coq-club AT inria.fr

Subject: The Coq mailing list

List archive

Re: [Coq-Club] Verification of C++ Code

From: roux cody <cody.roux AT gmail.com>
To: coq-club AT inria.fr
Subject: Re: [Coq-Club] Verification of C++ Code
Date: Mon, 11 Jun 2018 17:07:49 -0400
Authentication-results: mail2-smtp-roc.national.inria.fr; spf=None smtp.pra=cody.roux AT gmail.com; spf=Pass smtp.mailfrom=cody.roux AT gmail.com; spf=None smtp.helo=postmaster AT mail-vk0-f42.google.com
Ironport-phdr: 9a23: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

Hi Richard,

As others have noted, verifying C++ is particularly nasty, to the extent that there are companies whose whole business model is writing parsers for the language, never mind understanding its semantics!

That being said, the Vellvm project (http://www.cis.upenn.edu/~stevez/vellvm/) is building tools to reason about LLVM IR, which is the intermediate target of the Clang compiler.

Probably not as mature as the VST, but worth keeping an eye on.

Best,

Cody

On Thu, Jun 7, 2018 at 2:34 PM, Richard Ford <richardlford AT gmail.com> wrote:

I'm currently involved with some work where we want to verify the correctness of C++ code. I'm aware of the following two methods:

1. Use frama-c, which has been focused on C, but which has a recent (experimental) plug-in, frama-clang, that makes use of clang to effectively translate c++ code (actually intermediate representation) into the intermediate representation used by frama-c. frama-c use why3 in conjunction with smt provers and interactive provers (including coq) to prove verification conditions.

2. Escher Technologies' C++ verifier. I don't know much about this.

For verifying C code I am also aware of the Verified Software Toolchain effort (http://vst.cs.princeton.edu). Does anyone know whether there are any plans or work in progress to extend this to C++?

I would be glad to hear of any additional possibilities, or of experience any of you have had with these tools.

Thanks,

Richard L Ford

[Coq-Club] Verification of C++ Code, Richard Ford, 06/07/2018
- Re: [Coq-Club] Verification of C++ Code, roux cody, 06/11/2018
- <Possible follow-up(s)>
- Re: [Coq-Club] Verification of C++ Code, William Mansky, 06/08/2018