Another Look At Mozilla's BugFix Rate

An anonymous reader writes "Washingtonpost.com's Security Fix blog has published the results of a look back at three years worth of critical patches from Mozilla, and found that Mozilla typically ships updates for critical flaws in about three weeks, though in more than a third of the cases it pushed out a fix in ten days or less. The data comes just a few weeks after The Post published data from a similar study that found Microsoft averaged 130+ days to fix critical flaws. Slashdot also covered that study in a previous post."

Just one previous post?

[Jugalator]

Maybe it's just imagination, but I thought I've been reading these kind of stories on Slashdot since the dawn of time.

Let's work on preventing bugs.

[CyricZ]

While it's important to fix bugs quickly and correctly, perhaps the Mozilla project should take some initiative within the open source community to work on preventing security issues in the first place. They could partner with the OpenBSD project on such an initiative, for instance.

Together they could come up with a development system that focuses on writing solid code. Such a methodology won't prevent all security bugs by any means, but it could go a long way towards vastly increasing the quality of the Mozilla project's software.

So much for "fixed within hours"

[man_of_mr_e]

Ok, I guess three weeks can be counted in hours, but that's a LOT of hours.

"from the must-go-faster dept."

[Cutriss]

Funny. IMHO, the speed of the browser peaked a long time ago (0.8 IIRC), and now it's just getting progressively slower over time.

They might be fixing critical security bugs, but they certainly don't seem to be fixing memleaks and such.

Re:"from the must-go-faster dept."

[CyricZ]

There was a very interesting post here earlier regarding the attitude of the Firefox developers towards memory consumption. I invite you to read it for yourself:

http://it.slashdot.org/comments.pl?sid=176459&cid= 14655214

The last paragraph is perhaps the most telling. It is apparently felt that issues such as memory consumption just don't matter to the average user. Of course, that's a very incorrect assertion to make. When even a normal user finds that Firefox has consumed 400+ MB of their 512 MB of RAM, and thus severely degraded their system's performance, they won't be too pleased.

Such a carelessness towards memory consumption would also suggest a similar lack of interest in writing code that is secure. When it comes to an Internet-enabled product, especially a web browser, security is paramount.

Re:"from the must-go-faster dept."

[bdaehlie]

The Mozilla developers spend quite a bit of time on reducing memory usage and leaks. The issue is taken very seriously. All I said was that leaks exist, and that they don't indicate that Mozilla's entire codebase is sloppy. That doesn't mean Mozilla developers aren't doing anything about them or they think they are OK.

CyricZ, please stop trying to get attention by being dramatic and twisting words. Your criticism is not contructive, just uninformed and inflamatory.

P.S. Re: "the attitude of the Firefox developers" - I am only one Firefox developer. I am not speaking for any other devs.

Re:"from the must-go-faster dept."

[baadger]

I've actually found the latest Firefox (v1.5.0.1) to be very very gentle with my memory. After opening BBC News, Slashdot, Digg, MSN.com and Google in tabs both FF and Opera 9 TP2 I've found that FF uses approximately 35MB in RAM and 35MB 'VM size' compared to about 40-55MB in RAM for Opera and 70MB 'VM size'.

I couldn't believe it (I am a die hard Opera 'fanboy', although all things said Opera still wins hands down in terms of rendering performance, application startup time and general UI responsiveness).

One interesting observation, by default* Firefox doesn't swap out to memory to disk when you minimise the window, unlike Opera where doing so will reduce the RAM usage to something like 4-8 MB ('VM size' remains unchanged). Interestingly this doesn't return to the full amount when maximised again until you've 'visited' all the tabs and done some navigation.

This is my experience on WinXP, I haven't had any issues with multi-100MB usage since the release of FF 1.5.

* It's worth noting that you can enable memory clipping on minimise in Firefox. Someone can google it if they care.

What about Opera, Safari, OmniWeb, etc?

[CyricZ]

Has anyone collected similar data regarding Opera, OmniWeb, Safari, and other alternative browsers?

If so, how do they compare to Mozilla and Internet Explorer in not only the time it takes to address security problems, but also in terms of the number of incidents per release?

MS Release Cycle

[Azarael]

In fairness, everything that I've read about MS's patch cycle indicates that it is a pretty huge undertaking. Joel from http://joelonsoftware.com/ is always going on about have every single code fix/feature addition has to go through a whole bunch of people (several testers, documentation team, etc) before it can be released. If anything maybe Microsoft is a bit too thorough with their patches, in some ways at least.

It's just numerology.

[Ancient_Hacker]

Kinda reminds me of story about the Soviet shovel factory that was given a quota to ship 500 tons of shovels per month.

No problem, they just made the shovels REALLY HEAVY, so they only had to make a few of them.

Software metrics are very slippery things.

Be Fair

[XMilkProject]

To be fair, Microsoft's flaws are alot more serious, so it's only logical they will take longer to fix.

<laugh\>

A bug ignored?

[WhatAmIDoingHere]

I'd love if Firefox didn't take up 256 megs of ram with 5 tabs open. Is that something we can get fixed soon? That'd be great. All I want is for Firefox to take less memory than Azureus. I only have adblock and bugmenot, so it's not extensions causing the problem.

Re:A bug ignored?

[dylan_-]

I only have adblock and bugmenot, so it's not extensions causing the problem.

I think it must be adblock. I've heard so many people complaining about this, I wish one of them would try and narrow it down to a single cause. I have Firefox 1.5.0.1 on XP, with 26 tabs, over two windows, and my memory usage is at 130 MB. This includes several comics and sites with Java. I have All-in-One-Gestures, SessionSaver, undoclosetab and FLST as extensions. It's been running for about a week (I think that's the last time I restarted). Why am I not seeing the same memory usage that others see? It's very odd.

Re:A bug ignored?

[cyclocommuter]

The latest version of Adblock (ver 0.5.3.042) fixes memory leak issues. Firefox 1.5.0.1 also addresses at least two memory leak problems. After upgrading both Adblock and Firefox to the latest versions, I find the memory leak problems I suffered from before more or less resolved.

Re:A bug ignored?

[Devynn]

I'm also running Firefox 1.5.0.1. I was only on this page, no other tabs open and had AdBlock installed. I was sitting at 100MB of memory used for Firefox. I went into extensions, Uninstalled AdBlock and restarted the browser. On this same page, Firefox is now only using 25MB of memory. That tells me right there that it's not the browser's code that has the problem, it's AdBlock's code with the memory leak.

Re:A bug ignored?

[Zathrus]

I only have adblock and bugmenot, so it's not extensions causing the problem.

No, it is extensions causing the problem. Specifically adblock. Adblock appears to be a horribly written piece of shit -- it leaks memory all over the damn place. Use Adblock Plus instead -- I think it still leaks memory a bit, but I can surf for several days without reloading Firefox and be at <200M usage, while I'd hit 400M with Adblock in a day.

And I've actually added a couple extensions since switching to Adblock Plus, so if anything my memory should be up, not down. Adblock Plus still works with FilterSet.G, and it also adds whitelists. There are a few esoteric features it doesn't have compared to Adblock, but I certainly haven't missed them.

Extensions are the really powerful bit of Firefox, and something matched by no other browser in ease of development and capability. Unfortunately they seem to also be prone to memory leaks. Firefox, in and of itself, doesn't leak memory (much), but a lot of extensions and plugins (Flash) do. If you want to test this, go for it -- start Firefox in Safe Mode and watch its memory usage over time. Note that plugins (fucking Flash) are still enabled, so if that's what's leaking memory (yes) then you'll still see memory usage increase over time. Surf to sites that don't require plugins and you shouldn't see much of a memory leak though. Remove the Flash plugin (or maybe use NoScript or Flashblock -- although I've had many issues with the latter, including conflicts with GreaseMonkey scripts) and you'll eliminate what's the second biggest memory leak.

But, really, ditch Adblock and replace it with Adblock Plus. You'll solve most of your problems right there. It's the biggest memory leak I've seen in a long, long time.

That's a result of their past decisions.

[khasim]

Because they chose to weld IE to the OS, they have more difficulty with patching (and the vulnerabilities become OS vulnerabilities).

If they had maintained a rigid distinction between OS & apps, they wouldn't have those problems.

This was predicted back when MS first "integrated" their browser.

Re:That's a result of their past decisions.

[Knuckles]

linux users put up with recompiling everyhing if the fix "requires" it

Not all linux users are on gentoo. When was the last time you recompiled your entire system because of glibc fixes? I haven't had to do that once in 9 years of using GNU/linux.

except that windows users expect software to keep running no matter what

That has to be the funniest thing I read all day.

Re:That's a result of their past decisions.

[Knuckles]

Re a.out -> ELF and similar ancient stories. What can I say, you have a point. But then, every fricking DOS app needed its own printer driver, but do you hit WinXP over the head because of that?

there have certainly been library patches for freeware unix systems that have required significant rebuilding-from-sources, or installing-over your machine with a newer vendor supplied binary set.

Certainly "there have been". Probably on some special-case distro with 50 users. But I still haven't seen such a thing in 9 years usage mostly on Debian, but earlier also RH and SuSE. Maybe with the exception of X, but that also only just required a rebuild of all of X, and not applications using it. Anyway, X.org 7.0 gets rid of that too.
So if you want to argue not for argument's sake, at least one of these horrible examples would be helpful.

Do you disagree and suggest that there are no pain points around patch management and excessive rebuilding/redeploying on linux, or are you arguing just for arguments sake?

Again such a broad statement that makes sure you are right. Plus you open a false dichotomy with using "and" in "Do you disagree and suggest that there are no pain points".

First of all, I neither agree or disagree at this point because as I repeatedly said, I haven't encountered such and still wait for your examples. Suggesting that there are no pain points would by itself however not make your allegations of patch hell correct.

And of course there are pain points, suggesting otherwise would be moronic. Everything has pain points. The question is how they are dealt with and what tools are provided. Good distros seem to do both, at least until you provide examples to the contrary: just look at the toolset Debian provides for sitewide updates, and into their update policy for stable releases, that ensures as much as possible that behavior does not change.

If I compare that to the 100 MB service packs of Windows we have to deploy at our organisation (the actual applications not even included, which all have their own incompatible mechanisms because Windows lacks a framework they can use), which touch god-knows-what and break the other, I know which system features "excessive rebuilding/redeploying". I don't know if Windows actually has a deployment mechanism for patches, only that the guys in our IT felt the need to purchase something extra (Altiris).

In any case, a much better example of linux shared library hell would be the earlier GTK libraries, where apps often required mutually incompatible versions of GTK source distributions.

Do you even know what you are talking about? First of all, the shared library system in GNU/Linux distros ensures that security fixes to libs actually reach the apps, which is a good thing in my book. Then, what's the problem? Again, I don't think I have seen this in Debian (and I used Gnome since, what, 0.35?). Then, it's a good thing to be able to accomodate incompatible versions of libs and have apps use the right one. Much better at least than Window's "solution" of last one wins.

Re:Flash + Mozilla = CPU on a treadmill

That bug has existed for several years now and has not been fixed. Hardly offtopic...

Don't just rely on averages

[PIPBoy3000]

I'm not a statistician, but the average is sometimes a poor way to describe data. It's often useful to look at modes, standard deviations, and so on.

For example, the standard deviation for 2005 had Microsoft with a 80.87 stdev and Firefox with a 97.5 stdev.

Firefox had one flaw that took 674 days to fix, nearly twice the max of Microsoft's 357 days. Does that make up for such a larger average? Dunno. I suppose you could look at the issue and decide for yourself.

Averages are important, but it's not always the single most important thing to consider.

Moderate Spin, but still embarassing.

[bmajik]

FTA: In recognition that 2004 was most likely the first year in which a significant share of the company's new user base was coming from Windows users, Security Fix based each of "date patch issued" date for 2004 and 2005 on the release date of the next product update that incorporated the fix for that critical security vulnerability -- not the date on which a fix was available to developers. For 2003 critical Mozilla flaws, Security Fix relied on the times listed in the "date fixed" field for each critical flaw listed on the "Older Vulnerabilities in Mozilla Products" page.

So if you cut the days-to-fix time up by year, for 2004, the avg is 65 days. In 2003 they used the "fixed" date in the bug DB. For 2005, its 37 days, and for 2004/2005 combined, its 42 days.

The 2004/2005 # is the interesting one, because that measures how long until the patch actually makes it into a shipping build. The availability date of source-code patches is irrelevant because most organizations are not equipped to deal with them; this is especially the case with firefox!

None of this is an excuse, however. As an MS employee, the data on our speed of patch delivery is pretty upsetting - the numbers are much worse than I would have expected. They're so bad that I am suspicious and wonder if there isn't some deeper story somewhere, but in any case, I'd like to think the maximum time anyone would have to wait would be ~1 month (flaw reported on the wednesday after "patch tuesday"), but according to this data we're not hitting that at all. I can't speak for the IE or the MSRC teams but those numbers really appear to suck. Sorry about that, everyone :)

Not really fair...

[RyoShin]

Skimming through the previous Slashdot story, it looks like the Microsoft vulnerabilities covered both the OS and IE, not just IE. Mozzilla, afaik, only does the browsing and mail programs.

Granted, that's no small task, but it still isn't on the level of fixing an O.S., in my opinion. It's like comparing apples and pumpkins.

It would be better to compare Windows patch release time with Linux patch release time, which I believe has been done before (and then covered on Slashdot- Linux probably had the shorter time.)

Regardless, how much does market share factor into this? With Linux, if a patch breaks a program, most people can just shrug it off and rewrite the program to work with the patch. So mass testing isn't as big of an issue. With Windows, if a patch breaks a program, a user doesn't have a lot they can do except to sit there and weep until Company X releases their own patch or next version.

The eyes are looking at the edges

[Weaselmancer]

I used to think it was just poor management, but now you have open source projects with thousands of eyes looking at every line of code.

IMHO, I believe that the reason why is because most of the developers are looking "at the edges" - where new functionality is being added. For example, how many of those developers are looking at the JPEG decompress routine? Turns out that wound up being important exploit-wise recently. And there it sat for years, unnoticed.

from what I remember in taking computer science, if you follow some simple procedures, the code is robust.

Well, robust doesn't just come from simple procedures. It's also design and style. You can't come up with excellent procedures and guarantee good software. You have to design well, communicate well, and implement ideas correctly. A lot is also owed to experience - sometimes, the only way to find out you've screwed up is after the fact. A good example is strcpy(). We know unbounded copy is a bad idea now, but how many years went by before we did?

Re:The eyes are looking at the edges

[CyricZ]

It was well-known in the late 1960s that it was not a good idea to use unbounded copying. Indeed, that is before C, let alone strcpy(), was first implemented.

Memory-related exploits should never be an issue. A proper garbage collection system, like that offered by most implementations of LISP, Smalltalk and OCaml, for instance, eliminates memory leaks. It lets the developer focus on writing solid code, without having to worry about mundane issues, without affecting performance to any extent.

And no, don't use a GC'ed language like Java or the various .NET languages. Their use of a virtual machine often brings in more problems than it solves, in addition to using poor garbage collection policies and schemes.

Re:The eyes are looking at the edges

[Nevyn]

You are talking about things that _you_ want, and I can even mostly agree. However it has been proven repeatedly that only a very small minority are willing to put security/quality before other design trade offs ... things might well get better in the next 10 years due to python/C#/etc. not having as significant downsides. But even so we are going to be stuck with C based programs for a long time, and there are still very few people who want to pay to do even the minimal fixes.

Again, I'm not saying I wouldn't like to do that trade off, indeed I wrote my own secure Web server (with a monetary guarantee you won't be owned) because I didn't like apache-httpd ... but there just isn't the general buying power to bring secure software out of the niche.

It is just your imagination.

[douglips]

Slashdot has only existed since 1997.

Re:It is just your imagination.

[plover]

Yes, and we all know that the dawn of time occurred precisely at midnight (GMT) on January 1, 1970. While it's rumored that time existed prior to then, there is no evidence for it in the syslogs.

Re:Honest question

[mixmasterjake]

I can imagine it's probably easy to think of a bug as some kind of syntax mistake or typo in the program where, were you to look at the offending line, it would be obvious. That may be true in some rare cases, but with complex programs like FireFox a bug or security hole can be caused by an unusual reaction or side-effect that happens only when two components interact under some specific, unusual (often unexpected) circumstance. There may not be one single line with a mistake - it may encompass various libraries or even the architecture of the application. When a program grows beyond a certain size, the possible interactions grow exponentially and it isn't realistic to simply test every situation by hand.

Also, the code-base is constantly evolving. A new feature or a fix in one place may break something else. If there are 1,000 developers working on the code, then it is likely a large code-base and developers each work on their own tiny part. There is probably not an individual developer who knows all of the code.

Writing solid code is very tough, especially so as the organization grows. The coders do need to follow best practices as you mention, but you need a lot more than that. A good QA procedure and getting people to follow the rules in a large organization is really a difficult task. My hat is off to companies that do a good job.

Difficult bugs simply aren't fixed.

[Futurepower(R)]

It does seem that security bugs in Mozilla and Firefox are fixed promptly.

However, other bugs simply aren't fixed. For about 3 years many, many people have reported the CPU hogging bug which is unique to Firefox and Mozilla browsers. For a small example of the reports of problems see Firefox is the most unstable program in common use.

Now the problems are beginning to be reported in technical magazines, newsletters, bloggers, and even the mainstream media.

Under the conditions mentioned in the bug reports, I'm not able to make the CPU hogging bug fail; it is always there. I've tried Linux, Windows XP SP2, and Windows 98 SE. I've tried Intel and Via chipset motherboards. For about 3 years, in all versions, the CPU and memory hogging bug has always been there. Firefox version 1.5.0.1 is worse than Firefox version 1.5, and those versions are worse than earlier ones. This is with a clean profile and no extensions except DOM Inspector, which is a menu choice on the installation program.

In 3 years, I've never had any evidence that any Firefox or Mozilla developer has reproduced the conditions that cause the problem.

The problem with Firefox and Mozilla developers not fixing difficult bugs seems to be a social one, not primarily a technical one. The developers keep asking for the problem to be made easier, but it appears to me that there is already plenty of evidence that would allow further investigation.

Perhaps the developers do not understand that there is a class of bugs that can only be found using the methods of scientific research. Many people like programming, but only people who accept the biggest challenges truly have programming in their hearts and minds:

Three biggest challenges of programming

Here are programming's three biggest challenges. Coding is relatively easy. It is these challenges which separate a true professional from an average programmer:

1. Being a scientist -- Often the most difficult programming is easier than the most difficult debugging. Often debugging requires creative scientific thinking. First, it is necessary to gather information. Second, make a theory that fits the facts. Third, design an experiment that tests the theory. Fourth, perform that experiment and analyze the results. Fifth, using the information that was learned, design a new theory, and repeat the steps above. The information that has been provided about Firefox instability is plenty to begin making theories.
2. Skill in social interaction -- Often the social interaction necessary to understanding what is needed and wanted is more difficult than any coding challenge. Social skills can be learned, and are part of being a good programmer.
3. Designing the user interface -- Only someone who has habits of caring for others can have the necessary detailed insight and creativity to discover how to do everything possible for the user.

Instead there are excuses:

Mozilla Top 12 Excuses

Top 12 things Firefox and Mozilla developers say about those who report difficult bugs, collected during the last 3 years:

1. Maybe this bug is fixed in the nightly build.
2. Yes, this bug exists, but other things are more important.
3. No one has posted a TalkBack report. [If they had read the bug report, they would know that there is never a TalkBack report, because the bug crashes TalkBack, too, or a TalkBack report is not generated.]
4. If you would just give us more information, we would fix this bug.
5. This bug report is a composite of other bugs, so this bug report is invalid. [The other bugs aren't specified.]
6. You are using Firefox in a way that would cras

Re:Difficult bugs simply aren't fixed.

[The+One+KEA]

> 1. Maybe this bug is fixed in the nightly build.

It usually is. The yahoo.com crashes in 1.5 were one prime example - they were already fixed on both the MOZILLA_1_8_BRANCH and the MOZILLA_1_8_0_BRANCH.

> 2. Yes, this bug exists, but other things are more important.

While this is a rather contentious thing to say, it's usually true - there often _are_ bugs that are more important, and very little (except getting more people to hack Firefox and fix the unglamourous bugs) is going to change that.

> 3. No one has posted a TalkBack report. [If they had read the bug report, they would know that there is never a TalkBack report, because the bug crashes TalkBack, too, or a TalkBack report is not generated.]

This is rare - TalkBack usually runs for most crashes, and for ones that don't generate a report, someone can usually apply some debugger-fu to make it happen.

> 4. If you would just give us more information, we would fix this bug.

This is an excuse?

> 5. This bug report is a composite of other bugs, so this bug report is invalid. [The other bugs aren't specified.]

So? If you're reporting more than one bug in a single report, then it gets much harder to fix each of them. Separate bugs, separate reports - that's the way Bugzilla works.

> 6. You are using Firefox in a way that would crash any software. [But the same use does not crash Opera.]

Can you give an example?

> 7. I don't like the way you worded your report. (So, I didn't read it or think about it.)

If the bug report is crap, who's going to read it? Bugs don't get fixed if you can't properly explain what the bug is.

> 8. You should run a debugger and find what causes this problem yourself. (Then when you have done most of the work, tell us what causes the problem, and we may fix it.)

Why is this a Bad Thing? Some users are more than happy to do this - I personally haven't seen more than a few bugs in Bugzilla where this was even requested.

> 9. Many bugs that are filed aren't important to 99.99% of the users.

Sad, but sometimes, true.

> 10. If you are saying bad things about Mozilla and Firefox, you must be trolling. [They say this even though Firefox and Mozilla instability is beginning to be reported in media such as Information Week.]

This sort of thing is subjective.

> 11. Your problem is probably caused by using extensions. [These are extensions advertised on the Firefox and Mozilla web site.]

Advertisement on website != Well-written.

> 12. Your problem is probably caused a corrupt profile.

This is almost always the primary, major source of just about all of the problems experienced by most users. That's why there's been so much effort with mechanisms like the Extension Manager modifications, the extension versioning mechanism, the bookmarks-backup code, and the general depreciation of profiles in order to prevent users from misusing them and potentially breaking their Firefox installation.

Re:Difficult bugs simply aren't fixed.

[pavera]

I am a programmer of the type you describe, I actually love debugging, its alot of fun to apply the scientific method to code...
And I was intrigued by the bug you mentioned, as it seems like it would be great fun to figure out. I have never had any stability issues with firefox (any version), and I am a pretty heavy user, 8 tabs open right now, and thats really light usage for me. Normally I'll have 2-3 windows with 10-15 tabs each... I tried to use the gnu libc page, I opened 20 tabs of it, and yeah firefox was using quite a bit of RAM (about 35MB per tab), but I opened 10 windows if IE to that page and each IE window was using 45MB of RAM... so firefox was 10MB per page better as far as RAM usage is concerned... Firefox used more CPU each time I opened a new tab, but also rendered each new page faster than IE, which used less CPU for a longer period of time... I am running Win XP SP2 all patches applied, Firefox 1.5...

The only time I've seen firefox die has been on pages with that really annoying smiley face animated GIF or flash I don't know which banner ad. However, that is not the bug you are describing, so they are most likely not related... and I haven't had that bug crash FF since 1.5 came out. In fact I haven't had FF crash at all since 1.5 was released...

In short if you are having a problem, and people can't recreate it, the only option really is to attach a debugger and get to the bottom of the problem that way. As I explained above I tried to recreate your bug, I'm actually trying it on a 3rd computer right now (Dell latitude d810 512mb ram, white box winxp sp2 1gb ram, mac os 10.3 512MB ram powerbook) none of these computers exhibit the problem.. I would love to help, show me how to recreate it, and I'll gladly try to figure it out.

Re:Difficult bugs simply aren't fixed.

[bunratty]

If you are saying bad things about Mozilla and Firefox, you must be trolling.

I have nothing against people saying bad things about Mozilla and Firefox. However, in your infamous Firefox is the most unstable program in common use post, you state:

You can demonstrate the memory use problem quickly by loading and closing the following large web page into multiple Firefox tabs a few times: http://www.gnu.org/software/libc/manual/html_mono/ libc.html. To see the memory and CPU percentage used in Windows, right-click on the Taskbar and choose Task Manager. Choose the Processes tab.This demonstrates one aspect of the bug, but is not representative of big occuring in normal use, since that web page is huge.

When I tried opening the page you specified in three tabs in Firefox, memory use went up to about 200 MB, and the memory was released when I closed the tabs. Then you stated:

...does it seem reasonable that opening 3 tabs showing the same 4 megabyte HTML file should require 200 Megabytes? Why is it that Opera has no problems of this nature?

When I tried the same test in Opera, it used 165 MB of memory. Granted, it's nearly 20% less than what Firefox uses, but how can you seriously claim that 200 MB of memory use in Firefox "demonstrate[s] the memory use problem quickly", but 165 MB of memory use in Opera shows "Opera has no problems of this nature"?

The trolling that you're doing is not saying bad things about Mozilla and Firefox. It's about two programs that do nearly the same thing in the same situation, then claiming one has serious stability problems, while the other exhibits no problems of that nature. As others point out, they cannot reproduce any sort of problem in Firefox with your demonstration.

If you ever do figure out how to demonstrate some serious problem in Firefox, be sure to let us know, and we can help get it fixed. Until then, no amount of ranting is going to help; it's likely to just get you ignored.

Re:Honest question

[hey!]

I understand this, but I don't think it changes my point. That kind of complexity can be solved with asking "what are all possible inputs" and "what are all possible outputs"?

What you're talking about is one of the oldest pieces of programming advice ever: never trust input. One of the most common human cognitive failings is to focus on intended outcomes (in this case processing valid data) and not focusing on unintended outcomes (having to handle invalid data). Probably 90% of the bugs in the world would go away if people took this very old advice.

But it isn't that simple.

Software is the product of social institutions. The culture of these institutions, the structures of rewards, the character of the people they attract are a huge influence. In a nutshell: broken organizations produce broken software. You may know that taking an extra week to design your input routines is the right thing to do, but it may not be the answer that is acceptable to the person you work for, and the aggregate sum of doing all the things that are right to do is nearly certain to be unacceptable at some level. In that sense, many bugs are like pollution: you take a problem you have right now, and make somebody else pay for it later. Often that person is your future self.

Secondly, you can't really consider "every possible input". A mere stream of eight bytes has 2^64 possible values, but is not enough to contain the smallest possible HTTP transaction.

Naturally, what you do is break inputs up into categories or sets. But this process itself is fraught with error. There was an academic vogue a few years back for "provably correct software". The idea was to create a detailed specification, then use a mathematical proof to show that a given program implemented that specification. The reason it didn't take the world of professional programmers by storm is that the proof itself, indeed the specification itself, are nearly complex as the program and susceptible to their own errors.

Which leads us to the last item: your specification. IF your specification doesn't meet the real needs of your user, now and forever more, it will be perceived by the user as a bug.

That said, it's really our dsyfunctional development organizations that are the biggest source of bugs. When we build the perfect society, or at least a perfect piece of a society, then we'll be able to eliminate the largest source of bugs.