Checking Well-Formedness of Pure-Method Specifications

Rudich, Arsenii; Darvas, Ádám; Müller, Péter

doi:10.1007/978-3-540-68237-0_7

Cited by 29 publications

(19 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The pure method can call itself if its measure decreases. Ensuring consistency of the encoding of pure methods is an active area of research [LM09,RADM08].…”

Section: Flexible Pure Methodsmentioning

confidence: 99%

See 1 more Smart Citation

Automatic verification of Java programs with dynamic frames

et al. 2010

View full text Add to dashboard Cite

Abstract. Framing in the presence of data abstraction is a challenging and important problem in the verification of object-oriented programs [LLM07]. The dynamic frames approach is a promising solution to this problem. However, the approach is formalized in the context of an idealized logical framework. In particular, it is not clear the solution is suitable for use within a program verifier for a Java-like language based on verification condition generation and automated, first-order theorem proving.In this paper, we demonstrate that the dynamic frames approach can be integrated into an automatic verifier based on verification condition generation and automated theorem proving. The approach has been proven sound and has been implemented in a verifier prototype. The prototype has been used to prove correctness of several programming patterns considered challenging in related work.

show abstract

“…The pure method can call itself if its measure decreases. Ensuring consistency of the encoding of pure methods is an active area of research [LM09,RADM08].…”

Section: Flexible Pure Methodsmentioning

confidence: 99%

“…More liberal schemes for ensuring consistency can be found in the literature (e.g. [DL07,RADM08]). The well-typedness criterion is used to ensure the program does not get stuck due to Field-and MethodNotFound errors.…”

Section: Definitionmentioning

confidence: 99%

Automatic verification of Java programs with dynamic frames

et al. 2010

View full text Add to dashboard Cite

show abstract

“…They encode pure methods and their contracts in first-order logic as uninterpreted functions and axioms respectively [20,17,34]. Checking wellformedness of pure method specifications is vital in this step, because inconsistent axiomatizations can result from unsatisfiable specifications or recursive specifications which are ill-founded [35]. A pure method call in an assertion is encoded as an application of the corresponding uninterpreted function.…”

Section: Conclusion and Related Workmentioning

confidence: 99%

Verifying Executable Object-Oriented Specifications with Separation Logic

Staden¹,

Calcagno²,

Meyer³

2010

ECOOP 2010 – Object-Oriented Programming

View full text Add to dashboard Cite

Abstract. Specifications of Object-Oriented programs conventionally employ Boolean expressions of the programming language for assertions. Programming errors can be discovered by checking at runtime whether an assertion, such as a precondition or class invariant, holds. In this work, we show how separation logic can be used to verify that these executable specifications will always hold at runtime. Both the program and its executable assertions are verified with respect to separation logic specifications. A novel notion called relative purity embraces historically problematic side-effects in executable specifications, and verification boils down to proving connecting implications. Even model-based specifications can be verified. The framework is also well-suited to separation logic proof tools and now implemented in jStar. Numerous automatically verified examples illustrate the framework's use and utility.

show abstract

“…Our implementation extends the Spec# verification tool [5] by a new module that performs well-definedness and well-foundedness checks on specifications using the Y procedure. Details of the technique applied in the well-formedness checker are described in [26]. Additionally, in order to be able to compare the different procedures, we have built a prototype that implements the D, L, and Y procedures for the syntax given in Figure 1.…”

Section: Implementation and Empirical Resultsmentioning

confidence: 99%

“…We have implemented the new procedure in the Spec# verification tool [5] in the context of the well-formedness checking of method specifications [26]. We have compared our procedure with D and L using two automated theorem provers.…”

Section: Introductionmentioning

confidence: 99%

Efficient Well-Definedness Checking

Darvas

Mehta

Rudich

Automated Reasoning

Self Cite

View full text Add to dashboard Cite

Abstract. Formal specifications often contain partial functions that may lead to ill-defined terms. A common technique to eliminate illdefined terms is to require well-definedness conditions to be proven. The main advantage of this technique is that it allows us to reason in a twovalued logic even if the underlying specification language has a threevalued semantics. Current approaches generate well-definedness conditions that grow exponentially with respect to the input formula. As a result, many tools prove shorter, but stronger approximations of these well-definedness conditions instead. We present a procedure which generates well-definedness conditions that grow linearly with respect to the input formula. The procedure has been implemented in the Spec# verification tool. We also present empirical results that demonstrate the improvements made.

show abstract

Checking Well-Formedness of Pure-Method Specifications

Cited by 29 publications

References 19 publications

Automatic verification of Java programs with dynamic frames

Automatic verification of Java programs with dynamic frames

Verifying Executable Object-Oriented Specifications with Separation Logic

Efficient Well-Definedness Checking

Contact Info

Product

Resources

About