Efficient Modeling of Concurrent Systems in BMC

Ganai, Malay K.; Gupta, Aarti

doi:10.1007/978-3-540-85114-1_10

Cited by 33 publications

(54 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…t2 uses a local variable y to store the value of x and uses this in the test (cf. lines [12][13]. This simulates a possible context switch between the evaluation of the guard and the execution of the next statement.…”

Section: R5mentioning

confidence: 99%

“…Ganai and Gupta describe a lazy method for modelling multi-threaded concurrent systems using shared variables [13], but this again is restricted to two threads. Gupta et al [17] extend [13,16] by supporting more than two threads and by combining dynamic partial order reduction with symbolic state space exploration.…”

Section: Related Workmentioning

confidence: 99%

“…In an attempt to cope with growing system complexity, Boolean Satisfiability (SAT) solvers are increasingly replaced by Satisfiability Modulo Theories (SMT) solvers to prove the generated verification conditions (VCs) [1,8,12]. There have also been attempts to extend BMC to the verification of multi-threaded software [13,16,17,25]. The main challenge here is the state space explosion, as the number of possible interleavings grows exponentially with the number of threads and program statements.…”

Section: Introductionmentioning

confidence: 99%

“…Here, we continue this work and develop and evaluate three related approaches for model checking multi-threaded ANSI-C software. In contrast to previous fully symbolic approaches (e.g., [13,16,17,25,15]), we combine symbolic model checking with explicit state space exploration. In particular, we explicitly explore the possible interleavings (up to the given context bound) while we treat each interleaving itself symbolically.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Verifying multi-threaded software using smt-based context-bounded model checking

Cordeiro

Fischer

2011

Proceedings of the 33rd International Conference on Software Engineering

107

View full text Add to dashboard Cite

We describe and evaluate three approaches to model check multi-threaded software with shared variables and locks using bounded model checking based on Satisfiability Modulo Theories (SMT) and our modelling of the synchronization primitives of the Pthread library. In the lazy approach, we generate all possible interleavings and call the SMT solver on each of them individually, until we either find a bug, or have systematically explored all interleavings. In the schedule recording approach, we encode all possible interleavings into one single formula and then exploit the high speed of the SMT solvers. In the underapproximation and widening approach, we reduce the state space by abstracting the number of interleavings from the proofs of unsatisfiability generated by the SMT solvers. In all three approaches, we bound the number of context switches allowed among threads in order to reduce the number of interleavings explored. We implemented these approaches in ESBMC, our SMT-based bounded model checker for ANSI-C programs. Our experiments show that ESBMC can analyze larger problems and substantially reduce the verification time compared to stateof-the-art techniques that use iterative context-bounding algorithms or counter-example guided abstraction refinement.

show abstract

Section: R5mentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Verifying multi-threaded software using smt-based context-bounded model checking

Cordeiro

Fischer

2011

Proceedings of the 33rd International Conference on Software Engineering

107

View full text Add to dashboard Cite

show abstract

“…Traditional approaches consist of manually abstracting the data-structure into a simple finite state machine representing the states of the data-structure that are relevant to the verification problem (e.g., [Strom 1983;Strom and Yemini 1986]). As a second phase, these works use one of the numerous approaches for model-checking concurrent finite-state programs (e.g., [Cook et al 2005]), performing various forms of bounded model-checking (e.g., [Qadeer and Rehof 2005;Ganai and Gupta 2008]), and using predicate abstraction (e.g., [Das et al 1999]). …”

Section: Model Checkingmentioning

confidence: 99%

Verifying safety properties of concurrent heap-manipulating programs

Yahav

Sagiv

2008

ACM Trans. Program. Lang. Syst.

View full text Add to dashboard Cite

We provide a parametric framework for verifying safety properties of concurrent heap-manipulating programs. The framework combines thread-scheduling information with information about the shape of the heap. This leads to verification algorithms that are more precise than existing techniques. The framework also provides a precise shape-analysis algorithm for concurrent programs. In contrast to most existing verification techniques, we do not put a bound on the number of allocated objects. The framework produces interesting results even when analyzing programs with an unbounded number of threads. The framework is applied to successfully verify the following properties of a concurrent program:-Concurrent manipulation of linked-list based ADT preserves the ADT datatype invariant. -The program does not perform inconsistent updates due to interference. -The program does not reach a deadlock.-The program does not produce run-time errors due to illegal thread interactions.We also found bugs in erroneous programs violating such properties. A prototype of our framework has been implemented and applied to small, but interesting, example programs.

show abstract