the mobius program verification environment recent
play

The Mobius Program Verification Environment Recent Advances in - PowerPoint PPT Presentation

Jan 17, 2024 •317 likes •534 views

The Mobius Program Verification Environment Recent Advances in Extended Static Checking Joe Kiniry, University College Dublin Joe Kiniry, University College Dublin http://mobius.inria.fr/ http://mobius.inria.fr/ Contract n IST 015905

  1. The Mobius Program Verification Environment Recent Advances in Extended Static Checking Joe Kiniry, University College Dublin Joe Kiniry, University College Dublin http://mobius.inria.fr/ http://mobius.inria.fr/ Contract n° IST 015905 Contract n° IST 015905 This work was funded in part by the Information Society Technologies programme of the European Commission, Future and Emerging Technologies under the IST-2005-015905 MOBIUS Project. This work was funded in part by the Information Society Technologies programme of the European Commission, Future and Emerging Technologies under the IST-2005-015905 MOBIUS Project. This presentation reflects only the author’s views the Community is not liable for any use that may be made of the information contained therein KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 1

  2. Extended Static Checking for Java • ESC/Java is an extended static checker • originated with DEC/Compaq SRC • used a minimal annotation language • behaves like a compiler • error messages similar to javac & gcc • completely automated • hides enormous complexity from user • ESC/Java2: an über -extended static checker for JML-annotated Java • includes about a dozen new ESCers • integrated with Eclipse • supports multiple logics and provers • represents the work of dozens of people KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 2

  3. The Mobius Program Verification Environment • general-purpose architecture for JML/ Java-centric program analysis and verification • formalized toolbus and architecture based upon existing component model • integration of automatic and interactive provers (e.g., Simplify, CVC3, and Coq) • ESC/Java2 is evolving into ESC/Java3 within this framework KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 3

  4. Evolution of Static and Interactive Checkers/Verifiers quality 100% full Loop KeY MOBIUS program verification Krakatoa ESC/Java3 extended ESC/Java2 static ESC/Modula III checking SRC ESC/Java type systems static checking lint effort Note: graph is not to scale KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 4

  5. ESC/Java2 Architecture ESC a package/ Java to DSA JML BML module/method DSA form translation specifications specifications Java Source Java Bytecode Java + JML command line DSA to GC AST switches scanning/ GC language parsing typechecking Java to GC lexing verification emit VC to pretty-print VCgen concrete syntax prover condition interpret produce Decision feedback warning display produce output "pass" warning or "pass" or warning pass KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 5

  6. ESC’s Key Strengths • push-button automation • tool robustness • user feedback with no user specifications • integration with popular IDE (Eclipse) • large amounts of decent documentation • availability of slides, examples, tutorials • community size and involvement • popularity amongst FM community KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 6

  7. ESC’s Main Weaknesses • IP issues because of non-standard license • platform design, implementation, and documentation problems • the need for fairly complete specs • insufficient developer involvement (for all the ideas we have) • false positives and false negatives; aka soundness and completeness issues • sometimes complex user feedback KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 7

  8. Some Features Available in ESC/Java2 in the Mobius PVE • nearly full JML coverage (with refinement) • purity checking • frame axiom checking • soundness & completeness warning system • specification consistency checker • specification-aware dead code detection • under-defined specification checking • universes type checking • AST and GC graphical rendering • generic automatic prover interface • sorted and unsorted verification condition representation • support for multiple automated and interactive provers • proof generation from an automated prover • incorporation of other lightweight static checkers • process integration KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 8

  9. Some Features Available in ESC/Java2 in the Mobius PVE • nearly full JML coverage (with refinement) • purity checking • frame axiom checking • soundness & completeness warning system • specification consistency checker • specification-aware dead code detection • under-defined specification checking • universes type checking • AST and GC graphical rendering • generic automatic prover interface • sorted and unsorted verification condition representation • support for multiple automated and interactive provers • proof generation from an automated prover • incorporation of other lightweight static checkers • process integration KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 9

  10. Mobius PVE Verification Bus Features • Mobius VC back-end • unsorted and sorted VC representation • logic-aware syntax generation to several automatic and interactive theorem provers • generation of Mobius VCs in Base Logic in Coq • Mobius ESC VC back-end • generation of ESC VCs in ESC Logics • generate ESC VCs for several automatic and interactive theorem provers • extended static checking of ESC VCs with rich in-editor feedback KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 10

  11. Mobius PVE Verification Bus Features • Mobius Prover back-end • generic interaction with a variety of automatic and interactive theorem provers • automatic provers supported – Simplify, SMT, CVC3, Yices, Fx7 • interactive provers supported – Coq and PVS • proof status maintenance • proof unit/smoke testing • automatic and seamless proof sharing amongst distributed collaborators KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 11

  12. Mobius PVE Verification Bus Features • integration of other lightweight static checkers • e.g., CheckStyle, FindBugs, and PMD • tune rules to guide programmer toward writing code that is easier to ESC and verify • regular, lightweight checking early is dramatically better than heavyweight checking late • help system and process management • task and feature tracking • online hypertext architecture docs and help KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 12

  13. Focus of Current Work • completely FLOSS software foundation • complete documentation • rich platform integration • multiple provers and multiple logics • FreeBoogie integration • improved developer feedback • full integration into software process • integration with full verification and refinement-based modeling languages • new, complex case studies KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 13

  14. Ongoing Work • new JML model classes • pure, immutable, functional, executable, referential equality-centric, fully unit tested and ESCed, tuned for static checking • FreeBoogie subsystem • FreeBoogiePL = structured and unstructured BoogiePL + explicit heap + separation logic • FreeBoogie VC generation to target Mobius VC back-end, thus support multiple provers KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 14

  15. Ongoing Work • reflective unit testing • new generation of JMLunit that is specification, source, and bytecode-aware • EBON-JML bicompiler • seamless and reversible translation to/from EBON to JML • refinement will support informal and formal documentation, system events, scenarios, allocation, and ownership • domain-specific annotations with formal semantics integrated into refinement KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 15

  16. Ongoing Work • ESC/Java3 • use new JML front-end (JML[345]) • reason about Java 1.5 source and bytecode • target FreeBoogie as IR • leverage recent work in separation logic • support automated multiple provers • selectively target interactive provers • perform contextually aware, cross-prover, cross-logic checking • deeper process integration, particularly across large teams as architecture evolves KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 16

  17. ESC/Java as a Research Vehicle for Static Checking • dozens of groups use ESC/Java2 for teaching and research • use in teaching • Java programming • software engineering • formal methods • examples of external research • specification under-definedness checker • PVS VC generation • Houdini “rebirth” • Daikon + ESC/Java2 integration KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 17

  18. Mobius PVE Status • full support available for: • all Java and nearly all JML features • editing, compilation, doc generation, etc. • code complexity and style checking • source and bytecode-level static checkers • partial BML support • no editing of BML or bytecode • Mobius VC back-end • Mobius Prover back-end • interactive proof support for Coq KeY Symposium, 16 June 2007 Mobius: Mobility, Ubiquity, Security 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

UN Environment Program UN Environment Program UN Environment Program UN Environment Program UN

UN Environment Program UN Environment Program UN Environment Program UN Environment Program UN

UN Environment Program UN Environment Program UN Environment Program UN Environment Program UN Environment Program I show and tell data stories. Census microdata 1950-2015 91 million rows The Guardian I make data tangible and relatable .

846 views • 43 slides
EPA Environmental Technology Verification (ETV) Program Leslie-Ann McGee and Amy Dindal American

EPA Environmental Technology Verification (ETV) Program Leslie-Ann McGee and Amy Dindal American

EPA Environmental Technology Verification (ETV) Program Leslie-Ann McGee and Amy Dindal American Association of Port Authorities Harbors, Navigation & Environment Committee Meeting January 26, 2010 Battelle: Worlds Largest Non -Profit

496 views • 23 slides
Program Verification (Rosen, Sections 5.5) TOPICS Program Correctness Preconditions &

Program Verification (Rosen, Sections 5.5) TOPICS Program Correctness Preconditions &

Program Verification (Rosen, Sections 5.5) TOPICS Program Correctness Preconditions & Postconditions Program Verification Assignments Composition Conditionals Loops Proofs about Programs Why

537 views • 36 slides
Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary for a complete verification tool Allows objects in the verification environment to be extended Needs to express constraints Coverage

946 views • 80 slides
Specification, Verification, and Proofs for Java Erik Poll Digital Security Radboud University

Specification, Verification, and Proofs for Java Erik Poll Digital Security Radboud University

Specification, Verification, and Proofs for Java Erik Poll Digital Security Radboud University Nijmegen presented at FOSAD'2009, Bertinoro, Italy supported by the EU IST project Mobius Overview Context - Proof Carrying Code (PCC)

1.53k views • 142 slides
Program Verification as a Toolbox 2005Now Todays Verification A Brief, Subjective History

Program Verification as a Toolbox 2005Now Todays Verification A Brief, Subjective History

Program Verification as a Toolbox David Cock Is Your System Correct? Verified Systems Program Verification as a Toolbox 2005Now Todays Verification A Brief, Subjective History Toolbox Whats Next? David Cock January 23, 2015 1

432 views • 32 slides
From Program Verification to Program Synthesis Overview Jaak Ristioja March 30, 2010 1 / 91

From Program Verification to Program Synthesis Overview Jaak Ristioja March 30, 2010 1 / 91

From Program Verification to Program Synthesis Overview Jaak Ristioja March 30, 2010 1 / 91 Reference From Program Verification to Program Synthesis. @ POPL10; January 17-23, 2010 Saurabh Srivastava , University of Maryland, College Park

1.21k views • 91 slides
Preparing for Re-Verification Brief Mr. Terrence Moultrie Chief, Verification and Executive

Preparing for Re-Verification Brief Mr. Terrence Moultrie Chief, Verification and Executive

The Center for Verification and Evaluation (CVE) Preparing for Re-Verification Brief Mr. Terrence Moultrie Chief, Verification and Executive Support Services Agenda What is Re-Verification? o Simplified Reverification Program VIP

320 views • 21 slides
Towards full verification of concurrent libraries Viktor Vafeiadis Program verification

Towards full verification of concurrent libraries Viktor Vafeiadis Program verification

Towards full verification of concurrent libraries Viktor Vafeiadis Program verification Programs considered: Small (<100 LOC) Medium (KLOC) Large (MLOC) Simple

577 views • 45 slides
Outcome Delivery at Miki Renee Tsielepi ? Mobius Loop Workshop Reservations Purchasing

Outcome Delivery at Miki Renee Tsielepi ? Mobius Loop Workshop Reservations Purchasing

Outcome Delivery at Miki Renee Tsielepi ? Mobius Loop Workshop Reservations Purchasing Business Mobius workshop change mng Sales Sales Exec Contacting Sales GM Snr Exec MVP What didnt work well Engaged Purchasing Manager

1.02k views • 24 slides
Quo Vadis Program Verification Krzysztof R. Apt CWI, Amsterdam, the Netherlands , University of

Quo Vadis Program Verification Krzysztof R. Apt CWI, Amsterdam, the Netherlands , University of

Quo Vadis Program Verification Krzysztof R. Apt CWI, Amsterdam, the Netherlands , University of Amsterdam Quo Vadis Program Verification p. 1/1 One Page Summary Assertional approach to program verification is here to stay. Gap between

629 views • 19 slides
DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification

DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification

DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification Projects Birth Record Verification State to State Verification DIVS State to State Verification Service (S2S) Program Benefits Mission

349 views • 8 slides
Verification & Validation Verification is getting the system right : Verification and

Verification & Validation Verification is getting the system right : Verification and

Verification & Validation Verification is getting the system right : Verification and Validation Does the program you built do what you designed it to do? Dr. James A. Bednar Validation is getting the right system : jbednar@inf.ed.ac.uk

331 views • 8 slides
Recent Amendments to Offshore Petroleum Environment Regulation Presentation to National

Recent Amendments to Offshore Petroleum Environment Regulation Presentation to National

Recent Amendments to Offshore Petroleum Environment Regulation Presentation to National Environmental Law Association Karl Heiden Environment Division, NOPSEMA 26 June 2014 Overview Background to OPGGS (Environment) Regulation

290 views • 12 slides
7. Refined Verification Condition Generation Program Verification ETH Zurich, Spring Semester

7. Refined Verification Condition Generation Program Verification ETH Zurich, Spring Semester

7. Refined Verification Condition Generation Program Verification ETH Zurich, Spring Semester 2018 Alexander J. Summers 158 Weakest Preconditions So Far Weakest preconditions provide a means of reducing the question: does a program have

339 views • 16 slides
Program Verification (6EC version only) Erik Poll Digital Security Radboud University Nijmegen

Program Verification (6EC version only) Erik Poll Digital Security Radboud University Nijmegen

Program Verification (6EC version only) Erik Poll Digital Security Radboud University Nijmegen Overview Program Verification using Verification Condition Generators JML a formal specification language for Java Used for the

620 views • 41 slides
Introduction to JML Erik Poll, Joe Kiniry, David Cok University of Nijmegen; Eastman Kodak

Introduction to JML Erik Poll, Joe Kiniry, David Cok University of Nijmegen; Eastman Kodak

Introduction to JML Erik Poll, Joe Kiniry, David Cok University of Nijmegen; Eastman Kodak Company Erik Poll - ESC/Java2 Tutorial - June 2004 - JML p.1/34 Outline of this talk What this set of slides aims to do introduction to JML

1.22k views • 44 slides
Verification-Aided Regression Testing Fabrizio Pastore 1 Leonardo Mariani 1 arinen 2 Grigory

Verification-Aided Regression Testing Fabrizio Pastore 1 Leonardo Mariani 1 arinen 2 Grigory

Verification-Aided Regression Testing Fabrizio Pastore 1 Leonardo Mariani 1 arinen 2 Grigory Fedyukovich 2 Antti E. J. Hyv Natasha Sharygina 2 Ondrej Sery 2 Stephan Sehestedt 3 Ali Muhammed 4 1 University of Milano-Bicocca, Italy 2 University of

670 views • 14 slides
Formal Verification of P Systems with Active Membranes through Model Checking Florentin Ipate 1 ,

Formal Verification of P Systems with Active Membranes through Model Checking Florentin Ipate 1 ,

Formal Verification of P Systems with Active Membranes through Model Checking Florentin Ipate 1 , Raluca Lefticaru 1 , Ignacio Prez-Hurtado 2 , Mario J. Prez-Jimnez 2 , Cristina Tudose 1 1 University of Pitesti 2 University of Sevilla

578 views • 23 slides
Learning Register Automata Models Falk Howar IPSSE, TU Clausthal, Goslar, Germany Dagstuhl

Learning Register Automata Models Falk Howar IPSSE, TU Clausthal, Goslar, Germany Dagstuhl

Learning Register Automata Models Falk Howar IPSSE, TU Clausthal, Goslar, Germany Dagstuhl Seminar 16172 Falk Howar (TU Clausthal) Learning RAs Dagstuhl Seminar 16172 1 / 22 Scenario: Verification of Component-based Systems Environment

618 views • 35 slides
The Use of JML in Embedded Real-Time Systems Joseph Kiniry Technical University of Denmark

The Use of JML in Embedded Real-Time Systems Joseph Kiniry Technical University of Denmark

The Use of JML in Embedded Real-Time Systems Joseph Kiniry Technical University of Denmark JTRES 2012 24 October 2012 Acknowledgements Some content based on an OOPSLA tutorial by: Gary T. Leavens, Curtis Clifton, Hridesh Rajan, and

773 views • 41 slides
Dynamic Shape and Data Structure Analysis in Java Presented by Sokhom Pheng (Supervised by

Dynamic Shape and Data Structure Analysis in Java Presented by Sokhom Pheng (Supervised by

Dynamic Shape and Data Structure Analysis in Java Presented by Sokhom Pheng (Supervised by Clark Verbrugge) McGill University October 17 th 2005 Outline Introduction & Contribution Design Challenges Experimental Results

683 views • 44 slides
Preventing errors before they happen: Lightweight verification via pluggable type-checking

Preventing errors before they happen: Lightweight verification via pluggable type-checking

print( @Readonly Object x) { List< @NonNull String> lst; } Preventing errors before they happen: Lightweight verification via pluggable type-checking Michael D. Ernst University of Washington (Seattle, WA, USA) University of Buenos

600 views • 48 slides
WHY WHAT WHEN 1 Curriculum Modifications Series Module 1: Setting Up the Environment WHAT IS

WHY WHAT WHEN 1 Curriculum Modifications Series Module 1: Setting Up the Environment WHAT IS

Curriculum Modifications Series Module 1: Setting Up the Environment CURRICULUM MODIFICATIONS MODULE 1: SETTING UP THE ENVIRONMENT WINTER 2014 LEARNING OBJECTIVES Understand what is meant by curriculum modification. Learn strategies and

526 views • 16 slides

More recommend