Escaped from the Lab: Workshop final report

This workshop took place at OOPSLA 2006 in Portland on Monday Oct. 23, 2006. We had 13 participants from a number of companies and universities.

The main purpose of this workshop was to discuss issues relating to the transition of research prototype software into a production environment. The workshop started with an initial brainstorming on the issues that we all thought were most important to success, as well as the issues where we all had questions.

Issues discussed in the workshop:

1. Research software needs to evolve in the production environment
2. Quality issues - especially testing - must be addressed in the transition
3. Software security: often ignored in research prototypes
4. Tactics for rebuilding / reengineering existing software
5. Documentation - often inadequate in R and D
6. Collaboration / communication tools and techniques

Issue 1: System evolution

Software transferred from research to development is just like any "legacy code" situation -- there will be some need to modify and evolve the original system.

There were two main questions asked here:

• How do you perform system evolution?
• How do you design system for future evolution?

In the Refactoring literature, there are three categories of techniques for "extending a code base" -- each item in the list is more involved than the one before:

1. Simple wrappers (don't break existing code)
2. Refactoring (simple changes to improve structure)
3. Major reengineering (more involved - may need better performance, new functionality)

Time-to-market is as important as cost.

Refactoring is viewed as overhead -- so it is not as popular as it should be among developers and project managers. In many projects, there is too much pressure to work on "new" functionality, rather than going back and cleaning up existing designs that need improvement.

This is somewhat shortsighted, but it is tough to run controlled experiments that "prove" the positive benefits of refactoring.

One problem we discussed relating to refactoring:

• How do you finish a refactoring step in a limited time schedule? Most software developers are perfectionists, which makes it impossible to make a small change without doing a lot of other cleanup at the same time.
• We continued the discussion of this item in "Issue 4" below.

Issue 2: Quality (including testing)

We noted that Quality is not always "Job #1" in many software development organizations.

• There is a tendancy to underdesign -- and in any case, it is hard to judge what is "just enough design"
• Some "good" structural aspects of the system are invisible to the customer -- but are they important to overall quality?
  • Yes - design features that make for a cleaner design are still valuable:
  • They contribute to flexibility and other properties that make it possible to deliver new functions to the customer faster

Another question we mentioned: Do we do quality from a "testing view", or is it as important to include techniques like design reviews, code inspections, automated inspection tools, and similar techniques?

Testing

Within the overall issue of software quality -- testing is the issue that is most often ignored in making the transition from research to development. We discussed a set of ideas that might help:

• Need to grow a testing infrastructure: start with a small set of tests that you keep adding to as you discover problems
• You need to understand how your customers will use your product (scenarios)
  • One participant noted: We have to make sure that we test against the "real environment" that the software will be used in -- not just the environment that is listed in the specs. In our situation, the real environment might be different from the documented specs.
• Since it is impossible to test everything -- most of us found that adding more logging code to any research prototype is a very good investment. This can help trace usage problems that weren't covered in the tests.
  • Several folks reported that building in some trace code using "logging macros" was useful -- they could expand them at compile time to get different levels of tracing.

One person asked about the effectiveness of Microsoft's logging and problem reporting system (Microsoft's "crash analysis" feature in recent versions of the Windows operating system). The participants have said that it has actually been helpful in quickly finding and resolving device driver problems. This paradigm might be useful for diagnosing problems with research-derived products.

One problem with logging functions and automated bug reporting: Too much logging and online reporting can cross the line into "spyware" -- surveillance of what the users are doing on the system.

Quality issues are really hard when making the transition from research prototype to real-world product. This is inevitable because of the different values for researchers and product developers:

• Researchers are driven by innovation
• Product folks are driven by customer needs

It may sometimes be possible to add things that are needed in production enviroment "around" the research prototype -- but more invasive changes are often needed.

Issue 3: Software Security

Most "escaped from the lab" software hasn't been developed with concern for security requirements, security architecture, or secure coding practices. There will be some work to do -- if we hope to get the research prototype into production condition:

What kinds of things need to be added?

• Security Requirements: well-written requirements will identify the threats and vulnerabilities
• Security Architecture: framework for countermeasures, including things like authentication techniques, firewalls, and other protection mechanisms
• Secure Coding: applying special coding rules that static checkers can help find problematic code
• Security testing: verifying that the characteristics and scenarios described in the security requirements are actually satisfied.

A good source of information on Secure Coding (with some notes about security requirements and security architecture): the book Secure Coding by Mark Graff and Kenneth Van Wyk.

First time use of a research product: it is always interesting, because the developers are "speculating" on how the system will be used

Many problems may be found in the interactions with other systems

A set of security questions that should be asked for any research prototype that is going to be turned into a product:

• What security requirements are going to be most critical? (Think about the possible threats against the system.)
• Can we try to run some "static analysis tools" that could check for secure coding weaknesses?
• How much security testing can we do before product release? How much testing can we afford? How much risk is there if we don't do enough?

Issue 4: Tactics for Rebuilding / Reengineering Existing Software

We called this "Rebuilding a house while you are living in it" -- tactics for doing effective reengineering.

This part of the workshop went over a set of common reengineering techniques -- found elsewhere in the literature...

Wrap and Convert: a good way to modify both the interface and internals of an existing module (which might be a class, a class cluster, or some kind of component)

Four major steps in this process:

• define the "wrapper"
• partial refactoring of the code base
• inversion -- write a "reverse wrapper"
• introduce the "real implementation" of the new class

Another popular design evolution technique is to introduce the Strategy Pattern into the design:

• define new abstract class
• push the existing class implementation into one subclass
• variations in other subclasses

One final design evolution technique is "merging similar code from several separate places into a single reusable component". (Some call this "mining existing legacy for components"

This is a three step process:

• Step 1: Do the brainstorming of a CRC Card Model for the new component
• Step 2: Write some minimal "requirements documentation" (suggestion: use the "problem statement" format)
• Step 3: Using the products of steps 1 and 2, write the code.

Issue 5: Documentation

Good design documentation is rare.

The "user stories" of XP actually make good concise documentation.

There was some excellent discussion around several questions about design documentation practices in R&D.

Who writes the documentation?

In development groups, the session participants talked about three situation:

• design documents written by engineers with the help of a domain expert
• design documentation consisting of only a database model on one sheet of paper
• no design documentation at all

In research groups:

• some researchers write reasonable design documents because they want to get their software used by others
• unfortunately, their documents may be more "research paper" than "design tutorial"

When the research code is really difficult, and the design documentation is non-existent, what happens?

• developers may need to call the researcher on the phone
• developers contract with an outside consultant to help (example: contracting with RedHat to work with Linux software)
• or developers just "read the code" to understand the design

What kinds of documentation is useful?

In increasing value to the team making a conversion of a research prototype to a product:

• Man pages / API documents -- relatively easy to write, but low value
• Examples -- much more useful for the product development team
  • for example, the Tcl/Tk demo program is a great example
  • also, the original Sun Java Swing library demo
  • good examples should have "executable code"
  • also an excellent idea to include pictures in addition to the code
• Tutorials -- hard to write, but really valuable
• Automated tests -- give the development team a lot more confidence in the quality of the system

How much documentation is useful?

We need the documents to be organized as a "story" -- not just a single big huge class diagram

Think of the elements of a story....

1. Setting
2. Characters
3. Problem
4. Solution

Make sure the documentation tells "a story" -- better than a disorganized set of APIs.

Research -- are researchers just as good as development team members at writing documentation? Maybe: but the overall story is bad. Some (really consciencious researchers) really want their software to be used, so they invest more effort in good tutorial documentation.

Some folks try to document a large undocumented code base by using Doxygen or Javadoc -- putting in small comments in each class and method. In a way, Doxygen/Javadoc can be both too much and too little...

• Especially for C++, the API documentation is inadequate -- you need some stories that describe the "lifetimes of the objects" (when the objects typically get created and destroyed)

Other issues:

Scott Ambler's book Agile Modeling has good advice on UML usage -- use a whiteboard and digital camera instead of a CASE tool

Visualization is an important part of effective design documentation -- many users find it easier to understand and trust a design where they have some pictures

Issue 6: Collaboration

Most corporate developers are weak at collaboration

Sometimes we need a catalyst -- someone who can help get the necessary people talking with eachother

Some tools and processes to use:

• JAD (Joint Application Design sessions)
• wiki (shared design docuementation -- in an easy-to-annotate and update format)
• essential use cases -- see Larry Constantine's book Software For Use

It is possible to consider using practices like "pair programming" and "pair design" to get people to work together and share their expertise.

One big problem in collaboration: code ownership. Developers are generally adverse to sharing.

One thing that helps is to establish a "code review" or "code inspection" process. This can check code for readability, conformance to coding standards, find subtle bugs, and generally improve everyone's understanding of the design and interfaces.

Another important concept related to collaboration: a software system ought to have *two* architectures:

• The "product architecture" -- it identifies the modules, scenarios, interactions, and interfaces that describe how the system will be used in production.
• The "testing architecture" -- this might include extra modules and classes, trace logging functionality, and test setup scenarios: these describe how the system will be used by the testers to *show* that the system can actually deliver the advertised services in the requirements and user documentation.

Many projects have trouble because their "testing architecture" is non-existent -- it is whatever the tester slaps together at the last minute. In the transition from research prototype to product, it is worth thinking early about what test scenarios and testing architecture will be needed.

One last collaboration topic: Build environment. Research prototypes are often just built on a researcher's PC or workstation -- but a real commercial product needs to have a repeatable process for compiling and shipping the product to the customer.

• Some researchers actually do pretty well -- if they do a bit of extra packaging to create a "config" file, Makefiles, and the other kinds of surrounding build infrastructure that is common to many successful open-source products.

Some important source books

During the course of the workshop, we talked about several useful books that have useful process information...

• Object Oriented Reengineering Patterns by Demeyer, Ducasse, and Nierstrasz (see their web site for sample chapters: http://www.iam.unibe.ch/~scg/OORP)
• Working with Legacy Software by Michael Feathers
• Refactoring to Patterns by Joshua Kerievsky
• Pair Programming Illuminated by Laurie Williams and Robert Kessler
• Software Inspection by Tom Gilb and Dorothy Graham

Appendix A: Wrapper Tutorial

Suppose that there is an existing module in the system called "Mod1", with an interface and implementation that you would like to evolve (to a simpler, more efficient, or more featureful module). The new module will be called "Mod1A" -- and it will be introduced into the system in a four step process.

Step 1. compile and test the existing unadorned software -- make sure it works

Step 2. define a new "wrapper" -- the wrapper is defined but not wired in yet

• The new "Mod1A" module will be a "wrapper" (or "facade") -- it has the new interface, but its implementation is written to use the functions in the "Mod1" module.

• Any scenario that creates a new Mod1A object will automatically create a new Mod1 object
  • value: we get to check that the Mod1A code will pass the compiler *and* you can add some unit tests that exercise the new interface
  • but: the system is still only using Mod1, so the system should work as before -- (in other words, you can't possibly have broken anything yet)

Step 3. partial refactor -- piece by piece, change deprecated calls to Mod1 to use the functions in Mod1A

This is a step-by-step modification of the existing code base -- changing each usage of Mod1 to Mod1A...

• start converting code in the base to use the new interface; rerun system tests frequently to check that nothing fails
• value: you gain confidence in the new Mod1A interface -- you might find bugs in the wrapper class in this step

Step 4. Inversion: writing a reverse wrapper (Mod1B has the same interface as Mod1, but it is a wrapper for Mod1A)

At the same time (or shortly thereafter) you can do step 4a

Step 4a. Rewrite Mod1A as a new standalone class. (with whatever needs to change -- more efficient or new data structure)

Note: Many folks get stuck at step 3 because they don't know about inversion -- and they aren't clear about how to get rid of the last calls to the old legacy interface...

Appendix B: Mining existing legacy system for components

This is a more involved process than normal refactoring...

There are two important steps:

Step 1: in 2 hours or less, do a CRC card modeling exercise

• goal: create the design of a new class cluster that supports multiple usages within the system
• the design will include at least 3 concrete scenarios (to show that the design can be reused in several places within the system)

The result is an initial model of the design of the new common component, but we aren't done yet...

Step 2: using the CRC card model as a basis, write a simple one-page requirements/architecture document.

One useful format for this kind of document is the old AT&T "problem statement" document -- this is a document that describes the problem to be solved in terms of four "dimensions". Each of these section is a brief description of what characteristics are needed from a design solution:

1. form -- constraints, size/speed
2. function -- what funcctions the system delivers
3. economy -- cost and value of the new component
4. time -- *not* the time to build the component: the time dimension is a description of how the new component relates to the current structure and future evolution of the product

At this point, you can take the problem statement to management, and the problem statement plus the CRC design to other development team members -- as the basis of a refactoring plan to develop and introduce the new common component.

In a way -- this two-step process is a form of "pair design": the participants in Step 1 can be one researcher and one development team member, and Step 2 can be written by one person with feedback from the other.