Detecting Deadlock, Double-Free and Other Abuses in a Million Lines of Linux Kernel Source

Breuer, Peter T.; Pickin, Simon; Petrie, Maria

doi:10.1109/sew.2006.15

Cited by 4 publications

(4 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For instance, the MOPS static analyzer has been used to check security properties of a Linux distribution [23]. A recent software solution aimed at the verification of large-scale software systems is based on an approach called symbolic approximation [6]- [8]. Symbolic approximation mitigates the state space explosion problem of model checking techniques, by defining an approximate logical semantics of C programs.…”

Section: Related Workmentioning

confidence: 99%

Assurance Process for Large Open Source Code Bases

Ardagna

Banzi

Damiani

et al. 2009

2009 International Conference on Computational Science and Engineering

View full text Add to dashboard Cite

Many organizations are investigating the possibility of adopting open source software or migrating their mission critical applications to open platforms. In this context, defining an assurance process for large open source code bases has becomes of paramount importance, and can help in filling the gap with proprietary solutions.In this paper, we discuss how assurance has become a primary requirement for organizations wishing to adopt open source products. Then, we describe how bug tracking and fixing can be enriched to support a more general cycle of assurance, and we evaluate how this process can be applied to large-scale open source projects like JADE and WADE.

show abstract

Section: Related Workmentioning

confidence: 99%

Assurance Process for Large Open Source Code Bases

Ardagna

Banzi

Damiani

et al. 2009

2009 International Conference on Computational Science and Engineering

View full text Add to dashboard Cite

show abstract

“…We also use a permanent database in which to maintain and share information derived from the analysis. The system of judgments is described further in references such as [5,6,9,10].…”

Section: Strategic Problems In Open Source Verificationmentioning

confidence: 99%

“…As explained in the published material [5][6][7][8][9]11,24,12], a characteristic of GNU C (as opposed to ANSI C [1,20]) leads to choice of a more complicated state description than just a simple predicate, even for the abstract state. Definition 1 A (basic) state description consists of a predicate p and a term t. The predicate describes the extent or domain of the states being described.…”

Section: State Descriptionsmentioning

confidence: 99%

See 1 more Smart Citation

Approximate verification in an open source world

Breuer

Pickin

2008

Innovations Syst Softw Eng

Self Cite

View full text Add to dashboard Cite

This article details advances in a lightweight technology we have evolved to handle post hoc verification in the very large, uncontrolled and rapidly evolving code-bases exemplified by C language open source projects such as the Linux kernel. Successful operation in this context means timeliness, and we are currently treating millions of lines of unrestricted mixed C and assembler source code in a few hours on very modest platforms. The technology is soundly based, in that it delivers false alarms (in a ratio of about 8 to 1 in practice), rather than misses true alarms. Speed of operation is traded off against accuracy via configuration of a program logic tailored to each analysis. The program logic specification language and the theory behind it will be described here.

show abstract

Soundness and Completeness of the NRB Verification Logic

Breuer

Pickin

2014

Software Engineering and Formal Methods

Self Cite

View full text Add to dashboard Cite

This short paper gives a model for and a proof of completeness of the NRB verification logic for deterministic imperative programs, the logic having been used in the past as the basis for automated semantic checks of large, fast-changing, open source C code archives, such as that of the Linux kernel source. The model is a colored state transitions model that approximates from above the set of transitions possible for a program. Correspondingly, the logic catches all traces that may trigger a particular defect at a given point in the program, but may also flag false positives.Comment: To appear in OpenCert 2013 Workshop, Sept 23, Madrid, 15

show abstract

Detecting Deadlock, Double-Free and Other Abuses in a Million Lines of Linux Kernel Source

Cited by 4 publications

References 8 publications

Assurance Process for Large Open Source Code Bases

Assurance Process for Large Open Source Code Bases

Approximate verification in an open source world

Soundness and Completeness of the NRB Verification Logic

Contact Info

Product

Resources

About