4th International Conference on Principles and Practices ... - MADOC

More documents

Recommendations

Info

class Class { /*@non_null@*/ String attribute; Class() { attribute = "Attribute"; } void set(/*CANAPA*//*@non_null@*/ String param) { attribute = param; } } And that is exactly what our application does. There is another possible way to correct this error - it involves enclosing the assignment in if-else statement. However, it is impossible for the tool to guess what to do if param is null. 5.2 Example 2 This example shows the inference of a /*@ non_null @*/ annotation to a variable or parameter, of which a programmer invokes a method. Let's consider the following piece of code: class ClassA { public A(){} public void methodA(){} } class ClassB { public B(){} public void methodB(ClassA a){ a.methodA(); } } This code is invalid, as the parameter a of methodB could be null. So the method call a.methodA() may cause a null pointer exception. To correct the error, one should add a /*@ non_null @*/ annotation to the parameter in the methodB header. After launching our application, the code will be modied as follows: class ClassA { public A(){} public void methodA(){} } class ClassB { public B(){} public void methodB(/*CANAPA*//*@non_null@*/ClassA a){ a.methodA(); } } Of course the problem concerns not only parameters, but also variables: class Class{ public Class(){} public void method(){ String str; str.substring(1); } } The local variable str cannot be null, otherwise the method call str.substring(1) would cause a null pointer exception. The solution is to declare str as /*@ non_null @*/. CANAPA will add the appropriate annotation. Of course, the problem persists (str is uninitialized), but this time, ESC/Java2 error points the user exactly to the source of the problem. 5.3 Example 3 This example shows how a /*@ non_null @*/ annotation can be propagated to the method's result. class Class{ /*@ non_null @*/ String attribute; public Class(){ attribute = "Attribute"; } private String getString(){ return "This is a string"; } public void set(){ attribute = getString(); } } a We assign the result of getString() to attribute, which b is declared as /*@ non_null @*/. Until we are not sure that the method getString() cannot return a null, this code will be incorrect. The easiest way to solve this problem is to add /*@ non_null @*/ annotation to the result of getString(). The code modied by CANAPA will be as follows: class Class{ /*@ non_null @*/ String attribute; public Class(){ attribute = "Attribute"; } private /*@ non_null @*/ String getString(){ return "This is a string"; } public void set(){ attribute = getString(); } } 5.4 Example 4 This example shows that there are situations, when a propagation should not be done, although one could think that an annotation should be added. Consider following piece of code: class Class{ String attribute; void doSomething(){ ... /*@non_null@*/String str = attribute; } void setNull(){ attribute = null; } } One might expect that CANAPA will add an annotation to the attribute, modifying the code as follows: class Class{ /*@non_null@*/ String attribute; void doSomething(){ ... 139
*@non_null@*/ String str = attribute; } void setNull(){ attribute = null; } } After careful consideration of this code, we can see that the added annotation causes an error in an other method. Namely in the setNull() method (we will try to assign null to an attribute that was declared as non-null). This definitely would not be acceptable for most of programmers. Moreover, we claim that in such a situation it is impossible to modify the code automatically in a reasonable way. So we have decided not to add anything to class attributes. 6. SUMMARY We created CANAPA, the tool that highly reduces time and eort of eliminating null pointer exceptions in Java code. This tool automatically propagates JML non-null annotations, whenever this results from the programmer's intension. It also comes with a handy Eclipse plug-in to increase productivity. CANAPA is distributed under the GNU LESSER GENERAL PUBLIC LICENSE [10]. It is available from http://www.mimuw.edu.pl/~chrzaszcz/Canapa/. It requires a Java Runtime Environment (version 1.4) and the ESC/Java2 checker. To run the CANAPA Eclipse plug-in, version 3.1 or higher of the Eclipse environment is needed. 7. ACKNOWLEDGEMENT This work was partly supported by the Information Society Technologies programme of the European Commission, under the IST-2005-015905 MOBIUS project and Sixth Framework Marie-Curie Programme MEIF-CT-2005-024306 SOJOURN. This paper reects only the authors' views and the Community is not liable for any use that may be made of the information contained therein. 8. ADDITIONAL AUTHORS Jacek Chrz¡szcz, Institute of Informatics, Warsaw University, email: chrzaszcz@mimuw.edu.pl. Aleksy Schubert, Institute of Informatics, Warsaw University, Poland and SoS Group, Faculty of Science, University of Nijmegen, email: alx@mimuw.edu.pl. Šukasz Kami«ski, Comarch Research and Development Center, email: Lukasz.Kaminski@comarch.pl. 9. REFERENCES [1] Antlr parser generator. http://www.antlr.org/. [2] Mike Barnett, K. Rustan M. Leino, and Wolfram Schulte. The spec# programming system: An overview. In CASSIS 2004, volume 3362 of LNCS. Springer, 2004. [3] L. Burdy, Y. Cheon, D. Cok, M. Ernst, J. Kiniry, G. T. Leavens, K. R. M. Leino, and E. Poll. An overview of jml tools and applications. In T. Arts and W. Fokkink, editors, FMICS: Eighth <strong>International</strong> Workshop on Formal Methods for Industrial Critical Systems, volume 80 of Electronic Notes in Theoretical Computer Science. Elsevier Publishing, June 5-7 2003. [4] Lilian Burdy and Mariela Pavlova. Java bytecode specication and verication. In 21st Annual ACM Symposium on Applied Computing (SAC'06), Dijon, Apr 2006. ACM Press. [5] Yoonsik Cheon and Gary T. Leavens. A runtime assertion checker for the Java Modeling Language (JML). In Hamid R. Arabnia and Youngsong Mun, editors, Proceedings of the <strong>International</strong> <strong>Conference</strong> on Software Engineering Research and Practice (SERP '02), Las Vegas, Nevada, USA, June 24-27, 2002, pages 322328. CSREA Press, June 2002. [6] Code analysis for C/C++ overview. http://msdn2.microsoft.com/enus/library/d3bbz7tz.aspx. [7] David L. Detlefs, Greg Nelson, and James B. Saxe. Simplify: A theorem prover for program checking. Technical Report HPL-2003-148, HP Labs, 2003. [8] Michael D. Ernst, Je H. Perkins, Philip J. Guo, Stephen McCamant, Carlos Pacheco, Matthew S. Tschantz, and Chen Xiao. The Daikon system for dynamic detection of likely invariants. Science of Computer Programming, 2006. [9] Extended Static Checker for Java version 2. http://secure.ucd.ie/products/opensource/ESCJava2/. [10] GNU LESSER GENERAL PUBLIC LICENSE. http://www.gnu.org/copyleft/lesser.html. [11] The Java Modeling Language (JML). http://www.cs.iastate.edu/ leavens/JML//index.shtml. [12] JParse: a Java parser. http://www.ittc.ku.edu/JParse/. [13] M. Pavlova, G. Barthe, L. Burdy, M. Huisman, and J.-L. Lanet. Enforcing high-level security properties for applets. In P. Paradinas and J.-J. Quisquater, editors, Proceedings of CARDIS'04, Toulouse, France, August 2004. Kluwer Academic Publishers. [14] Static source code analysis tools for C. http://www.spinroot.com/static/. 140
Page 1 and 2:
Edited by: Ralf Gitzel, Markus Alek
Page 3 and 4:
Message from the Chairs Dear confer
Page 5 and 6:
Sam Midkiff, Purdue University (USA
Page 7 and 8:
Session F: Novel Uses of Java______
Page 10 and 11:
The Project Maxwell Assembler Syste
Page 12 and 13:
tomated assembler and disassembler
Page 14 and 15:
memory address offset mnemonic argu
Page 16 and 17:
5.2 Instruction Templates The assem
Page 18 and 19:
ange for a very short restart/debug
Page 20 and 21:
Tatoo: an innovative parser generat
Page 22 and 23:
In the grammar file an error termin
Page 24 and 25:
Figure 3: Push parsers and lexers L
Page 26 and 27:
eturn visit((Expr)p1, param); } R v
Page 28:
Session B Program and Performance A
Page 31 and 32:
Table 1: Use of interfaces and deco
Page 33 and 34:
Table 3: Comparison of the situatio
Page 35 and 36:
will trigger the creation of many n
Page 37 and 38:
Appendix A 10 9 8 7 6 5 4 3 2 1 0 1
Page 39 and 40:
Throughout this paper, we make no a
Page 41 and 42:
instrumented program and obtained t
Page 43 and 44:
Figure 5: Investigation of garbage
Page 45 and 46:
to the same category—again, this
Page 47 and 48:
Investigating Throughput Degradatio
Page 49 and 50:
Figure 1: Apache. Throughput degrad
Page 51 and 52:
Minor GC Full GC Workload # of Avg.
Page 53 and 54:
Figure 6: Comparing memory and pagi
Page 55 and 56:
GenRC on the other hand, allows the
Page 58:
Session C Mobile and Distributed Sy
Page 61 and 62:
ing a continuous buffer for raw dat
Page 63 and 64:
the data arrival speed is more impo
Page 65 and 66:
public class StreamingClient { publ
Page 67 and 68:
importance of β in our aggregation
Page 69 and 70:
Enabling Java Mobile Computing on t
Page 71 and 72:
A strongly mobile thread has the ab
Page 73 and 74:
a context switch occur. The invoked
Page 75 and 76:
above phases. Now, the new stack ha
Page 77 and 78:
5 frames 15 frames 25 frames Pure d
Page 79 and 80:
Juxta-Cat: A JXTA-based platform fo
Page 81 and 82:
Figure 1: JXTA Architecture. 3. JUX
Page 83 and 84:
• Send a discovery query to the p
Page 85 and 86:
The best candidate is then the one
Page 87 and 88:
Local Hosts=2 Hosts=4 Hosts=8 Hosts
Page 90:
Session D Resource and Object Manag
Page 93 and 94:
Enterprise Edition (J2EE). It enabl
Page 95 and 96: As pictured in Figure 4, JDOSecure
Page 97 and 98: Methods of a PersistenceManager, th
Page 99 and 100: Datenmodell abstrahiert user role,
Page 101 and 102: An Extensible Mechanism for Long-Te
Page 103 and 104: missing object references in the de
Page 105 and 106: 4.2 Mapping the name spaces of the
Page 107 and 108: (a) (b) ColorSliderPanel0 color
Page 109 and 110: 8. REFERENCES [1] Abu-Ghazaleh, N.,
Page 111 and 112: permission by process. In other wor
Page 113 and 114: The processor then refers to the en
Page 115 and 116: 1: // Protection domain 2: struct p
Page 117 and 118: Table 3: Frequency of JNI calls tha
Page 119 and 120: [13] Intel Corporation. IA-32 Intel
Page 121 and 122: 01 try { 02 ... 03 } finally { 04 t
Page 123 and 124: 2. FRAMEWORK The Framework for Unif
Page 125 and 126: ManagedInputStream ResourceGroup Ma
Page 127 and 128: 18. throw ‡ 1. release 17. cleanu
Page 129 and 130: 3. FUTURE WORK The ability to split
Page 131 and 132: 124
Page 133 and 134: UML sequence diagrams are among the
Page 135 and 136: diagrams, and behavioral (dynamic)
Page 137 and 138: the official scripting language for
Page 139 and 140: Apache's XML Graphics Project. A cu
Page 141 and 142: Java Debug Interface (JDI). In Revi
Page 143 and 144: 1.3 JML 1.3.1 Overview JML, the Jav
Page 145: The Usage of CANAPA is fairly strai
Page 149 and 150: 142
Page 151 and 152: parallel and distributed versions o
Page 153 and 154: RingElem CextendsRingElem GenPolyno
Page 155 and 156: RingElem +isZERO():bolean CextendsR
Page 157 and 158: class constructors with the actual
Page 159 and 160: plemented via a distributed hash ta
Page 161 and 162: which are common nowadays. The reus
Page 163 and 164: Derivative Contract Component Repos
Page 165 and 166: stepwise execution create Derivativ
Page 167 and 168: 5.4.1 Structural Constraints Struct
Page 169 and 170: into the conceptual foundation of n
Page 171 and 172: different implementation and is mor
Page 173 and 174: the service from the root. It allow
Page 175 and 176: model: 1. Servlet [6] adapter compo
Page 177 and 178: y possibly different service, where
Page 179 and 180: or the fact that widgets extend ser
Page 181 and 182: 174
Page 183 and 184: The idea of Java 5.0 type inference
Page 185 and 186: Source := (class | interface)∗ cl
Page 187 and 188: 5. IMPLEMENTATION In order to prese
Page 189 and 190: Infinite Streams in Java Dominik Gr
Page 191 and 192: } private static LinkedStream fibon
Page 193 and 194: of the f stream in order to compute
Page 195 and 196: Interaction among Objects via Roles
Page 197 and 198:
(a) (b) (c) (d) (e) Figure 1: The p
Page 199 and 200:
class Printer { private int totalPr
Page 201 and 202:
Experiences of using the Dagstuhl M
Page 203 and 204:
Metric Definition Java .class files
Page 205 and 206:
scription of the metric values. Non
Page 207 and 208:
Figure 1: Results from the J-vestig
Page 209 and 210:
an error is subsequently generated
Page 211 and 212:
3. BASIC TERMINOLOGY As object-orie
Page 213 and 214:
• subtyping • (implementation)
Page 215 and 216:
Improving the Quality of Programmin
Page 217 and 218:
Results of online checks (shortened
Page 219 and 220:
212
Page 221 and 222:
214
Page 223 and 224:
Experiences With Hierarchy-Based Co
Page 225 and 226:
Sub View Child DataField 0..n Ke
Page 227 and 228:
Figure 8 - Actual State Charts elem
Page 229 and 230:
associations, which may result in r
Page 231 and 232:
M3PS: A Multi-Platform P2P System B
Page 233 and 234:
In following, we will explain in de
Page 235 and 236:
Figure 10. JDP in Windows XP. Figur
Page 237 and 238:
Mapping Clouds of SOA- and Business
Page 239 and 240:
the technical SOA events (from the
Page 241 and 242:
component and the business process
Page 243 and 244:
Figure 13. “Business Value of Dat
Page 245 and 246:
Solaris of SUN. This platform provi
Page 247 and 248:
status change of an application is
Page 249 and 250:
coming up, is presently discussing
Page 251:
ISBN: 3-939352-05-5 ISBN: 978-3-939
show all

4th International Conference on Principles and Practices ... - MADOC

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?