Eben Cheung, profile picture
Uploaded byEben Cheung
PPT, PDF727 views

Defensive programming

The document discusses techniques for defensive programming including: 1. Using static analysis tools and assertions at compile time to catch errors early. 2. Treating warnings as errors and using tools like Pclint to detect issues like uninitialized variables. 3. Employing assertions to check for data integrity and function pre/postconditions, especially in alpha and debug versions. 4. Leveraging runtime analysis tools like Valgrind to detect issues not caught during compilation such as out-of-bounds memory accesses.

Embed presentation

Downloaded 13 times
Defensive Programming
Summary Defensive at compile time Use Static Analysis Tools Assertion Use Runtime Analysis Tools Alpha Version
Failing fast Don ‘ t Work around problems Fail immediately and vis i bly Prefer compile err to runtime err Dead Programs Tell No Lies
W arning as error Turn on all warnings (-Wall) Turn on variable argument s check (-Wformat) Treat warning as error (-Werror) Use -isystem to ignore warnings
Refine define Static cast #define FLY(pBird) static_cast<CBird*>(pBird)->Eat() So FLY(pDuck); will fail Do while(0) : limit the scope of variables in define
Pclint Variable have not been initialized new [] / delete mismatch Access out-of-bounds
Pclint walker Enhanced Error description (Chinese) Only Essential Errors, without errors that compiler can check. Automatically and recursively check all project files Easily Integrated to tools (e.g. Jenkins)
Keys of Assertion D ata invariants that ensure data integrity Pre- and postconditions that ensure function correctness No Side effect Enable In Alpha and D ebug Version R edirect o utput on Linux, or log to file
Examples of Assertion MFC assert_valid Default of switch Null pointer Index of array u32 defer u8 memory in our Sybase SDK
Valgrind Runtime Analysis Tool More Precise new [] / delete Mismatch Access out-of-bounds Uninitialized Memory
Alpha Version Enable Core and Symbol -fstack-protector-all(>gcc4.1) Enable Assert, and Crash ASAP Enable Optimize Same As Release Version Enable Runtime Analysis Tool(eg. TCMalloc heapcheck)
Reference Code complete C hapter 8 defensive programming Code craft Chapter 1 on the defensive

More Related Content

PDF
Defencive programming
byAsha Sari
 
PPTX
What is Exception Handling?
bySyed Bahadur Shah
 
PPT
Exception Handling Mechanism in .NET CLR
byKiran Munir
 
PPT
Exception handler
bydishni
 
PPTX
Presentation1
byAnul Chaudhary
 
PPT
Week7 exception handling
byAlpesh Oza
 
PPT
Understanding Exception Handling in .Net
byMindfire Solutions
 
PDF
Programming katas for Software Testers - CounterStrings
byAlan Richardson
 
Defencive programming
byAsha Sari
 
What is Exception Handling?
bySyed Bahadur Shah
 
Exception Handling Mechanism in .NET CLR
byKiran Munir
 
Exception handler
bydishni
 
Presentation1
byAnul Chaudhary
 
Week7 exception handling
byAlpesh Oza
 
Understanding Exception Handling in .Net
byMindfire Solutions
 
Programming katas for Software Testers - CounterStrings
byAlan Richardson
 

What's hot

PDF
Exception handling
byRavi Sharda
 
PPTX
Exception handling in asp.net
byNeelesh Shukla
 
PPT
Exception handling in c++ by manoj vasava
byManoj_vasava
 
PPTX
C++ ala
byMegha Patel
 
PPT
C# Exceptions Handling
bysharqiyem
 
PPTX
Exception handling
byAbhishek Pachisia
 
ODP
Exception handling in python
bybaabtra.com - No. 1 supplier of quality freshers
 
PPTX
Exception handling in c
byMemo Yekem
 
PPTX
Chapter 13 exceptional handling
byPraveen M Jigajinni
 
PDF
14 exception handling
byjigeno
 
PPTX
Exception handling in JAVA
byKunal Singh
 
PPTX
Exception handling in ASP .NET
bybaabtra.com - No. 1 supplier of quality freshers
 
PPTX
43c
bySireesh K
 
PPS
Exception handling in c programming
byRaza Najam
 
PPTX
Exception Handling in C++
byDeepak Tathe
 
PDF
Best Practices in Exception Handling
byLemi Orhan Ergin
 
PPSX
Exception Handling
byReddhi Basu
 
PPTX
Exception handling in c++
byimran khan
 
PPT
Exception handling
byIblesoft
 
PDF
Python exception handling
byMohammed Sikander
 
Exception handling
byRavi Sharda
 
Exception handling in asp.net
byNeelesh Shukla
 
Exception handling in c++ by manoj vasava
byManoj_vasava
 
C++ ala
byMegha Patel
 
C# Exceptions Handling
bysharqiyem
 
Exception handling
byAbhishek Pachisia
 
Exception handling in python
bybaabtra.com - No. 1 supplier of quality freshers
 
Exception handling in c
byMemo Yekem
 
Chapter 13 exceptional handling
byPraveen M Jigajinni
 
14 exception handling
byjigeno
 
Exception handling in JAVA
byKunal Singh
 
Exception handling in ASP .NET
bybaabtra.com - No. 1 supplier of quality freshers
 
43c
bySireesh K
 
Exception handling in c programming
byRaza Najam
 
Exception Handling in C++
byDeepak Tathe
 
Best Practices in Exception Handling
byLemi Orhan Ergin
 
Exception Handling
byReddhi Basu
 
Exception handling in c++
byimran khan
 
Exception handling
byIblesoft
 
Python exception handling
byMohammed Sikander
 

Similar to Defensive programming

PPTX
DefensiveProgramming (1).pptx
byazida3
 
PPTX
1606125427-week8.pptx
bySumbalIlyas1
 
PPTX
Software construction and development.pptx
byFaizanAli393009
 
PPT
Code Analysis-run time error prediction
byNIKHIL NAWATHE
 
PPTX
PVS-Studio, a solution for resource intensive applications development
byOOO "Program Verification Systems"
 
PPTX
Debbuging
byIama Marsian
 
PPTX
The Pragmatic Programmer
bySena Uzun
 
PPT
Assertions a Decade Later (invited talk at ICSE 2002)
byDavid Rosenblum
 
PPT
debugging (1).ppt
byjerlinS1
 
PPT
An important characteristic of a test suite that is computed by a dynamic ana...
byjeyasrig
 
PPT
PHP - Introduction to PHP Bugs - Debugging
byVibrant Technologies & Computers
 
DOCX
NDSU CSCI 717Software ConstructionDefensive Programming.docx
byvannagoforth
 
PDF
Embedded software static analysis_Polyspace-WhitePaper_final
byTAMILMARAN C
 
PDF
Secure Programming With Static Analysis
byConSanFrancisco123
 
PPT
Dependable Software Development in Software Engineering SE18
bykoolkampus
 
PDF
Detection of vulnerabilities in programs with the help of code analyzers
byPVS-Studio
 
PDF
Bug fix sharing : where does bug come from
by宇 申
 
PPTX
Static analysis: looking for errors ... and vulnerabilities?
byAndrey Karpov
 
PDF
Checking the code of Valgrind dynamic analyzer by a static analyzer
byPVS-Studio
 
PDF
security related to software program discuss how it protect and defend from s...
bykibitu
 
DefensiveProgramming (1).pptx
byazida3
 
1606125427-week8.pptx
bySumbalIlyas1
 
Software construction and development.pptx
byFaizanAli393009
 
Code Analysis-run time error prediction
byNIKHIL NAWATHE
 
PVS-Studio, a solution for resource intensive applications development
byOOO "Program Verification Systems"
 
Debbuging
byIama Marsian
 
The Pragmatic Programmer
bySena Uzun
 
Assertions a Decade Later (invited talk at ICSE 2002)
byDavid Rosenblum
 
debugging (1).ppt
byjerlinS1
 
An important characteristic of a test suite that is computed by a dynamic ana...
byjeyasrig
 
PHP - Introduction to PHP Bugs - Debugging
byVibrant Technologies & Computers
 
NDSU CSCI 717Software ConstructionDefensive Programming.docx
byvannagoforth
 
Embedded software static analysis_Polyspace-WhitePaper_final
byTAMILMARAN C
 
Secure Programming With Static Analysis
byConSanFrancisco123
 
Dependable Software Development in Software Engineering SE18
bykoolkampus
 
Detection of vulnerabilities in programs with the help of code analyzers
byPVS-Studio
 
Bug fix sharing : where does bug come from
by宇 申
 
Static analysis: looking for errors ... and vulnerabilities?
byAndrey Karpov
 
Checking the code of Valgrind dynamic analyzer by a static analyzer
byPVS-Studio
 
security related to software program discuss how it protect and defend from s...
bykibitu
 

Recently uploaded

PDF
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
PDF
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PDF
December Patch Tuesday
byIvanti
 
PPTX
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
December Patch Tuesday
byIvanti
 
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 

Defensive programming

  • 1.
  • 2.
    Summary Defensive atcompile time Use Static Analysis Tools Assertion Use Runtime Analysis Tools Alpha Version
  • 3.
    Failing fast Don‘ t Work around problems Fail immediately and vis i bly Prefer compile err to runtime err Dead Programs Tell No Lies
  • 4.
    W arning as error Turn on all warnings (-Wall) Turn on variable argument s check (-Wformat) Treat warning as error (-Werror) Use -isystem to ignore warnings
  • 5.
    Refine define Staticcast #define FLY(pBird) static_cast<CBird*>(pBird)->Eat() So FLY(pDuck); will fail Do while(0) : limit the scope of variables in define
  • 6.
    Pclint Variable havenot been initialized new [] / delete mismatch Access out-of-bounds
  • 7.
    Pclint walker EnhancedError description (Chinese) Only Essential Errors, without errors that compiler can check. Automatically and recursively check all project files Easily Integrated to tools (e.g. Jenkins)
  • 8.
    Keys of Assertion D ata invariants that ensure data integrity Pre- and postconditions that ensure function correctness No Side effect Enable In Alpha and D ebug Version R edirect o utput on Linux, or log to file
  • 9.
    Examples of Assertion MFC assert_valid Default of switch Null pointer Index of array u32 defer u8 memory in our Sybase SDK
  • 10.
    Valgrind Runtime Analysis Tool More Precise new [] / delete Mismatch Access out-of-bounds Uninitialized Memory
  • 11.
    Alpha Version EnableCore and Symbol -fstack-protector-all(>gcc4.1) Enable Assert, and Crash ASAP Enable Optimize Same As Release Version Enable Runtime Analysis Tool(eg. TCMalloc heapcheck)
  • 12.
    Reference Code complete C hapter 8 defensive programming Code craft Chapter 1 on the defensive