Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update ACN: Safety proof restored, adding invertibility (WIP) #25

Closed
wants to merge 9 commits into from
Closed

Update ACN: Safety proof restored, adding invertibility (WIP) #25

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
3270765
rename checkByteArrayBitContent to byteArrayBitContentSame
samuelchassot Aug 23, 2024
4c2482d
rename 2 functions of bistream
samuelchassot Aug 23, 2024
ae41167
renaming
samuelchassot Aug 23, 2024
6a4a0cb
with lemma
samuelchassot Aug 23, 2024
497e9b4
new annotations for proof to pass
samuelchassot Aug 27, 2024
d0a49c5
ACN lemmas uncommented + update to prove safety again
samuelchassot Aug 27, 2024
790b6ca
prove inverse of encodeUnsignedInteger
samuelchassot Aug 28, 2024
1f2edaf
proved enc_Int_PositiveInteger_ConstSize
samuelchassot Aug 28, 2024
3b93233
prove some invertibility in Codec ACN
samuelchassot Aug 28, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion asn1scala/src/main/scala/asn1scala/asn1jvm.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -335,7 +335,7 @@ def GetCharIndex(ch: UByte, charSet: Array[UByte]): Int =
i += 1
).invariant(i >= 0 &&& i <= charSet.length && ret < charSet.length && ret >= 0)
ret
} ensuring(res => charSet.length == 0 || res >= 0 && res < charSet.length)
}.ensuring(res => charSet.length == 0 || res >= 0 && res < charSet.length)

def NullType_Initialize(): NullType = {
0
Expand Down
345 changes: 176 additions & 169 deletions asn1scala/src/main/scala/asn1scala/asn1jvm_Bitstream.scala
View file
Open in desktop

Large diffs are not rendered by default.

215 changes: 149 additions & 66 deletions asn1scala/src/main/scala/asn1scala/asn1jvm_Codec.scala
View file
Open in desktop

Large diffs are not rendered by default.

222 changes: 120 additions & 102 deletions asn1scala/src/main/scala/asn1scala/asn1jvm_Codec_ACN.scala
View file
Open in desktop

Large diffs are not rendered by default.

4 changes: 2 additions & 2 deletions asn1scala/src/main/scala/asn1scala/asn1jvm_Verification.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,14 +33,14 @@ def arrayCopyOffset[T](@pure src: Array[T], dst: Array[T], fromSrc: Int, toSrc:
dst(fromDst) = src(fromSrc)
arrayCopyOffset(src, dst, fromSrc + 1, toSrc, fromDst + 1)
}
} ensuring ( _ => old(dst).length == dst.length)
}.ensuring ( _ => old(dst).length == dst.length)

def arrayCopyOffsetLen[T](@pure src: Array[T], dst: Array[T], fromSrc: Int, fromDst: Int, len: Int): Unit = {
require(0 <= len && len <= src.length && len <= dst.length)
require(0 <= fromSrc && fromSrc <= src.length - len)
require(0 <= fromDst && fromDst <= dst.length - len)
arrayCopyOffset(src, dst, fromSrc, fromSrc + len, fromDst)
} ensuring ( _ => old(dst).length == dst.length)
}.ensuring ( _ => old(dst).length == dst.length)

@pure
def arrayBitIndices(fromBit: Long, toBit: Long): (Int, Int, Int, Int) = {
Expand Down
10 changes: 5 additions & 5 deletions asn1scala/stainless.conf
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
# The settings below correspond to the various
# options listed by `stainless --help`

vc-cache = false
debug = ["smt"]
timeout = 1200
vc-cache = true
# debug = ["smt"]
timeout = 120
check-models = false
print-ids = false
print-types = false
Expand All @@ -12,5 +12,5 @@ strict-arithmetic = true
solvers = "smt-cvc5,smt-z3,smt-cvc4"
check-measures = yes
infer-measures = true
simplifier = "ol"
no-colors = true
simplifier = "bland"
no-colors = false
65 changes: 65 additions & 0 deletions asn1scala/used_acn_functions.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,65 @@
initACNCodec
reader
dec_Int_PositiveInteger_ConstSize_big_endian_16_prefixLemma
dec_Int_PositiveInteger_ConstSize_big_endian_32_prefixLemma
dec_Int_PositiveInteger_ConstSize_big_endian_64_prefixLemma
dec_Int_PositiveInteger_ConstSize_little_endian_16_prefixLemma
dec_Int_PositiveInteger_ConstSize_little_endian_32_prefixLemma
dec_Int_PositiveInteger_ConstSize_little_endian_64_prefixLemma
enc_Int_PositiveInteger_ConstSize
enc_Int_PositiveInteger_ConstSize
resetAt
withMovedByteIndex
withMovedBitIndex
isPrefixOf
enc_Int_PositiveInteger_ConstSize_8
enc_Int_PositiveInteger_ConstSize_big_endian_16
enc_Int_PositiveInteger_ConstSize_big_endian_32
enc_Int_PositiveInteger_ConstSize_big_endian_64
dec_Int_PositiveInteger_ConstSize
dec_Int_PositiveInteger_ConstSize_pure
dec_Int_PositiveInteger_ConstSize_8
dec_Int_PositiveInteger_ConstSize_8_pure
dec_Int_PositiveInteger_ConstSize_big_endian_16
dec_Int_PositiveInteger_ConstSize_big_endian_16_pure
dec_Int_PositiveInteger_ConstSize_big_endian_32
dec_Int_PositiveInteger_ConstSize_big_endian_32_pure
dec_Int_PositiveInteger_ConstSize_big_endian_64
dec_Int_PositiveInteger_ConstSize_big_endian_64_pure
dec_Int_PositiveInteger_ConstSize_little_endian_16_pure
dec_Int_PositiveInteger_ConstSize_little_endian_32_pure
dec_Int_PositiveInteger_ConstSize_little_endian_64_pure
enc_Int_TwosComplement_ConstSize
enc_Int_TwosComplement_ConstSize_8
enc_Int_TwosComplement_ConstSize_big_endian_16
enc_Int_TwosComplement_ConstSize_big_endian_32
enc_Int_TwosComplement_ConstSize_big_endian_64
dec_Int_TwosComplement_ConstSize
dec_Int_TwosComplement_ConstSize_pure
dec_Int_TwosComplement_ConstSize_8
dec_Int_TwosComplement_ConstSize_big_endian_16
dec_Int_TwosComplement_ConstSize_big_endian_32
dec_Int_TwosComplement_ConstSize_big_endian_64
BitStream_ReadBitPattern
BitStream_DecodeTrueFalseBoolean
enc_Real_IEEE754_32_big_endian
enc_Real_IEEE754_32_little_endian
enc_Real_IEEE754_64_big_endian
enc_Real_IEEE754_64_little_endian
dec_Real_IEEE754_32_big_endian
dec_Real_IEEE754_32_little_endian
dec_Real_IEEE754_64_big_endian
dec_Real_IEEE754_64_little_endian
enc_String_Ascii_Null_Terminated_multVec
enc_String_CharIndex_private
enc_IA5String_CharIndex_External_Field_Determinant
enc_IA5String_CharIndex_External_Field_DeterminantVec
enc_IA5String_CharIndex_Internal_Field_DeterminantVec
dec_String_Ascii_Null_Terminated_multVec
dec_String_CharIndex_private
dec_IA5String_CharIndex_External_Field_Determinant
dec_IA5String_CharIndex_External_Field_DeterminantVec
dec_IA5String_CharIndex_Internal_Field_Determinant
dec_IA5String_CharIndex_Internal_Field_DeterminantVec
milbus_encode
milbus_decode
3 changes: 3 additions & 0 deletions asn1scala/verify.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,9 @@ src/main/scala/asn1scala/asn1jvm.scala \
src/main/scala/asn1scala/asn1jvm_Verification.scala \
src/main/scala/asn1scala/asn1jvm_Helper.scala \
src/main/scala/asn1scala/asn1jvm_Bitstream.scala \
src/main/scala/asn1scala/asn1jvm_Codec_ACN.scala \
src/main/scala/asn1scala/asn1jvm_Vector.scala \
src/main/scala/asn1scala/asn1jvm_Codec.scala \
--config-file=stainless.conf \
-D-parallel=5 \
$1
1 change: 1 addition & 0 deletions asn1scala/verify_bitStream.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@ src/main/scala/asn1scala/asn1jvm.scala \
src/main/scala/asn1scala/asn1jvm_Verification.scala \
src/main/scala/asn1scala/asn1jvm_Helper.scala \
src/main/scala/asn1scala/asn1jvm_Bitstream.scala \
src/main/scala/asn1scala/asn1jvm_Vector.scala \
--config-file=stainless.conf \
-D-parallel=5 \
$1
12 changes: 12 additions & 0 deletions asn1scala/verify_safety_acn.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
stainless-dotty \
src/main/scala/asn1scala/asn1jvm.scala \
src/main/scala/asn1scala/asn1jvm_Verification.scala \
src/main/scala/asn1scala/asn1jvm_Helper.scala \
src/main/scala/asn1scala/asn1jvm_Bitstream.scala \
src/main/scala/asn1scala/asn1jvm_Codec_ACN.scala \
src/main/scala/asn1scala/asn1jvm_Vector.scala \
src/main/scala/asn1scala/asn1jvm_Codec.scala \
--config-file=stainless.conf \
-D-parallel=5 \
--functions=initACNCodec,reader,dec_Int_PositiveInteger_ConstSize_big_endian_16_prefixLemma,dec_Int_PositiveInteger_ConstSize_big_endian_32_prefixLemma,dec_Int_PositiveInteger_ConstSize_big_endian_64_prefixLemma,dec_Int_PositiveInteger_ConstSize_little_endian_16_prefixLemma,dec_Int_PositiveInteger_ConstSize_little_endian_32_prefixLemma,dec_Int_PositiveInteger_ConstSize_little_endian_64_prefixLemma,enc_Int_PositiveInteger_ConstSize,enc_Int_PositiveInteger_ConstSize,resetAt,withMovedByteIndex,withMovedBitIndex,isPrefixOf,enc_Int_PositiveInteger_ConstSize_8,enc_Int_PositiveInteger_ConstSize_big_endian_16,enc_Int_PositiveInteger_ConstSize_big_endian_32,enc_Int_PositiveInteger_ConstSize_big_endian_64,dec_Int_PositiveInteger_ConstSize,dec_Int_PositiveInteger_ConstSize_pure,dec_Int_PositiveInteger_ConstSize_8,dec_Int_PositiveInteger_ConstSize_8_pure,dec_Int_PositiveInteger_ConstSize_big_endian_16,dec_Int_PositiveInteger_ConstSize_big_endian_16_pure,dec_Int_PositiveInteger_ConstSize_big_endian_32,dec_Int_PositiveInteger_ConstSize_big_endian_32_pure,dec_Int_PositiveInteger_ConstSize_big_endian_64,dec_Int_PositiveInteger_ConstSize_big_endian_64_pure,dec_Int_PositiveInteger_ConstSize_little_endian_16_pure,dec_Int_PositiveInteger_ConstSize_little_endian_32_pure,dec_Int_PositiveInteger_ConstSize_little_endian_64_pure,enc_Int_TwosComplement_ConstSize,enc_Int_TwosComplement_ConstSize_8,enc_Int_TwosComplement_ConstSize_big_endian_16,enc_Int_TwosComplement_ConstSize_big_endian_32,enc_Int_TwosComplement_ConstSize_big_endian_64,dec_Int_TwosComplement_ConstSize,dec_Int_TwosComplement_ConstSize_pure,dec_Int_TwosComplement_ConstSize_8,dec_Int_TwosComplement_ConstSize_big_endian_16,dec_Int_TwosComplement_ConstSize_big_endian_32,dec_Int_TwosComplement_ConstSize_big_endian_64,BitStream_ReadBitPattern,BitStream_DecodeTrueFalseBoolean,enc_Real_IEEE754_32_big_endian,enc_Real_IEEE754_32_little_endian,enc_Real_IEEE754_64_big_endian,enc_Real_IEEE754_64_little_endian,dec_Real_IEEE754_32_big_endian,dec_Real_IEEE754_32_little_endian,dec_Real_IEEE754_64_big_endian,dec_Real_IEEE754_64_little_endian,enc_String_Ascii_Null_Terminated_multVec,enc_String_CharIndex_private,enc_IA5String_CharIndex_External_Field_Determinant,enc_IA5String_CharIndex_External_Field_DeterminantVec,enc_IA5String_CharIndex_Internal_Field_DeterminantVec,dec_String_Ascii_Null_Terminated_multVec,dec_String_CharIndex_private,dec_IA5String_CharIndex_External_Field_Determinant,dec_IA5String_CharIndex_External_Field_DeterminantVec,dec_IA5String_CharIndex_Internal_Field_Determinant,dec_IA5String_CharIndex_Internal_Field_DeterminantVec,milbus_encode,milbus_decode \
$1
Loading