Typed memory management in a calculus of capabilities

Crary, Karl; Walker, David; Morrisett, Greg

doi:10.1145/292540.292564

Cited by 166 publications

(133 citation statements)

References 47 publications

Supporting

Mentioning

133

Contrasting

Order By: Relevance

“…4 Ideally, we would like to use the largest capability-respecting set, but such a set is not recursive (because it is reducible from the halting problem). Instead, we use a type system to compute a safe approximation of the set.…”

Section: Static Checking Of Capabilitiesmentioning

confidence: 99%

“…Dynamically Created Channels: Dynamically created channels can be handled in much the same way heap allocated objects are handled in the capability calculus [4] (we only show the rule for the case where c is rendezvous):…”

Section: Regionsmentioning

confidence: 99%

“…We cast our system as a capability calculus [4]. The capability calculus was originally proposed as a framework for reasoning about resources in sequential computation, but has recently been extended to reason about determinism in concurrent programs [3,11].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Capability Calculus for Concurrency and Determinism

Terauchi

Aiken

2006

CONCUR 2006 – Concurrency Theory

View full text Add to dashboard Cite

show abstract

Section: Static Checking Of Capabilitiesmentioning

confidence: 99%

Section: Regionsmentioning

confidence: 99%

See 1 more Smart Citation

A Capability Calculus for Concurrency and Determinism

Terauchi

Aiken

2006

CONCUR 2006 – Concurrency Theory

View full text Add to dashboard Cite

show abstract

“…The capability calculus [5] was originally proposed as a framework for regionbased memory management, that is, a system for guaranteeing that a deallocated region is never accessed. The capability calculus is a good framework for statically reasoning about properties of general program resources such as memory regions [5], reference cells [4], and communication channels [14].…”

Section: Introductionmentioning

confidence: 99%

“…The capability calculus is a good framework for statically reasoning about properties of general program resources such as memory regions [5], reference cells [4], and communication channels [14]. Researchers [4,13] extended the framework to fractional capabilities ( [4] called them fractional permissions), allowing (1) more flexibility by letting the capabilities range over rational numbers, which allows reasoning about concurrent reads and writes, and (2) efficient inference via a reduction to (rational) linear programming, whereas no efficient inference is known for the non-fractional calculi 1 .…”

Section: Introductionmentioning

confidence: 99%

Polymorphic Fractional Capabilities

Yasuoka

Terauchi

2009

Static Analysis

View full text Add to dashboard Cite

Abstract. The capability calculus is a framework for statically reasoning about program resources such as deallocatable memory regions. Fractional capabilities, originally proposed by Boyland for checking the determinism of parallel reads in multi-thread programs, extend the capability calculus by extending the capabilities to range over the rational numbers. Fractional capabilities have since found numerous applications, including race detection, buffer bound inference, security analyses, and separation logic. However, previous work on fractional capability systems either lacked polymorphism or lacked an efficient inference procedure. Automated inference is important for the application of the calculus to static analysis. This paper addresses the issue by presenting a polymorphic fractional capability calculus that allows polynomial-time inference via a reduction to rational linear programming.

show abstract

Syntactic Type Soundness Results for the Region Calculus

Calcagno,

Helsen,

Thiemann

2002

Information and Computation

View full text Add to dashboard Cite

The region calculus of Tofte and Talpin is a polymorphically typed lambda calculus with annotations that make memory allocation and deallocation explicit. It is intended as an intermediate language for implementing Hindley-Milner typed functional languages such as ML without traditional trace-based garbage collection. Static region and effect inference can be used to annotate a statically typed ML program with memory management primitives. Soundness of the calculus with respect to the region and effect system is crucial to guarantee safe deallocation of regions, i.e., deallocation should only take place for objects which are provably dead. The original soundness proof by Tofte and Talpin requires a complex co-inductive safety relation. In this paper, we present two small-step operational semantics for the region calculus and prove their type soundness with respect to the region and effect system. Following the standard syntactic approach of Wright, Felleisen, and Harper, we obtain simple inductive proofs. The first semantics is store-less. It is simple and elegant and gives rise to perspicuous proofs. The second semantics provides a store-based model for the region calculus. Albeit slightly more complicated, its additional expressiveness allows to model operations on references with destructive update. A pure fragment of both small-step semantics is then proven equivalent to the original big-step operational approach of Tofte and Talpin. This leads to an alternative soundness proof for their evaluation-style formulation.

show abstract

Typed memory management in a calculus of capabilities

Cited by 166 publications

References 47 publications

A Capability Calculus for Concurrency and Determinism

A Capability Calculus for Concurrency and Determinism

Polymorphic Fractional Capabilities

Syntactic Type Soundness Results for the Region Calculus

Contact Info

Product

Resources

About