Skip to Main content Skip to Navigation
Conference papers

Abstraction and Genericity in Why3

Abstract : The benefits of modularity in programming-abstraction barriers, which allows hiding implementation details behind an opaque interface, and genericity, which allows specializing a single implementation to a variety of underlying data types-apply just as well to deduc-tive program verification, with the additional advantage of helping the automated proof search procedures by reducing the size and complexity of the premises and by instantiating and reusing once-proved properties in a variety of contexts. In this paper, we demonstrate the modularity features of WhyML, the language of the program verification tool Why3. Instead of separating abstract interfaces and fully elaborated implementations, WhyML uses a single concept of module, a collection of abstract and concrete declarations , and a basic operation of cloning which instantiates a module with respect to a given partial substitution, while verifying its soundness. This mechanism brings into WhyML both abstraction and genericity, which we illustrate on a small verified Bloom filter implementation, translated into executable idiomatic C code.
Complete list of metadata

Cited literature [17 references]  Display  Hide  Download
Contributor : Jean-Christophe Filliâtre <>
Submitted on : Monday, June 1, 2020 - 9:38:15 AM
Last modification on : Friday, April 30, 2021 - 10:05:32 AM
Long-term archiving on: : Friday, September 25, 2020 - 12:26:37 AM


Files produced by the author(s)


  • HAL Id : hal-02696246, version 1


Jean-Christophe Filliâtre, Andrei Paskevich. Abstraction and Genericity in Why3. ISoLA 2020 - 9th International Symposium On Leveraging Applications of Formal Methods, Verification and Validation, Oct 2020, Rhodes, Greece. ⟨hal-02696246⟩



Record views


Files downloads