More Web Proxy on the site http://driver.im/

research-article

Efficient state space exploration: interleaving stateless and state-based model checking

Authors:

Malay K. Ganai,

Weihong LiAuthors Info & Claims

ICCAD '10: Proceedings of the International Conference on Computer-Aided Design

Pages 786 - 793

Published: 07 November 2010 Publication History

Abstract

State-based model checking methods comprise computing and storing reachable states, while stateless model checking methods directly reason about reachable paths using decision procedures, thereby avoiding computing and storing the reachable states. Typically, state-based methods involve memory-intensive operations, while stateless methods involve time-intensive operations. We propose a divide-and-conquer strategy to combine the complementary strengths of these methods for efficient verification of embedded software. Specifically, our model checking engine uses both state decomposition and state prioritization to guide the combination of a Presburger arithmetic based symbolic traversal algorithm (state-based) and an SMT based bounded model checking algorithm (stateless). These two underlying algorithms are interleaved---based on memory/time bounds and dynamic task partitioning---in order to systematically explore the state space and to avoid storing the entire reachable state set. We have implemented our new method in a tightly integrated verification tool called HMC (Hybrid Model Checker). We demonstrate the efficacy of the proposed method on some industry examples.

References

[1]

E. Clarke, O. Grumberg, and D. Peled. Model Checking. MIT Press, 1999.

Digital Library

[2]

K. McMillan. Symbolic Model Checking. Kluwer Academic Publishers, 1993.

Digital Library

[3]

A. Biere, A. Cimatti, E. M. Clarke, and Y. Zhu. Symbolic model checking without BDDs. In TACAS, 1999.

Digital Library

[4]

M. Sheeran, S. Singh, and G. Stalmarck. Checking safety properties using induction and a SAT solver. In FMCAD, 2000.

Digital Library

[5]

M. Ganai and A. Gupta. SAT-based Scalable Formal Verification Solutions. Springer, 2007.

Digital Library

[6]

G. Holzmann. The model checker spin. IEEE Trans. Software Engineering, 1997.

Digital Library

[7]

T. Ball and S. Rajamani. The SLAM toolkit. In CAV, 2001.

Digital Library

[8]

E. Clarke, D. Kroening, and F. Lerda. A tool for checking ANSI-C programs. In TACAS, 2004.

[9]

F. Ivančić, Z. Yang, M. Ganai, A. Gupta, I. Shlyakhter, and P. Ashar. F-Soft: Software verification platform. In CAV, 2005.

Digital Library

[10]

W. Pugh. The omega test: a fast and practical integer programming algorithm for dependence analysis. In Proc. of Supercomputing, 1991.

Digital Library

[11]

T. Bultan, R. Gerber, and C. League. Composite model checking: verification with type-specific symbolic representations. In ACM Trans. on Software Engineering Method, 2000.

Digital Library

[12]

Z. Yang, C. Wang, A. Gupta, and F. Ivančić. Mixed symbolic representations for model checking software programs. In Formal Methods and Models for Co-Design, 2006.

[13]

C. Wang, Z. Yang, A. Gupta, and F. Ivančić. Using counterexamples for improving the precision of reachability computation with polyhedra. In CAV, 2007.

Digital Library

[14]

M. Ganai and A. Gupta. Accelerating high-level bounded model checking. In ICCAD, 2006.

Digital Library

[15]

M. Ganai and A. Gupta. Completeness in SMT-based BMC for software programs. In DATE, 2008.

Digital Library

[16]

B. Dutertre and L. de Moura. A fast linear-arithmetic solver for DPLL(T). In CAV, 2006.

Digital Library

[17]

H. Kim, F. Somenzi and H. Jin. Efficient Term-ITE Conversion for Satisfiability Modulo Theories. In SAT, 2009.

Digital Library

[18]

F. Somenzi. CUDD: CU decision digram package. university of colorado at boulder. ftp://vlsi.colorado.edu/pub/.

[19]

H. Cho, G. Hatchel, E. Macii, B. Plessier, and F. Somenzi. Algorithms for approximate fsm traversal based on state space decomposition. IEEE Trans. on CAD, 1996.

Digital Library

[20]

T. Yavuz-kahveci, M. Tuncer, and T. Bultan. A library for composite symbolic representations. In TACAS, 2001.

Digital Library

[21]

M. Ganai and W. Li. Bang for the buck: Improvising and scheduling verification engines for effective resource utilization. In Formal Methods and Models for Co-Design, 2009.

Digital Library

[22]

SRI. Yices: An SMT solver. http://fm.csl.sri.com/yices.

[23]

P. Godefroid, N. Klarlund, and K. Sen. DART: Directed automated random testing. In Proc. of PLDI, 2005.

Digital Library

[24]

R. Majumdar and K. Sen. Hybrid concolic testing. In Proc. of ICSE, 2007.

Digital Library

[25]

D. Yang and D. Dill. Validating and guided search of the state space. In DAC, 1998.

Digital Library

[26]

J. Yuan, J. Shen, J. Abraham, and A. Aziz. On Combining Formal and Informal Verification. In CAV, July 1997.

Digital Library

[27]

S. Shyam and V. Bertacco. Distance-guided hybrid verification with guido. In DATE, 2006.

Digital Library

[28]

A. Gupta, M. Ganai, C. Wang, and Z. Yang. Abstraction and bdds complement SAT-based bmc in diver. In CAV, 2003.

[29]

K. McMillan. Interpolation and sat-based model checking. In CAV, 2003.

[30]

G. Bischoff, K. Brace, G. Cabodi, S. Nocco, and S. Quer. Exploiting target enlargement and dynamic abstraction within mixed bdd and sat invariant checking. In BMC workshop, 2004.

[31]

T. Arons, E. Elster, S. Ozer, J. Shalev, and E. Singerman. Efficient symbolic simulation of low level software. In DATE, 2008.

Digital Library

[32]

M. Ganai and A. Gupta. Tunneling and Slicing: Towards Scalable BMC. In DAC, 2008.

Digital Library

[33]

A. Narayan, A. Isles, J. Jain, R. Brayton, and A. Sangiovanni-Vincentelli. Reachability analysis using partitioned-ROBDDs. In ICCAD, 1997.

Digital Library

[34]

S. Barner and I. Rabinovitz. Efficient Symbolic Model Checking of Software Using Partial Disjunctive Partitioning. In Proc. of CHARME, 2003.

[35]

C. Wang, Z. Yang, F. Ivančić, and A. Gupta. Disjunctive image computation for embedded software verification. In DATE, 2006.

Digital Library

[36]

D. Ward and F. Somenzi. Decomposing image computation for symbolic reachability analysis using control flow information. In ICCAD, 2006.

Digital Library

Cited By

Karna AChen YYu HZhong HZhao J(2018)The role of model checking in software engineeringFrontiers of Computer Science: Selected Publications from Chinese Universities10.1007/s11704-016-6192-012:4(642-668)Online publication date: 1-Aug-2018
https://dl.acm.org/doi/10.1007/s11704-016-6192-0

Efficient state space exploration: interleaving stateless and state-based model checking

Recommendations

The sweep-line state space exploration method

The sweep-line method exploits intrinsic progress in concurrent systems to alleviate the state explosion problem in explicit state model checking. The concept of progress makes it possible to delete states from the memory during state space exploration ...
Real-time system analysis based on state-space exploration
Partial-Order Reduction in Symbolic State-Space Exploration
Special issue on CAV '97

State-space explosion is a fundamental obstacle in the formal verification of designs and protocols. Several techniques for combating this problem have emerged in the past few years, among which two are significant: partial-order reduction and symbolic ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

ICCAD '10: Proceedings of the International Conference on Computer-Aided Design

November 2010

863 pages

ISBN:9781424481927

General Chair:
Louis Scheffer
Howard Hughes Medical Institute, Ashburn, VA
,
Program Chairs:
Joel Phillips
Cadence Research Labs, Berkeley, CA
,
Alan J. Hu
Univ. of British Columbia, Vancouver, BC V6T 1Z4 Canada

Sponsors

SIGDA: ACM Special Interest Group on Design Automation
IEEE CEDA

Publisher

IEEE Press

Publication History

Published: 07 November 2010

Check for updates

Qualifiers

Research-article

Conference

ICCAD '10

Sponsor:

SIGDA

ICCAD '10: The International Conference on Computer-Aided Design

November 7 - 11, 2010

California, San Jose

Acceptance Rates

Overall Acceptance Rate 457 of 1,762 submissions, 26%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
35
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 13 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Karna AChen YYu HZhong HZhao J(2018)The role of model checking in software engineeringFrontiers of Computer Science: Selected Publications from Chinese Universities10.1007/s11704-016-6192-012:4(642-668)Online publication date: 1-Aug-2018
https://dl.acm.org/doi/10.1007/s11704-016-6192-0

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents