Gillian, part i: a multi-language platform for symbolic execution

Santos, José Augusto Rodrigues dos; Maksimovic, Petar; Ayoun, Sacha-Élie; Gardner, Philippa

doi:10.1145/3385412.3386014

Cited by 16 publications

(5 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this section, we explain how we use the theory provided above to create a verified, executable instance of the memory model. We then explain how this executable model can be used to instantiate a tool called Gillian [20]. Using the instantiated tool, we demonstrate the concrete execution of CHERI-C programs with the desired behaviour.…”

Section: Applicationmentioning

confidence: 99%

“…So far, CompCert C and JavaScript have both been instantiated for Gillian, giving birth to Gillian-C and Gillian-JS. The underlying theoretical foundation of Gillian has its essential correctness properties like soundness and completeness already proven [20,29]. Thus, users who instantiate the tool only need to prove the correctness of the implementation of their compiler and memory models to ensure the correctness of the entire tool.…”

Section: Gillianmentioning

confidence: 99%

“…The executional memory model states properties a memory model must have for whole-program execution, and the compositional memory model states properties a memory model must have for separation logic based symbolic verification. Each paper in the Gillian literature states slightly different definitions for the memory models [20,28,29,37]-in Definitions 1 and 2 below, we present unified, consistent definitions for each of the memory model properties. We ignore contexts, as there exists only one context in concrete memories, which is the GIL boolean value true.…”

Section: Gillianmentioning

confidence: 99%

“…We then show, in Sect. 4.2, the practical aspects of this work by providing the memory model to, and thereby instantiating, Gillian [20], a general, parametric verifica-tion framework that supports concrete and symbolic execution and verification based on separation logic, backed by rich correctness properties. In Sect.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A Formal CHERI-C Semantics for Verification

Park

Pai

Melham

2023

Lecture Notes in Computer Science

View full text Add to dashboard Cite

CHERI-C extends the C programming language by adding hardware capabilities, ensuring a certain degree of memory safety while remaining efficient. Capabilities can also be employed for higher-level security measures, such as software compartmentalization, that have to be used correctly to achieve the desired security guarantees. As the extension changes the semantics of C, new theories and tooling are required to reason about CHERI-C code and verify correctness. In this work, we present a formal memory model that provides a memory semantics for CHERI-C programs. We present a generalised theory with rich properties suitable for verification and potentially other types of analyses. Our theory is backed by an Isabelle/HOL formalisation that also generates an OCaml executable instance of the memory model. The verified and extracted code is then used to instantiate the parametric Gillian program analysis framework, with which we can perform concrete execution of CHERI-C programs. The tool can run a CHERI-C test suite, demonstrating the correctness of our tool, and catch a good class of safety violations that the CHERI hardware might miss.

show abstract

Section: Applicationmentioning

confidence: 99%

Section: Gillianmentioning

confidence: 99%

Section: Gillianmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Formal CHERI-C Semantics for Verification

Park

Pai

Melham

2023

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…The simple, semi-formal model below omits inessential details of realistic languages (e.g., memory, see [2,5,8,11] here for details). The key point is that the ideas presented here translate to any formal system that can be described by a symbolic structural operational semantics [15].…”

Section: Conceptual Model Of a Debug Servermentioning

confidence: 99%

Deductive Verification via the Debug Adapter Protocol

Ernst

Blau

Murray

2021

Electron. Proc. Theor. Comput. Sci.

View full text Add to dashboard Cite

We propose a conceptual integration of deductive program verification into existing user interfaces for software debugging. This integration is well-represented in the "Debug Adapter Protocol", a widely-used and generic technology to integrate debugging of programs into development environments. Commands like step-forward and step-in are backed by steps of a symbolic structural operational semantics, and the different paths through a program are readily represented by multiple running threads of the debug target inside the user interface. Thus, existing IDEs can be leveraged for deductive verification debugging with relatively little effort. We have implemented this scheme for SecC, an auto-active program verifier for C, and discuss its integration into Visual Studio Code.

show abstract

Local Reasoning About the Presence of Bugs: Incorrectness Separation Logic

Raad

Berdine

Dang

et al. 2020

Computer Aided Verification

View full text Add to dashboard Cite

There has been a large body of work on local reasoning for proving the absence of bugs, but none for proving their presence . We present a new formal framework for local reasoning about the presence of bugs, building on two complementary foundations: 1) separation logic and 2) incorrectness logic. We explore the theory of this new incorrectness separation logic (ISL), and use it to derive a begin-anywhere, intra-procedural symbolic execution analysis that has no false positives by construction . In so doing, we take a step towards transferring modular, scalable techniques from the world of program verification to bug catching.

show abstract

Gillian, part i: a multi-language platform for symbolic execution

Cited by 16 publications

References 43 publications

A Formal CHERI-C Semantics for Verification

A Formal CHERI-C Semantics for Verification

Deductive Verification via the Debug Adapter Protocol

Local Reasoning About the Presence of Bugs: Incorrectness Separation Logic

Contact Info

Product

Resources

About