Google Brings Design-By-Contract To Java

Posted by Soulskill on Friday February 11, 2011 @03:59AM from the putting-a-hit-out-on-bugs dept.

angry tapir writes "Google is developing a set of extensions for Java that should aid in better securing Java programs against buffer overflow attacks. Google has announced that it open sourced a project that its engineers were working on to add a new functionality into Java called Contracts, or Design-By-Contract. 'Contracts exist to check for programmer error, not for user error or environment failures. Any difference between execution with and without runtime contract checking (apart from performance) is by definition a bug. Contracts must never have side effects.'"

1 of 134 comments (clear)

Min score:

Reason:

Sort:

Re:BOf in Java? by goofy183 · 2011-02-11 04:08 · Score: 5, Informative

I think that is a poorly written summary. You can't (in pure java and ignoring JVM bugs) overflow buffers. You can however forget to do sanity checking on inputs based on the business rules of your app. That is where this will help. Codifying even simple things like "The argument should never be null" in an annotation on the interface definition helps both document and consistency for implementations of that interface.