论文信息 - Testing a database for race conditions with QuickCheck: none

Testing a database for race conditions with QuickCheck: none

In 2009, Claessen et al. presented a way of testing for race conditions in Erlang programs, using QuickCheck to generate parallel tests, a randomizing scheduler to provoke races, and a sequential consistency condition to detect failures of atomicity [1]. That work used a small industrial prototype as the main example, showing how two race conditions could be detected and diagnosed. In this paper, we apply the same methods to dets, a vital component of the mnesia database system, and more than an order of magnitude larger. dets is known to fail occasionally in production, making it a promising candidate for a race condition hunt. We found five race conditions with relatively little effort, two of which may account for the observed failures in production. We explain how the testing was done, present most of the QuickCheck specification used, and describe the problems we discovered and their causes.

John M. Hughes | Hans Bolinder

[1] Stephen N. Freund,et al. Atomizer: A dynamic atomicity checker for multithreaded programs , 2008, Sci. Comput. Program..

[2] John Hughes,et al. QuickCheck Testing for Fun and Profit , 2007, PADL.

[3] Koen Claessen,et al. Finding race conditions in Erlang with QuickCheck and PULSE , 2009, ICFP.

[4] Koushik Sen,et al. Race directed random testing of concurrent programs , 2008, PLDI '08.

[5] Leslie Lamport,et al. How to Make a Multiprocessor Computer That Correctly Executes Multiprocess Programs , 2016, IEEE Transactions on Computers.

[6] Lars-Åke Fredlund,et al. Recent improvements to the McErlang model checker , 2009, Erlang Workshop.

[7] Håkan Mattsson,et al. Mnesia - A Distributed Robust DBMS for Telecommunications Applications , 1999, PADL.

[8] Madan Musuvathi. Systematic concurrency testing using CHESS , 2008, PADTAD '08.

[9] Lars-Åke Fredlund,et al. McErlang: a model checker for a distributed functional programming language , 2007, ICFP '07.