Automatically inspecting thousands of static bug warnings with large language model: How far are we?
Static analysis tools for capturing bugs and vulnerabilities in software programs are widely
employed in practice, as they have the unique advantages of high coverage and …
employed in practice, as they have the unique advantages of high coverage and …
Outcome logic: A unifying foundation for correctness and incorrectness reasoning
Program logics for bug-finding (such as the recently introduced Incorrectness Logic) have
framed correctness and incorrectness as dual concepts requiring different logical …
framed correctness and incorrectness as dual concepts requiring different logical …
How about bug-triggering paths?-understanding and characterizing learning-based vulnerability detectors
Machine learning and its promising branch deep learning have proven to be effective in a
wide range of application domains. Recently, several efforts have shown success in …
wide range of application domains. Recently, several efforts have shown success in …
A correctness and incorrectness program logic
Abstract interpretation is a well-known and extensively used method to extract over-
approximate program invariants by a sound program analysis algorithm. Soundness means …
approximate program invariants by a sound program analysis algorithm. Soundness means …
Hyper hoare logic:(dis-) proving program hyperproperties
T Dardinier, P Müller - Proceedings of the ACM on Programming …, 2024 - dl.acm.org
Hoare logics are proof systems that allow one to formally establish properties of computer
programs. Traditional Hoare logics prove properties of individual program executions (such …
programs. Traditional Hoare logics prove properties of individual program executions (such …
Provenfix: Temporal property-guided program repair
Model checking has been used traditionally for finding violations of temporal properties.
Recently, testing or fuzzing approaches have also been applied to software systems to find …
Recently, testing or fuzzing approaches have also been applied to software systems to find …
Non-termination proving at scale
Program termination is a classic non-safety property whose falsification cannot in general be
witnessed by a finite trace. This makes testing for non-termination challenging, and also a …
witnessed by a finite trace. This makes testing for non-termination challenging, and also a …
Hypra: A deductive program verifier for hyper hoare logic
T Dardinier, A Li, P Müller - Proceedings of the ACM on Programming …, 2024 - dl.acm.org
Hyperproperties relate multiple executions of a program and are useful to express common
correctness properties (such as determinism) and security properties (such as non …
correctness properties (such as determinism) and security properties (such as non …
Exact separation logic: Towards bridging the gap between verification and bug-finding
Over-approximating (OX) program logics, such as separation logic (SL), are used for
verifying properties of heap-manipulating programs: all terminating behaviour is …
verifying properties of heap-manipulating programs: all terminating behaviour is …
Calculational design of [in] correctness transformational program logics by abstract interpretation
P Cousot - Proceedings of the ACM on Programming Languages, 2024 - dl.acm.org
We study transformational program logics for correctness and incorrectness that we extend
to explicitly handle both termination and nontermination. We show that the logics are …
to explicitly handle both termination and nontermination. We show that the logics are …