Skip to main content

Static verifier for Python 3, based on Viper.

Project description

Nagini is an automatic verifier for statically typed Python programs, based on the Viper verification infrastructure. Nagini is being developed at the Chair of Programming Methodology at ETH Zurich as part of the VerifiedSCION project.

Our CAV 2018 tool paper describing Nagini can be found here. See the Wiki for the documentation of Nagini’s specification language.

You can try a (rather slow) online version of Nagini on this website.

For use with the PyCharm IDE, try the Nagini PyCharm plugin.

Dependencies (Ubuntu Linux)

Install Java 11 or newer (64 bit) and Python 3.6 or newer (64 bit) and the required libraries:

sudo apt-get install python3-dev

For usage with Viper’s verification condition generation backend Carbon, you will also need to install Boogie.

Dependencies (Windows)

  1. Install Java 11 or newer (64 bit) and Python 3.6 or newer (64 bit).

  2. Install either Visual C++ Build Tools 2015 (http://go.microsoft.com/fwlink/?LinkId=691126) or Visual Studio 2015. For the latter, make sure to choose the option “Common Tools for Visual C++ 2015” in the setup (see https://blogs.msdn.microsoft.com/vcblog/2015/07/24/setup-changes-in-visual-studio-2015-affecting-c-developers/ for an explanation).

Getting Started

  1. Create a virtual environment:

    virtualenv --python=python3 <env>
  2. Activate it:

    source env/bin/activate
  3. Install Nagini:

    pip install nagini

    Alternatively, to get the most up-to-date version, install from source; this will require manually getting and compiling Viper (most likely the most recent development version):

    git clone https://github.com/marcoeilers/nagini.git
    cd nagini
    pip install .

Command Line Usage

To verify a specific file from the nagini directory, run:

nagini [OPTIONS] path-to-file.py

The following command line options are available:

--verifier
                Selects the Viper backend to use for verification.
                Possible options are 'silicon' (for Symbolic Execution) and 'carbon'
                (for Verification Condition Generation based on Boogie).
                Default: 'silicon'.

--select
                Select which functions/methods/classes to verify. Expects a comma-
                separated list of names.

--counterexample
                Enable outputting counterexamples for verification errors (experimental).

--z3
                Sets the path of the Z3 executable. Alternatively, the
                'Z3_EXE' environment variable can be set.

--boogie
                Sets the path of the Boogie executable. Required if the Carbon backend
                is selected. Alternatively, the 'BOOGIE_EXE' environment variable can be
                set.

--viper-jar-path
                Sets the path to the required Viper binaries ('silicon.jar' or
                'carbon.jar'). Only the binary for the selected backend is
                required. You can either use the provided binary packages installed
                by default or compile your own from source (see below).
                Expects either a single path or a colon- (Unix) or semicolon-
                (Windows) separated list of paths. Alternatively, the environment
                variables 'SILICONJAR', 'CARBONJAR' or 'VIPERJAR' can be set.

To see all possible command line options, invoke nagini without arguments.

Alternative Viper Versions

To use a more recent or custom version of the Viper infrastructure, follow the instructions here. Look for sbt assembly to find instructions for packaging the required JAR files. Use the parameters mentioned above to instruct Nagini to use your custom Viper version.

Troubleshooting

  1. On Windows: During the setup, you get an error like Microsoft Visual C++ 14.0 is required. or Unable to fnd vcvarsall.bat:

    Python cannot find the required Visual Studio 2015 C++ installation, make sure you have either installed the Build Tools or checked the “Common Tools” option in your regular VS 2015 installation (see above).

  2. While verifying a file, you get a stack trace ending with something like No matching overloads found:

    The version of Viper you’re using does not match your version of Nagini. Try updating both to the newest version.

Build Status

Build Status

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

nagini-0.8.6.tar.gz (54.8 MB view details)

Uploaded Source

Built Distribution

nagini-0.8.6-py3-none-any.whl (54.9 MB view details)

Uploaded Python 3

File details

Details for the file nagini-0.8.6.tar.gz.

File metadata

  • Download URL: nagini-0.8.6.tar.gz
  • Upload date:
  • Size: 54.8 MB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/45.2.0 requests-toolbelt/0.9.1 tqdm/4.48.0 CPython/3.8.2

File hashes

Hashes for nagini-0.8.6.tar.gz
Algorithm Hash digest
SHA256 f5735dd1eaaa9139d0e3fdb3a5d9746a3cad6fc6ccc2382e62f618c83c46a64b
MD5 8ac4dcc59b2be119dabe3b96b3c338b8
BLAKE2b-256 ac33592023f4f23034a4a9f19d872a718f17abcbb055acded781e85a4ccf8b1d

See more details on using hashes here.

File details

Details for the file nagini-0.8.6-py3-none-any.whl.

File metadata

  • Download URL: nagini-0.8.6-py3-none-any.whl
  • Upload date:
  • Size: 54.9 MB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/45.2.0 requests-toolbelt/0.9.1 tqdm/4.48.0 CPython/3.8.2

File hashes

Hashes for nagini-0.8.6-py3-none-any.whl
Algorithm Hash digest
SHA256 28b28bb0bae42141471f03e0d8bb6925b807590552668d66565b7630bf813741
MD5 b8f81c4d9f1ff78cf536b9554f80790c
BLAKE2b-256 9ebaac2b7b4d324ddd2ef1aae4d4c379e0140b34646b5fc5e29ae17230a47f9f

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page