Case studies on formal software verification can be divided into two categories: while (i) unsound approaches may miss errors or report false-positive alarms due to coarse abstractions, (ii) sound approaches typically do not handle certain programming constructs like concurrency and/or suffer from scalability issues. This paper presents a case study on successfully verifying the Linux USB BP keyboard driver. Our verification approach is (a) sound, (b) takes into account dynamic memory allocation, complex API rules and concurrency, and (c) is applied on a real kernel driver which was not written with verification in mind. We employ VeriFast, a software verifier based on separation logic. Besides showing that it is possible to verify this device driver, we identify the parts where the verification went smoothly and the parts where the verification approach requires further research to be carried out.
展开▼
机译:关于正式软件验证的案例研究可以分为两类:虽然(i)不合作方法可能会错过错误或报告由于粗糙抽象引起的错误或报告假阳性警报,但是(ii)声音方法通常不会处理并发等特定编程构造遭受可扩展性问题。本文介绍了成功验证Linux USB BP键盘驱动程序的案例研究。我们的验证方法是(a)声音,(b)考虑动态内存分配,复杂的API规则和并发性,(c)应用于真正的内核驱动程序,该驱动程序不是用验证写入的真实内核驱动程序。我们采用Verifast,一种基于分离逻辑的软件验证者。除了表明可以验证该设备驱动程序,我们识别验证顺利进行的部件以及验证方法需要进一步研究的部分。
展开▼
