The pointer assertion logic engine

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

The pointer assertion logic engine

Full text

Pdf (1.43 MB)

Source

Conference on Programming Language Design and Implementation archive
Proceedings of the ACM SIGPLAN 2001 conference on Programming language design and implementation table of contents

Snowbird, Utah, United States

Pages: 221 - 231

Year of Publication: 2001

ISBN:1-58113-414-2

Also published in ...

Authors

Anders Møller	BRICS, Department of Computer Science, University of Aarhus, Denmark
Michael I. Schwartzbach	BRICS, Department of Computer Science, University of Aarhus, Denmark

Sponsor

SIGPLAN: ACM Special Interest Group on Programming Languages

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 2, Downloads (12 Months): 31, Citation Count: 27

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/378795.378851 What is a DOI?

ABSTRACT

We present a new framework for verifying partial specifications of programs in order to catch type and memory errors and check data structure invariants. Our technique can verify a large class of data structures, namely all those that can be expressed as graph types. Earlier versions were restricted to simple special cases such as lists or trees. Even so, our current implementation is as fast as the previous specialized tools.

Programs are annotated with partial specifications expressed in Pointer Assertion Logic, a new notation for expressing properties of the program store. We work in the logical tradition by encoding the programs and partial specifications as formulas in monadic second-order logic. Validity of these formulas is checked by the MONA tool, which also can provide explicit counterexamples to invalid formulas.

To make verification decidable, the technique requires explicit loop and function call invariants. In return, the technique is highly modular: every statement of a given program is analyzed only once.

The main target applications are safety-critical data-type algorithms, where the cost of annotating a program with invariants is justified by the value of being able to automatically verify complex properties of the program.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Krzysztof R. Apt, Ten Years of Hoare's Logic: A Survey—Part I, ACM Transactions on Programming Languages and Systems (TOPLAS), v.3 n.4, p.431-483, Oct. 1981 [doi>10.1145/357146.357150]
	2	Thomas Ball , Sriram K. Rajamani, Bebop: A Symbolic Model Checker for Boolean Programs, Proceedings of the 7th International SPIN Workshop on SPIN Model Checking and Software Verification, p.113-130, August 30-September 01, 2000
	3	Michael Benedikt , Thomas W. Reps , Shmuel Sagiv, A Decidable Logic for Describing Linked Data Structures, Proceedings of the 8th European Symposium on Programming Languages and Systems, p.2-19, March 22-28, 1999
	4	Morten Biehl , Nils Klarlund , Theis Rauhe, Algorithms for Guided Tree Automata, Revised Papers from the First International Workshop on Implementing Automata, p.6-25, August 29-31, 1996
	5	Paul E. Black , Phillip J. Windley, Inference Rules for Programming Languages with Side Effects in Expressions, Proceedings of the 9th International Conference on Theorem Proving in Higher Order Logics, p.51-60, August 26-30, 1996
	6	Randal E. Bryant, Graph-based algorithms for Boolean function manipulation, IEEE Transactions on Computers, v.35 n.8, p.677-691, Aug. 1986 [doi>10.1109/TC.1986.1676819]
	7	William R. Bush , Jonathan D. Pincus , David J. Sielaff, A static analyzer for finding dynamic programming errors, Software—Practice & Experience, v.30 n.7, p.775-802, June 2000 [doi>10.1002/(SICI)1097-024X(200006)30:7<775::AID-SPE309>3.0.CO;2-H]
	8	Stephen A. Cook , Derek C. Oppen, An assertion language for data structures, Proceedings of the 2nd ACM SIGACT-SIGPLAN symposium on Principles of programming languages, p.160-166, January 20-22, 1975, Palo Alto, California [doi>10.1145/512976.512993]
	9	James C. Corbett , Matthew B. Dwyer , John Hatcliff , Robby, A Language Framework for Expressing Checkable Properties of Dynamic Software, Proceedings of the 7th International SPIN Workshop on SPIN Model Checking and Software Verification, p.205-223, August 30-September 01, 2000
	10	Thomas T. Cormen , Charles E. Leiserson , Ronald L. Rivest, Introduction to algorithms, MIT Press, Cambridge, MA, 1990
	11	Patric Cousot. Formal models and semantics. In J. van Leeuwen, editor, Handbook of Theoretical Computer Science volume B, pages 841-993. MIT Press/Elsevier, 1990.
	12	David L. Detlefs, K. Rustan M. Leino, Greg Nelson, and James B. Saxe. Extended static checking. Research Report 159, Compaq Systems Research Center, December, 1998.
	13	Nurit Dor , Michael Rodeh , Shmuel Sagiv, Checking Cleanness in Linked Lists, Proceedings of the 7th International Symposium on Static Analysis, p.115-134, June 29-July 01, 2000
	14	Jacob Elgaard , Anders Møller , Michael I. Schwartzbach, Compile-Time Debugging of C Programs Working on Trees, Proceedings of the 9th European Symposium on Programming Languages and Systems, p.119-134, April 02, 2000
	15	David Evans, Static detection of dynamic memory errors, Proceedings of the ACM SIGPLAN 1996 conference on Programming language design and implementation, p.44-53, May 21-24, 1996, Philadelphia, Pennsylvania, United States
	16	Robert W. Floyd. Assigning meanings to programs. Mathematical Aspects of Computer Science, American Math. Soc., 1967.
	17	Pascal Fradet , Ronan Caugne , Daniel Le Métayer, Static Detection of Pointer Errors: An Axiomatisation and a Checking Algorithm, Proceedings of the 6th European Symposium on Programming Languages and Systems, p.125-140, April 22-24, 1996
	18	Pascal Fradet , Daniel Le Métayer, Shape types, Proceedings of the 24th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, p.27-39, January 15-17, 1997, Paris, France [doi>10.1145/263699.263706]
	19	David Gries, The Science of Programming, Springer-Verlag New York, Inc., Secaucus, NJ, 1987
	20	Klaus Havelund and Thomas Pressburger. Model checking Java programs using Java Path Finder. International Journal on Software Tools for Technology Transf er 2(4), April 2000.
	21	Laurie J. Hendren , Joseph Hummell , Alexandru Nicolau, Abstractions for recursive pointer data structures: improving the analysis and transformation of imperative programs, Proceedings of the ACM SIGPLAN 1992 conference on Programming language design and implementation, p.249-260, June 15-19, 1992, San Francisco, California, United States
	22	C. A. R. Hoare, An axiomatic basis for computer programming, Communications of the ACM, v.12 n.10, p.576-580, Oct. 1969 [doi>10.1145/363235.363259]
	23	Daniel Jackson , Mandana Vaziri, Finding bugs with a constraint solver, Proceedings of the 2000 ACM SIGSOFT international symposium on Software testing and analysis, p.14-25, August 21-24, 2000, Portland, Oregon, United States
	24	Jakob L. Jensen , Michael E. Jørgensen , Michael I. Schwartzbach , Nils Klarlund, Automatic verification of pointer programs using monadic second-order logic, Proceedings of the ACM SIGPLAN 1997 conference on Programming language design and implementation, p.226-234, June 16-18, 1997, Las Vegas, Nevada, United States
	25	Nils Klarlund, Mona & Fido: The Logic-Automaton Connection in Practice, Selected Papers from the11th International Workshop on Computer Science Logic, p.311-326, August 23-29, 1997
	26	Nils Klarlund and Anders Moller. MONA Version 1.4 User Manual BRICS Notes Series NS-01-1, Department of Computer Science, University of Aarhus, January 2001.
	27	Nils Klarlund , Anders Møller , Michael I. Schwartzbach, MONA Implementation Secrets, Revised Papers from the 5th International Conference on Implementation and Application of Automata, p.182-194, July 24-25, 2000
	28	Nils Klarlund , Michael I. Schwartzbach, Graph types, Proceedings of the 20th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, p.196-205, March 1993, Charleston, South Carolina, United States [doi>10.1145/158511.158628]
	29	Nils Klarlund , Michael I. Schwartzbach, Graphs and Decidable Transductions Based on Edge Constraints (Extended Abstract), Proceedings of the 19th International Colloquium on Trees in Algebra and Programming, p.187-201, April 11-13, 1994
	30	Nils Klarlund , Michael L. Schwartzbach, A Domain-Specific Language for Regular Sets of Strings and Trees, IEEE Transactions on Software Engineering, v.25 n.3, p.378-386, May 1999 [doi>10.1109/32.798326]
	31	Tal Lev-Ami , Thomas Reps , Mooly Sagiv , Reinhard Wilhelm, Putting static analysis to work for verification: A case study, Proceedings of the 2000 ACM SIGSOFT international symposium on Software testing and analysis, p.26-38, August 21-24, 2000, Portland, Oregon, United States
	32	Tal Lev-Ami , Shmuel Sagiv, TVLA: A System for Implementing Static Analyses, Proceedings of the 7th International Symposium on Static Analysis, p.280-301, June 29-July 01, 2000
	33	Albert R. Meyer. Wea monadic second-order theory of successor is not elementary recursive. In R. Parikh, editor, Logic Colloquium, (Proc. Symposium on Logic, Boston, 1972), volume 453 of LNCS pages 132-154, 1975.
	34	Anders Moller. MONA project home page. www.brics.dk/mona
	35	Anders Moller. PALE project home page. www.brics.dk/PALE
	36	Joseph M. Morris. A general axiom of assignment. In Theoretical Foundations of Programming Methodology 1982.
	37	John C. Reynolds. Intuitionistic reasoning about shared mutable data structure. In Millennial Perspectives in Computer Science 2000.
	38	Mooly Sagiv , Thomas Reps , Reinhard Wilhelm, Parametric shape analysis via 3-valued logic, Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, p.105-118, January 20-22, 1999, San Antonio, Texas, United States [doi>10.1145/292540.292552]
	39	Thomas R. Shiple , James H. Kukula , Rajeev K. Ranjan, A Comparison of Presburger Engines for EFSM Reachability, Proceedings of the 10th International Conference on Computer Aided Verification, p.280-292, June 28-July 02, 1998

CITED BY 27

	Marius Bozga , Radu Iosif , Yassine Laknech, Storeless semantics and alias logic, ACM SIGPLAN Notices, v.38 n.10, p.55-65, October 2003
	Viktor Kuncak , Patrick Lam , Martin Rinard, Role analysis, ACM SIGPLAN Notices, v.37 n.1, p.17-32, Jan. 2002
	Chandrasekhar Boyapati , Sarfraz Khurshid , Darko Marinov, Korat: automated testing based on Java predicates, ACM SIGSOFT Software Engineering Notes, v.27 n.4, July 2002
	Sarfraz Khurshid , Darko Marinov , Daniel Jackson, An analyzable annotation language, ACM SIGPLAN Notices, v.37 n.11, November 2002
	Chandrasekhar Boyapati , Robert Lee , Martin Rinard, Ownership types for safe programming: preventing data races and deadlocks, ACM SIGPLAN Notices, v.37 n.11, November 2002
	Chandrasekhar Boyapati , Barbara Liskov , Liuba Shrira, Ownership types for object encapsulation, ACM SIGPLAN Notices, v.38 n.1, p.213-223, January 2003
	Patrick Lam , Viktor Kuncak , Martin Rinard, Generalized typestate checking using set interfaces and pluggable analyses, ACM SIGPLAN Notices, v.39 n.3, March 2004
	Willem Visser , Corina S. Pǎsǎreanu , Sarfraz Khurshid, Test input generation with java PathFinder, ACM SIGSOFT Software Engineering Notes, v.29 n.4, July 2004
	Nils Klarlund, Relativizations for the Logic-Automata Connection, Higher-Order and Symbolic Computation, v.18 n.1-2, p.79-120, June 2005
	Edwin Westbrook , Aaron Stump , Ian Wehrman, A language-based approach to functionally correct imperative programming, ACM SIGPLAN Notices, v.40 n.9, September 2005
	Viktor Kuncak , Daniel Jackson, Relational analysis of algebraic datatypes, ACM SIGSOFT Software Engineering Notes, v.30 n.5, September 2005
	Shuvendu K. Lahiri , Shaz Qadeer, Verifying properties of well-founded linked lists, ACM SIGPLAN Notices, v.41 n.1, p.115-126, January 2006
	Patrick Lam , Viktor Kuncak , Martin Rinard, Crosscutting techniques in program specification and analysis, Proceedings of the 4th international conference on Aspect-oriented software development, p.169-180, March 14-18, 2005, Chicago, Illinois
	Gregory Kulczycki , Murali Sitaraman , Bruce W. Weide , Atanas Rountev, A specification-based approach to reasoning about pointers, ACM SIGSOFT Software Engineering Notes, v.31 n.2, March 2006
	Wei-Ngan Chin , Siau-Cheng Khoo , Shengchao Qin , Corneliu Popeea , Huu Hai Nguyen, Verifying safety policies with size properties and alias controls, Proceedings of the 27th international conference on Software engineering, May 15-21, 2005, St. Louis, MO, USA
	Karen Zee , Viktor Kuncak , Martin Rinard, Full functional verification of linked data structures, ACM SIGPLAN Notices, v.43 n.6, June 2008
	Greta Yorsh , Thomas Reps , Mooly Sagiv , Reinhard Wilhelm, Logical characterizations of heap abstractions, ACM Transactions on Computational Logic (TOCL), v.8 n.1, p.5-es, January 2007
	Paul T. Darga , Chandrasekhar Boyapati, Efficient software model checking of data structure properties, ACM SIGPLAN Notices, v.41 n.10, October 2006
	Jeffrey S. Foster , Robert Johnson , John Kodumal , Alex Aiken, Flow-insensitive type qualifiers, ACM Transactions on Programming Languages and Systems (TOPLAS), v.28 n.6, p.1035-1087, November 2006
	Harvey Tuch , Gerwin Klein , Michael Norrish, Types, bytes, and separation logic, ACM SIGPLAN Notices, v.42 n.1, January 2007
	Bor-Yuh Evan Chang , Xavier Rival, Relational inductive shape analysis, ACM SIGPLAN Notices, v.43 n.1, January 2008
	Bolei Guo , Neil Vachharajani , David I. August, Shape analysis with inductive recursion synthesis, ACM SIGPLAN Notices, v.42 n.6, June 2007
	Sarfraz Khurshid , Darko Marinov, TestEra: Specification-Based Testing of Java Programs Using SAT, Automated Software Engineering, v.11 n.4, p.403-434, October 2004
	Shuvendu Lahiri , Shaz Qadeer, Back to the future: revisiting precise program verification using SMT solvers, ACM SIGPLAN Notices, v.43 n.1, January 2008
	Jaroslav Ševčík, Proving Resource Consumption of Low-level Programs Using Automated Theorem Provers, Electronic Notes in Theoretical Computer Science (ENTCS), v.190 n.1, p.133-147, July, 2007
	Harvey Tuch, Formal Verification of C Systems Code, Journal of Automated Reasoning, v.42 n.2-4, p.125-187, April 2009
	María Del Mar Gallardo , Pedro Merino , David Sanán, Model Checking Dynamic Memory Allocation in Operating Systems, Journal of Automated Reasoning, v.42 n.2-4, p.229-264, April 2009