Cogent

Amani, Sidney; Hixon, Alex; Chen, Zilin; Rizkallah, Christine; Chubb, Peter; O’Connor, Liam; Beeren, Joel; Nagashima, Yutaka; Lim, Japheth; Sewell, Thomas; Tuong, Joseph; Keller, Gabriele; Murray, Toby; Klein, Gerwin; Heiser, Gernot

doi:10.1145/2954679.2872404

Cited by 4 publications

(1 citation statement)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Aside from the projects already discussed in this paper, several other efforts have verified parts of an OS such as hardware initialization [3], file systems [1,10,11], locking primitives [28,33], network functions [34], cryptographic primitives [5,7] etc. Even though many such verified components exist, it is not clear how they can be composed to form a complete, verified operating system with a rich contract provided to applications.…”

Section: Introductionmentioning

confidence: 99%

Beyond isolation: OS verification as a foundation for correct applications

Brun

Achermann

Chajed

et al. 2023

Proceedings of the 19th Workshop on Hot Topics in Operating Systems

View full text Add to dashboard Cite

Verified systems software has generally had to assume the correctness of the operating system and its provided services (like networking and the file system). Even though there exist verified operating systems and file systems, the specifications for these components do not compose with applications to produce a fully verified high-performance software stack.In this position paper, we lay out our vision for what it would look like to have a verified OS with verified applications, all with good multi-core performance. We've explored a part of the verification by proving a page table correct already, but the larger goal is to lay out a vision for an ambitious project that supports an application verified from its high-level specification down to the hardware.

show abstract

Section: Introductionmentioning

confidence: 99%

Beyond isolation: OS verification as a foundation for correct applications

Brun

Achermann

Chajed

et al. 2023

Proceedings of the 19th Workshop on Hot Topics in Operating Systems

View full text Add to dashboard Cite

show abstract

Separation Logic-Based Verification Atop a Binary-Compatible Filesystem Model

Mehta

Cook

2020

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Filesystems have held the interest of the formal verification community for a while, with several high-performance filesystems constructed with accompanying proofs of correctness. However, the question of verifying an existing filesystem and incorporating filesystem-specific guarantees remains unexplored, leaving those application developers underserved who need to work with a specific filesystem known to be fit for their purpose. In this work, we present an implementation of a verified filesystem which matches the specification of an existing filesystem, and with our new model AbsFAT tie it to the reasoning framework of separation logic in order to verify properties of programs which use the filesystem. This work is intended to match the target filesystem, FAT32, at a binary level and return the same data and error codes returned by mature FAT32 implementations, considered canonical. We provide a logical framework for reasoning about program behavior when filesystem calls are involved in terms of separation logic, and adapt it to simplify and automate the proof process in ACL2. By providing this framework, we encourage and facilitate greater adoption of software verification by application developers.

show abstract

Flashix: Modular Verification of a Concurrent and Crash-Safe Flash File System

Bodenmüller

Schellhorn

Bitterlich

et al. 2021

Logic, Computation and Rigorous Methods

View full text Add to dashboard Cite

The Flashix project has developed the first realistic verified file system for Flash memory. This paper gives an overview over the project and the theory used. Specification is based on modular components and subcomponents, which may have concurrent implementations connected via refinement. Functional correctness and crash-safety of each component is verified separately. We highlight some components that were recently added to improve efficiency, such as file caches and concurrent garbage collection. The project generates 18K of C code that runs under Linux. We evaluate how efficiency has improved and compare to UBIFS, the most recent flash file system implementation available for the Linux kernel.Partly supported by the Deutsche Forschungsgemeinschaft (DFG), "Verifikation von Flash-Dateisystemen" (grants RE828/13-1 and RE828/13-2).

show abstract

Cogent

Cited by 4 publications

References 31 publications

Beyond isolation: OS verification as a foundation for correct applications

Beyond isolation: OS verification as a foundation for correct applications

Separation Logic-Based Verification Atop a Binary-Compatible Filesystem Model

Flashix: Modular Verification of a Concurrent and Crash-Safe Flash File System

Contact Info

Product

Resources

About