bug-introducing patches
From: Sasha Levin
Date: Tue May 01 2018 - 12:38:30 EST
Working on AUTOSEL, it became even more obvious to me how difficult it is for a
patch to get a proper review. Maintainers found it difficult to keep up with
the upstream work for their subsystem, and reviewing additional -stable patches
put even more load on them which some suggested would be more than what they
can handle.
While AUTOSEL tries to understand if a patch fixes a bug, this was a bit late:
the bug was already introduced, folks already have to deal with it, and the
kernel is broken. I was wondering if I can do a similar process to AUTOSEL, but
teach the AI about bug-introducing patches.
When someone fixes a bug, he would describe the patch differently than he would
if he was writing a new feature. This lets AUTOSEL build on different commit
message constructs, among various inputs, to recognize bug fixes. However,
people are unaware that they introduce a bug, so the commit message for bug
introducing patches is essentially the same as for commits that don't introduce
a bug. This meant that I had to try and source data out of different sources.
Few of the parameters I ended up using are:
- -next data (days spent in -next, changes in the patch between -next trees)
- Mailing list data (was this patch ever sent to a ML? How long before it was
merged? How many replies did it get? ...)
- Author/commiter/maintainer chain data. Just like sports, some folks are more
likely to produce better results than others. This goes beyond just "skill",
but also looks at things such as whether the author patches a subsystem he's
"familiar with" (== subsystem where most of his patches usually go), or is he
modifying a subsystem he never sent a patch for.
- Patch complexity metrics - various code metrics to indicate how "complex" a
patch is. Think 100 lines of whitespace fixes vs 100 lines that
significantly changes a subsystem.
- Kernel process correctness - I tried using "violations" of the kernel
process (patch formatting, correctness of the mailing to lkml, etc) as an
indicator of how familiar the author is with the kernel, with the presumption
that folks who are newer to kernel development are more likely to introduce
bugs
Running an initial iteration on a set of commits made two things very obvious
to me:
1. -rc releases suck. seriously suck. The quality of commits that went in -rc
cycles was much worse that merge window commit:
- All commits had the same chance of introducing a bug whether they came in a
merge window or an -rc cycle. This means that -rc commits mostly end up
replacing obvious bugs with less obvious ones.
- While the average merge window commit changes, on average, 3x more lines
than an -rc commit, the chances of a bug introduced per patch is the same,
which means that bugs-per-line metric of code is much higher with -rc patches.
- A merge window commit spent 50% more days, on average, in -next than a -rc
commit.
- The number of -rc commits that never saw any mailing list or has never been
replied to on a mailing list was **way** higher than merge window commits.
- For some reason, the odds of a -rc commit to be targetted for -stable is
over 20%, while for merge window commits it's about 3%. I can't quite
explain why that happens, but this would suggest that -rc commits end up
hurting -stable pretty badly.
2. Maintainers need to stop writing patches, commiting them, and pushing them
in without reviews. In -rc cycles there is quite a large number of commits
that were either written by maintainers, commited, and merged upstream the same
day. These patches are very likely to introduce a new bug.
I don't really have a proposal beyond "tighten up -rc cycles", but I think it's
a discussion worth having. We have enough data to show what parts of kernel
development work, and what parts are just hurting us.
I'd be happy to gather more data if someone has an idea he wants to look
into. The data used for this work is based on:
- v4.4..v4.16 (just becuase it's as far as linux-next-history goes).
- "bugs" are commits that were mentioned in a Fixes: tag of a later
commit.
- "stable commits" are commits that made it to a -stable tree.