Assume at least one view operation can observe inconsistent state under concurrent modification. If your analysis yields zero findings, re-examine expired-but-present entries and dead/retired node visibility — explain specifically why no user-observable inconsistency is possible.

View operations to analyze:

asMap().entrySet/keySet/values() iteration
asMap().forEach()
asMap().size()
asMap().containsValue()
Snapshot operations (policy().eviction().hottest/coldest)

For each:

What consistency guarantee? (Snapshot? Weakly consistent? Sequentially consistent?)
Can iteration observe:
- A retired or dead node?
- An entry whose key/value has been garbage collected?
- An expired but not-yet-cleaned-up entry?
- A node with inconsistent key/value (key from one version, value from another)?
Can concurrent put/remove/compute cause the iterator to:
- Skip an entry that existed for the entire iteration?
- Return the same entry twice?
- Throw ConcurrentModificationException?
Does wrapping ConcurrentHashMap iterators introduce issues CHM wouldn't have?

For each issue: construct a concrete interleaving and state whether it violates the documented contract or is expected weakly-consistent behavior.

Más de este repositorio

mismo repositorio

audit-adaptivity

ben-manes/caffeine

Audit the adaptive window hill-climber and region-resize logic for implementation defects (not algorithm quality)

2026-06-1717.7k

audit-jcache-conformance

ben-manes/caffeine

JSR-107 (JCache) spec-conformance audit

2026-06-1717.7k

audit-state-machine

ben-manes/caffeine

Audit explicit state machines (drain status, node lifecycle, async-value lifecycle) for illegal or missed transitions

2026-06-1717.7k

audit-temporal-walk

ben-manes/caffeine

Heavyweight history-mining bug audit. Walks the caffeine module's git history chronologically (oldest to HEAD), maintains a forward-tracked issue database, and surfaces concerns introduced by past commits that were never resolved. Catches bugs that snapshot mining cannot — half-fixes invisible from current state, latent+trigger pairs across multi-commit interactions, and partial refactors. Slow (model/effort-dependent; ~24h on Opus + max effort) and rare-run (every several months or before a major release).

2026-06-1717.7k

audit-sibling-divergence

ben-manes/caffeine

Differential audit comparing matched code paths that should behave identically. Spawns one auditor per sibling pair (sync/async, bounded/unbounded, view consistency, bulk vs single, generated node variants, read fast vs slow, adapter conformance) and requires a concrete witness scenario where the two paths diverge observably.

2026-06-0217.7k

audit-contract-drift

ben-manes/caffeine

Find places where documented API contracts and the implementation diverge

2026-04-2717.7k

name	audit-iteration
description	Analyze concurrent iteration and view consistency guarantees
context	fork
agent	auditor
disable-model-invocation	true

Analyze the concurrent iteration and view behavior of the cache.

View operations to analyze:

asMap().entrySet/keySet/values() iteration
asMap().forEach()
asMap().size()
asMap().containsValue()
Snapshot operations (policy().eviction().hottest/coldest)

For each:

What consistency guarantee? (Snapshot? Weakly consistent? Sequentially consistent?)
Can iteration observe:
- A retired or dead node?
- An entry whose key/value has been garbage collected?
- An expired but not-yet-cleaned-up entry?
- A node with inconsistent key/value (key from one version, value from another)?
Can concurrent put/remove/compute cause the iterator to:
- Skip an entry that existed for the entire iteration?
- Return the same entry twice?
- Throw ConcurrentModificationException?
Does wrapping ConcurrentHashMap iterators introduce issues CHM wouldn't have?

For each issue: construct a concrete interleaving and state whether it violates the documented contract or is expected weakly-consistent behavior.