Lambda the Ultimate

The underlying code isn't required to change. What if there were a means of having the debugger show an unravelled view of the code? See, here we'd be introducing an abstraction (you aren't following the real PC) so that debugging gets easier - for certain types of debugging; each mode of debugging would want to have abstractions that suited it.

So this would be a model of software development and maintenance where we'd want to figure out how to have out abstractions, and eat them too. Perhaps there would be things the development side would have to do to make the debugging side more tenable?

(I'd like everybody to put on your thinking caps and free their minds of how "debugging will never be pleasant" and try to imagine totally crazy, dope-smoking things that would make it slightly less horribly evil and - dare we dream - some day pleasant? Otherwise, how are we ever going to improve things? We'll only be improving the development side, and the debugging side will mostly benefit by dumb luck.)

Believe me, I grok. I am not trying to claim that all abstractions are bad, I am only claiming that not all abstractions help in all situations, and that it appears to me that the software development culture doesn't think enough about how abstractions could help or hinder maintenance.

Feel free to elide the claims about reasons for invention. However, keep the bit about what OOP addresses vs. the old classic procedural approaches in some practice.

Please to be keeping in mind that one's personal experience is not sufficient to accurately claim to know about software development in general! Within the entire enchilada of software development many (smart) people work in systems where one cannot have a unit test that will find a particularly evil bug without extraordinary expense or time invested, e.g.: some particularly embedded systems.

Additionally, please to be keeping in mind that the term 'bug' has a wide range of implications! E.g.: I would be interested in knowing what you think about code reviews, where people do, in fact, end up "reading large spans of source."

(Interesting to hear from somebody who appears to have software development experience in more-than-simple projects!)

So if you do end up with abstractions, layer upon layer, that made sense while they were being built but nevertheless are somehow hindering finding that evil show-stopper bug, what do you do? What could your development tools do for you to help? What could your up-front design have done to help?

A classic to me is concurrency - folks design with shared state, and then they end up in the hell of deadlocks etc. So they have to write deadlock detection tools which may or may not find the problem (or simply force the machine to keep going, even in an 'invalid' state, for the sake of 'progress'). I'd hazard to guess that more-than-simple game code falls into this category. What if a different design 'abstraction' had been used (e.g.: actors)?

Example tool: "Every IDE should be able to automatically make control flow / sequence diagrams." That isn't inventing something new, this is just getting the tools people already know about into everybody's hands. I'm sure there are new-fangled things one could also invent that might help debug under certain circumstances.

IMHO, part of the problem stems from building systems using abstractions that are non-compositional in nature. A good example is the shared-state concurrency model you mentioned - diagnosing the problem requires understanding what all of the involved threads are doing, and how they act on the state variable in question. The state (and thus behavior) of each thread is irrevocably bound to the behavior of other threads.

On the other hand, a CSP-based (or actors-based) model is compositional in nature - the state (and thus behavior) of each process (actor) can be understood in isolation. The interactions between any two pairs of processes are readily understood and analyzed. That pair of processes can then be considered as a single "process", and the interaction of that process with other processes can be considered. Global system state is a pure composition of the state of each component. There are well-known communications patterns (Welch's IO-PAR and IO-SEQ) for composing systems of processes in a deadlock-free fashion, and established theoretical tools for diagnosing deadlock via local analysis of subsets of a process network. In this case, the correct choice of abstractions results in (a) the ability to design in a way that prevents bugs in the first place, and (b) the generation of designs that are far more amenable to debugging should a bug occur.

I believe that a good abstraction should allow you to ignore internal details and focus on interfaces - otherwise "divide-and-conquer" debugging won't work, because you need to look at the internals of every single component, as well as its externally observable behavior. Threads clearly do not meet this criterion, which is why I think they're such a poor and bug-prone abstraction. By the same token, a well designed object-based abstraction should be an aid to debugging, by isolating different elements of the system in a way that permits a divide-and-conquer approach to assuring system correctness.

Yes, that sounds eminently plausible, I buy it!

Can we think of other abstractions that get in the way, to differing degrees e.g.: OOD? Can we boil out the reasons for why they get in the way? Is it just the (non-)composability aspect? Can something be composable but still give us headaches when it comes time to debug? What about the sheer size of things? How about being able to rename things in the debugger so you can start to understand Other People's Code that you have to deal with? How about...?

I realize this might sound like something on /., to wit:

1. Realize debugging can be hindered by abstractions of various ilk.
2. [???]
3. Profit!

Well, I think that debugging in general boils down to reasoning about your code. Look at even simple "print statement debugging": you insert some code somewhere to understand an intermediate stage of your computation, which permits you to reason about how that intermediate stage resulted in an incorrect value, or how the correct intermediate value was transformed into an incorrect final result - repeat recursively until bug is pinpointed. I would imagine that any abstraction which aids in reasoning will therefore help with debugging, and any abstraction that makes it harder to reason will make debugging more difficult. Coming from that perspective, it seems likely that the formal methods and FP folks probably have some useful insights into what abstractions are an aid to debugging, because they're much more focused on reasoning to begin with.

Based on that observation, some obvious (but by no means comprehensive) guidelines include:

• Minimize state
• Where state exists, encapsulate it in composable chunks
• Use generalized, standard combinators with well-understood properties to perform composition

Excellent points, thank you!

You comments reminded me of my old boss's work: Check out Natural Programming which explicitly worries about debugging! I had read about HANDS before, but marmalade (Lord, give me strength: would people please just capitalize things normally?) is new to me. The agreed upon point is the statement that "debugging is determining the difference between how you think the system should act and how it really does." Sort of like the "You keep using that word. I do not think it means, what you think it means" idea, where the 'word' is the thought we have in our head of what we wanted the program to do, vs. what we actually wrote in our source code.

Regarding the fact that objects are composed in horrible, horrible ways: Yes, that makes sense to me. God knows, my own code is like that all too often. There was a DDJ article where the author said something like "make all connections like the relational DB model: there are not connections in the objects, rather in extra objects that join them all up. That way it is explicit and more easily changed." It seemed weird and I never took him up on the challenge, but perhaps I should?

Interesting. Whyline (part of marmalade) sounds like a neat project. Of course, in order to express a question like "why didn't x happen?" means that you need to be able to precisely describe what it is you expected to happen. There might even be some value in doing that before you write any code. At which point we come full circle to formal specification methods :-)

I'll have to see if I can dig up that DDJ article. It sounds intriguing. I have no idea whether or not the approach the author recommends would actually help with debugging, but it seems like it might be worthwhile trying.

While I haven't actually read it, it seems plausible that Categories for Software Engineering (recently referred to on LtU here) might provide some useful insights on how one might reason about large-scale abstractions (or construct abstractions that are more amenable to reasoning).

That strikes me as all too valid a point. I have used Z ("zed") before, it was actually kind of nice. However, I don't have enough personal experience to say if formal methods get in the way of "just getting stuff done" under the pressure folks can feel at work. At the moment, my gut feeling is that I would seriously enjoy working in a commercial quality project that took a more formal approach.

On the other flipper, when I think of working on a personal project, I want to work on a hacked up implementation first to get the idea fleshed out. I'd then like to not ship that, and write a new version that used more design by contract and other formalizations. The reality seems to be that people only rarely throw away the prototype. (Maybe it should always be written in a language that makes one feel dirty, so one will have to re-write it?) OK, actually, I want the prototype to be done in a language system that is so amazing that the prototype is robust and yet not a big hassle. I think of type inference in Haskell/*ML like that. Could there be progressive refinement of formal methods in a system? Could there be automated inference of contracts in a system based on the code you write - as a means of hilighting that it is perhaps doing something you didn't intend? Could there be some sub class of auto-generated unit tests? I dunno, I'm just throwing out ideas.

Even if using formal methods is a good answer, are there things we could do in the debugging phase to help all situations, including if the code we wrote kinda sucked?

What maybe I'd like to see is a book or class or site (I'll go fire one up on wikispaces) where software development is explored from a perspective heavily weighted towards debugging. Can we, for example, throw out all languages that have no debugger? Can we then order things according to how good their debugger is? That seems like the most basic thing, and yet I find so many systems (Java, Clean, Haskell?, etc.) that are apparently lacking in powerful debugging tools.

[edit: added wikispaces link.]

On the other flipper, when I think of working on a personal project, I want to work on a hacked up implementation first to get the idea fleshed out. I'd then like to not ship that, and write a new version that used more design by contract and other formalizations. The reality seems to be that people only rarely throw away the prototype.

Yeah, it was both nice and sad to see them in the last IEEE Spectrum. Nice because people should know, sad because this is news? Our industry sucks.

For all that some people like Z, it's not necessarily where formal specification is at these days. You may not have been immediately drawn to Z, but you might have more enjoyment from using a different formalism.

As to stepwise refinement, that tends to be a big part of the deal for a formal specification methodology.

The second QuickCheck paper shows how to write specifications with QuickCheck.

In my opinion, QuickCheck is one of the best debugging tools available because you write executable properties that your code should adhere to, and then you generate test cases to see if you can find something that breaks your specification.

Even simple properties and simple generators can quickly find boundary problems, off-by-one errors and more. I've even written a Test Driven Development version of QuickCheck.

QuickCheck effectively generates an infinite number of unit tests to see if they all match your spec. How can it get any better? Try QuickCheck today!


--Shae Erisson - ScannedInAvian.com

It is terrific to have tools which get us stronger testing and understanding of when our code is/n't behaving.

Having said that, I feel compelled to point out it is half the battle - once we know there is a problem, we have to figure out what the root cause is. That's where I wonder if our abstractions can sorta play interference...

Presumably, the more we apply formal methods and testing, the fewer bugs sneak through, and the better our understanding of the system as it is being developed. Thus, we can hope it will mean the bugs that don't get squashed will be relatively easy?

Would that there were projects afoot to make underlying systems for debugging. Or maybe I should stress the underlying part, instead. To what degree could there be abstractions that let you debug Haskell and Forth and Java, etc.? Some kind of plug-in AST kombobluator?

Software development spans a gamut, and I like to think about that gamut, having experienced a range which includes fun interactive Lisp debugging through to really really crappy raw memory dump debugging in horrible environments (maybe that's kind of a redundant description). It is not possible to fix all the factors which contribute to making a situation bad, especially when those factors are social (e.g.: company habit, methods, structure, methodologies). Software tools are often easier to apply, so let us think about those as well (and probably foremost).

Regarding missing defects in a code review, I believe finding any and missing some is better than finding none. Code reviews can also help to find bugs that are on the order of large misunderstandings between developers; we should try to think about the full range of 'bug's that are out there.

What "cheaper ways" have you employed? Which ones worked well? Which ones sucketh verily? Can you think of circumstances where they should not be applied? Can you think of situations where people don't usually apply them, and it could be a terrific help to do so?

Keith, it would be helpful if you would use the "reply to this comment" link when replying to a comment, rather than the overall forum topic. The reply form at the end of the thread will produce a top-level reply comment, which destroys the threading (and can cause some confusion when the reply is not near the post which is being replied).

Yeah, I know.

I thought I had. And so am puzlled that the comment appeared where it did.

In fact, I'm not sure I understand the LtU interface at all well. I find it quite difficult to see what's going on in a discussion.

I don't mean to be flippant, but I'm not sure there's a summary everybody would agree upon :-).

Personally, I wanted to heighten the awareness that any time you abstract along a given dimension of the problem, you run the risk of it making other perspectives on it hard to deal with. And, pretty much, every problem has multiple facets - humans arne't very good at dealing with the entire gestalt, hence the need for abstractions at all. If everybody stops and thinks "gee, is having a deep object hierarchy going to make debugging this code hell for somebody else, or even my future self?" then that's good :-) Likewise, "does Haskell really need yet another operator that I invent that uses a strange series of symbols, and that looks sort of like another symbol already in use but differs only by a single '>' symbol?"

I also wanted to hear from other folks how they saw abstractions working; given abstraction pattern Y, what are the ramifications for all the things we have to worry about in life: debugging, porting, design, scalability, verifiability, implementation, how much time is left in the schedule before we just have to ship the bloody thing? (There's the wiki for when people do want to record such thoughts.)

Would classifying this kind of stuff get me an honorary degree of something-or-other? Ha ha.