Context generation from formal specifications for C analysis tools

Michele Alberti; Julien Signoles

doi:10.1007/978-3-319-94460-9_6

Context generation from formal specifications for C analysis tools

Michele Alberti
, Julien Signoles

TrustInSoft
LIST-DTSI-SLA CEA

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Analysis tools like abstract interpreters, symbolic execution tools and testing tools usually require a proper context to give useful results when analyzing a particular function. Such a context initializes the function parameters and global variables to comply with function requirements. However it may be error-prone to write it by hand: the handwritten context might contain bugs or not match the intended specification. A more robust approach is to specify the context in a dedicated specification language, and hold the analysis tools to support it properly. This may mean to put significant development efforts for enhancing the tools, something that is often not feasible if ever possible. This paper presents a way to systematically generate such a context from a formal specification of a C function. This is applied to a subset of the ACSL specification language in order to generate suitable contexts for the abstract interpretation-based value analysis plug-ins of Frama-C, a framework for analysis of code written in C. The idea here presented has been implemented in a new Frama-C plug-in which is currently in use in an operational industrial setting.

Original language	English
Title of host publication	Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers
Editors	Fabio Fioravanti, John P. Gallagher
Publisher	Springer Verlag
Pages	93-111
Number of pages	19
ISBN (Print)	9783319944593
DOIs	https://doi.org/10.1007/978-3-319-94460-9_6
Publication status	Published - 1 Jan 2018
Externally published	Yes
Event	27th International Symposium on Logic-Based Program Synthesis and Transformation, LOPSTR 2017 - Namur, Belgium Duration: 10 Oct 2017 → 12 Oct 2017

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	10855 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	27th International Symposium on Logic-Based Program Synthesis and Transformation, LOPSTR 2017
Country/Territory	Belgium
City	Namur
Period	10/10/17 → 12/10/17

Keywords

ACSL
Code analysis
Code generation
Formal specification
Frama-C
Transformation

Access to Document

10.1007/978-3-319-94460-9_6

Cite this

Alberti, M., & Signoles, J. (2018). Context generation from formal specifications for C analysis tools. In F. Fioravanti, & J. P. Gallagher (Eds.), Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers (pp. 93-111). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10855 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-319-94460-9_6

Alberti, Michele ; Signoles, Julien. / Context generation from formal specifications for C analysis tools. Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers. editor / Fabio Fioravanti ; John P. Gallagher. Springer Verlag, 2018. pp. 93-111 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{1f83eac78f35458694b5281f39b8781b,

title = "Context generation from formal specifications for C analysis tools",

abstract = "Analysis tools like abstract interpreters, symbolic execution tools and testing tools usually require a proper context to give useful results when analyzing a particular function. Such a context initializes the function parameters and global variables to comply with function requirements. However it may be error-prone to write it by hand: the handwritten context might contain bugs or not match the intended specification. A more robust approach is to specify the context in a dedicated specification language, and hold the analysis tools to support it properly. This may mean to put significant development efforts for enhancing the tools, something that is often not feasible if ever possible. This paper presents a way to systematically generate such a context from a formal specification of a C function. This is applied to a subset of the ACSL specification language in order to generate suitable contexts for the abstract interpretation-based value analysis plug-ins of Frama-C, a framework for analysis of code written in C. The idea here presented has been implemented in a new Frama-C plug-in which is currently in use in an operational industrial setting.",

keywords = "ACSL, Code analysis, Code generation, Formal specification, Frama-C, Transformation",

author = "Michele Alberti and Julien Signoles",

note = "Publisher Copyright: {\textcopyright} 2018, Springer International Publishing AG, part of Springer Nature.; 27th International Symposium on Logic-Based Program Synthesis and Transformation, LOPSTR 2017 ; Conference date: 10-10-2017 Through 12-10-2017",

year = "2018",

month = jan,

day = "1",

doi = "10.1007/978-3-319-94460-9\_6",

language = "English",

isbn = "9783319944593",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "93--111",

editor = "Fabio Fioravanti and Gallagher, \{John P.\}",

booktitle = "Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers",

}

Alberti, M & Signoles, J 2018, Context generation from formal specifications for C analysis tools. in F Fioravanti & JP Gallagher (eds), Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10855 LNCS, Springer Verlag, pp. 93-111, 27th International Symposium on Logic-Based Program Synthesis and Transformation, LOPSTR 2017, Namur, Belgium, 10/10/17. https://doi.org/10.1007/978-3-319-94460-9_6

Context generation from formal specifications for C analysis tools. / Alberti, Michele; Signoles, Julien.
Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers. ed. / Fabio Fioravanti; John P. Gallagher. Springer Verlag, 2018. p. 93-111 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10855 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Context generation from formal specifications for C analysis tools

AU - Alberti, Michele

AU - Signoles, Julien

PY - 2018/1/1

Y1 - 2018/1/1

N2 - Analysis tools like abstract interpreters, symbolic execution tools and testing tools usually require a proper context to give useful results when analyzing a particular function. Such a context initializes the function parameters and global variables to comply with function requirements. However it may be error-prone to write it by hand: the handwritten context might contain bugs or not match the intended specification. A more robust approach is to specify the context in a dedicated specification language, and hold the analysis tools to support it properly. This may mean to put significant development efforts for enhancing the tools, something that is often not feasible if ever possible. This paper presents a way to systematically generate such a context from a formal specification of a C function. This is applied to a subset of the ACSL specification language in order to generate suitable contexts for the abstract interpretation-based value analysis plug-ins of Frama-C, a framework for analysis of code written in C. The idea here presented has been implemented in a new Frama-C plug-in which is currently in use in an operational industrial setting.

AB - Analysis tools like abstract interpreters, symbolic execution tools and testing tools usually require a proper context to give useful results when analyzing a particular function. Such a context initializes the function parameters and global variables to comply with function requirements. However it may be error-prone to write it by hand: the handwritten context might contain bugs or not match the intended specification. A more robust approach is to specify the context in a dedicated specification language, and hold the analysis tools to support it properly. This may mean to put significant development efforts for enhancing the tools, something that is often not feasible if ever possible. This paper presents a way to systematically generate such a context from a formal specification of a C function. This is applied to a subset of the ACSL specification language in order to generate suitable contexts for the abstract interpretation-based value analysis plug-ins of Frama-C, a framework for analysis of code written in C. The idea here presented has been implemented in a new Frama-C plug-in which is currently in use in an operational industrial setting.

KW - ACSL

KW - Code analysis

KW - Code generation

KW - Formal specification

KW - Frama-C

KW - Transformation

U2 - 10.1007/978-3-319-94460-9_6

DO - 10.1007/978-3-319-94460-9_6

M3 - Conference contribution

AN - SCOPUS:85050369264

SN - 9783319944593

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 93

EP - 111

BT - Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers

A2 - Fioravanti, Fabio

A2 - Gallagher, John P.

PB - Springer Verlag

T2 - 27th International Symposium on Logic-Based Program Synthesis and Transformation, LOPSTR 2017

Y2 - 10 October 2017 through 12 October 2017

ER -

Alberti M, Signoles J. Context generation from formal specifications for C analysis tools. In Fioravanti F, Gallagher JP, editors, Logic-Based Program Synthesis and Transformation - 27th International Symposium, LOPSTR 2017, Revised Selected Papers. Springer Verlag. 2018. p. 93-111. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-94460-9_6

Context generation from formal specifications for C analysis tools

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this