scholarly journals Local Reasoning About the Presence of Bugs: Incorrectness Separation Logic

2020 ◽  
pp. 225-252
Author(s):  
Azalea Raad ◽  
Josh Berdine ◽  
Hoang-Hai Dang ◽  
Derek Dreyer ◽  
Peter O’Hearn ◽  
...  
Keyword(s):  
Separation Logic ◽  
Local Reasoning

scholarly journals SecRSL: security separation logic for C11 release-acquire concurrency

2021 ◽  
Vol 5 (OOPSLA) ◽  
pp. 1-26
Author(s):  
Pengbo Yan ◽  
Toby Murray
Keyword(s):  
Information Flow ◽  
Separation Logic ◽  
Constant Time ◽  
Memory Model ◽  
C Programs ◽  
Information Flow Security ◽  
Empirical Performance ◽  
Functional Correctness ◽  
Local Reasoning ◽  
High Level

We present Security Relaxed Separation Logic (SecRSL), a separation logic for proving information-flow security of C11 programs in the Release-Acquire fragment with relaxed accesses. SecRSL is the first security logic that (1) supports weak-memory reasoning about programs in a high-level language; (2) inherits separation logic’s virtues of compositional, local reasoning about (3) expressive security policies like value-dependent classification. SecRSL is also, to our knowledge, the first security logic developed over an axiomatic memory model. Thus we also present the first definitions of information-flow security for an axiomatic weak memory model, against which we prove SecRSL sound. SecRSL ensures that programs satisfy a constant-time security guarantee, while being free of undefined behaviour. We apply SecRSL to implement and verify the functional correctness and constant-time security of a range of concurrency primitives, including a spinlock module, a mixed-sensitivity mutex, and multiple synchronous channel implementations. Empirical performance evaluations of the latter demonstrate SecRSL’s power to support the development of secure and performant concurrent C programs.

scholarly journals Aneris: A Mechanised Logic for Modular Reasoning about Distributed Systems

2020 ◽  
pp. 336-365 ◽  
Author(s):  
Morten Krogh-Jespersen ◽  
Amin Timany ◽  
Marit Edna Ohlenbusch ◽  
Simon Oddershede Gregersen ◽  
Lars Birkedal
Keyword(s):  
Distributed Systems ◽  
Higher Order ◽  
Separation Logic ◽  
Two Phase ◽  
Modular Reasoning ◽  
Multiple Servers ◽  
Local Reasoning ◽  
Load Balancer ◽  
Concurrent And Distributed Systems ◽  
Great Complexity

AbstractBuilding network-connected programs and distributed systems is a powerful way to provide scalability and availability in a digital, always-connected era. However, with great power comes great complexity. Reasoning about distributed systems is well-known to be difficult. In this paper we present , a novel framework based on separation logic supporting modular, node-local reasoning about concurrent and distributed systems. The logic is higher-order, concurrent, with higher-order store and network sockets, and is fully mechanized in the Coq proof assistant. We use our framework to verify an implementation of a load balancer that uses multi-threading to distribute load amongst multiple servers and an implementation of the two-phase-commit protocol with a replicated logging service as a client. The two examples certify that is well-suited for both horizontal and vertical modular reasoning.

scholarly journals A Quantum interpretation of separating conjunction for local reasoning of Quantum programs based on separation logic

2022 ◽  
Vol 6 (POPL) ◽  
pp. 1-27
Author(s):  
Xuan-Bach Le ◽  
Shang-Wei Lin ◽  
Jun Sun ◽  
David Sanan
Keyword(s):  
State Space ◽  
The State ◽  
Quantum States ◽  
Separation Logic ◽  
Grover’S Algorithm ◽  
State Space Explosion ◽  
Grover's Algorithm ◽  
Local Reasoning ◽  
Quantum Interpretation ◽  
Exponential Size

It is well-known that quantum programs are not only complicated to design but also challenging to verify because the quantum states can have exponential size and require sophisticated mathematics to encode and manipulate. To tackle the state-space explosion problem for quantum reasoning, we propose a Hoare-style inference framework that supports local reasoning for quantum programs. By providing a quantum interpretation of the separating conjunction, we are able to infuse separation logic into our framework and apply local reasoning using a quantum frame rule that is similar to the classical frame rule. For evaluation, we apply our framework to verify various quantum programs including Deutsch–Jozsa’s algorithm and Grover's algorithm.

scholarly journals Linear capabilities for fully abstract compilation of separation-logic-verified code

2021 ◽  
Vol 31 ◽  
Author(s):  
THOMAS VAN STRYDONCK ◽  
FRANK PIESSENS ◽  
DOMINIQUE DEVRIESE
Keyword(s):  
Spatial Separation ◽  
Separation Logic ◽  
Target Language ◽  
Fine Grained ◽  
Dynamic Contract ◽  
Modular Verification ◽  
Source Program ◽  
Memory Accesses ◽  
Memory Resources ◽  
Efficient Memory

Abstract Separation logic is a powerful program logic for the static modular verification of imperative programs. However, dynamic checking of separation logic contracts on the boundaries between verified and untrusted modules is hard because it requires one to enforce (among other things) that outcalls from a verified to an untrusted module do not access memory resources currently owned by the verified module. This paper proposes an approach to dynamic contract checking by relying on support for capabilities, a well-studied form of unforgeable memory pointers that enables fine-grained, efficient memory access control. More specifically, we rely on a form of capabilities called linear capabilities for which the hardware enforces that they cannot be copied. We formalize our approach as a fully abstract compiler from a statically verified source language to an unverified target language with support for linear capabilities. The key insight behind our compiler is that memory resources described by spatial separation logic predicates can be represented at run time by linear capabilities. The compiler is separation-logic-proof-directed: it uses the separation logic proof of the source program to determine how memory accesses in the source program should be compiled to linear capability accesses in the target program. The full abstraction property of the compiler essentially guarantees that compiled verified modules can interact with untrusted target language modules as if they were compiled from verified code as well. This article is an extended version of one that was presented at ICFP 2019 (Van Strydonck et al., 2019).

scholarly journals Cosmo: a concurrent separation logic for multicore OCaml

2020 ◽  
Vol 4 (ICFP) ◽  
pp. 1-29
Author(s):  
Glen Mével ◽  
Jacques-Henri Jourdan ◽  
François Pottier
Keyword(s):  
Separation Logic ◽  
Concurrent Separation Logic

scholarly journals Distributed causal memory: modular specification and verification in higher-order distributed separation logic

2021 ◽  
Vol 5 (POPL) ◽  
pp. 1-29
Author(s):  
Léon Gondelman ◽  
Simon Oddershede Gregersen ◽  
Abel Nieto ◽  
Amin Timany ◽  
Lars Birkedal
Keyword(s):  
Higher Order ◽  
Separation Logic ◽  
Specification And Verification

scholarly journals The future is ours: prophecy variables in separation logic

2020 ◽  
Vol 4 (POPL) ◽  
pp. 1-32 ◽  
Author(s):  
Ralf Jung ◽  
Rodolphe Lepigre ◽  
Gaurav Parthasarathy ◽  
Marianna Rapoport ◽  
Amin Timany ◽  
...  
Keyword(s):  
Separation Logic ◽  
The Future
Sign in / Sign up

Export Citation Format

Share Document