Proving theorems about Java and the JVM with ACL2

Proving theorems about Java and the JVM with ACL2 (2003)

Cached

Download Links

by J Strother Moore

Venue:	Models, Algebras and Logic of Engineering Software
Citations:	16 - 9 self

BibTeX

@INPROCEEDINGS{Moore03provingtheorems,
    author = {J Strother Moore},
    title = {Proving theorems about Java and the JVM with ACL2},
    booktitle = {Models, Algebras and Logic of Engineering Software},
    year = {2003},
    pages = {227--290},
    publisher = {IOS Press}
}

Bookmark

OpenURL

Abstract

We describe a methodology for proving theorems mechanically about Java methods. The theorem prover used is the ACL2 system, an industrial-strength version of the Boyer-Moore theorem prover. An operational semantics for a substantial subset of the Java Virtual Machine (JVM) has been defined in ACL2. Theorems are proved about Java methods and classes by compiling them with javac and then proving the corresponding theorem about the JVM. Certain automatically applied strategies are implemented with rewrite rules (and other proof-guiding pragmas) in ACL2 “books” to control the theorem prover when operating on problems involving the JVM model. The Java Virtual Machine or JVM [27] is the basic abstraction Java [17] implementors are expected to respect. We speculate that the JVM is an appropriate level of abstraction at which to model Java programs with the intention of mechanically verifying their properties. The most complex features of the Java subset we handle – construction and initialization of new objects, synchronization, thread management, and virtual method invocation – are all supported directly and with full abstraction as single atomic instructions in the JVM. The complexity of verifying JVM bytecode program stems from the complexity of Java’s semantics, not

Citations

1541	The Java Language Specification - Gosling, Joy, et al. - 1996
490	PVS: A prototype verification system - Owre, Rushby, et al. - 1992
466	Introduction to HOL : a theorem proving environment for higher-order logic - Gordon, Melham - 1993
273	Extended static checking - Detlefs, Leino, et al. - 1998
227	Computer-Aided Reasoning: An Approach - Kaufmann, Manolios, et al. - 2000
137	The Java virtual machine specification, second edition - Lindholm, Yellin - 1999
133	Towards a mathematical science of computation - McCarthy - 1962
96	Java Pathfinder Second Generation of a Java Model Checker - Brat, Havelund, et al. - 2000
86	ESC/Java User’s Manual - Leino, Nelson, et al. - 2000
72	Automated proofs of object code for a widely used microprocessor - Boyer, Yu - 1996
58	Tool-supported program abstraction for finite-state verification - Dwyer, Hatcliff, et al.
50	The Coq proof assistant user's guide. Version 5.8 - Dowek, Felty, et al. - 1993
31	Core semantics of multithreaded Java - Manson, Pugh
30	A Verified Operating System Kernel - Bevier - 1987
30	Partial functions in ACL2 - Manolios, Moore
28	Mechanized formal reasoning about programs and computing machines - Boyer, Moore - 1996
28	A mechanically checked proof of the correctness of the kernel of the AMD5K86 floating point division algorithm - Moore, Lynch, et al. - 1998
27	A formal HDL and its use in the FM9001 verification - Hunt, Brock - 1992
24	High-speed, analyzable simulators - Greve, Wilding, et al. - 2000
24	Symbolic simulation of the JEM1 microprocessor - Greve - 1998
20	A type-theoretic memory model for verification of sequential Java programs - Berg, Huisman, et al. - 1999
20	The apprentice challenge - Moore, Porter - 2002
16	W.D.: Special issue on system verification - Bevier, Hunt, et al. - 1989
16	Proving theorems about Java-like byte code - Moore - 1999
15	A Computational Logic Handbook, Second Edition - Boyer, Moore - 1997
13	Linking theorem proving and model-checking with well-founded bisimulations - Manolios, Namjoshi, et al. - 1999
12	A Mechanically Checked Proof of a Multiprocessor Result via a Uniprocessor View - Moore - 1999
11	The defensive Java Virtual Machine specification version 0.5 - Cohen - 1997
11	New version of the consistency proof for elementary number theory - Gentzen - 1938
8	de Sousa. A Formal Executable Semantics of the JavaCard Platform - Barthe, Dufay, et al. - 2001
7	Stack-based Java a back-to-future step. Electronic Engineering Times - Greve, Wilding - 1998
6	Formal analysis of the motorola CAP DSP - Brock, Hunt - 1999
4	Evaluatable, high-assurance microprocessors - Greve, Wilding - 2002
4	FM8501: A Verified Microprocessor. Springer-Verlag LNAI 795 - Hunt - 1994
1	Taylor’s theorem with remainder - Gamboa, Middleton - 2002