Verifying a Local Generic Solver in Coq

Hofmann, Martin; Karbyshev, Aleksandr; Seidl, Helmut

doi:10.1007/978-3-642-15769-1_21

Cited by 13 publications

(17 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A local solver such as [21], however, is not generic in the sense of the present paper-meaning that a naive enhancement with the operator is no longer guaranteed to return sound results. As our main contribution, we therefore present a variation of this algorithm which always returns a (partial) post solution and, moreover, is guaranteed to terminate-at least for monotonic equation systems and if only finitely many unknowns are encountered.…”

Section: Introductionmentioning

confidence: 92%

See 1 more Smart Citation

How to combine widening and narrowing for non-monotonic systems of equations

Apinis¹,

Seidl²,

Vojdani³

2013

Proceedings of the 34th ACM SIGPLAN Conference on Programming Language Design and Implementation

Self Cite

View full text Add to dashboard Cite

Non-trivial analysis problems require complete lattices with infinite ascending and descending chains. In order to compute reasonably precise post-fixpoints of the resulting systems of equations, Cousot and Cousot have suggested accelerated fixpoint iteration by means of widening and narrowing [6,7].The strict separation into phases, however, may unnecessarily give up precision that cannot be recovered later. While widening is also applicable if equations are non-monotonic, this is no longer the case for narrowing. A narrowing iteration to improve a given post-fixpoint, additionally, must assume that all right-hand sides are monotonic. The latter assumption, though, is not met in presence of widening. It is also not met by equation systems corresponding to context-sensitive interprocedural analysis, possibly combining context-sensitive analysis of local information with flow-insensitive analysis of globals [1].As a remedy, we present a novel operator that combines a given widening operator with a given narrowing operator . We present adapted versions of round-robin as well as of worklist iteration, local, and side-effecting solving algorithms for the combined operator and prove that the resulting solvers always return sound results and are guaranteed to terminate for monotonic systems whenever only finitely many unknowns (constraint variables) are encountered.

show abstract

Section: Introductionmentioning

confidence: 92%

“…One more elaborate algorithm for local solving is formalized by Hofmann et al [21], namely the solver RLD as shown in Figure 5. This algorithm has the benefit of visiting nodes in a more efficient order, first stabilizing innermost loops before iterating on outer loops.…”

Section: Example 5 the Following Equation System (Formentioning

confidence: 99%

How to combine widening and narrowing for non-monotonic systems of equations

Apinis¹,

Seidl²,

Vojdani³

2013

Proceedings of the 34th ACM SIGPLAN Conference on Programming Language Design and Implementation

Self Cite

View full text Add to dashboard Cite

show abstract

“…The provided characterization of pure functionals of type Func can be used for verification of generic off-the-shelf fixpoint algorithms which are used to compute a (local) solution of a constraint system x F x , x ∈ V , defined over a bounded join-semilattice D of abstract values and a set of variables V . The local solver RLD, which relies on self-observation, applies F to a special stateful function to discover variable dependencies and perform demand-driven evaluations [7]. In order to reason about the algorithm formally, we implement RLD in purely functional manner and model side-effects by means of the state monad.…”

Section: Verified Fixpointmentioning

confidence: 99%

“…(A → State S B) → State S C. The motivation there was rigorous verification of a generic fixpoint algorithm RLD [7] that used state. As it turns out [8], we could not use the standard notion of relational parametricity [17,18] The functional invokes its argument k to compute a result b but then discards the new state and restores the initial one instead.…”

Section: Introductionmentioning

confidence: 99%

On Monadic Parametricity of Second-Order Functionals

Bauer

Hofmann²,

Karbyshev

2013

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. How can one rigorously specify that a given ML functional f : (int → int) → int is pure, i.e., f produces no computational effects except those produced by evaluation of its functional argument? In this paper, we introduce a semantic notion of monadic parametricity for second-order functionals which is a form of purity. We show that every monadically parametric f admits a question-answer strategy tree representation. We discuss possible applications of this notion, e.g., to the verification of generic fixpoint algorithms. The results are presented in two settings: a total set-theoretic setting and a partial domain-theoretic one. All proofs are formalized by means of the proof assistant Coq.

show abstract

“…The goal, therefore, is to abandon dedicated analysis algorithms and instead provide one specification formalism together with a single solver engine to compute the invariants. Proofs of soundness are then vastly simplified as the verification task is separated into proving the constraint system correct and independently proving the correctness of a generic fixpoint engine, along the lines of [12].…”

Section: Introductionmentioning

confidence: 99%

Side-Effecting Constraint Systems: A Swiss Army Knife for Program Analysis

Apinis

Seidl

Vojdani

2012

Programming Languages and Systems

Self Cite

View full text Add to dashboard Cite

Abstract. Side-effecting constraint systems were originally introduced for the analysis of multi-threaded code [21]. In this paper, we show how formalism provides a unified framework for realizing efficient interprocedural analyses where the amount of context-sensitivity can be tweaked and where the context-sensitive analyses of local properties can be combined with flow-insensitive analyses of global properties, e.g., about the heap. Side-effecting constraint systems thus form the ideal basis for building general-purpose infrastructures for static analysis. One such infrastructure is the analyzer generator Goblint, which we used to practically evaluate this approach on real-world examples.

show abstract

Verifying a Local Generic Solver in Coq

Cited by 13 publications

References 14 publications

How to combine widening and narrowing for non-monotonic systems of equations

How to combine widening and narrowing for non-monotonic systems of equations

On Monadic Parametricity of Second-Order Functionals

Side-Effecting Constraint Systems: A Swiss Army Knife for Program Analysis

Contact Info

Product

Resources

About