Static Verification for Code Contracts - Microsoft

Download PDF
4 downloads 8223 Views 93KB Size Report
Comment
The Code Contracts project [3] at Microsoft Research en- ables programmers on the .NET platform to author specifications in existing languages such as C# and ...
Static Verification for Code Contracts Manuel F¨ahndrich Microsoft Research [email protected]

Abstract. The Code Contracts project [3] at Microsoft Research enables programmers on the .NET platform to author specifications in existing languages such as C# and VisualBasic. To take advantage of these specifications, we provide tools for documentation generation, runtime contract checking, and static contract verification. This talk details the overall approach of the static contract checker and examines where and how we trade-off soundness in order to obtain a practical tool that works on a full-fledged object-oriented intermediate language such as the .NET Common Intermediate Language.

1

Code Contracts

Embedding a specification language in an existing language consists of using a set of static methods to express specifications inside the body of methods [4]. string TrimSuffix ( string original , string suffix ) { 3 Contract.Requires( original ! = null ); 4 Contract.Requires( ! String .IsNullOrEmpty( suffix )); 1 2

5

Contract.Ensures(Contract. Result () ! = null ); Contract.Ensures( ! Contract. Result (). EndsWith(suffix ));

6 7 8

var result = original ; while ( result .EndsWith(suffix )) { result = result . Substring (0, result .Length − suffix .Length); } return result ;

9 10 11 12 13 14

}

The code above specifies two preconditions using calls to Contract.Requires and two postconditions using calls to Contract.Ensures. These methods have no intrinsic effect and are just used as markers in the resulting compiled code to identify the preceeding instructions as pre- or postconditions.

2

Verification Steps

Our analysis operates on the compiled .NET Common Intermediate Language [2] produced by the standard C# compiler. The verification is completely modular in that we analyze one method at a time, taking into account only the contracts of called methods. In our example, the contracts of called String methods are:

int Length { get { Contract.Ensures(Contract. Result() >= 0); } } static bool IsNullOrEmpty(string str ) { Contract.Ensures( Contract. Result() == (str == null || str.Length == 0) ); } bool EndsWith(string suffix ) { Contract.Requires( suffix ! = null ); Contract.Ensures( ! Contract. Result() || value .Length

Suggest Documents

Back and Forth: Prophecy Variables for Static Verification of ... - Microsoft

Back and Forth: Prophecy Variables for Static Verification of ... - Microsoft
Read more
Static Code Analysis for Software Security Verification: Problems and ...

Static Code Analysis for Software Security Verification: Problems and ...
Read more
Contracts, Components, and their Runtime Verification on ... - Microsoft

Contracts, Components, and their Runtime Verification on ... - Microsoft
Read more
Code of Practice for Communications Service Contracts

Code of Practice for Communications Service Contracts
Read more
Code of Practice for Communications Service Contracts

Code of Practice for Communications Service Contracts
Read more
Using CoStar's Verification Code

Using CoStar's Verification Code
Read more
static code analysis for software quality

static code analysis for software quality
Read more
Verification Guide for Customers - Download Center - Microsoft

Verification Guide for Customers - Download Center - Microsoft
Read more
Runtime verification of .NET contracts - Semantic Scholar

Runtime verification of .NET contracts - Semantic Scholar
Read more
Verification and Refinement of Action Contracts

Verification and Refinement of Action Contracts
Read more
On Verifying Resource Contracts using Code Contracts - arXiv

On Verifying Resource Contracts using Code Contracts - arXiv
Read more
On verifying resource contracts using Code Contracts - Google Sites

On verifying resource contracts using Code Contracts - Google Sites
Read more
Formal Specification and Verification of Smart Contracts for

Formal Specification and Verification of Smart Contracts for
Read more
OCL contracts for the verification of model transformations - CiteSeerX

OCL contracts for the verification of model transformations - CiteSeerX
Read more
Scalable Shape Analysis For Systems Code - Microsoft

Scalable Shape Analysis For Systems Code - Microsoft
Read more
Towards Energy Consumption Verification via Static Analysis

Towards Energy Consumption Verification via Static Analysis
Read more
Static Friction Experiments and Verification of an

Static Friction Experiments and Verification of an
Read more
Signature Verification Using Static and Dynamic Features

Signature Verification Using Static and Dynamic Features
Read more
Issues in Static Verification of Component Substitutability

Issues in Static Verification of Component Substitutability
Read more
Robust Web Services via Interaction Contracts - Microsoft

Robust Web Services via Interaction Contracts - Microsoft
Read more
Integrated Static Analysis for Linux Device Driver Verification - CiteSeerX

Integrated Static Analysis for Linux Device Driver Verification - CiteSeerX
Read more
An inference algorithm for the static verification of pointer ... - CiteSeerX

An inference algorithm for the static verification of pointer ... - CiteSeerX
Read more
An Ensemble Classifier Approach for Static Signature Verification ...

An Ensemble Classifier Approach for Static Signature Verification ...
Read more
A UML-based static verification framework for security (PDF Download ...

A UML-based static verification framework for security (PDF Download ...
Read more