Inferring specifications to detect errors in code

Authors:
Mana Taghdiri;Daniel Jackson
Affiliations:
Computer Science and AI Lab, Massachusetts Institute of Technology, Cambridge, USA 02139;Computer Science and AI Lab, Massachusetts Institute of Technology, Cambridge, USA 02139
Venue:
Automated Software Engineering
Year:
2007

Citing 26
Cited 8

A Structure-preserving Clause Form Translation

Journal of Symbolic Computation
Introduction to algorithms

Introduction to algorithms
Analysis of pointers and structures

PLDI '90 Proceedings of the ACM SIGPLAN 1990 conference on Programming language design and implementation
The Model Checker SPIN

IEEE Transactions on Software Engineering - Special issue on formal methods in software practice
Solving shape-analysis problems in languages with destructive updating

ACM Transactions on Programming Languages and Systems (TOPLAS)
Bandera: extracting finite-state models from Java source code

Proceedings of the 22nd international conference on Software engineering
Alcoa: the alloy constraint analyzer

Proceedings of the 22nd international conference on Software engineering
Dynamically Discovering Likely Program Invariants to Support Program Evolution

IEEE Transactions on Software Engineering - Special issue on 1999 international conference on software engineering
Chaff: engineering an efficient SAT solver

Proceedings of the 38th annual Design Automation Conference
Automatically validating temporal safety properties of interfaces

SPIN '01 Proceedings of the 8th international SPIN workshop on Model checking of software
A micromodularity mechanism

Proceedings of the 8th European software engineering conference held jointly with 9th ACM SIGSOFT international symposium on Foundations of software engineering
Extended static checking for Java

PLDI '02 Proceedings of the ACM SIGPLAN 2002 Conference on Programming language design and implementation
Parametric shape analysis via 3-valued logic

ACM Transactions on Programming Languages and Systems (TOPLAS)
Symbolic Model Checking

Symbolic Model Checking
A Discipline of Programming

A Discipline of Programming
Bebop: A Symbolic Model Checker for Boolean Programs

Proceedings of the 7th International SPIN Workshop on SPIN Model Checking and Software Verification
Construction of Abstract State Graphs with PVS

CAV '97 Proceedings of the 9th International Conference on Computer Aided Verification
Counterexample-Guided Abstraction Refinement

CAV '00 Proceedings of the 12th International Conference on Computer Aided Verification
Temporal-Safety Proofs for Systems Code

CAV '02 Proceedings of the 14th International Conference on Computer Aided Verification
Modular verification of software components in C

Proceedings of the 25th International Conference on Software Engineering
Model Checking Programs

ASE '00 Proceedings of the 15th IEEE international conference on Automated software engineering
Validating SAT Solvers Using an Independent Resolution-Based Checker: Practical Implementations and Other Applications

DATE '03 Proceedings of the conference on Design, Automation and Test in Europe - Volume 1
Inferring Specifications to Detect Errors in Code

Proceedings of the 19th IEEE international conference on Automated software engineering
Scalable error detection using boolean satisfiability

Proceedings of the 32nd ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Declarative symbolic pure-logic model checking

Declarative symbolic pure-logic model checking
Shape analysis by predicate abstraction

VMCAI'05 Proceedings of the 6th international conference on Verification, Model Checking, and Abstract Interpretation

Universal symbolic execution and its application to likely data structure invariant generation

ISSTA '08 Proceedings of the 2008 international symposium on Software testing and analysis
DETERMIN: inferring likely deterministic specifications of multithreaded programs

Proceedings of the 32nd ACM/IEEE International Conference on Software Engineering - Volume 1
Information flow analysis via path condition refinement

FAST'10 Proceedings of the 7th International conference on Formal aspects of security and trust
Modular bug detection with inertial refinement

Proceedings of the 2010 Conference on Formal Methods in Computer-Aided Design
Relational reasoning via SMT solving

FM'11 Proceedings of the 17th international conference on Formal methods
DC2: A framework for scalable, scope-bounded software verification

ASE '11 Proceedings of the 2011 26th IEEE/ACM International Conference on Automated Software Engineering
Alternate and learn: finding witnesses without looking all over

CAV'12 Proceedings of the 24th international conference on Computer Aided Verification
Automatic inference of specifications using matching logic

PEPM '13 Proceedings of the ACM SIGPLAN 2013 workshop on Partial evaluation and program manipulation

Quantified Score

Hi-index	0.00

Visualization

Abstract

A new technique is presented to statically check a given procedure against a user-provided property. The method requires no annotations; it automatically infers a context-dependent specification for each procedure call, so that only as much information about a procedure is used as is needed to analyze its caller. Specifications are inferred iteratively. Empty specifications are initially used to over-approximate the effects of all procedure calls; these are later refined in response to spurious counterexamples. When the analysis terminates, any remaining counterexample is guaranteed to be valid. However, since the heap is finitized, the absence of a counterexample does not guarantee the validity of the given property in general.