Weakest-precondition of unstructured programs
M Barnett, KRM Leino - Proceedings of the 6th ACM SIGPLAN-SIGSOFT …, 2005 - dl.acm.org
M Barnett, KRM Leino
Proceedings of the 6th ACM SIGPLAN-SIGSOFT workshop on Program analysis for …, 2005•dl.acm.orgProgram verification systems typically transform a program into a logical expression which is
then fed to a theorem prover. The logical expression represents the weakest precondition of
the program relative to its specification; when (and if!) the theorem prover is able to prove the
expression, then the program is considered correct. Computing such a logical expression for
an imperative, structured program is straightforward, although there are issues having to do
with loops and the efficiency both of the computation and of the complexity of the formula …
then fed to a theorem prover. The logical expression represents the weakest precondition of
the program relative to its specification; when (and if!) the theorem prover is able to prove the
expression, then the program is considered correct. Computing such a logical expression for
an imperative, structured program is straightforward, although there are issues having to do
with loops and the efficiency both of the computation and of the complexity of the formula …
Program verification systems typically transform a program into a logical expression which is then fed to a theorem prover. The logical expression represents the weakest precondition of the program relative to its specification; when (and if!) the theorem prover is able to prove the expression, then the program is considered correct. Computing such a logical expression for an imperative, structured program is straightforward, although there are issues having to do with loops and the efficiency both of the computation and of the complexity of the formula with respect to the theorem prover. This paper presents a novel approach for computing the weakest precondition of an unstructured program that is sound even in the presence of loops. The computation is efficient and the resulting logical expression provides more leeway for the theorem prover efficiently to attack the proof.
ACM Digital Library