Correct and Complete Symbolic Execution for Free

Erik Voogd, Einar Broch Johnsen, Åsmund Aqissiaq Arild Kløvstad, Jurriaan Rot, Alexandra Silva
November, 2024 Symbolic Execution, Operational Semantics
Preprint

Abstract

Symbolic execution is a powerful technique for program analysis. However, the formal semantics underlying symbolic execution is often developed on an ad-hoc basis and decoupled from the concrete semantics of the programming language. To overcome this issue, we introduce symbolic SOS : a rule format that allows us to simultaneously specify concrete and symbolic operational semantics. We prove that symbolic semantics, when generated from symbolic SOS, is both correct and complete with respect to the corresponding concrete semantics. The approach relies only on an algebraic signature of the source language, and is thus language-independent.

Type
Conference paper
Publication
Proc. 19th Intl. Conference on Integrated Formal Methods (IFM 2024). LNCS 15234 © Springer 2024. To appear.
Symbolic Execution Operational Semantics Semantics
Erik Voogd
Erik Voogd
PhD Student
Einar Broch Johnsen
Einar Broch Johnsen
Professor
Åsmund Aqissiaq Arild Kløvstad
Åsmund Aqissiaq Arild Kløvstad
PhD Student