research-article

Interactive, effort-aware library version harmonization

Authors:

Xin PengAuthors Info & Claims

ESEC/FSE 2020: Proceedings of the 28th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering

Pages 518 - 529

https://doi.org/10.1145/3368089.3409689

Published: 08 November 2020 Publication History

Get Access

Abstract

As a mixed result of intensive dependency on third-party libraries, flexible mechanisms to declare dependencies and increased number of modules in a project, different modules of a project directly depend on multiple versions of the same third-party library. Such library version inconsistencies could increase dependency maintenance cost, or even lead to dependency conflicts when modules are inter-dependent. Although automated build tools (e.g., Maven's enforcer plugin) provide partial support to detect library version inconsistencies, they do not provide any support to harmonize inconsistent library versions.

We first conduct a survey with 131 Java developers from GitHub to retrieve first-hand information about the root causes, detection methods, reasons for fixing or not fixing, fixing strategies, fixing efforts, and tool expectations on library version inconsistencies. Then, based on the insights from our survey, we propose LibHarmo, an interactive, effort-aware library version harmonization technique, to detect library version inconsistencies, interactively suggest a harmonized version with the least harmonization efforts based on library API usage analysis, and refactor build configuration files.

LibHarmo is currently developed for Java Maven projects. Our experimental study on 443 highly-starred Java Maven projects from GitHub shows that i) LibHarmo detected 621 library version inconsistencies in 152 (34.3%) projects with a false positive rate of 16.8%, while Maven's enforcer plugin only detected 219 of them; and ii) LibHarmo saved 87.5% of the harmonization efforts. Further, 31 library version inconsistencies have been confirmed, and 17 of them have been already harmonized by developers.

Supplementary Material

Auxiliary Teaser Video (fse20main-p187-p-teaser.mp4)

As different modules of a project directly depend on multiple versions of the same third-party library, such library version inconsistencies could increase dependency maintenance cost, or even lead to dependency conflicts when modules are inter-dependent. We first conduct a survey with 131 Java developers from GitHub to retrieve first-hand information on library version inconsistencies. Then, based on the insights from our survey, we propose LibHarmo. Our experimental study on 443 highly-starred Java Maven projects shows that i) LibHarmo detected 621 library version inconsistencies in 152 (34.3%) projects with a false positive rate of 16.8%, while Maven's enforcer plugin only detected 219 of them; and ii) LibHarmo saved 87.5% of the harmonization efforts. Further, 31 library version inconsistencies have been confirmed, and 17 of them have been already harmonized by developers.

Download
33.38 MB

Auxiliary Presentation Video (fse20main-p187-p-video.mp4)

Download
161.60 MB

References

[1]

[n.d.]. HADOOP-6800. Retrieved March 01, 2020 from https://issues.apache.org/ jira/browse/HADOOP-6800

Abstract

Supplementary Material

References

Cited By

Index Terms

Recommendations

Measuring software library stability through historical version analysis

Enterprise Development with VisualAge for Java, Version 3

Refactoring-aware version control

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations