esc java2 warnings
play

ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman - PowerPoint PPT Presentation

Sep 29, 2022 •787 likes •1.15k views

ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? Types of ESC/Java2

  1. ESC/Java2 Warnings David Cok, Joe Kiniry, and Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.1/ ??

  2. Types of ESC/Java2 warnings ESC/Java2 warnings fall into various categories: - warnings about possible runtime exceptions: (Cast, Null, NegSize, IndexTooBig, IndexNegative, ZeroDiv, ArrayStore) • These are the most common runtime exceptions caused by coding problems (that is, not by explicitly throwing an exception) • They do not include nearly all of the possible runtime exceptions • Most of the others are explicitly thrown by various library methods David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.2/ ??

  3. Cast Warning The Cast warning occurs when ESC/Java2 cannot verify that a ClassCastException will not be thrown: public class CastWarning { public void m(Object o) { String s = (String)o; } } results in ------------------------------------------------------------------------ CastWarning.java:3: Warning: Possible type cast error (Cast) String s = (String)o; ˆ ------------------------------------------------------------------------ But this is OK: public class CastWarningOK { public void m(Object o) { if (o instanceof String) { String s = (String)o; } } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.3/ ??

  4. Cast Warning So is this: public class CastWarningOK2 { //@ requires o instanceof String; public void m(Object o) { String s = (String)o; } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.4/ ??

  5. Null Warning The Null warning occurs when ESC/Java2 cannot verify that a NullPointerException will not be thrown: public class NullWarning { public void m(Object o) { int i = o.hashCode(); } } results in ------------------------------------------------------------------------ NullWarning.java:3: Warning: Possible null dereference (Null) int i = o.hashCode(); ˆ ------------------------------------------------------------------------ But this is OK: public class NullWarningOK { public void m(/*@ non_null */ Object o) { int i = o.hashCode(); } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.5/ ??

  6. ArrayStore Warning The ArrayStore warning occurs when ESC/Java2 cannot verify that the assignment of an object to an array element will not result in an ArrayStoreException: public class ArrayStoreWarning { public void m(Object o) { Object[] s = new String[10]; s[0] = o; } } results in ------------------------------------------------------------------------ ArrayStoreWarning.java:4: Warning: Type of right-hand side possibly not a subtype of array element type (ArrayStore) s[0] = o; ˆ ------------------------------------------------------------------------ But this is OK: public class ArrayStoreWarningOK { public void m(Object o) { Object[] s = new String[10]; if (o instanceof String) s[0] = o; } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.6/ ??

  7. ZeroDiv, index Warnings • ZeroDiv - issued when a denominator (integer division) may be 0 • NegSize - issued when the array size in an array allocation expression may be negative • IndexNegative - issued when an array index may be negative • IndexTooBig - issued when an array index may be greater than or equal to the array length public class Index { void m() { int i = 0; int j = 8/i; // Causes a ZeroDiv warning Object[] oo = new Object[i-1]; // NegSize warning oo = new Object[10]; i = oo[-1].hashCode(); // IndexNegative warning i = oo[20].hashCode(); // IndexTooBig warning } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.7/ ?? }

  8. Types of ESC/Java2 warnings ESC/Java2 warnings fall into various categories: - warnings about possible runtime exceptions: (Cast, Null, NegSize, IndexTooBig, IndexNegative, ZeroDiv, ArrayStore) - warnings about possible method specification violations: (Precondition, Postcondition, Modifies) • These are all caused by violations of explicit user-written method specifications David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.8/ ??

  9. Pre, Post warnings These warnings occur in response to user-written preconditions (requires), postconditions (ensures, signals), or assert statements. public class PrePost { //@ requires i >= 0; //@ ensures \result == i; public int m(int i); //@ ensures \result > 0; public int mm() { int j = m(-1); // Pre warning - argument must be >= 0 } //@ ensures \result > 0; public int mmm() { int j = m(0); return j; } // Post warning - result is 0 and should be > 0 } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.9/ ??

  10. Frame conditions • To reason (modularly) about a call of a method, one must know what that method might modify: this is specified by • assignable clauses //@ assignable x, o.x, this.*, o.*, a[*], a[3], a[4..5]; • modifies clauses (a synonym) • pure modifier //@ pure public int getX() { return x; } • Assignable clauses state what fields may be assigned within a method - this is the set of what might be modified • The default assignable clause is assignable \everything; (but it is better to be explicit because \everything; is not fully implemented and ESC/Java2 can reason better with more explicit frame conditions) • A pure method is assignable \nothing; David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.10/ ??

  11. Frame conditions • A Modifies warning indicates an attempt to assign to an object field that is not in a modifies clause • Note: Some violations of modifies clauses can be detected at typecheck time. • Note also: Handling of frame conditions is an active area of research. David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.11/ ??

  12. Modifies warnings For example, in public class ModifiesWarning { int i; //@ assignable i; void m(/*@ non_null */ ModifiesWarning o) { i = 1; o.i = 2; // Modifies warning } } we don’t know if o equals this; since only this.i may be assigned, ESC/Java2 produces ------------------------------------------------------------------------ ModifiesWarning.java:7: Warning: Possible violation of modifies clause (Mod o.i = 2; // Modifies warning ˆ Associated declaration is "ModifiesWarning.java", line 4, col 6: //@ assignable i; ˆ ------------------------------------------------------------------------ David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.12/ ??

  13. Types of ESC/Java2 warnings ESC/Java2 warnings fall into various categories: - warnings about possible runtime exceptions: (Cast, Null, NegSize, IndexTooBig, IndexNegative, ZeroDiv, ArrayStore) - warnings about possible specification violations: (Precondition, Postcondition, Modifies) - non null violations (NonNull, NonNullInit) • These warnings relate to explicit non_null field or parameter specifications David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.13/ ??

  14. NonNullInit warning Class fields declared non_null must be initialized to values that are not null in each constructor, else a NonNullInit warning is produced. public class NonNullInit { /*@ non_null */ Object o; public NonNullInit() { } } produces ------------------------------------------------------------------------ NonNullInit.java:4: Warning: Field declared non_null possibly not initialized (NonNullInit) public NonNullInit() { } ˆ Associated declaration is "NonNullInit.java", line 2, col 6: /*@ non_null */ Object o; ˆ ------------------------------------------------------------------------ David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.14/ ??

  15. NonNull warning A NonNull warning is produced whenever an assignment is made to a field or variable that has been declared non_null but ESC/Java2 cannot determine that the right-hand-side value is not null. public class NonNull { /*@ non_null */ Object o; public void m(Object oo) { o = oo; } // NonNull warning } produces ------------------------------------------------------------------------ NonNull.java:4: Warning: Possible assignment of null to variable declared non_null (NonNull) public void m(Object oo) { o = oo; } // NonNull warning ˆ Associated declaration is "NonNull.java", line 2, col 6: /*@ non_null */ Object o; ˆ ------------------------------------------------------------------------ David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.15/ ??

  16. NonNull warning But this is OK public class NonNull { /*@ non_null */ Object o; public void m(/*@ non_null */ Object oo) { o = oo; } } So is this public class NonNull { /*@ non_null */ Object o; public void m(Object oo) { non_null can be applied to if (oo != null) o = oo; - a field } - a formal parameter } - a return value So is this - a local variable - ghost and model variables public class NonNull { /*@ non_null */ Object o; public void m() { o = new Object(); } } David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial – p.16/ ??

Recommend

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby

Soundness and Completeness Warnings in ESC/Java2 Joe Kiniry, Alan Morkan, and Barry Denby presented by David Cok Systems Research Group School of Computer Science and Informatics University College Dublin ESC/Java2 by design, neither sound

628 views • 33 slides
The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph Kiniry Department of Computer Science University College Dublin ESC/Java2 ESC/Java2 is an extended static checker based upon DEC/Compaq SRC

278 views • 27 slides
ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla,

ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla,

ESC/Java2 vs. JMLForge Juan Pablo Galeotti, Alessandra Gorla, Andreas Rau Saarland University, Germany ESC/Java2: the formula is built using Dijsktras

439 views • 43 slides
ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? The ESC/Java2 tool

489 views • 19 slides
ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University

ESC/Java2 Use and Features David Cok, Joe Kiniry, Erik Poll Eastman Kodak Company, University College Dublin, and Radboud University Nijmegen David Cok, Joe Kiniry & Erik Poll - ESC/Java2 & JML Tutorial p.1/ ?? The ESC/Java2 tool

923 views • 24 slides
Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36

Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36

Program Verification using JML and ESC/Java2 Erik Poll Radboud University Nijmegen p.1/36 Outline of this tutorial formal specifcation language JML program verification using ESC/Java2 p.2/36 The Java Modeling Language JML

471 views • 36 slides
Warnings-Based Claims in Product Liability Navigating U.S. Standards for Warnings; Leveraging the

Warnings-Based Claims in Product Liability Navigating U.S. Standards for Warnings; Leveraging the

Presenting a live 90-minute webinar with interactive Q&A Warnings-Based Claims in Product Liability Navigating U.S. Standards for Warnings; Leveraging the Requirements in Litigation WEDNESDAY, APRIL 25, 2012 1pm Eastern | 12pm Central

768 views • 54 slides
-Wall found compilation errors Aditya Kumar Facebook Enable compiler warnings with -Wall

-Wall found compilation errors Aditya Kumar Facebook Enable compiler warnings with -Wall

-Wall found compilation errors Aditya Kumar Facebook Enable compiler warnings with -Wall -Werror Compiler warnings are precise static analysis tools -Wall enables most relevant compiler warnings Widely used warnings, well

917 views • 8 slides
Tobacco Package Health Warnings: International Developments and Best Practices Rob Cunningham

Tobacco Package Health Warnings: International Developments and Best Practices Rob Cunningham

Tobacco Package Health Warnings: International Developments and Best Practices Rob Cunningham UICC World Cancer Congress Aug. 30, 2012 Montreal, Canada Conclusions Use picture warnings Size as large as achievable Do not use

864 views • 68 slides
Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner

Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner

Extended Static Checking with ESC/Java2 1. Overview Wolfgang Schreiner Wolfgang.Schreiner@risc.uni-linz.ac.at 2. Examples Research Institute for Symbolic Computation (RISC) Johannes Kepler University, Linz, Austria

653 views • 12 slides
Security warnings Cristian Bravo-Lillo C MU U sable P rivacy and S ecurity Laboratory

Security warnings Cristian Bravo-Lillo C MU U sable P rivacy and S ecurity Laboratory

Security warnings Cristian Bravo-Lillo C MU U sable P rivacy and S ecurity Laboratory http://cups.cs.cmu.edu/ Sources : http://www.homebizseo.com 2 2 http://purpleslinky.com/humor/travel/nine-funny-warnings-signs-to-make-you-laugh/ C MU U

877 views • 34 slides
Warnings Peculiarity of the Paper: Conference Topic and Idea itself One Vote / One Share v. One

Warnings Peculiarity of the Paper: Conference Topic and Idea itself One Vote / One Share v. One

The Protection Project Regional Conference on "Corporate Social Responsibility in the Arab World" - Istanbul, Turkey Giovanni Tamburrini giovanni@solbridge.ac.kr Wenqing Zhang wzhang@solbridge.ac.kr Warnings Peculiarity of the

473 views • 15 slides
Wellbeing Manifesto for Aotearoa New Zealand Warnings At the end of this presentation I show an

Wellbeing Manifesto for Aotearoa New Zealand Warnings At the end of this presentation I show an

Wellbeing Manifesto for Aotearoa New Zealand Warnings At the end of this presentation I show an image and voice of Geoffrey Gurrumul Yunupingu who died last year. During this presentation I may say things that upset mental heath professionals.

480 views • 29 slides
Warnings: Whats Working, Whats Not Proposition 65 Clearinghouse September 23, 2019

Warnings: Whats Working, Whats Not Proposition 65 Clearinghouse September 23, 2019

Warnings: Whats Working, Whats Not Proposition 65 Clearinghouse September 23, 2019 2 Moderator: Carol Monahan-Cummings Chief Counsel, OEHHA Panel: Rachel Michelin President, California Retailers Association Judith Praitis

417 views • 15 slides
R Warnings Educational content Contains technologies that are now dead Listen at

R Warnings Educational content Contains technologies that are now dead Listen at

R Warnings Educational content Contains technologies that are now dead Listen at your own risk Algorithms and Formats for Adaptive Streaming Ali C. Begen, Streaming Artichoke Viewer Discretion is Advised The following content

948 views • 55 slides
- Pruning the SASLOG Digging into the Roots of NOTEs, WARNINGs, and ERRORs A

- Pruning the SASLOG Digging into the Roots of NOTEs, WARNINGs, and ERRORs A

- Pruning the SASLOG Digging into the Roots of NOTEs, WARNINGs, and ERRORs A clipping from the original, provided for the Toronto Area SAS Society, December 2007 Andrew T. Kuligowski The Nielsen Company Pruning the SASLOG

391 views • 18 slides
Warnings for this talk Software, not the disaster. Earthquake 22 February 2011 12:51pm

Warnings for this talk Software, not the disaster. Earthquake 22 February 2011 12:51pm

Warnings for this talk Software, not the disaster. Earthquake 22 February 2011 12:51pm It's bad.. 185 :deaths 15002000 injuries Social Media I am Okay. One update, reaches everyone. One Tweet. One Facebook

1.11k views • 85 slides
Cause-Effect Pairs http://www.kaggle.com/c/cause-effect-pairs/ Goals: Introduction to the

Cause-Effect Pairs http://www.kaggle.com/c/cause-effect-pairs/ Goals: Introduction to the

In [1]: import numpy as np import pandas as pd import os import warnings import time warnings.simplefilter("ignore") In [2]: from sklearn.svm import SVR from sklearn.linear_model import SGDRegressor, LinearRegression from sklearn.tree

471 views • 17 slides
Getting the Message Across - Sharing Warnings Dr Renato Iannella Principal Scientist

Getting the Message Across - Sharing Warnings Dr Renato Iannella Principal Scientist

OASIS/ITU Workshop and Demonstration of Advances in ICT Standards for Public Warning 19-20 October 2006, Geneva, Switzerland Getting the Message Across - Sharing Warnings Dr Renato Iannella Principal Scientist renato@nicta.com.au NICTA SAFE

499 views • 33 slides
Public warnings on public displays Presentation to the W3C Workshop on Web-based Signage The

Public warnings on public displays Presentation to the W3C Workshop on Web-based Signage The

Public warnings on public displays Presentation to the W3C Workshop on Web-based Signage The Ericsson interest Ericsson has a vision about the networked society Where connectivity helps you make sense and more of your world

105 views • 10 slides
Introduction to GDB Here We Start Crashes, errors and warnings are part of a C programmers

Introduction to GDB Here We Start Crashes, errors and warnings are part of a C programmers

Introduction to GDB Here We Start Crashes, errors and warnings are part of a C programmers life Debugger allows the programmer to take a look at the program in execution to deduce the cause of crashes and erroneous results Debugger

595 views • 13 slides
Securing Social Media Admissions: Investigative Strategies, Spoliation Warnings, Use of Subpoenas

Securing Social Media Admissions: Investigative Strategies, Spoliation Warnings, Use of Subpoenas

Presenting a 90-Minute Encore Presentation of the Webinar with Live, Interactive Q&A Securing Social Media Admissions: Investigative Strategies, Spoliation Warnings, Use of Subpoenas to Obtain Evidence Finding and Obtaining Admissions by

447 views • 32 slides
Empirical Evidence on The Role of Public Warnings on Physicians Drug Prescriptions Behavior

Empirical Evidence on The Role of Public Warnings on Physicians Drug Prescriptions Behavior

Empirical Evidence on The Role of Public Warnings on Physicians Drug Prescriptions Behavior Pierre Dubois and Tuba Tunel Toulouse School of Economics Harvard Center for Risk Analysis Risk, Perception, and Response Conference March 21, 2014

566 views • 41 slides
Naming Storms What will winter 2015/16 bring? Keeping up to date with forecasts Keeping up

Naming Storms What will winter 2015/16 bring? Keeping up to date with forecasts Keeping up

Weather Warnings Mark Rogers, Met Office Advisor (Civil Contingencies) Content Keeping up to date with forecasts Weather Warnings Monitoring Flood Risk Get Ready for Winter Campaign Naming Storms What will winter 2015/16

652 views • 36 slides

More recommend