Automatically Refining Partial Specifications for Program Verification

Qin, Shengchao; Luo, Chenguang; Chin, Wei-Ngan; He, Guanhua

doi:10.1007/978-3-642-21437-0_28

Cited by 10 publications

(7 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Another direction that we want to pursuit is related with inference and scalability. Although the specifications written so far have been supplied by us, recent developments [25,26,28,27] in Hip/Sleek will allow the automatic inference of properties, making our approach more scalable.…”

Section: Future Workmentioning

confidence: 99%

Automated verification of the FreeRTOS scheduler in Hip/Sleek

Ferreira

Gherghina

et al. 2014

Int J Softw Tools Technol Transfer

Self Cite

View full text Add to dashboard Cite

Automated verification of operating system kernels is a challenging problem, partly due to the use of shared mutable data structures. In this paper, we show how we can automatically verify memory safety and functional correctness properties of the task sched-uler component of the FreeRTOS kernel using the verification system Hip/Sleek. We show how some of Hip/Sleek features like user-defined predicates and lemmas make the specifications highly expressive and the verification process viable. To the best of our knowledge , this is the first code-level verification of memory safety and functional correctness properties of the FreeRTOS scheduler. The outcome of our experiment confirms that Hip/Sleek can indeed be used to verify code that is used in production. Moreover, since the properties that we verify are quite general, we envisage that the same approach can be adopted to verify components of other operating systems.

show abstract

Section: Future Workmentioning

confidence: 99%

Automated verification of the FreeRTOS scheduler in Hip/Sleek

Ferreira

Gherghina

et al. 2014

Int J Softw Tools Technol Transfer

Self Cite

View full text Add to dashboard Cite

show abstract

“…Our earlier work [20] gives a restricted form of abduction focusing on discovering pure information with the assumption that either complete or partial shape information is available. Our bi-abduction algorithm presented here generalises it to cater for full specification discovery scenarios, whereby, we do not have the hints to guide the analysis anymore due to the absence of shape information in pre/post-conditions; but at the same time we can have more freedom as to what missing information to discover.…”

Section: T)mentioning

confidence: 99%

“…Compared with these works, our approach can discover specifications with stronger invariants such as sortedness and bag-related properties, which have not been addressed in the previous works. The analyses [6,19,20] can all handle shape and numerical information over a combined domain, but require user given preconditions for the program whereas here we compute the whole specification at once. Recently, Rival and Chang [23] propose an inductive predicate to summarise call stacks along with heap structures in a context of a whole-program analysis.…”

Section: Experiments and Evaluationmentioning

confidence: 99%

Automated Specification Discovery via User-Defined Predicates

Qin

Chin

et al. 2013

Formal Methods and Software Engineering

Self Cite

View full text Add to dashboard Cite

Abstract. Automated discovery of specifications for heap-manipulating programs is a challenging task due to the complexity of aliasing and mutability of data structures. This task is further complicated by an expressive domain that combines shape, numerical and bag information. In this paper, we propose a compositional analysis framework in the presence of user-defined predicates, which would derive the summary for each method in the expressive abstract domain, independently from its callers. We propose a novel abstraction method with a biabduction technique in the combined domain to discover pre-/post-conditions that could not be automatically inferred before. The analysis does not only prove the memory safety properties, but also finds relationships between pure and shape domains towards full functional correctness of programs. A prototype of the framework has been implemented and initial experiments have shown that our approach can discover interesting properties for non-trivial programs.

show abstract

“…However, these previous analyses mainly deal with predesignated data structure properties with fixed numerical templates, such as pointer safety for lists and list length information. To analyse a wider range of properties of heap-manipulating programs with flexibility, our previous work [34] offers a template-based approach, whereby users supply shape templates in pre-/post-conditions of procedures, and then the analysis infers the missing pure information to complete the given templates. While that approach simplifies fix-point computation to a single domain, one serious limitation is that it relies on users to supply the pre-/post-shape templates.…”

Section: Introductionmentioning

confidence: 99%

Automated specification inference in a combined domain via user-defined predicates

Qin

Chin

et al. 2017

Science of Computer Programming

Self Cite

View full text Add to dashboard Cite

Discovering program specifications automatically for heap-manipulating programs is a challenging task due to the complexity of aliasing and mutability of data structures. This task is further complicated by an expressive domain that combines shape, numerical and bag information. In this paper, we propose a compositional analysis framework that would derive the summary for each method in the expressive abstract domain, independently from its callers. We propose a novel abstraction method with a bi-abduction technique in the combined domain to discover pre-/post-conditions that could not be automatically inferred before. The analysis does not only infer memory safety properties, but also finds relationships between pure and shape domains towards full functional correctness of programs. A prototype of the framework has been implemented and initial experiments have shown that our approach can discover interesting properties for non-trivial programs.

show abstract

Automatically Refining Partial Specifications for Program Verification

Cited by 10 publications

References 33 publications

Automated verification of the FreeRTOS scheduler in Hip/Sleek

Automated verification of the FreeRTOS scheduler in Hip/Sleek

Automated Specification Discovery via User-Defined Predicates

Automated specification inference in a combined domain via user-defined predicates

Contact Info

Product

Resources

About