Relative Completeness of Incorrectness Separation Logic
By: Yeonseok Lee, Koji Nakazawa
Potential Business Impact:
Finds bugs in computer programs better.
Incorrectness Separation Logic (ISL) is a proof system that is tailored specifically to resolve problems of under-approximation in programs that manipulate heaps, and it primarily focuses on bug detection. This approach is different from the over-approximation methods that are used in traditional logics such as Hoare Logic or Separation Logic. Although the soundness of ISL has been established, its completeness remains unproven. In this study, we establish relative completeness by leveraging the expressiveness of the weakest postconditions; expressiveness is a factor that is critical to demonstrating relative completeness in Reverse Hoare Logic. In our ISL framework, we allow for infinite disjunctions in disjunctive normal forms, where each clause comprises finite symbolic heaps with existential quantifiers. To compute the weakest postconditions in ISL, we introduce a canonicalization that includes variable aliasing.
Similar Papers
Incorrectness Separation Logic with Arrays and Pointer Arithmetic
Logic in Computer Science
Finds bugs in computer programs automatically.
Separating the Wheat from the Chaff: Understanding (In-)Completeness of Proof Mechanisms for Separation Logic with Inductive Definitions
Logic in Computer Science
Finds bugs in computer programs automatically.
Separating the Wheat from the Chaff: Understanding (In-)Completeness of Proof Mechanisms for Separation Logic with Inductive Definitions
Logic in Computer Science
Finds bugs in computer programs automatically.