficult, because the defect occurs only under certain interleavings. Data races are sensitive to traditional tools like debuggers, which affect timing and can make the bug disappear temporarily.
In contrast to traditional tools CodeSonar detects data races by focusing on the causes, not the symptoms. The tool examines the code and creates an abstract model of what locks are held by what threads. It considers automatically possible interleavings, examines patterns of access to shared memory locations, and finds situations in which code is susceptible to problematic interleavings. As soon as CodeSonar identifies a data race, the tool issues a data race warning that includes supporting information.
Contrary to the widespread assumption that some types of data races are harmless, they can cause damage during execution. This is because optimizing compilers reorder instructions.
Detect DeadlocksDeadlock means a situation in which two or more threads prevent each other from making progress by each holding a look needed by another. The most common approach to avoiding deadlock is to ensure a partial ordering to the resources. This way was proposed by Dijkstra in 1965 as a solution to the Dining Philosophers Problem. Large code base make it difficult to tell through manual inspection if the software follows this rule. The automated analysis of CodeSonar issues a warning if the same locks can be acquired in different orders by different threads.
Moreover the tool provides a nested locks check, to avoid this dangerous defects. This check triggers a warning whenever a thread tries to obtain two or more locks. Depending on the requirements the nested lock check can be enable or disabled.
In a deadlock, both threads are completely stuck, both unable to carry out its operations or get to the point where it can release its lock.
CodeSonar 4 for Embedded Systems
CodeSonar for C/C++ (PDF, 1.5 MB)
CodeSonar for Java (PDF, 1.1 MB)
Automate the Verification of Your Code
CodeSonar for Java
Compliant to standards
CWE- and BSI-regulations
"Power of Ten" and JPL-regulations
How Static Code Analysis works