esc java2 warnings
play

ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman - PowerPoint PPT Presentation

Sep 29, 2022 •787 likes •1.15k views

ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? Types of ESC/Java2

  1. ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.1/ ??

  2. Types of ESC/Java2 warnings ESC/Java2 warnings fall into various categories: - warnings about possible runtime exceptions: (Cast, Null, NegSize, IndexTooBig, IndexNegative, ZeroDiv, ArrayStore) • These are the most common runtime exceptions caused by coding problems (that is, not by explicitly throwing an exception) • They do not include nearly all of the possible runtime exceptions • Most of the others are explicitly thrown by various library methods David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.2/ ??

  3. Cast Warning The Cast warning occurs when ESC/Java2 cannot verify that a ClassCastException will not be thrown: public class CastWarning { public void m(Object o) { String s = (String)o; } } results in ------------------------------------------------------------------------ CastWarning.java:3: Warning: Possible type cast error (Cast) String s = (String)o; ˆ ------------------------------------------------------------------------ But this is OK: public class CastWarningOK { public void m(Object o) { if (o instanceof String) { String s = (String)o; } } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.3/ ??

  4. Cast Warning So is this: public class CastWarningOK2 { //@ requires o instanceof String; public void m(Object o) { String s = (String)o; } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.4/ ??

  5. Null Warning The Null warning occurs when ESC/Java2 cannot verify that a NullPointerException will not be thrown: public class NullWarning { public void m(Object o) { int i = o.hashCode(); } } results in ------------------------------------------------------------------------ NullWarning.java:3: Warning: Possible null dereference (Null) int i = o.hashCode(); ˆ ------------------------------------------------------------------------ But this is OK: public class NullWarningOK { public void m(/*@ non_null */ Object o) { int i = o.hashCode(); } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.5/ ??

  6. ArrayStore Warning The ArrayStore warning occurs when ESC/Java2 cannot verify that the assignment of an object to an array element will not result in an ArrayStoreException: public class ArrayStoreWarning { public void m(Object o) { Object[] s = new String[10]; s[0] = o; } } results in ------------------------------------------------------------------------ ArrayStoreWarning.java:4: Warning: Type of right-hand side possibly not a subtype of array element type (ArrayStore) s[0] = o; ˆ ------------------------------------------------------------------------ But this is OK: public class ArrayStoreWarningOK { public void m(Object o) { Object[] s = new String[10]; if (o instanceof String) s[0] = o; } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.6/ ??

  7. ZeroDiv, index Warnings • ZeroDiv - issued when a denominator (integer division) may be 0 • NegSize - issued when the array size in an array allocation expression may be negative • IndexNegative - issued when an array index may be negative • IndexTooBig - issued when an array index may be greater than or equal to the array length public class Index { void m() { int i = 0; int j = 8/i; // Causes a ZeroDiv warning Object[] oo = new Object[i-1]; // NegSize warning oo = new Object[10]; i = oo[-1].hashCode(); // IndexNegative warning i = oo[20].hashCode(); // IndexTooBig warning } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.7/ ?? }

  8. Types of ESC/Java2 warnings ESC/Java2 warnings fall into various categories: - warnings about possible runtime exceptions: (Cast, Null, NegSize, IndexTooBig, IndexNegative, ZeroDiv, ArrayStore) - warnings about possible method specification violations: (Precondition, Postcondition, Modifies) • These are all caused by violations of explicit user-written method specifications David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.8/ ??

  9. Pre, Post warnings These warnings occur in response to user-written preconditions (requires), postconditions (ensures, signals), or assert statements. public class PrePost { //@ requires i >= 0; //@ ensures \result == i; public int m(int i); //@ ensures \result > 0; public int mm() { int j = m(-1); // Pre warning - argument must be >= 0 } //@ ensures \result > 0; public int mmm() { int j = m(0); return j; } // Post warning - result is 0 and should be > 0 } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.9/ ??

  10. Frame conditions • To reason (modularly) about a call of a method, one must know what that method might modify: this is specified by • assignable clauses //@ assignable x, o.x, this.*, o.*, a[*], a[3], a[4..5]; • modifies clauses (a synonym) • pure modifier //@ pure public int getX() { return x; } • Assignable clauses state what fields may be assigned within a method - this is the set of what might be modified • The default assignable clause is assignable \everything; (but it is better to be explicit because \everything; is not fully implemented and ESC/Java2 can reason better with more explicit frame conditions) • A pure method is assignable \nothing; David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.10/ ??

  11. Frame conditions • A Modifies warning indicates an attempt to assign to an object field that is not in a modifies clause • Note: Some violations of modifies clauses can be detected at typecheck time. • Note also: Handling of frame conditions is an active area of research. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.11/ ??

  12. Modifies warnings For example, in public class ModifiesWarning { int i; //@ assignable i; void m(/*@ non_null */ ModifiesWarning o) { i = 1; o.i = 2; // Modifies warning } } we don’t know if o equals this; since only this.i may be assigned, ESC/Java2 produces ------------------------------------------------------------------------ ModifiesWarning.java:7: Warning: Possible violation of modifies clause (Mod o.i = 2; // Modifies warning ˆ Associated declaration is "ModifiesWarning.java", line 4, col 6: //@ assignable i; ˆ ------------------------------------------------------------------------ David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.12/ ??

  13. Types of ESC/Java2 warnings ESC/Java2 warnings fall into various categories: - warnings about possible runtime exceptions: (Cast, Null, NegSize, IndexTooBig, IndexNegative, ZeroDiv, ArrayStore) - warnings about possible specification violations: (Precondition, Postcondition, Modifies) - non null violations (NonNull, NonNullInit) • These warnings relate to explicit non_null field or parameter specifications David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.13/ ??

  14. NonNullInit warning Class fields declared non_null must be initialized to values that are not null in each constructor, else a NonNullInit warning is produced. public class NonNullInit { /*@ non_null */ Object o; public NonNullInit() { } } produces ------------------------------------------------------------------------ NonNullInit.java:4: Warning: Field declared non_null possibly not initialized (NonNullInit) public NonNullInit() { } ˆ Associated declaration is "NonNullInit.java", line 2, col 6: /*@ non_null */ Object o; ˆ ------------------------------------------------------------------------ David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.14/ ??

  15. NonNull warning A NonNull warning is produced whenever an assignment is made to a field or variable that has been declared non_null but ESC/Java2 cannot determine that the right-hand-side value is not null. public class NonNull { /*@ non_null */ Object o; public void m(Object oo) { o = oo; } // NonNull warning } produces ------------------------------------------------------------------------ NonNull.java:4: Warning: Possible assignment of null to variable declared non_null (NonNull) public void m(Object oo) { o = oo; } // NonNull warning ˆ Associated declaration is "NonNull.java", line 2, col 6: /*@ non_null */ Object o; ˆ ------------------------------------------------------------------------ David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.15/ ??

  16. NonNull warning But this is OK public class NonNull { /*@ non_null */ Object o; public void m(/*@ non_null */ Object oo) { o = oo; } } So is this public class NonNull { /*@ non_null */ Object o; public void m(Object oo) { non_null can be applied to if (oo != null) o = oo; - a field } - a formal parameter } - a return value So is this - a local variable - ghost and model variables public class NonNull { /*@ non_null */ Object o; public void m() { o = new Object(); } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.16/ ??

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby presented by David Cok Systems Research Group School of Computer Science and Informatics University College Dublin ESC/Java2 by design, neither sound

628 views • 33 slides
The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph Kiniry Department of Computer Science University College Dublin ESC/Java2 ESC/Java2 is an extended static checker based upon DEC/Compaq SRC

278 views • 27 slides
ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla,

ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla,

ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla, Andreas Rau Saarland University, Germany ESC/Java2: the formula is built using Dijsktras

439 views • 43 slides
ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? The ESC/Java2 tool

489 views • 19 slides
ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? The ESC/Java2 tool

923 views • 24 slides
Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36

Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36

Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36 Outline of this tutorial formal specifcation language JML program verification using ESC/Java2 p.2/36 The Java Modeling Language JML

471 views • 36 slides
Warnings-Based Claims in Product Liability Navigating U.S. Standards for Warnings; Leveraging the

Warnings-Based Claims in Product Liability Navigating U.S. Standards for Warnings; Leveraging the

Presenting a live 90-minute webinar with interactive Q&A Warnings-Based Claims in Product Liability Navigating U.S. Standards for Warnings; Leveraging the Requirements in Litigation WEDNESDAY, APRIL 25, 2012 1pm Eastern | 12pm Central

768 views • 54 slides
-Wall found compilation errors Aditya Kumar Facebook Enable compiler warnings with -Wall

-Wall found compilation errors Aditya Kumar Facebook Enable compiler warnings with -Wall

-Wall found compilation errors Aditya Kumar Facebook Enable compiler warnings with -Wall -Werror Compiler warnings are precise static analysis tools -Wall enables most relevant compiler warnings Widely used warnings, well

917 views • 8 slides
Tobacco Package Health Warnings: International Developments and Best Practices Rob Cunningham

Tobacco Package Health Warnings: International Developments and Best Practices Rob Cunningham

Tobacco Package Health Warnings: International Developments and Best Practices Rob Cunningham UICC World Cancer Congress Aug. 30, 2012 Montreal, Canada Conclusions Use picture warnings Size as large as achievable Do not use

864 views • 68 slides
Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner

Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner

Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner Wolfgang.Schreiner@risc.uni-linz.ac.at 2. Examples Research Institute for Symbolic Computation (RISC) Johannes Kepler University, Linz, Austria

653 views • 12 slides
Security warnings Cristian Bravo-Lillo C MU U sable P rivacy and S ecurity Laboratory

Security warnings Cristian Bravo-Lillo C MU U sable P rivacy and S ecurity Laboratory

Security warnings Cristian Bravo-Lillo C MU U sable P rivacy and S ecurity Laboratory http://cups.cs.cmu.edu/ Sources : http://www.homebizseo.com 2 2 http://purpleslinky.com/humor/travel/nine-funny-warnings-signs-to-make-you-laugh/ C MU U

877 views • 34 slides
Warnings Peculiarity of the Paper: Conference Topic and Idea itself One Vote / One Share v. One

Warnings Peculiarity of the Paper: Conference Topic and Idea itself One Vote / One Share v. One

The Protection Project Regional Conference on "Corporate Social Responsibility in the Arab World" - Istanbul, Turkey Giovanni Tamburrini giovanni@solbridge.ac.kr Wenqing Zhang wzhang@solbridge.ac.kr Warnings Peculiarity of the

473 views • 15 slides
Wellbeing Manifesto for Aotearoa New Zealand Warnings At the end of this presentation I show an

Wellbeing Manifesto for Aotearoa New Zealand Warnings At the end of this presentation I show an

Wellbeing Manifesto for Aotearoa New Zealand Warnings At the end of this presentation I show an image and voice of Geoffrey Gurrumul Yunupingu who died last year. During this presentation I may say things that upset mental heath professionals.

480 views • 29 slides
Warnings: Whats Working, Whats Not Proposition 65 Clearinghouse September 23, 2019

Warnings: Whats Working, Whats Not Proposition 65 Clearinghouse September 23, 2019

Warnings: Whats Working, Whats Not Proposition 65 Clearinghouse September 23, 2019 2 Moderator: Carol Monahan-Cummings Chief Counsel, OEHHA Panel: Rachel Michelin President, California Retailers Association Judith Praitis

417 views • 15 slides
R Warnings Educational content Contains technologies that are now dead Listen at

R Warnings Educational content Contains technologies that are now dead Listen at

R Warnings Educational content Contains technologies that are now dead Listen at your own risk Algorithms and Formats for Adaptive Streaming Ali C. Begen, Streaming Artichoke Viewer Discretion is Advised The following content

948 views • 55 slides
- Pruning the SASLOG Digging into the Roots of NOTEs, WARNINGs, and ERRORs A

- Pruning the SASLOG Digging into the Roots of NOTEs, WARNINGs, and ERRORs A

- Pruning the SASLOG Digging into the Roots of NOTEs, WARNINGs, and ERRORs A clipping from the original, provided for the Toronto Area SAS Society, December 2007 Andrew T. Kuligowski The Nielsen Company Pruning the SASLOG

391 views • 18 slides
CS 10: Problem solving via Object Oriented Programming Winter

CS 10: Problem solving via Object Oriented Programming Winter

CS 10: Problem solving via Object Oriented Programming Winter 2017 Tim Pierson 260 (255) Sudikoff Day 13 PrioriHzing Agenda 1. Priority queues

439 views • 26 slides
Boolean Satisfiability Based Planning and Analysis of Planning Sections 11.5 and 11.6 Sec.

Boolean Satisfiability Based Planning and Analysis of Planning Sections 11.5 and 11.6 Sec.

Boolean Satisfiability Based Planning and Analysis of Planning Sections 11.5 and 11.6 Sec. 11.5,6 p.1/25 Outline Background and overview The Satplan algorithm Converting planning problems into Boolean formulas Solving Booelan formulas

387 views • 25 slides
Autumn 2020 Ling 5201 Syntax I 3: Basic clause structure Robert Levine Ohio State University

Autumn 2020 Ling 5201 Syntax I 3: Basic clause structure Robert Levine Ohio State University

Autumn 2020 Ling 5201 Syntax I 3: Basic clause structure Robert Levine Ohio State University levine.1@osu.edu Robert Levine 2020 5201 1 / 29 Where we left off. . . What we have: mary ; m ; NP (1) john ; j ; NP criticized ; criticize ; (

557 views • 29 slides
Reflexives and Control Constructions in Real English [Linguistics 128/228: Real English: The

Reflexives and Control Constructions in Real English [Linguistics 128/228: Real English: The

Reflexives and Control Constructions in Real English [Linguistics 128/228: Real English: The Syntax of Language Use] 1 Reflexives Kroeger, Chapter 4. Reflexives: In English, all pronouns must agree with their

626 views • 16 slides
Semantics: General Idea A semantics specifies the meaning of sentences in the language. An

Semantics: General Idea A semantics specifies the meaning of sentences in the language. An

Semantics: General Idea A semantics specifies the meaning of sentences in the language. An interpretation specifies: what objects (individuals) are in the world the correspondence between symbols in the computer and objects &

137 views • 10 slides
Admin If you are taking this course as a visiting undergraduate for this semester, you should

Admin If you are taking this course as a visiting undergraduate for this semester, you should

1 Admin If you are taking this course as a visiting undergraduate for this semester, you should have email about exam arrangements at the end of the semester. If you are taking the course and are not a visiting undergraduate, your exam

318 views • 21 slides
CS 171: Introduction to Computer Science II Methods, OO, Inheritance Li Xiong 1/30/2012 1

CS 171: Introduction to Computer Science II Methods, OO, Inheritance Li Xiong 1/30/2012 1

CS 171: Introduction to Computer Science II Methods, OO, Inheritance Li Xiong 1/30/2012 1 Announcement Eclipse/debugging lab 1/30, Monday, 5-6pm, E308 Hw1 To be assigned 1/31, Tuesday To be assigned 1/31, Tuesday Due

915 views • 46 slides
Control Flow for Selection Statements } Suppose we run this code, String s = button.getInput(); s

Control Flow for Selection Statements } Suppose we run this code, String s = button.getInput(); s

Control Flow for Selection Statements } Suppose we run this code, String s = button.getInput(); s = s.toLowerCase(); with our guess from button being TAILS , but the int flip = (int)( Math.random() * 2 + 1 ); random number comes up if (

385 views • 4 slides

More recommend