Add VNA03-J detector with test cases

Author: Patrik Süli

CHANGELOG.md

@@ -9,6 +9,11 @@ Currently the versioning policy of this project follows [Semantic Versioning v2.
 ### Fixed
 - Do not report BC_UNCONFIRMED_CAST for Java 21's type switches when the switch instruction is TABLESWITCH ([#2782](https://github.com/spotbugs/spotbugs/issues/2782))
 
+### Added
+- New detector `AtomicOperationsCombinedDetector` and introduced new bug types:
+  - `AT_COMBINED_ATOMIC_OPERATIONS_ARE_NOT_ATOMIC` is reported in case of combined atomic operations are not synchronized.
+  - `AT_ATOMIC_OPERATION_NEEDS_SYNCHRONIZATION` is reported when an atomic operation is not synchronized, but should be because of thread safety.
+
 ## 4.8.5 - 2024-05-03
 ### Fixed
 - Fix FP `SING_SINGLETON_GETTER_NOT_SYNCHRONIZED` with eager instances ([#2932](https://github.com/spotbugs/spotbugs/issues/2932))

spotbugs-tests/src/test/java/edu/umd/cs/findbugs/detect/AtomicOperationsCombinedDetectorTest.java

@@ -0,0 +1,256 @@
+package edu.umd.cs.findbugs.detect;
+
+import org.junit.jupiter.api.Test;
+import edu.umd.cs.findbugs.AbstractIntegrationTest;
+import edu.umd.cs.findbugs.test.matcher.BugInstanceMatcher;
+import edu.umd.cs.findbugs.test.matcher.BugInstanceMatcherBuilder;
+
+import static edu.umd.cs.findbugs.test.CountMatcher.containsExactly;
+import static org.hamcrest.MatcherAssert.assertThat;
+import static org.hamcrest.Matchers.hasItem;
+
+class AtomicOperationsCombinedDetectorTest extends AbstractIntegrationTest {
+
+    public static final String OPERATIONS_ARE_NOT_ATOMIC = "AT_COMBINED_ATOMIC_OPERATIONS_ARE_NOT_ATOMIC";
+    public static final String NEEDS_SYNCHRONIZATION = "AT_ATOMIC_OPERATION_NEEDS_SYNCHRONIZATION";
+
+    @Test
+    void testSafeSynchronizedList() {
+        performAnalysis(
+                "atomicMethods/SafeSynchronizedList.class",
+                "atomicMethods/SafeSynchronizedLists.class",
+                "atomicMethods/SafeSynchronizedList2.class",
+                "atomicMethods/SafeSynchronizedListWithMultipleSync.class",
+                "atomicMethods/SafeSynchronizedListWithMultipleSync2.class",
+                "atomicMethods/SafeSynchronizedListWithMethodInit.class",
+                "atomicMethods/SafeSingleSynchronizedListCall.class",
+                "atomicMethods/SynchronizedListWithDifferentLock.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testUnsafeSynchronizedList() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedList.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedList", "addAndPrintNumbers", 13);
+    }
+
+    @Test
+    void testUnsafeSynchronizedListWithMultipleSync() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedListWithMultipleSync.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedListWithMultipleSync", "addAndPrintNumbers", 32);
+    }
+
+    @Test
+    void testUnsafeSynchronizedListWithMethodInit() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedListWithMethodInit.class");
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 1);
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertBug(NEEDS_SYNCHRONIZATION, "UnsafeSynchronizedListWithMethodInit", "init", 12);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedListWithMethodInit", "addAndPrintNumbers", 17);
+    }
+
+    @Test
+    void testSafeSynchronizedSet() {
+        performAnalysis(
+                "atomicMethods/SafeSynchronizedSet.class",
+                "atomicMethods/SafeSynchronizedSet2.class",
+                "atomicMethods/SafeSynchronizedSetWithUnusedVars.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testUnsafeSynchronizedSet() {
+        performAnalysis(
+                "atomicMethods/UnsafeSynchronizedSet.class",
+                "atomicMethods/UnsafeSynchronizedSortedSet.class",
+                "atomicMethods/UnsafeSynchronizedNavigableSet.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 3);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedSet", "addAndPrintNumbers", 13);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedSortedSet", "addAndPrintNumbers", 12);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedNavigableSet", "addAndPrintNumbers", 12);
+    }
+
+    @Test
+    void testUnsafeSynchronizedCollection() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedCollection.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedCollection", "addAndPrintNumbers", 12);
+    }
+
+    @Test
+    void testUnsafeSynchronizedMap() {
+        performAnalysis(
+                "atomicMethods/UnsafeSynchronizedMap.class",
+                "atomicMethods/UnsafeSynchronizedNavigableMap.class",
+                "atomicMethods/UnsafeSynchronizedSortedMap.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 3);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedMap", "addAndPrintNumbers", 13);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedNavigableMap", "addAndPrintNumbers", 12);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedSortedMap", "addAndPrintNumbers", 12);
+    }
+
+    @Test
+    void testSynchronizedListInSynchronizedMethod() {
+        performAnalysis(
+                "atomicMethods/SynchronizedListInSynchronizedMethod.class",
+                "atomicMethods/SynchronizeInSynchronizedMethod.class",
+                "atomicMethods/SafeSynchronizedListWithPrivateMethods.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testUnsafeSynchronizedListAndSet() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedListAndSet.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 2);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedListAndSet", "addAndPrintNumbers", 16);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedListAndSet", "addAndPrintNumbers", 20);
+    }
+
+    @Test
+    void testPartialSynchronizedListAndSet() {
+        performAnalysis("atomicMethods/PartialSynchronizedListAndSet.class", "atomicMethods/PartialSynchronizedListAndSet2.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 2);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "PartialSynchronizedListAndSet", "addAndPrintNumbers", 16);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "PartialSynchronizedListAndSet2", "addAndPrintNumbers", 22);
+    }
+
+    @Test
+    void testUnsafeSynchronizedListWithPrivateMethods() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedListWithPrivateMethods.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedListWithPrivateMethods", "addAndPrintNumbers", 13);
+    }
+
+    @Test
+    void testUnsafeSynchronizedSetInMultipleMethods() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedSetInMultipleMethods.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 2);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedSetInMultipleMethods", "addAndPrintNumbers", 13);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedSetInMultipleMethods", "removeAndPrintNumbers", 19);
+    }
+
+    @Test
+    void testSafeSynchronizedMapIncrement() {
+        performAnalysis("atomicMethods/SafeSynchronizedMapIncrement.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testUnsafeSynchronizedMapIncrement() {
+        performAnalysis("atomicMethods/UnsafeSynchronizedMapIncrement.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 1);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeSynchronizedMapIncrement", "increment", 17);
+        assertBug(NEEDS_SYNCHRONIZATION, "UnsafeSynchronizedMapIncrement", "getCount", 21);
+    }
+
+    @Test
+    void testSafeAtomicReference() {
+        performAnalysis("atomicMethods/SafeAtomicReference.class", "atomicMethods/AtomicLongWithMethodParam.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testUnsafeAtomicReference() {
+        performAnalysis(
+                "atomicMethods/UnsafeAtomicReference.class",
+                "atomicMethods/UnsafeAtomicReference2.class",
+                "atomicMethods/UnsafeAtomicReference3.class",
+                "atomicMethods/UnsafeAtomicReference4.class",
+                "atomicMethods/UnsafeAtomicReference4$Inner.class",
+                "atomicMethods/UnsafeAtomicReference5.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 11);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 3);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference", "update", 17);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference", "add", 22);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference2", "incrementAtomicInteger", 18);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference2", "incrementAtomicInteger", 18);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference2", "incrementAtomicInteger2", 26);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference2", "incrementAtomicInteger2", 26);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference3", "preparation", 11);
+        assertBug(NEEDS_SYNCHRONIZATION, "UnsafeAtomicReference3", "run", 15);
+        assertBug(NEEDS_SYNCHRONIZATION, "UnsafeAtomicReference3", "after", 19);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference4", "initProcessing", 22);
+        assertBug(NEEDS_SYNCHRONIZATION, "UnsafeAtomicReference4", "finishProcessing", 33);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReference5", "lambda$incrementAtomicInteger$0", 15);
+    }
+
+    @Test
+    void testUnsafeAtomicReferenceValueSet() {
+        performAnalysis("atomicMethods/UnsafeAtomicReferenceValueSet.class");
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 1);
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertBug(NEEDS_SYNCHRONIZATION, "UnsafeAtomicReferenceValueSet", "init", 10);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeAtomicReferenceValueSet", "update", 15);
+    }
+
+    @Test
+    void testSafeLocalAtomicInteger() {
+        performAnalysis("atomicMethods/SafeLocalAtomicInteger.class", "atomicMethods/SafeLocalAtomicInteger2.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testUnsafeLocalAtomicInteger() {
+        performAnalysis("atomicMethods/UnsafeLocalAtomicInteger.class");
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 1);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+        assertBug(OPERATIONS_ARE_NOT_ATOMIC, "UnsafeLocalAtomicInteger", "increment", 23);
+    }
+
+    @Test
+    void testSafePresynchronizedPrivateMethod() {
+        performAnalysis("atomicMethods/SafePresynchronizedPrivateMethod.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testSafeAtomicValueUsage() {
+        performAnalysis("atomicMethods/SafeAtomicValueUsage.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testSafeAtomicInFinallyBlock() {
+        performAnalysis("atomicMethods/SafeAtomicInFinallyBlock.class");
+        assertZeroBugs();
+    }
+
+    @Test
+    void testSafeAtomicCallsWithLambda() {
+        performAnalysis("atomicMethods/SafeAtomicCallsWithLambda.class");
+        assertZeroBugs();
+    }
+
+    private void assertZeroBugs() {
+        assertNumOfBugs(OPERATIONS_ARE_NOT_ATOMIC, 0);
+        assertNumOfBugs(NEEDS_SYNCHRONIZATION, 0);
+    }
+
+    private void assertNumOfBugs(String bugType, int num) {
+        final BugInstanceMatcher bugTypeMatcher = new BugInstanceMatcherBuilder()
+                .bugType(bugType).build();
+        assertThat(getBugCollection(), containsExactly(num, bugTypeMatcher));
+    }
+
+    private void assertBug(String bugType, String className, String methodName, int line) {
+        final BugInstanceMatcher bugInstanceMatcher = new BugInstanceMatcherBuilder()
+                .bugType(bugType)
+                .inClass(className)
+                .inMethod(methodName)
+                .atLine(line)
+                .build();
+        assertThat(getBugCollection(), hasItem(bugInstanceMatcher));
+    }
+}

spotbugs/etc/findbugs.xml

@@ -644,6 +644,8 @@
                     reports="UR_UNINIT_READ_CALLED_FROM_SUPER_CONSTRUCTOR"/>
           <Detector class="edu.umd.cs.findbugs.detect.AtomicityProblem"
                     reports="AT_OPERATION_SEQUENCE_ON_CONCURRENT_ABSTRACTION"/>
+          <Detector class="edu.umd.cs.findbugs.detect.AtomicOperationsCombinedDetector"
+                    reports="AT_COMBINED_ATOMIC_OPERATIONS_ARE_NOT_ATOMIC,AT_ATOMIC_OPERATION_NEEDS_SYNCHRONIZATION"/>
           <Detector class="edu.umd.cs.findbugs.detect.CheckExpectedWarnings"
                     reports="FB_UNEXPECTED_WARNING,FB_MISSING_EXPECTED_WARNING" disabled="true"
                     hidden="false"/>
@@ -727,6 +729,8 @@
 
           <BugPattern abbrev="AT" type="AT_OPERATION_SEQUENCE_ON_CONCURRENT_ABSTRACTION"
                     category="MT_CORRECTNESS"/>
+          <BugPattern abbrev="AT" type="AT_COMBINED_ATOMIC_OPERATIONS_ARE_NOT_ATOMIC" category="MT_CORRECTNESS"/>
+          <BugPattern abbrev="AT" type="AT_ATOMIC_OPERATION_NEEDS_SYNCHRONIZATION" category="MT_CORRECTNESS"/>
           <BugPattern abbrev="XSS" type="XSS_REQUEST_PARAMETER_TO_SEND_ERROR" category="SECURITY" cweid="81"/>
           <BugPattern abbrev="SKIPPED" type="SKIPPED_CLASS_TOO_BIG" category="EXPERIMENTAL"/>
           <BugPattern abbrev="XSS" type="XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER"

spotbugs/etc/messages.xml

@@ -229,6 +229,15 @@ applied to method parameters and uses of those method parameters. </p>
 ]]>
      </Details>
   </Detector>
+  <Detector class="edu.umd.cs.findbugs.detect.AtomicOperationsCombinedDetector">
+    <Details>
+      <![CDATA[
+<p> Finds sequences of operations on synchronized/atomic abstractions
+    like SynchronizedList or AtomicReference that are not in a synchronized block.
+    </p>
+]]>
+    </Details>
+  </Detector>
   <Detector class="edu.umd.cs.findbugs.detect.SynchronizationOnSharedBuiltinConstant">
     <Details>
 <![CDATA[
@@ -8672,6 +8681,34 @@ after the call to initLogging, the logger configuration is lost
           ]]>
       </Details>
   </BugPattern>
+  <BugPattern type="AT_COMBINED_ATOMIC_OPERATIONS_ARE_NOT_ATOMIC">
+    <ShortDescription>Sequence of calls on a synchronized abstraction may not be atomic</ShortDescription>
+    <LongDescription>Sequence of calls to {3} may not be atomic in {1}</LongDescription>
+    <Details>
+      <![CDATA[
+        <p>This code contains a sequence of calls to a synchronized/atomic abstraction
+            (such as a synchronized list or an AtomicReference) without synchronization.
+            These calls will not be executed atomically, so it's recommended to put these calls
+            into a synchronized block or method.</p>
+        <p>See SEI CERT rule
+            <a href="https://wiki.sei.cmu.edu/confluence/display/java/VNA03-J.+Do+not+assume+that+a+group+of+calls+to+independently+atomic+methods+is+atomic">
+            VNA03-J. Do not assume that a group of calls to independently atomic methods is atomic</a>.
+        </p>]]>
+    </Details>
+  </BugPattern>
+  <BugPattern type="AT_ATOMIC_OPERATION_NEEDS_SYNCHRONIZATION">
+    <ShortDescription>Atomic operation needs synchronization</ShortDescription>
+    <LongDescription>Atomic operation {4} needs synchronization in {1}</LongDescription>
+    <Details>
+      <![CDATA[
+        <p>This operation is atomic, but it needs to be executed in a synchronized block or method,
+            because in another method in this class, the object can be modified. To make both atomic, both need synchronization.</p>
+        <p>See SEI CERT rule
+          <a href="https://wiki.sei.cmu.edu/confluence/display/java/VNA03-J.+Do+not+assume+that+a+group+of+calls+to+independently+atomic+methods+is+atomic">
+          VNA03-J. Do not assume that a group of calls to independently atomic methods is atomic</a>.
+        </p>]]>
+    </Details>
+  </BugPattern>
   <BugPattern type="DM_DEFAULT_ENCODING">
     <ShortDescription>Reliance on default encoding</ShortDescription>
     <LongDescription>Found reliance on default encoding in {1}: {2}</LongDescription>

spotbugs/src/main/java/edu/umd/cs/findbugs/ba/ca/Call.java

@@ -18,17 +18,25 @@
  */
 package edu.umd.cs.findbugs.ba.ca;
 
+import java.util.Collections;
+import java.util.List;
+
+import edu.umd.cs.findbugs.ba.XField;
+
 public class Call {
     private final String className;
 
     private final String methodName;
 
     private final String methodSig;
 
-    public Call(String className, String methodName, String methodSig) {
+    private final List<XField> attributes;
+
+    public Call(String className, String methodName, String methodSig, List<XField> attributes) {
         this.className = className;
         this.methodName = methodName;
         this.methodSig = methodSig;
+        this.attributes = attributes;
     }
 
     public String getClassName() {
@@ -43,6 +51,10 @@ public String getMethodSig() {
         return methodSig;
     }
 
+    public List<XField> getAttributes() {
+        return Collections.unmodifiableList(attributes);
+    }
+
     @Override
     public boolean equals(Object obj) {
         if (obj == null || obj.getClass() != this.getClass()) {