Hello all
As part of a thesis, I am model checking Python programs (a limited
subset anyway).
I have a very rough prototype that can deal with temporal properties
(LTL), that is statically prove properties of the kind: "if A happens,
then B should follow" or "if A happens, then B must not follow unless
C happens first". A,B,C here being function calls (system or other
library). The idea is that this might complement testing or manual
auditing during development.
So the solution now requires a problem.
Basically I'm trying to find interesting areas where a programmer is
supposed to call specific functions in a particular order, but where
coding errors might prevent this.
I would be most happy with distinctively Python-related problems, like
some tricky-to-use system calls or something from Zope or
security-related issues, etc.
So if any of you have ideas (specific function calls) where this kind
of tool would be useful, I would welcome feedback.
If replying privately, use bjornhb2_hotmail.com (more or less).
Thanks a lot :)
Bjorn
5  1448 
Bjorn Heimir Bjornsson wrote: Hello all
As part of a thesis, I am model checking Python programs (a limited
subset anyway).
I have a very rough prototype that can deal with temporal properties
(LTL), that is statically prove properties of the kind: "if A happens,
then B should follow" or "if A happens, then B must not follow unless
C happens first". A,B,C here being function calls (system or other
library). The idea is that this might complement testing or manual
auditing during development.
So the solution now requires a problem.
Basically I'm trying to find interesting areas where a programmer is
supposed to call specific functions in a particular order, but where
coding errors might prevent this.
I would be most happy with distinctively Python-related problems, like
some tricky-to-use system calls or something from Zope or
security-related issues, etc.
So if any of you have ideas (specific function calls) where this kind
of tool would be useful, I would welcome feedback.
If replying privately, use bjornhb2_hotmail.com (more or less).
Thanks a lot :)
Bjorn
Hi,
I do not have any python program to check but I'm interested in
publications you might already have writen or pointers to python related
problem.
I'm working as engineer in a research team in formal methods area
( http://www.loria.fr/equipes/model/).
Did you look at similar project with Java (like http://bandera.projects.cis.ksu.edu/) ? I think you will find similar
problem, no ?
Did your prototype recognize use of the thread standard library (lock,
etc) ?
If you look at mailman ( http://www.list.org/), you can check security
property like "a non-members cannot send messages to the list", etc.
Do you look at rather small or big project ?
Sorry if I ask more question than I answer... ;-)
The last one : When will you finish your Phd ?
Loïc
Hello Loic
I'm working with control flow only, generating pushdown systems from the
AST that are then checked with the model checker Moped (using LTL
properties).
A similar approach was taken for JavaCard
( http://www.sics.se/fdt/vericode/jcave.html).
I chose Python for fun, but at the moment support just a limited subset.
I'm unsure how far I will/can go. E.g. some dynamic stuff can't be analysed
statically. I also just ignore all data flow, which simplifies everything but
means I will not recognise all control flow correctly.
I checked some small non-python-specific problems, but experience of others
suggest that the aproach scales quite well.
This is an MSc thesis, I haven't published anything else.
Bjorn
Bjorn Heimir Bjornsson a écrit : Hello Loic
I'm working with control flow only, generating pushdown systems from the
AST that are then checked with the model checker Moped (using LTL
properties).
A similar approach was taken for JavaCard
(http://www.sics.se/fdt/vericode/jcave.html).
I chose Python for fun, but at the moment support just a limited subset.
I'm unsure how far I will/can go. E.g. some dynamic stuff can't be analysed
statically. I also just ignore all data flow, which simplifies everything but
means I will not recognise all control flow correctly.
I checked some small non-python-specific problems, but experience of others
suggest that the aproach scales quite well.
This is an MSc thesis, I haven't published anything else.
Bjorn
Hi,
Ok I see.
Instead of searching the workflow yourself you might look at PyPY. There
is a class (see translator.py) that construct such a flow. I have also
construct a simple data flow to check if a variable used was previously
defined.
On monday, I will show you a kind of workflow I'm creating in case mine
is more complete than yours...
Anyway, you're right that with dinamic stuff, analysis is difficult. But
with research like StarKiller (Type Inference) it should become more and
more easier...
I will wait for your publication ;-)
Loïc
Yermat <lo**@yermat.net1.nerim.net> wrote in Instead of searching the workflow yourself you might look at PyPY.
There is a class (see translator.py) that construct such a flow.
Thanks Loic for pointing out pypy's controlflow. I will check if I can use
it. I had searched for something like this for Python but never found
anything.
On monday, I will show you a kind of workflow I'm creating in case
mine is more complete than yours...
It would be really interesting to see what can be done with pypy's
controlflow.
Bjorn
Bjorn Heimir Bjornsson wrote: Yermat <lo**@yermat.net1.nerim.net> wrote in
Instead of searching the workflow yourself you might look at PyPY.
There is a class (see translator.py) that construct such a flow.
Thanks Loic for pointing out pypy's controlflow. I will check if I can use
it. I had searched for something like this for Python but never found
anything.
On monday, I will show you a kind of workflow I'm creating in case
mine is more complete than yours...
It would be really interesting to see what can be done with pypy's
controlflow.
Bjorn
Hi,
At http://www.fejoz.net/Loic/Divers, you will find a little example of
the output of PyPy and output of my own program.
There is also my own program which only use Python AST where as PyPY is
more concrete.
Good luck !
Loïc This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Michael |
last post by:
I'd like to write a program to verify the consistency between various
database replicas in our environment. The rules are as follows:
- I'm given two servers, each with a database
- I don't...
|
by: Hongzheng Wang |
last post by:
Hi,
If I have such codes:
class fred {
//user defined constructors/destructor here
};
int main()
{
|
by: Carter Smith |
last post by:
http://www.icarusindie.com/wiki/index.php/Server-Side_Javascript_Check
Sample source included
This method requires that your pages are PHP enabled and you have mySQL.
Although I suppose you...
|
by: Brian |
last post by:
NOTE ALSO POSTED IN
microsoft.public.dotnet.framework.aspnet.buildingcontrols
I have solved most of my Server Control Collection property issues.
I wrote an HTML page that describes all of the...
|
by: Eric D. Nielsen |
last post by:
I'm in the process of adding more historic information to one of my
databases. I've liked the theoretical treatment of the concept in
"Temporal Data and the Relational Model", by Date, Darwen, &...
|
by: gacuna |
last post by:
i want to insert into a temporal table the result of a store procedure.
on sql server the sentence would look like this (already working)
INSERT INTO #SHIPINFO
exec TESTDTA.S59RSH05 @SCBILLTO,...
|
by: Mike |
last post by:
Hi all,
In my recent ASP.NET 2.0 appl, I need to verify that the supplied email address is valid or not. So, here's my situation:
- In my <profilearea, I created <isVerifiedproperty.
- Suppose a...
|
by: foothills bhc |
last post by:
I have a problem with verifying content of controls on a form before closing the form or moving to the next form "record" (i.e., when moving to the next row of my form's record source).
HERE'S THE...
|
by: David |
last post by:
On Wed, Jun 18, 2008 at 11:16 AM, M.-A. Lemburg <mal@egenix.comwrote:
Thanks for your reply.
How do you maintain foreign key references with this approach?
eg, you have these 4 tables:
...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: ryjfgjl |
last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
| |
