International audienceThe memory manipulated by JavaScript programs can be seen as a heap of extensible records storing values and pointers. We define a separation logic for describing such structures. In order to scale up to full-fledged languages such as JavaScript, this logic must be integrated with existing abstract domains from abstract interpretation. However, the frame rule—which is a central notion in separation logic—does not easily mix with abstract interpretation. We present a domain of heaps of interlinked extensible records based on both separation logic and abstract interpretation. The domain features spatial conjunction and uses summary nodes from shape analyses. We show how this domain can accommodate an abstract interpretat...
AbstractWe are interested in separation-logic-based static analysis of programs that use shared muta...
AbstractSeparation logic [Reynolds, J. C., Intuitionistic reasoning about shared mutable data struct...
Type-based amortised resource analysis following Hofmann and Jost—where resources are associated wit...
International audienceThe memory manipulated by JavaScript programs can be seen as a heap of extensi...
This thesis presents structural separation logic, a novel program reasoning approach for software th...
In static analysis of modern JavaScript libraries, relational analysis at key locations is critical ...
International audienceReal-world data structures are often enhanced with additional pointers capturi...
The dynamic nature of JavaScript and its complex semantics make it a difficult target for logic-base...
International audienceStatic analyses aim at inferring semantic properties of programs. While many a...
JavaScript is a trending programming language. It is not used in applications in which security may ...
Separation logic (SL) is an extension of Hoare logic by operations and formulas to reason more flexi...
Separation Logic brought an advance to program verification of data structures through its use of (r...
O'Hearn, Reynolds and Yang introduced local Hoare reasoning about mutable data structures using sep...
International audienceTo infer complex structural invariants, shape analyses rely on expressive fami...
This thesis explores the challenges in abstract library specification, library refinement and reason...
AbstractWe are interested in separation-logic-based static analysis of programs that use shared muta...
AbstractSeparation logic [Reynolds, J. C., Intuitionistic reasoning about shared mutable data struct...
Type-based amortised resource analysis following Hofmann and Jost—where resources are associated wit...
International audienceThe memory manipulated by JavaScript programs can be seen as a heap of extensi...
This thesis presents structural separation logic, a novel program reasoning approach for software th...
In static analysis of modern JavaScript libraries, relational analysis at key locations is critical ...
International audienceReal-world data structures are often enhanced with additional pointers capturi...
The dynamic nature of JavaScript and its complex semantics make it a difficult target for logic-base...
International audienceStatic analyses aim at inferring semantic properties of programs. While many a...
JavaScript is a trending programming language. It is not used in applications in which security may ...
Separation logic (SL) is an extension of Hoare logic by operations and formulas to reason more flexi...
Separation Logic brought an advance to program verification of data structures through its use of (r...
O'Hearn, Reynolds and Yang introduced local Hoare reasoning about mutable data structures using sep...
International audienceTo infer complex structural invariants, shape analyses rely on expressive fami...
This thesis explores the challenges in abstract library specification, library refinement and reason...
AbstractWe are interested in separation-logic-based static analysis of programs that use shared muta...
AbstractSeparation logic [Reynolds, J. C., Intuitionistic reasoning about shared mutable data struct...
Type-based amortised resource analysis following Hofmann and Jost—where resources are associated wit...