Extrapolation-Based Path Invariants for Abstraction Refinement of Fifo Systems

Heußner, Alexander; Gall, Tristan Le; Sutre, Grégoire

doi:10.1007/978-3-642-02652-2_11

Cited by 7 publications

(8 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…CSight relies on the McScM model checker [33,32], which represents a scalability bottleneck. Future work will use the more efficient Spin model checker [34].…”

Section: Related Workmentioning

confidence: 99%

Inferring models of concurrent systems from logs of their behavior with CSight

Beschastnikh

Brun

Ernst

et al. 2014

Proceedings of the 36th International Conference on Software Engineering

145

View full text Add to dashboard Cite

Concurrent systems are notoriously difficult to debug and understand. A common way of gaining insight into system behavior is to inspect execution logs and documentation. Unfortunately, manual inspection of logs is an arduous process, and documentation is often incomplete and out of sync with the implementation.To provide developers with more insight into concurrent systems, we developed CSight. CSight mines logs of a system's executions to infer a concise and accurate model of that system's behavior, in the form of a communicating finite state machine (CFSM).Engineers can use the inferred CFSM model to understand complex behavior, detect anomalies, debug, and increase confidence in the correctness of their implementations. CSight's only requirement is that the logged events have vector timestamps. We provide a tool that automatically adds vector timestamps to system logs. Our tool prototypes are available at http://synoptic.googlecode.com/. This paper presents algorithms for inferring CFSM models from traces of concurrent systems, proves them correct, provides an implementation, and evaluates the implementation in two ways: by running it on logs from three different networked systems and via a user study that focused on bug finding. Our evaluation finds that CSight infers accurate models that can help developers find bugs.

show abstract

“…CSight relies on the McScM model checker [33,32], which represents a scalability bottleneck. Future work will use the more efficient Spin model checker [34].…”

Section: Related Workmentioning

confidence: 99%

Inferring models of concurrent systems from logs of their behavior with CSight

Beschastnikh

Brun

Ernst

et al. 2014

Proceedings of the 36th International Conference on Software Engineering

145

View full text Add to dashboard Cite

show abstract

“…armc: the Abstract Regular Model Checking semi-algorithm [2] refines a global regular abstraction of the system by symbolic successor (or predecessor) calculation; we reimplemented the basic idea in our setting; cegar: Counterexample Guided Abstraction Refinement is a semi-algorithmic approach that allows to start with a rough, safety-conservative abstraction that is refined along spurious counterexamples [4]; McScM started originally by porting this approach to CM relying on a novel notion of path invariant based refinement [6]; the implemented generic algorithm allows for a variety of parameterization (in particular, path invariant generation methods); lart: we implemented the lazy abstraction approach [9] based on the construction of an abstract reachability tree; each vertex of the tree contains an abstract region, which may be refined with the help of path invariants when needed;…”

Section: Safety Verification Of Communicating Machinesmentioning

confidence: 99%

“…However, our armc implementation is not able to cope with a simple non-regular protocol. As cegar allows a variety of additional parameters to the algorithm, we can fill the two gaps in the table by changing the underlying path invariant generation A B P B R P c / d lo a d -b a la n c e r lo a d -b a la n c e r ( e r r ) n e s t e d c / d n o n -r e g u la r P e t e r s o n P O P 3 s e r v e r / 2 c li e n t s s li d in g w in d o w s ( s im p li fi e d ) T C P T C P ( e r r o r ) t o k e n r in g (e.g., -tc-engine apinv-fwd -k-min -1 leads to 13.48s/15.56M iB (BRP) and 5.67s/10.72M iB (server)); however, there is also no default parameterization for cegar that can be shown to be superior (see [6] for details).…”

Section: A Closer Look On Verify's Modular Architecturementioning

confidence: 99%

See 1 more Smart Citation

McScM: A General Framework for the Verification of Communicating Machines

Heußner

Gall

Sutre

2012

Tools and Algorithms for the Construction and Analysis of Systems

Self Cite

View full text Add to dashboard Cite

Abstract. We present McScM, a platform for implementing and comparing verification algorithms for the class of finite-state processes exchanging messages over reliable, unbounded FIFO channels. McScM provides tools for the safety verification and controller synthesis of these infinite-state models. Our verification tool implements several modelchecking techniques: CEGAR with different abstraction-refinement methods, abstract interpretation, abstract regular model checking, and lazy abstraction. Seen as a general framework for the class of transition systems with finite control/infinite data, McScM delivers the basic infrastructure for implementing verification algorithms, and privileges to conveniently implement new ideas on a high level of abstraction. It also allows us to compare and benchmark different algorithmic approaches with the same backend.

show abstract

“…It also differs from the methodology described in [11] in the sense that in their framework, the authors try to infer from a distributed observation of a distributed system (modeled by a High Level Message Sequence Chart) the set of sequences that explains this observation. It is also different from model checking techniques [2,3,9,12] that proceed to a symbolic exploration of all the possible states of the system, without running it. We however use the same symbolic representation of queue contents as in [2,12].…”

Section: Introductionmentioning

confidence: 99%