Verifying a Realistic Mutable Hash Table
Samuel Chassot, Viktor Kun\v{c}ak
TL;DR
This paper verifies a mutable hash table implementation in Scala using Stainless, introduces a new reference swapping construct for verification, and demonstrates the correctness and performance of the verified version.
Contribution
It presents the first formal verification of a realistic mutable hash table in Scala, introducing a novel reference swapping construct for verification.
Findings
Verified the LongMap hash table with Stainless
Discovered and fixed a bug in the original implementation
Verified performance remains within 1.5x of the original
Abstract
In this work, we verify the mutable LongMap from the Scala standard library, a hash table using open addressing within a single array, using the Stainless program verifier. As a reference implementation, we write an immutable map based on a list of tuples. We then show that LongMap's operations correspond to operations of this association list. To express the resizing of the hash table array, we introduce a new reference swapping construct in Stainless. This allows us to apply the decorator pattern without introducing aliasing. Our verification effort led us to find and fix a bug in the original implementation that manifests for large hash tables. Our performance analysis shows the verified version to be within a 1.5 factor of the original data structure.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Malware Detection Techniques · Security and Verification in Computing · Parallel Computing and Optimization Techniques