How to Cook an Automated System for Linux Driver Verification

Хорошилов, А. В.; Mutilin, Vadim; Shcherbina, Vladislav; Strikov, Oleg; Vinogradov, Serguei V.; Zakharov, Vladimir A.

doi:10.15514/syrcose-2008-2-14

Cited by 4 publications

(6 citation statements)

References 24 publications

(19 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since the elements of the symbolic store lattice, unlike predicates, do not form a powerset domain (simply speaking, this means that this domain not always contains an element for representing the union of several other elements), this termination operator could cut off some satisfiable paths contain ing, among others, real errors. The number of such cases increased when using certain environment mod els-automatically generated main functions for the analysis of kernel drivers (see [3]). Therefore, we implemented another termination operator (stop sep) checking the termination of lattice elements of regions at each vertex separately.…”

Section: Configurable Verificationmentioning

confidence: 99%

“…To construct an open automated verifier for Linux drivers, described in [3], an industrial level tool of static analysis is required. However, the same paper describes BLAST as a tool "intended for academic research in software verification."…”

Section: Introduction Blast (The Berkeley Lazy Abstraction Softwarementioning

confidence: 99%

“…

The BLAST static verification tool is one of the open source verifiers of software written in C. The paper describes principles of BLAST implementation, the limitations revealed in the course of its prac tical use in the verification of the Linux operating system drivers, and an attempt to improve BLAST in the framework of the Linux Driver Verification (LDV) project [3].

…”

mentioning

confidence: 99%

See 2 more Smart Citations

Experience of improving the blast static verification tool

Shved

Mutilin

Mandrykin

2012

Program Comput Soft

View full text Add to dashboard Cite

show abstract

Section: Configurable Verificationmentioning

confidence: 99%

Section: Introduction Blast (The Berkeley Lazy Abstraction Softwarementioning

confidence: 99%

“…

…”

mentioning

confidence: 99%

See 1 more Smart Citation

Experience of improving the blast static verification tool

Shved

Mutilin

Mandrykin

2012

Program Comput Soft

View full text Add to dashboard Cite

show abstract

“…To build an open automated system for Linux device drivers described in [13], we needed a verification tool, and that article outlines BLAST as a tool "intended for academic research in software verification". The experiments demonstrated that its potential may spread beyond mere academic application, serving as a verification engine in an intensive driver checking workflow, as well as provide a ground for research in the domain of static analysis.…”

Section: Introductionmentioning

confidence: 99%

“…Environment models are "main" functions generated based on templates for Linux device drivers. For more see[13] 7. Predicate equality was tested via BDDs that stored them 8.…”

mentioning

confidence: 99%

Static Verification Under The Hood: Implementation Details and Improvements of BLAST

Shved¹,

Mutilin²,

Mandrykin³

2011

Proceedings of the Spring/Summer Young Researchers' Colloquium on Software Engineering

Self Cite

View full text Add to dashboard Cite

BLAST is an open-source static verification tool used in checking safety properties of C programs. Given a C program with several assertions, which should not fail at runtime, BLAST statically analyzes the program, and either returns a program execution path that leads to violation of one of the assertions, or proves that no assertion is violated. If BLAST fails to prove inreachability of assertions, it may terminate with error, or loop forever. The framework approach employed in BLAST is counterexample guided abstraction refinement (CEGAR) empowered with lazy abstraction.The first record of BLAST dates from 2002. The tool had been constantly improving until July 2008, mostly by its original creators. Beginning in 2009, we continued working on it as a part of Linux Driver Verification project.In this article we overview the current status of BLAST: outline the algorithms the CEGAR framework approach is implemented on top of, describe the heuristics used and the technical details of the implementation, and list the external components BLAST relies on. Along with this description, we outline and evaluate the improvements we made since its last release by the original BLAST team, and share our view on the further improvement of the tool.

show abstract