论文信息 - Biabduction (and Related Problems) in Array Separation Logic

Biabduction (and Related Problems) in Array Separation Logic

We investigate array separation logic (ASL), a variant of symbolic-heap separation logic in which the data structures are either pointers or arrays, i.e., contiguous blocks of allocated memory. This logic provides a language for compositional memory safety proofs of imperative array programs. We focus on the biabduction problem for this logic, which has been established as the key to automatic specification inference at the industrial scale. We present an NP decision procedure for biabduction in ASL that produces solutions of reasonable quality, and we also show that the problem of finding a consistent solution is NP-hard. Along the way, we study satisfiability and entailment in our logic, giving decision procedures and complexity bounds for both problems. We show satisfiability to be NP-complete, and entailment to be decidable with high complexity. The somewhat surprising fact that biabduction is much simpler than entailment is explained by the fact that, as we show, the element of choice over biabduction solutions enables us to dramatically reduce the search space.

[1] Larry J. Stockmeyer,et al. The Polynomial-Time Hierarchy , 1976, Theor. Comput. Sci..

[2] Henny B. Sipma,et al. What's Decidable About Arrays? , 2006, VMCAI.

[3] Joël Ouaknine,et al. Foundations for Decision Problems in Separation Logic with General Inductive Predicates , 2014, FoSSaCS.

[4] Peter Müller,et al. Automatic Verification of Iterated Separating Conjunctions Using Symbolic Execution , 2016, CAV.

[5] W. Marsden. I and J , 2012 .

[6] David S. Johnson,et al. Computers and Intractability: A Guide to the Theory of NP-Completeness , 1978 .

[7] Andrei Voronkov,et al. Finding Loop Invariants for Programs over Arrays Using a Theorem Prover , 2009, FASE.

[8] Peter W. O'Hearn,et al. Compositional Shape Analysis by Means of Bi-Abduction , 2011, JACM.

[9] R. Stephenson. A and V , 1962, The British journal of ophthalmology.

[10] Samin Ishtiaq,et al. SLAyer: Memory Safety for Systems-Level Code , 2011, CAV.

[11] Peter W. O'Hearn,et al. Resources, concurrency, and local reasoning , 2007 .

[12] Peter W. O'Hearn,et al. A Semantic Basis for Local Reasoning , 2002, FoSSaCS.

[13] Shengchao Qin,et al. Automated Verification of Shape, Size and Bag Properties , 2007, 12th IEEE International Conference on Engineering Complex Computer Systems (ICECCS 2007).

[14] Daisuke Kimura,et al. Separation Logic with Monadic Inductive Definitions and Implicit Existentials , 2015, APLAS.

[15] Taolue Chen,et al. A Complete Decision Procedure for Linearly Compositional Separation Logic with Data Constraints , 2016, IJCAR.

[16] Amir Pnueli,et al. Range Allocation for Separation Logic , 2004, CAV.

[17] James Brotherston. Formalised Inductive Reasoning in the Logic of Bunched Implications , 2007, SAS.

[18] Reuben N. S. Rowe,et al. Model checking for symbolic-heap separation logic with inductive predicates , 2016, POPL.

[19] Jürgen Giesl,et al. Automatically Proving Termination and Memory Safety for Programs with Pointer Arithmetic , 2014, Journal of Automated Reasoning.

[20] Joël Ouaknine,et al. Tractable Reasoning in a Fragment of Separation Logic , 2011, CONCUR.

[21] Peter W. O'Hearn,et al. A Decidable Fragment of Separation Logic , 2004, FSTTCS.

[22] James Brotherston,et al. Cyclic Abduction of Inductively Defined Safety and Termination Preconditions , 2014, SAS.

[23] Supratik Chakraborty,et al. Bottom-Up Shape Analysis , 2009, SAS.

[24] Constantin Enea,et al. A Logic-Based Framework for Reasoning about Composite Data Structures , 2009, CONCUR.

[25] John C. Reynolds,et al. Separation logic: a logic for shared mutable data structures , 2002, Proceedings 17th Annual IEEE Symposium on Logic in Computer Science.