esc java2
play

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll - PowerPoint PPT Presentation

Jan 01, 2023 •289 likes •489 views

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? The ESC/Java2 tool

  1. ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.1/ ??

  2. The ESC/Java2 tool David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.2/ ??

  3. Structure of ESC/Java2 ESC/Java2 consists of a • parsing phase (syntax checks), • typechecking phase (type and usage checks), • static checking phase (reasoning to find potential bugs) - runs a behind-the-scenes prover called Simplify Parsing and typechecking produce cautions or errors. Static checking produces warnings. The focus of ESC/Java2 is on static checking, but reports of bugs, unreported errors, confusing messages, documentation or behavior, and even just email about your application and degree of success are Very Welcome. [and Caution: this is still an alpha release] David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.3/ ??

  4. Running ESC/Java2 • Download the binary distribution from http://www.cs.kun.nl/sos/research/escjava • Untar the distribution and follow the instructions in README.release about setting environment variables. • Run the tool by doing one of the following: • Run a script in the release: escjava2 or escj.bat • Run the tool directly with java -cp esctools2.jar escjava.Main, but then you need to be sure to provide values for the -simplify and -specs options. • Run a GUI version of the tool by double-clicking the release version of esctools2.jar • Run a GUI version of the tool by executing it with java -jar esctools2.jar (in which case you can add options). David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.4/ ??

  5. Supported platforms ESC/Java2 is supported on • Linux • MacOSX • Cygwin on Windows • Windows (but there are some environment issues still to be resolved) • Solaris (in principle - we are not testing there) Note that the tool itself is relatively portable Java, but the underlying prover is a Modula-3 application that must be compiled and supplied for each platform. Help with platform-dependence issues is welcome. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.5/ ??

  6. Environment The application relies on the environment having • a Simplify executable (such as Simplify-1.5.4.macosx) for your platform, typically in the same directory as the application’s jar file; • the SIMPLIFY environment variable set to the name of the executable for this platform; • a set of specifications for Java system files - by default these are bundled into the application jar file, but they are also in jmlspecs.jar. • The scripts prefer that the variable ESCTOOLS_RELEASE be set to the directory containing the release. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.6/ ??

  7. Command-line options The items on the command-line are either options and their arguments or input entries. Some commonly used options (see the documentation for more): • -help - prints a usage message • -quiet - turns off informational messages (e.g. progress messages) • -nowarn - turns off a warning • -classpath - sets the path to find referenced classes [best if it contains ‘.’] • -specs - sets the path to library specification files • -simplify - provides the path to the simplify executable • -f - the argument is a file containing command-line arguments • -nocheck - parse and typecheck but no verification • -routine - restricts checking to a single routine • -eajava, -eajml - enables checking of Java assertions • -counterexample - gives detailed information about a warning David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.7/ ??

  8. Input entries The input entries on the command-line are those classes that are actually checked. Many other classes may be referenced for class definitions or specifications - these are found on the classpath (or sourcepath or specspath). • file names - of java or specification files (relative to the current directory) • directories - processes all java or specification files (relative to the current directory) • package - (fully qualified name) - found on the classpath • class - (fully qualified name) - found on the classpath • list - (prefaced by -list) - a file containing input entries David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.8/ ??

  9. Specification files • Specifications may be added directly to .java files • Specifications may alternatively be added to specification files. • No method bodies • No field initializers • Recommended suffix: .refines-java • Recommend a refines annotation (see documentation) • Must also be on the classpath David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.9/ ??

  10. Specification file example package java.lang; import java.lang.reflect.*; import java.io.InputStream; public final class Class implements java.io.Serializable { private Class(); /*@ also public normal_behavior @ ensures \result != null && !\result.equals("") @ && (* \result is the name of this class object *); @*/ public /*@ pure @*/ String toString(); .... David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.10/ ??

  11. Bag demo David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.11/ ??

  12. modular reasoning ESC/Java2 reasons about every method individually. So in class A { byte[] b; public void n() { b = new byte[20]; } public void m() { n(); b[0] = 2; ... } ESC/Java2 warns that b[0] may be a null dereference here, even though you can see that it won’t be. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.12/ ??

  13. modular reasoning To stop ESC/Java2 complaining: add a postcondition class A { byte[] b; //@ ensures b != null && b.length = 20; public void n() { a = new byte[20]; } public void m() { n(); b[0] = 2; ... } So: property of method that is relied on has to be made explicit. Also: subclasses that override methods have to preserve these. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.13/ ??

  14. modular reasoning Similarly, ESC/Java will complain about b[0] = 2 in class A { byte[] b; public void A() { b = new byte[20]; } public void m() { b[0] = 2; ... } Maybe you can see that this is a spurious warning, though this will be harder than in the previous example: you’ll have to inspect all constructors and all methods. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.14/ ??

  15. modular reasoning To stop ESC/Java2 complaining here: add an invariant class A { byte[] b; //@ invariant b != null && b.length == 20; // or weaker property for b.length ? public void A() { b = new byte[20]; } public void m() { b[0] = 2; ... } So again: properties you rely on have to be made explicit. And again: subclasses have to preserve these properties. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.15/ ??

  16. assume Alternative to stop ESC/Java2 complaining: add an assumption: ... //@ assume b != null && b.length > 0; b[0] = 2; ... Especially useful during development, when you’re still trying to discover hidden assumptions, or when ESC/Java2’s reasoning power is too weak. ( requires can be understood as a form of assume .) David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.16/ ??

  17. need for assignable clauses class A { byte[] b; ... public void m() { ... b = new byte[3]; //@ assert b != null; // ok! o.n(...); //@ assert b != null; // ok? ... } What does ESC/Java need to know about o.n to check the second assert ? David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.17/ ??

  18. need for assignable clauses class A { byte[] b; ... public void m() { ... b = new byte[3]; //@ assert b != null; // ok! o.n(b); //@ assert b != null; // ok? ... } A detailed spec for o.n might give a postcondition saying that b is not null. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.18/ ??

  19. need for assignable clauses class A { byte[] b; ... public void m() { ... b = new byte[3]; //@ assert b != null; // ok! o.n(); //@ assert b != null; // ok? ... } If the postcondition of o.n doesn’t tell us b won’t be not null – and can’t be expected to – we need the assignable clause to tell us that o.n won’t affect b . Declaring o.n as pure would solve the problem. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.19/ ??

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph Kiniry Department of Computer Science University College Dublin ESC/Java2 ESC/Java2 is an extended static checker based upon DEC/Compaq SRC

278 views • 27 slides
ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla,

ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla,

ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla, Andreas Rau Saarland University, Germany ESC/Java2: the formula is built using Dijsktras

439 views • 43 slides
Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby presented by David Cok Systems Research Group School of Computer Science and Informatics University College Dublin ESC/Java2 by design, neither sound

628 views • 33 slides
ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? The ESC/Java2 tool

923 views • 24 slides
ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College

ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College

ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? Types of ESC/Java2

1.15k views • 36 slides
Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36

Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36

Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36 Outline of this tutorial formal specifcation language JML program verification using ESC/Java2 p.2/36 The Java Modeling Language JML

471 views • 36 slides
Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner

Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner

Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner Wolfgang.Schreiner@risc.uni-linz.ac.at 2. Examples Research Institute for Symbolic Computation (RISC) Johannes Kepler University, Linz, Austria

653 views • 12 slides
Introduction to JML Erik Poll, Joe Kiniry, David Cok University of Nijmegen; Eastman Kodak

Introduction to JML Erik Poll, Joe Kiniry, David Cok University of Nijmegen; Eastman Kodak

Introduction to JML Erik Poll, Joe Kiniry, David Cok University of Nijmegen; Eastman Kodak Company Erik Poll - ESC/Java2 Tutorial - June 2004 - JML p.1/34 Outline of this talk What this set of slides aims to do introduction to JML

1.22k views • 44 slides
Advanced JML and more tips and pitfalls David Cok, Joe Kiniry, and Erik Poll Eastman Kodak

Advanced JML and more tips and pitfalls David Cok, Joe Kiniry, and Erik Poll Eastman Kodak

Advanced JML and more tips and pitfalls David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? Core

776 views • 55 slides
Specification tips and pitfalls David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company,

Specification tips and pitfalls David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company,

Specification tips and pitfalls David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ??

707 views • 43 slides
Introduction to JML David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University

Introduction to JML David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University

Introduction to JML David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? Outline of this tutorial

1.06k views • 42 slides
Serialization Michele Van Dyne MUS 204B mvandyne@mtech.edu

Serialization Michele Van Dyne MUS 204B mvandyne@mtech.edu

25 Code Deployment and Object Serialization Michele Van Dyne MUS 204B mvandyne@mtech.edu https://katie.mtech.edu/classes/csci136 Java JAR files Zip with your *.class files and other files Classpath Allows common classes to

339 views • 21 slides
JUnit Tutorial 2020/3/29 JUnit Automatic Testing Unit-testing framework "test a

JUnit Tutorial 2020/3/29 JUnit Automatic Testing Unit-testing framework "test a

Poly- mor- phism Abstra ction Class OOP Inheri -tance En- capsu- lation Kuan-Ting Lai JUnit Tutorial 2020/3/29 JUnit Automatic Testing Unit-testing framework "test a little, code a little, test a little, code a

597 views • 18 slides
Applied Algorithm Design: Exam Prof. Pietro Michiardi Rules and suggestions The idea is to

Applied Algorithm Design: Exam Prof. Pietro Michiardi Rules and suggestions The idea is to

Applied Algorithm Design: Exam Prof. Pietro Michiardi Rules and suggestions The idea is to complete first the questions and then the exercises. Having the good answer for all questions will guarantee to pass the exam with 10/20.

205 views • 3 slides
Professional Java Projects CS1331 Professional Java Projects You know the basics of Java. Today

Professional Java Projects CS1331 Professional Java Projects You know the basics of Java. Today

Professional Java Projects CS1331 Professional Java Projects You know the basics of Java. Today youll learn the basic elements of professional Java projects, including the classpath, separating source and compiler output, project

388 views • 10 slides
Java SE: Where Weve Been, Where Were Going Alex Buckley Spec Lead, Java Language & VM

Java SE: Where Weve Been, Where Were Going Alex Buckley Spec Lead, Java Language & VM

<Insert Picture Here> Java SE: Where Weve Been, Where Were Going Alex Buckley Spec Lead, Java Language & VM November 2011 The following is intended to outline our general product direction. It is intended for information

1.09k views • 87 slides
Protg Plugin Development Ray Fergerson Overview Part I What is a Plugin? How

Protg Plugin Development Ray Fergerson Overview Part I What is a Plugin? How

Protg Plugin Development Ray Fergerson Overview Part I What is a Plugin? How Plugins Work Plugin Types and Capabilities PART II Plugin Packaging Plugin Bundling Plugin Licensing Coming Changes

936 views • 26 slides
Java Database Connectivity (JDBC) PDBM 15.3.4 Dr. Chris Mayfield Department of Computer Science

Java Database Connectivity (JDBC) PDBM 15.3.4 Dr. Chris Mayfield Department of Computer Science

Java Database Connectivity (JDBC) PDBM 15.3.4 Dr. Chris Mayfield Department of Computer Science James Madison University Mar 31, 2020 Introduction to JDBC JDBC = Java Database Connectivity 1. Connect to the database java.sql.Connection 2.

392 views • 8 slides
Outline Some brief background to help with homework Java beans Some interesting

Outline Some brief background to help with homework Java beans Some interesting

CS1007: Object Oriented Design and Programming in Java Lecture #20 April 4 Shlomo Hershkop shlomo@cs.columbia.edu Outline Some brief background to help with homework Java beans Some interesting programming challenges Next

353 views • 23 slides
Introduction to Java Programming Design goals Language features Running sample code Tools

Introduction to Java Programming Design goals Language features Running sample code Tools

Introduction to Java Programming Design goals Language features Running sample code Tools support A1 1 Origin Java was developed by Sun in the 1990s, as an alternative to C++. Designed to be multi-platform - Compiles to bytecode (IR)

453 views • 22 slides
Lecture Notes on Ant (COMP 303) These slides extracted from material at:

Lecture Notes on Ant (COMP 303) These slides extracted from material at:

Lecture Notes on Ant (COMP 303) These slides extracted from material at: https://www6.software.ibm.com/developerworks/education/j-apant/j-apant-ltr.pdf" (IBM Developer Works: Ant Tutorial) http://ant.apache.org/manual/ (Ant Users Manual)

296 views • 8 slides
Hadoop @ SURFsara USING THE CLUSTER Jeroen Schot <jeroen.schot@surfsara.nl> Overview -

Hadoop @ SURFsara USING THE CLUSTER Jeroen Schot <jeroen.schot@surfsara.nl> Overview -

Hadoop @ SURFsara USING THE CLUSTER Jeroen Schot <jeroen.schot@surfsara.nl> Overview - SURFsara in a nutshell - The SURFsara Hadoop cluster - How to use the cluster About SURF SARA SURFsara -Founded in 1971 as SARA by UvA, VU and

622 views • 15 slides
Modular Applications and the Lookup API David trupl Sun Microsystems The Need for Modular

Modular Applications and the Lookup API David trupl Sun Microsystems The Need for Modular

Modular Applications and the Lookup API David trupl Sun Microsystems The Need for Modular Applications Applications get more complex Assembled from pieces Developed by distributed teams Components have complex dependencies

608 views • 50 slides
Task Dependencies: ant Steven J Zeil February 25, 2013 Task Dependencies: ant Outline

Task Dependencies: ant Steven J Zeil February 25, 2013 Task Dependencies: ant Outline

Task Dependencies: ant Task Dependencies: ant Steven J Zeil February 25, 2013 Task Dependencies: ant Outline The ant Command 1 Build Files 2 Targets Properties File Sets and Lists Path Sets Filters Tasks Case Studies 3

807 views • 59 slides

More recommend