invited-talk

Mechanized verification of preemptive OS kernels (invited talk)

Author:
Xinyu Feng

University of Science and Technology of China, China

University of Science and Technology of China, China
View Profile

CPP 2017: Proceedings of the 6th ACM SIGPLAN Conference on Certified Programs and ProofsJanuary 2017Pages 2https://doi.org/10.1145/3018610.3023367

Published:16 January 2017Publication History

CPP 2017: Proceedings of the 6th ACM SIGPLAN Conference on Certified Programs and Proofs

Pages 2

ABSTRACT

We propose a practical verification framework for preemptive OS kernels. The framework models the correctness of API implementations in OS kernels as contextual refinement of their abstract specifications. It provides a specification language for defining the high-level abstract model of OS kernels, a program logic for refinement verification of concurrent kernel code with multi-level hardware interrupts, and automated tactics for developing mechanized proofs. The whole framework is developed for a practical subset of the C language. We have successfully applied it to verify key modules of a commercial preemptive OS μC/OS-II, including the scheduler, interrupt handlers, message queues, and mutexes, etc. We also verify the priority-inversion-freedom (PIF) in μC/OS-II. All the proofs are mechanized in Coq. To our knowledge, our work is the first to verify the functional correctness of a practical preemptive OS kernel with machine-checkable proofs. More details about the project is available at <http://staff.ustc.edu.cn/~fuming/research/certiucos/>

References

Fengwei Xu, Ming Fu, Xinyu Feng, Xiaoran Zhang, Hui Zhang, Zhaohui Li. A Practical Verification Framework for Preemptive OS Kernels. In: Proc. 28th International Conference on Computer Aided Verification (CAV’16), part II, pages 59--79, Toronto, Ontario, Canada. July 2016.Google Scholar

Index Terms

Recommendations

Modular verification of preemptive OS kernels
ICFP '11: Proceedings of the 16th ACM SIGPLAN international conference on Functional programming

Most major OS kernels today run on multiprocessor systems and are preemptive: it is possible for a process running in the kernel mode to get descheduled. Existing modular techniques for verifying concurrent code are not directly applicable in this ...
Read More
Modular verification of preemptive OS kernels
ICFP '11

Most major OS kernels today run on multiprocessor systems and are preemptive: it is possible for a process running in the kernel mode to get descheduled. Existing modular techniques for verifying concurrent code are not directly applicable in this ...
Read More
Toward compositional verification of interruptible OS kernels and device drivers
PLDI '16

An operating system (OS) kernel forms the lowest level of any system software stack. The correctness of the OS kernel is the basis for the correctness of the entire system. Recent efforts have demonstrated the feasibility of building formally verified ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
CPP 2017: Proceedings of the 6th ACM SIGPLAN Conference on Certified Programs and Proofs
January 2017
234 pages
ISBN:9781450347051
DOI:10.1145/3018610
Program Chairs:
Yves Bertot
Inria, France / Université Cote d'Azur, France
,
Viktor Vafeiadis
MPI-SWS, Germany
Copyright © 2017 Owner/Author
Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 16 January 2017
Check for updates
Author Tags
Mechanized verification
certified OS kernels
concurrency
hardware interrupts
preemption
Qualifiers
- invited-talk
Conference

Acceptance Rates
Overall Acceptance Rate18of26submissions,69%
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 0
  Total Citations
  View Citations
- 143
  Total Downloads
- Downloads (Last 12 months)3
- Downloads (Last 6 weeks)1
Other Metrics
View Author Metrics
Cited By
This publication has not been cited yet

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.