Byte-Precise Verification of Low-Level List Manipulation

article in a collection out of WoS and Scopus

English

We propose a new approach to shape analysis of programs with linked lists that use low-level memory operations. Such operations include pointer arithmetic, safe usage of invalid pointers, block operations with memory, reinterpretation of the memory contents, address alignment, etc. Our approach is based on a new representation of sets of heaps, which is to some degree inspired by works on separation logic with higher-order list predicates, but it is graph-based and uses a more fine-grained (byte-precise) memory model in order to support the various low-level memory operations. The approach was implemented in the Predator tool and successfully validated on multiple non-trivial case studies that are beyond the capabilities of other current fully automated shape analysis tools.

dynamic linked data structures, separation logic, symbolic memory graphs, list manipulation, low-level memory manipulation, memory safety, shape analysis

DUDKA, K.; PERINGER, P.; VOJNAR, T.

2013

12. 5. 2013

Springer Verlag

Berlin

978-3-642-38855-2

20th Static Analysis Symposium

Lecture Notes in Computer Science Volume 7935

0302-9743

Lecture Notes in Computer Science

20

7935

Federal Republic of Germany

215

237

23