EFregnan
01cd6495f3
Added parameters
|
6 years ago | |
|---|---|---|
| .. | ||
| data_assembler | 7 years ago | |
| fetch_jira_bugs | 6 years ago | |
| model | 7 years ago | |
| szz | 7 years ago | |
| .gitignore | 7 years ago | |
| Dockerfile | 6 years ago | |
| LICENSE | 7 years ago | |
| README.md | 6 years ago | |
README.md
SZZ Unleashed
SZZ Unleashed is an implementation of the SZZ algorithm introduced by Śliwerski, Zimmermann, and Zeller in "When Do Changes Induce Fixes?", in Proc. of the International Workshop on Mining Software Repositories, May 17, 2005. The implementation uses "line number mappings" as proposed by Williams and Spacco in SZZ Revisited: Verifying When Changes Induce Fixes, in Proc. of the Workshop on Defects in Large Software Systems, July 20, 2008.
What is the purpose of this algorithm?
The SZZ algorithm is used to find bug-introducing commits from a set of bug fixing commits. The bug-introducing commits can be extracted either from a bug tracking system such as JIRA or simply by searching for commits that states that they are fixing something. The identified bug-introducing commits can then be used to support empirical software engineering research, e.g., defect prediction or software quality. As an example, the developers used this implementation to collect training data for a machine learning-based approach to risk classification of individual commits, i.e., training a classifier to highlight commits that deserve particularily careful code review. The work is described in a MSc. thesis from Lund University (in press).
Prerequisites:
- Java 8
- Gradle
All scripts and compilations has been tested on Linux and Mac.
To use docker, one needs Docker installed as well.
Table of Contents
Usage SZZ algorithm
Grab issues
To get issues one needs a bug tracking system. As an example the project Jenkins uses JIRA. From here it is possible to fetch issues that we then can link to bug fixing commits.
We have provided an example script that can be used to fetch issues from Jenkins issues. In the directory fetch_jira_bugs, one can find the fetch.py script. The script has a jql string which is used as a filter to get certain issues. JIRA provides a neat way to test these jql strings directly in the web page. Change to the advanced view and then enter the search creiterias. Notice that the jql string is generated in the browsers url bar once enter is hit.
To fetch issues from Jenkins JIRA, just run:
python fetch.py
It creates a directory with issues. These issues will later on be used by the find_bug_fixes.py script. Second we need to convert the git log output to something that can be processed. That requires a local copy of the repository that we aim to analyze, Jenkins Core Repository. Onced cloned, one can now run the git_log_to_array.py script. The script requires an absolute path to the cloned repository and optionally a SHA-1 for an initial commit.
python git_log_to_array.py --repo-path <path_to_local_repo>
Once executed, this creates a file gitlog.json that can be used together with issues that we created with fetch.py script. Now using the find_bug_fixes.py and this file, we can get a json file
that contains the Issue and its corresponding commit SHA-1, the commit date, the creation date and the resolution date. Just run:
python find_bug_fixes.py --gitlog <path_to_gitlog_file> --issue-list <path_to_issues_directory>
The output is issue_list.json which is later used in the SZZ algorithm.
Find the bug-introducing commits
This implementation works regardless which language and file type. It uses JGIT to parse a git repository.
To build a runnable jar file, use the gradle build script in the szz directory like:
gradle build && gradle fatJar
Or if the algorithm should be runned without building a jar:
gradle build && gradle runJar
The algorithm tries to use as many cores as possible during runtime. The more the merrier so to speak.
To get the bug introducing commits from a repository using the file produced by the previous issue to bug fix commit step, run:
java -jar szz_find_bug_introducers-<version_number>.jar -i <path_to_issue_list.json> -r <path_to_local_repo>
Output
The output can be seen in three different files commits.json, annotations.json and fix_and_bug_introducing_pairs.json.
The commits.json file includes all commits that have been blamed to be bug introducing but which haven't been analyzed by any anything.
The annotations.json is a representation of the graph that is generated by the algorithm in the blaming phase. Each bug fixing commit is linked to all possible commits which could be responsible for the bug. Using the improvement from Williams et al's, the graph also contains subgraphs which gives a deeper search for responsible commits. It enables the algorithm to blame other commits than just the one closest in history for a bug.
Lastly, the fix_and_bug_introducing_pairs.json includes all possible pairs which could lead to a bug introduction and fix. This file is not sorted in any way and it includes duplicates when it comes to both introducers and fixes. A fix can be made several times and a introducer could be responsible for many fixes.
Use Docker to generate fix_and_bug_introducing_pairs.json.
There exist a Dockerfile in the repository. It contains all the steps in chronological order that is needed to generate the fix_and_bug_introducing_pairs.json. Simply run this command in the directory where the Dockerfile is located:
docker build -t ssz .
Then start a temporary docker container:
docker run -it --name szz_con szz ash
In this container it is possible to study the results from the algorithm. The results are located in /root/szz/results.
Lastly, to copy the results from the container to your own computer run:
docker cp szz_con:/root/szz/results .
Note that the temporary container must be running while the docker cp command is executed. To be sure, check that the szz_con is listed when running:
docker ps
Feature Extraction
Now that the potential bug-introducing commits has been identified, the repository can be mined for features.
Code Churns
The most simple features are the code churns. These are easily extracted by just parsing each diff for each commit. The ones that are extracted are:
- Total lines of code - Which simply is how many lines of code in total for all changed files.
- Churned lines of code - This is how many lines that have been inserted.
- Deleted lines of code - The number of deleted lines.
- Number of Files - The total number of changed files.
To get these features, run: python assemble_code_churns.py <path_to_repo>
<branch>
Diffusion Features
The diffusion features are:
- The number of modified subsystems.
- The number of modified subdirectories.
- The entropy of the change.
To extract the diffusion features, just run:
python assemble_diffusion_features.py --repository <path_to_repo> --branch <branch>
Experience Features
Maybe the most uncomfortable feature group. The experience features are the features that measures how much experience a developer has, both how recent but also how much experience the developer has overall with the code.
The features are:
- Overall experience.
- Recent experience.
The script builds a graph to keep track of each authors experience. So the intial
run is:
python assemble_experience_features.py --repository <repo_path> --branch <branch> --save-graph
This will result in a graph which the script could use for future analysis
To rerun the analysis without generating a new graph, just run:
python assemble_experience_features.py --repository <repo_path> --branch <branch>
History Features
The history are as follows:
- The number of authors in a file.
- The time between contributions made by the author.
- The number of unique changes between the last commit.
The same as with the experience features, the script must initially generate a graph
where the file meta data is saved.
python assemble_history_features.py --repository <repo_path> --branch <branch> --save-graph
To rerun the script without generating a new graph, use:
python assemble_history_features.py --repository <repo_path> --branch <branch>
Purpose Features
The purpose feature is just a single feature and that is if the commit is a fix o not. To extract it use:
python assemble_purpose_features.py --repository <repo_path> --branch <branch>
Coupling
A more complex number of features are the coupling features. These indicates how strong the relation is between files and modules for a revision. This means that two files can have a realtion even though they don't have a realtion inside the source code itself. So by mining these, features that gives indications in how many files that a commit actually has made changes to are found.
The mining is made by a docker image containing the tool code-maat.
These features takes long time to extract but is mined using:
python assemble_features.py --image code-maat --repo-dir <path_to_repo> --result-dir <path_to_write_result>
python assemble_coupling_features.py <path_to_repo>
It is also possible to specify which commits to analyze. This is done with the
CLI option --commits <path_to_file_with_commits>. The format of this file is
just lines where each line is equal to the corresponding commit SHA-1.
If the analyzation is made by several docker containers, one has to specify
the --assemble option which stands for assemble. This will collect and store
all results in a single directory.
The script is capable of checking if the are any commits that haven't been
analyzed. To do that, specify the --missing-commits option.
Classification
Now that data has been assembled the training and testing of the ML model can be made. To do this, simply run the model script in the model directory:
python model.py train