Skip to content

G-M-twostay/Verify-jsmn

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
jsmn @ 25647e6
jsmn @ 25647e6
 
 
proofs
proofs
 
 
tools/ai-agent
tools/ai-agent
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

Formally Verifying the jsmn JSON Parser

Setup

  1. Install CBMC. Directions for installing CBMC can be found at the official CBMC git repository
  2. Clone this repository with --recurse-submodules to pull the exact version of jsmn we intend to verify
  3. On windows, we used msys2 for make.

Usage

  • See the specific version of jsmn being verified with git submodule status:
> git submodule status
 25647e692c7906b96ffd2b05ca54c097948e879c jsmn (v1.0.0-11-g25647e6)

  • Run the entire suite of proofs with make all

  • List all available verification proofs with make list

  • Run a specific verification proof with make $proof where $proof is a target found in make list

  • For help, run make help

Approach

We aim to verify safety and liveness properties of jsmn using CBMC, a bounded model checker.

Safety Properties

  • No buffer overflows or overruns are possible
  • No null pointer dereferences are possible
  • No signed integer overflow resulting in undefined behavior
  • No memory leaks (trivial, the library is 0 allocation)

Bounded Liveness

  • For all inputs up to size n (not yet chosen), the the jsmn parser eventually returns within c*n steps where c is a constant

Development

Each proof lives in its own directory under proofs/ and contains a:

  • Makefile that will run the proof by simply running make
  • README.md that explains what the proof does

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages