Strona główna Odkrywaj Pomoc
Zaloguj się
ariadne
/
shttpd
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 7 Oczekujące zmiany 0 Wiki
Gałąź: verification
Gałęzie Tagi
shttpd
/
doc
/
program-proofs
/
index.rst

index.rst 1.1 KB
Bezpośredni odnośnik Historia Czysty

1234567891011121314151617181920212223242526272829303132 
  1. .. SPDX-License-Identifier: GPL-2.0 or GPL-3.0
    2. 

  2. .. Copyright © 2019 Ariadne Devos
    3. 

  3. 

  4. Specifying and proving programs
    5. 

  5. ===============================
    6. 

  6. For formally proving programs correct, annotations in ACSL
    7. 

  7. are interwoven with the source code, which can be fed into
    8. 

  8. Frama-C for submission to automatic theorem provers.
    9. 

  9. 

  10. A specification of ACSL is available on https://frama-c.com,
    11. 

  11. as is the free-software Frama-C platform (both GUI and CUI).
    12. 

  12. A few guidelines are given.
    13. 

  13. 

  14. Contracts
    15. 

  15. ---------
    16. 

  16. The contract of a function is given where it is declared:
    17. 

  17. the header file for exported functions. If a proposition
    18. 

  18. is conditional on presence or absence of :ref:`speculation <speculation>`,
    19. 

  19. this is modelled as being conditional on `S` or `NS` respectively,
    20. 

  20. defined in `<sHT/nospec.h> `.
    21. 

  21. 

  22. Lemmas
    23. 

  23. ------
    24. 

  24. Invariants' names are suffixed by `I`, before any speculation suffix.
    25. 

  25. 

  26. Loops
    27. 

  27. -----
    28. 

  28. Specify relevant invariants, the frame (`assigns:`) and `variant:`
    29. 

  29. for proving termination (if applicable). Frama-C cannot guess
    30. 

  30. the invariants or the frame, and typically has little trouble
    31. 

  31. proving them, but only if they are correct.
    32. 

  32.