A promising approach to eliminating bugs and reducing programmer effort at the same time is to use program synthesis technology to generate provably correct low-level code automatically from high-level specifications.

In this talk I will present a program synthesizer SuSLik, which accepts as input a specification written in separation logic, and produces as output a provably correct C program. SuSLik is the first synthesizer capable of generating a wide range of operations on linked data structures (such as singly- and doubly-linked lists, binary trees, and rose trees) without additional hints from the user. It is also the first synthesizer to automatically discover recursive auxiliary functions required for nested data structure traversal. To make this possible, SuSLik relies on a novel proof system-synthetic separation logic-to derive correct-by-construction programs directly from their specifications. Program proofs generated by SuSLik can be automatically translated into three foundational verification frameworks embedded in Coq: Hoare Type Theory (HTT), Iris, and Verified Software Toolchain (VST).

BD Security was formalised in the proof assistant Isabelle/HOL and was used for verifying desirable confidentiality aspects of some running systems: CoCon, a practical conference management system that was deployed for two international conferences (one of them being the 2016 edition of ITP), CoSMed, a prototype social media platform, and CoSMeDis, a distributed extension of CoSMed (the last two developed in collaboration with a social media company). These systems were implemented from the ground up with verifiability in mind, using Isabelle/HOL’s specification language and code generator.

In this talk, I will describe the design principles behind BD Security and the eventful journey of deploying this framework to verify running systems. I will also discuss newer developments that further extend the framework’s flexibility and improve the resilience of verification code under system extensions with new features.

Several colleagues have participated in various parts of this work:
Thomas Bauereiss, Sergey Grebenshchikov, Ping Hou, Peter Lammich, Sudeep Kanav, Ondrej Kuncar, Armando Pesenti Gritti and Franco Raimondi.