Nimmer, J. W. and M. D. Ernst, Static verification of dynamically detected program invariants: Integrating daikon and ESC/Java, in: Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, 2001. 12  Home/Search   Document Details and Download   Summary   Related Articles   Check

....the instrumented program over a test suite, and inferring invariants over the instrumented values. Dynamically detected invariants can annotate a program or provide goals for static verification. These invariants, the intermediate artifacts of testing, are fed to the static checker ESC Java [22]. If the static checker finds the conditions under which the invariants collected from correct runs are invalidated, the potential faults are reported. 2.1.2 Model Checking and Testing Gunter et al. 13] claim that success for specifications will come from providing tangible benefits, such as ....

J. W. Nimmer and M. D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. Proceedings of First Workshop on Runtime Verification, July 23, 2001, Paris, France.

....the unit test. Developers can inspect the inferred invariants to know the limitations of the unit test. In our approach, only violated invariants are reported together with a concrete violating test case. Failed static verification attempts are used to indicate the deficiencies in the unit tests [15]. The unverifiable invariants indicate the unintended properties and developers can get hints on how to improve the tests. Our specification violation approach reports not only the violated invariants but also the executable counterexamples to them. When specifications are provided for a unit a ....

J. W. Nimmer and M. D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, (Paris, France), July 23, 2001

....specification inference is also constrained by the quality of the test suite for the program. Usually it is unlikely that the inferred properties are true over all possible executions. When properly applied, static verification tools can filter out false positives in the inferred specifications [8]. Different from previous applications that use the final inferred specifications from all the available tests, two recent approaches have begun to use the intermediate partial specifications inferred from a subset. Both are based on the fact that the inferred specifications may change when new ....

....the existing test suite is deficient, the inferred preconditions might be so restrictive as to filter out those legal test data inputs in Jtest test data generation and execution. This overrestrictiveness of preconditions also makes static verification of inferred specifications less effective [8]. Even if a static verifier could confirm an inferred postcondition specification given some over restrictive preconditions, it is hard to tell whether it is generalizable to the actual preconditions. To assure better quality of the unit under test, we need to exercise the unit under more ....

J. W. Nimmer and M. D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, (Paris, France), July 23, 2001.

....that can not be verified by a program verification tool is, in fact, wrong. This approach is used by the Houdini tool [9] which guesses many invariants and then uses ESC Java [10] to prune out those that do not always hold. A similar approach was used to integrate the Daikon and ESC Java tools [19]. Both tools still rely on a user to help debug specifications, because programs are buggy: an invariant that should be true (and so should be checked) may be unverifiable because of an error in the program. This paper concentrates on debugging temporal specifications. Many program verification ....

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, July 2001.

....a second case study, of Lamport s Paxos distributed consensus protocol [Lam98] and Section 6 discusses a third case study, of a strong cache for shared memory. Section 7 discusses our method, and Section 8 concludes. 2 Related work The most closely related work is that of Nimmer and Ernst [NE01, NE02a, NE02b] who also dynamically detected, than statically verified, program properties. Their system fully automatically proved absence of run time errors in single threaded Java programs using the Daikon specification generator and the ESC Java static checker. By contrast, we consider ....

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, July 23, 2001.

....and relationships detected in all executions. Invariants reported by Daikon are true for all executions in the test data, but not necessarily true of all possible program executions. Daikon has been used in conjunction with ESC Java to automatically add ESC Java annotations to Java programs [NE01]. When a static checker confirms an annotation generated by Daikon, it increases our confidence that the annotation is correct. When a static checker fails to verify an invariant detected by Daikon it often reveals interesting properties about the static checker, test data or program. Daikon was ....

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. Submitted for publication, 2001.

No context found.

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, July 23, 2001.

No context found.

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, July 23, 2001.

....checks Java code for likely errors. ESC Java understands a subset of JML annotations. The LOOP tool [37,38,40,42] assists in the formal verification of the correctness of implementations from JML specifications, using the theorem prover PVS. In addition, the Daikon dynamic invariant detector [23,72] outputs invariants for Java programs in a subset of JML, and the Korat automated testing tool [8] uses the jmlunit tool to exercise the test data it derives. In this paper, we discuss how JML meets the needs of tools for runtime assertion checking, documentation, static analysis, and ....

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification. Elsevier, July 2001. To appear in Electronic Notes in Theoretical Computer Science.

....use a combination of sound and unsound tools. Each tool by itself has serious weaknesses, but the two together address each other s weaknesses and enhance each other s strengths. 43 Acknowledgments Portions of this thesis were previously published at the First Workshop on Runtime Verification [NE01] at ISSTA 2002 [NE02a] and at FSE 2002 [NE02b] The first two works draw mainly from Chapter 4, while the last draws mainly from Chapter 5. I have been extremely lucky to have Michael Ernst as my advisor. Michael is committed to helping his students succeed, and I have been a happy beneficiary ....

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. In Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, July 23, 2001.

No context found.

Nimmer, J. W. and M. D. Ernst, Static verification of dynamically detected program invariants: Integrating daikon and ESC/Java, in: Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, 2001. 12

No context found.

J. W. Nimmer and M. D. Ernst. Static verification of dynamically detected program invariants: Integrating daikon and esc /java. In Proceedings of RV'01, First Workshop on Runtime Verification, Paris, France, July 2001.

No context found.

J. W. Nimmer and M. D. Ernst, "Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java", Proceedings of First Workshop on Runtime Verification (RV), Paris, France, July 23, 2001.

No context found.

Jeremy W. Nimmer and Michael D. Ernst. Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java. First Workshop on Runtime Verification, July, 2001.

No context found.

J. W. Nimmer and M. D. Ernst, "Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java", Proceedings of First Workshop on Runtime Verification (RV), Paris, France, July 23, 2001.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC