Extracting a data flow analyser in constructive logic

Cachera, David; Jensen, Thomas; Pichardie, David; Rusu, Vlad

doi:10.1016/j.tcs.2005.06.004

Cited by 51 publications

(56 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…All these steps are performed in the Coq proof assistant. Steps 1, 2 and 5 benefit from the framework proposed in [3] and thus no new proof is required. We only need to prove steps 3 and 4, for which the property (1) represents the core of the work: Lemma 1.…”

Section: Correctnessmentioning

confidence: 99%

“…It is meant to give an intuition for how the development of a certified analyser can be done methodologically [3] and to serve as a first guide to the site [13] from which the analyser and the Coq specification and proofs can be downloaded, compiled and tested. The formalisation of Java Card syntax and semantics is taken form an existing data flow analyser formalised in Coq [3]. The analysis consists in calculating the sets Anc, MutRecR, Pred and LoopCall that are indexed by program methods and program points.…”

Section: Coq Developmentmentioning

confidence: 99%

“…The resolution of the constraints can now be done using the iterative fix-point solver, as explained in [3]. The fix-point solver is a function of type…”

Section: Coq Developmentmentioning

confidence: 99%

“…Mechanical verification of Java analysers have so far mainly dealt with the Java byte code verifier [2,9,4]. The first exception is the work reported in [3] on formalising an interprocedural data flow analyser for Java Card, on which part of the formalisation of the present analysis is based. The framework proposed in [3] allows us to concentrate on the specification of the analysis as a set of constraints and on the correctness of this system with respect to the semantics of the language (see Section 4).…”

Section: Related Workmentioning

confidence: 99%

“…The first exception is the work reported in [3] on formalising an interprocedural data flow analyser for Java Card, on which part of the formalisation of the present analysis is based. The framework proposed in [3] allows us to concentrate on the specification of the analysis as a set of constraints and on the correctness of this system with respect to the semantics of the language (see Section 4). The lattice library and the generic solver of [3] were reused as is to extract the certified analyser.…”

Section: Related Workmentioning

confidence: 99%

See 4 more Smart Citations

Certified Memory Usage Analysis

Cachera

Jensen

Pichardie

et al. 2005

FM 2005: Formal Methods

Self Cite

View full text Add to dashboard Cite

Abstract. We present a certified algorithm for resource usage analysis, applicable to languages in the style of Java byte code. The algorithm verifies that a program executes in bounded memory. The algorithm is destined to be used in the development process of applets and for enhanced byte code verification on embedded devices. We have therefore aimed at a low-complexity algorithm derived from a loop detection algorithm for control flow graphs. The expression of the algorithm as a constraint-based static analysis of the program over simple lattices provides a link with abstract interpretation that allows to state and prove formally the correctness of the analysis with respect to an operational semantics of the program. The certification is based on an abstract interpretation framework implemented in the Coq proof assistant which has been used to provide a complete formalisation and formal verification of all correctness proofs.

show abstract

Section: Correctnessmentioning

confidence: 99%

Section: Coq Developmentmentioning

confidence: 99%

“…The resolution of the constraints can now be done using the iterative fix-point solver, as explained in [3]. The fix-point solver is a function of type…”

Section: Coq Developmentmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 3 more Smart Citations

Certified Memory Usage Analysis

Cachera

Jensen

Pichardie

et al. 2005

FM 2005: Formal Methods

Self Cite

View full text Add to dashboard Cite

show abstract

QuickChecking static analysis properties

Midtgaard

Möller

2017

Software Testing Verif & Rel

View full text Add to dashboard Cite

Abstract-A static analysis can check programs for potential errors. A natural question that arises is therefore: who checks the checker? Researchers have given this question varying attention, ranging from basic testing techniques, informal monotonicity arguments, thorough pen-and-paper soundness proofs, to verified fixed point checking. In this paper we demonstrate how quickchecking can be useful for testing a range of static analysis properties with limited effort. We show how to check a range of algebraic lattice properties, to help ensure that an implementation follows the formal specification of a lattice. Moreover, we offer a number of generic, type-safe combinators to check transfer functions and operators on lattices, to help ensure that these are, e.g., monotone, strict, or invariant. We substantiate our claims by quickchecking a type analysis for the Lua programming language.

show abstract

Formal Methods and Software Engineering

Lau¹,

Banach²

2005

Lecture Notes in Computer Science

View full text Add to dashboard Cite

This paper presents a formal verication with the Coq proof assistant of a memory model for C-like imperative languages. This model denes the memory layout and the operations that manage the memory. The model has been specied at two levels of abstraction and implemented as part of an ongoing certication in Coq of a moderatelyoptimising C compiler. Many properties of the memory have been veried in the specication. They facilitate the denition of precise formal semantics of C pointers. A certied OCaml code implementing the memory model has been automatically extracted from the specications.

show abstract

Extracting a data flow analyser in constructive logic

Cited by 51 publications

References 15 publications

Certified Memory Usage Analysis

Certified Memory Usage Analysis

QuickChecking static analysis properties

Formal Methods and Software Engineering

Contact Info

Product

Resources

About