
Do other people fix bugs when they see them, or do they wait until there's crashes/data loss/people die before fixing it?

Example 1

 Customer customer = null;

The code is clearly wrong, and there's no way around it - it's calling a method on a null reference. It happens to not crash because Save happens to not access any instance data; so it's just like calling a static function. But any small change anywhere can suddenly cause broken code that doesn't crash: to start crashing.

But, it's also not inconceivable that correcting the code:

Customer customer = null;
customer = new Customer();

might introduce a crash; one not discovered through unit tests with complete coverage, and manual user testing.

Example 2

float speed = 0.5 * ((G * mass1 * mass2) / R) * Pow(time, 2);

People knowing physics will recognize that it's supposed to be R2 in the denominator.

The code is wrong, it's absolutely wrong. And overestimating the speed will cause the retro-rockets to fire too soon, killing all the occupants of the spacecraft.

But it's also possible perhaps having it over-estimate the speed is masking another issue: the air-bags can't deploy while the shuttle is moving too fast. If we suddenly fix the code:

float speed = 0.5 * ((G * mass1 * mass2) / Pow(R, 2)) * Pow(time, 2);

Now the speed is accurate, and suddenly airbags are deploying when they shouldn't.

Example 3

Here's an example that i had recently, checking if a string contains invalid characters:

if (StrPos(Address, "PO BOX") >= 0)
   //Do something

What if it turns out there's a bug in the Do something branch? Fixing the obviously incorrect code:

if (StrPos("PO BOX", Address) >= 0)
   //Do something

Fixes the code, but introduces a bug.

The way I see it there are two possibilities:

  • fix the code, and get blamed for breaking it
  • wait for the code to crash, and get blamed for having a bug

What do you politically do?

Example 4 - Today's real world bug

I am constructing an object, but calling the wrong constructor:

Customer customer = new Customer();

Turns out that the "parameterless" constructor is actually an parameterized constructor from further back in the inheritance chain:

public Customer(SomeObjectThatNobodyShouldBeUsingDirectly thingy = null)
public Customer(InjectedDependancy depends)

Calling it is a mistake, since it bypasses all the subsequent constructors.

I could change the object's lineage to not expose such a dangerous constructor, but now I have to change the code to:

Customer customer = new Customer(depends);

But I can't guarantee that this change won't break anything. Like my Example 1 above, perhaps someone, somewhere, somehow, under some esoteric conditions, depends on the constructed Customer to be invalid and full of junk.

Perhaps the Customer object, now that it is properly constructed will allow some code to run that previously never did, and now I can get a crash.

I can't bet your wife's life on it.

And I can test it from here to Tuesday, I can't swear on your daughter's life that I didn't introduce a regression.

Do I:

  • Fix the code and get blamed for breaking it? or
  • Leave the bug, and get blamed when the customer finds it?
هل كانت مفيدة؟


This depends wildly on the situation, the bug, the customer, and the company. There is always a trade-off to consider between correcting the implementation and potentially introducing new bugs.

If I were to give a general guideline to determining what to do, I think it'd go something like this:

  1. Log the defect in tracking system of choice. Discuss with management/coworkers if needed.
  2. If it's a defect with potentially dire consequences (e.g. your example #2), run, scream, jump up and down till someone with authority notices and determine an appropriate course of action that will mitigate the risks associated with the bug fix. This may push your release date back, save lives, wash your windows, etc.
  3. If it's a non-breaking defect, or a workaround exists, evaluate whether the risk of fixing it outweighs the benefit of the fix. In some situations it'll be better to wait for the customer to bring it up, since then you know you aren't spending time fixing/retesting things when it's not 100% required.

Mind you, this only applies when you're close to a release. If you're in full development mode, I'd just log the defect so it can be tracked, fix it, and call it done. If it's something that takes more than, say, half an hour to fix and verify, I'd go to the manager/team lead and see whether or not the defect should be fit into the current release cycle or scheduled for a later time.

نصائح أخرى

Customers will ALWAYS find bugs. There's no hiding bugs from customers, ever. In the end bugs you introduce will always come back to you. Not fixing them is simply a bad professional practice. Professionals don't do this.

When customers find bugs, the company looks bad, not an individual developer. This is much worse for the company, so there's your case for making the change. If you really are not sure about making this change in fear of introducing other bugs, talk to a more senior developer, project technical lead or whoever else is in the position to make a decision on such change and subsequently handle consequences.

Fix the bug

We're professionals here. If you find a failing path in the code that will cause a crash or incorrect behavior, you need to fix it. Depending upon your team's procedures, you likely need to file a defect, perhaps write a regression test, and check in the fix at the right time of the ship cycle. If it's a low priority bug, checking in the fix near the beginning of a milestone is always a good time because if you do cause a regression you won't affect the release cycle of the milestone.

Don't confuse this with refactoring or making performance improvements that are not related to a performance bug.

A distributed source control system where you can keep a separate repository of 'little bug fixes' and then easily merge at the beginning of a milestone is a great help here.

What would the customer say?

Here is how I imagine this playing out:

Customer: It crashes when I do x.

Programmer: Oh yeah! I remember I saw that a while back. I figured it wasn't a big deal yet, so I left it in there.

Customer: [reaches for blunt object]

Yes. Fix the bug. You'll be saving the customer from an aggravating experience, and you get to fix it before it becomes an emergency.

And if you think your fix might actually cause a crash, then you haven't really found a fix yet.

All of the examples you gave seem to to have a common thread. You seem want to fix a bug that you don't fully understand. I say that because you note the possibility of unintended consequences on each one.

I would say its probably a huge mistake and as Ben Laurie writes don't fix a bug you don't understand. In this famous example the Debian team broke the encryption for OpenSSL for Debian and derivatives like Ubuntu when they followed the results of an analysis tool.

If you believe there is a defect by looking at code make sure you can reproduce the defect in a way that the customer can see. If you can't why not spend your resources fixing something else.

Start chipping away at your technical debt as soon as you can.

Your examples definitely look like legacy code, having lots of technical debt and I sense there's the fear of change (BTW, this is not a criticism or a judgment). Your entire team has to acknowledge that you have this technical debt (so you alone aren't blamed for it) and then you can decide how you're going to deal with it.

In Example 1, if Save() doesn't access any instance data, what customer data does it save exactly? Start fixing and testing that.

In Example 2, it's easy to cover the speed calculator with tests and ensure that it calculates the result correct in all key examples.

In Example 3, there's danger of bringing dead code back to life. Should that code be eliminated altogether? What is the intent of the boolean condition under that if? Is it to ensure the string contains no invalid characters? Or to ensure it has "PO BOX" in it? The sooner you start addressing such questions, the better.

After you have fixed a number of such issues, have a sort of retrospective/post-mortem with your team. It is important to learn from the experience so that you can reduce your defect injection rate in the future.

You have good answers already. I will just add something about the issue of being afraid that something crashes.

First, in the ideal situation the software is modular, is architected correctly and there is good separation of concerns. In this case, the changes you make are highly unlikely to break anything as you will be in control of all the related code and there is no hidden surprises.

Unfortunately, the ideal situation is fictional. Regardless of the extent to which the coupling is loose, there will be coupling and hence the possibility of breaking something else.

The solution to this is two-fold:

  1. Make the code as well structured as possible.
  2. When the code is isolated enough that you know that nothing else will break, fix it.

Making the code well structured is not done by rewriting the whole code to a new architectural design. Rather, refactoring guided by tests is your friend here. In this step, you do not change the functionality.

The second step is that you fix the bug.

A few points are relevant:

  1. Version Control is absolutely needed for this process.
  2. The refactoring step and the bug fixing step are better committed to version control as separate commits, so each has a well defined historical functionality.
  3. Don't fixate on the possibility of making another bug, you won't get anything done. Rather, think of making your code better. In other words, unless you know that you are increasing the bugs rather than decreasing them then you should do it.
  4. Related to the last point: don't try to predict the future. Humans are biased to think that they are very good at prediction. In reality our prediction powers are short term. So don't worry about a vague undefined future bug. This is also the principle behind YAGNI.
  5. The corresponding tool to version control in the bug world is the bug tracker. You will need that as well.
  6. You need to fix bugs for two reasons: in order to satisfy the customer; and in order to be able to progress in your development. To use example 3 (the physics one): if the program satisfies the customer with such a broken equation, then there are many other parts of the software that are wrongly developed to mitigate this bug (for example the airbag deployment). If a version 2 (or 1.1) is required for this software, then you will find it more and more difficult to develop correct code based on this faulty one. You are then either heading for the big rewrite, or for the grand failure. Both of which you should avoid.

These are already more than a few points, so I guess I will stop here.

You first need to consider the definition of a bug:

  1. The code as read doesn't match with what you percieve to be right
  2. The software does not properly perform its tasks

You appear to be focusing on #1, where #2 is the best place to sit. Sure, we programmers want our code to be right (#1), but people pay us for it to work (#2).

What you may or may not do to the code base that could accidentally introduce new bugs is irrelevant to #2's view of the current software. However, #1 matters for yourself or the maintenance programmer that follows. It's sometimes difficult to decide, but when #2 and #1 conflict, you have to know that #2 is clearly more important.

Neither. There is a third way: find a way to prove that "the problematic code" is actually causing issue from a business point of view. Confirm what you find with BA/QA or at least your manager. Then plan the fix when everyone is aware of issue.

There are more possible scenarios other than a valid bug in the cases you mentioned:

  1. The code you are looking at are some dead code. It's possibly because like ysolik said: customers always find bugs. If they didn't, maybe the code never gets executed.
  2. There was a WTF situation where the obvious error did have its purpose. (We are talking about production code, anything could have happened, right?)
  3. Business/customers already knew about the issue but don't feel necessity to the fix.
  4. Maybe more...

In any case above, if I am a manager, I don't want a developers to use his/her judgment and fix the "error" in place. Fixing the error in place may help in most of the time, but when it goes wrong, it may cause more trouble than its good intention.

Do i:

  • fix the code and get blamed for breaking it? or
  • leave the bug, and get blamed when the customer finds it?

You fix the bug, start the unit tests, and when they succeed, you check in your fix.

(Or, if your unit tests take a really long time, you check in your fix first, and then wait whether your CI tool sends you a mail because your commit broke something.)

Fix them if they are crash/data loss bugs. Shipping a program with a known data-loss bug is downright malicious and inexcusable.

If the bug is cosmetical or non-critical (can be avoided) then it should be documented and a workaround should be provided. Ideally it should be fixed, but sometimes it's too expensive to fix it for the current release.

Notice how every bigger software project has a 'Known Issues' section in the ReadMe which usually lists exactly that: Bugs that are known.

Knowing Bugs and NOT communicating them is IMHO only acceptable for really minor/cosmetical bugs.

Fix it, and have it tested. If you decide to keep known bugs just because you are afraid to find more bugs, your program becomes a minefield of ticking time bombs so fast that it's going to become unrepairable sooner than you think.

Since you are the master and the code is the subordinate, you may not be afraid to change it when you see it's wrong. Fear of the code ("it might retaliate by breaking somewhere else") is simply unacceptable.

If there's clearly a crasher, or something wrong, then you should fix it. If there's an ambiguity in the spec, i.e. if you find yourself thinking "well the customer might expect this, but then it looks like it might be a bug" or a problem in the spec, like "we've been asked to do this but it sucks" then you need to find out what to do. Throwing the code over the wall and waiting for customer feedback is bad - you might ask a product manager if you have one, or ask the customer before you deploy the product.

Remember, "we know about that problem and will fix it in a future release" is synonymous with "we know about that problem but don't care about you enough to avoid you dealing with it".

The right course of action is neither to ignore the bug, nor to "fix" it on the spot; for the very reasons that you identified in your question.

I think, you should try to understand the code first. If the code you are seeing has some age, and no-one noticed the "bug" yet, there is likely a reason for that. Try to find this reason. Here is what I would want to look at before making a decision:

  • History: Use your version control software to answer the questions: Who touched the code? What did they change? And with what commit messages did they check it in? Can you infer a reason why the code looks like it does?

  • Use: What code uses the faulty code? And how? Is the code dead? Is there other code that relies on the faulty behavior?

  • Author: If you can't reach a conclusion quickly using the information above, ask the author of the code (at least if that is possible) why the code looks the way it does. Usually you will either get a "Oups, that should be fixed!" or a "No! Don't change it!!! It's needed that way!" right away.

مرخصة بموجب: CC-BY-SA مع الإسناد
لا تنتمي إلى softwareengineering.stackexchange
scroll top