Avoid NPE on preallocated exception without message #1409
Conversation
- There is hot exception usage during tests execution, so HotSpot makes optimization. Optimization could be disabled with -XX:-OmitStackTraceInFastThrow. However this case can be solved with additional check in code. - Null message means there was a lot of exceptions before, so no need to log.warn about it one more time.
|
Doe this problem arise only on very old versions of java? |
No. Preallocated exception (NPE, ClassCastException, ArrayIndexOutOfBoundsException, etc) is the feature of HotSpot JVM. If your code produces a lot of exceptions, like it does during tests execution, JVM starts throwing exception without message and stacktrace. It improves performance. But code in catch clause should work properly with such empty exception instance. I reproduced the issue running org.bitcoinj.script.ScriptTest#dataDrivenInvalidTransactions until failure. This test breaks on second hundred of executions. here is my environment: |
|
Oops. Looks like there is one more "until failure" issue in org.bitcoinj.wallet.WalletTest#basicSpendingWithEncryptedWallet. Test fails on ~175 sweep with exception |
|
Thanks for finding this! I was already trying to investigate into these sporadic unit test failures, but failed and would have searched forever. I wonder if we should perhaps disable this optimization for the tests. According to the article you linked, the |
|
PR addresses issue in production code, and user can face the same problem while using bitconj. Also, this code goes against javadoc for java.lang.Throwable#getMessage:
Don't know if there could be more ways to get null in message. So I think it is better to change code than Travis configuration. Flag should help. It is OK as a temporary solution. Or if you'd like to see all stacktraces in build log, no matter how many exceptions were thrown before. However this option would shadow bugs similar to this one. |
|
Also I can look for more use cases of getMessage, which can lead to the same NPE. |
|
Ok I see your point about production code. Ideally production code should never depend on the exception message. However in this case I guess the upstream API just didn't think about this case, and upstream APIs are difficult to fix/enhance. I'm willing to merge your patch, but I think we should document it a bit in code. As far as I could see, there are no other dependencies of production code on the exception message (except printing it to a log, wrapping it a domain specific exception, etc.). However, we have tons of unit tests that assert for a specific exception message. In this case imho we have no other choice but to fail the test, be it through an (unexpected) NullPointerException or by properly failing the assert – the outcome will be the same, the test will fail. At the same time, running the tests will likely be the only "usecase" that raises enough exceptions to trigger the HotSpot optimization. Therefore, I still suggest disabling the optimization for the tests. |
|
Yes, please feel free to look for other instances of production code depending on the value of or the non-null-ness of getMessage(). |
Should I change my PR somehow? (I'm sorry, I don't get it clear enough from your message, so have to ask :) ) |
|
If you find other similar cases in production code, feel free to add more commits. I will write a line or two of documentation when merging. Meanwhile, I've proposed a patch for disabling the optimization in unit tests: #1412 |
|
There is one more case potentially leading to NPE. Proto.Error builder doesn't allow null arguments and throws NPE. I've put an empty string for null messages. |
| @@ -527,7 +527,7 @@ private void error(String message, Protos.Error.ErrorCode errorCode, CloseReason | |||
| Protos.Error.Builder errorBuilder; | |||
| errorBuilder = Protos.Error.newBuilder() | |||
| .setCode(errorCode) | |||
| .setExplanation(message); | |||
There was a problem hiding this comment.
Hmm, explanation is optional in the protobuf. This means the better way would be to not set the explanation at all rather than set it to the empty string.
| @@ -527,7 +527,7 @@ private void error(String message, Protos.Error.ErrorCode errorCode, CloseReason | |||
| Protos.Error.Builder errorBuilder; | |||
| errorBuilder = Protos.Error.newBuilder() | |||
| .setCode(errorCode) | |||
| .setExplanation(message); | |||
| .setExplanation(message != null ? message : ""); | |||
- 'explanation' argument in builder should not be null.
zkejid
force-pushed
the
preallocatedExceptionNPE
branch
from
9d7857b
to
d9f0aa8
Compare
|
I squashed, added some comments and merged. Again, thanks a lot for investing your time into this issue! I'm glad this is now fixed. |
Hello.
I'm trying to make my own research on bitconj codebase. During test execution I ran into NPE in code added by commit 83995e9. There is check, which doesn't expect exception message to be null. So I just made additional null-check, so it will not throw NPE and will not log noisy messages.
The cause is an optimisation in HotSpot. Here is an article about it: http://jawspeak.com/2010/05/26/hotspot-caused-exceptions-to-lose-their-stack-traces-in-production-and-the-fix/
My solution is not so good. The best solution would be to completely avoid 'legal' exceptions in this case. However, my knowledge is not enough for it.
Hope this helps.