Proof Spaces for Unbounded Parallelism

FarzanAzadeh,; KincaidZachary,; PodelskiAndreas,

doi:10.1145/2775051.2677012

Cited by 12 publications

(15 citation statements)

References 44 publications

(49 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…One future direction is to adapt this technique for practical program verification. In this context, adapting our technique within the automata-theoretic technique of [15,17,16,12,10] seems most promising. Second, there are several program verification techniques that use EPR, and in several of these, EPR is used mainly to establish a linear order on the universe [20].…”

Section: Discussionmentioning

confidence: 99%

“…A notable verification technique with an automata-theoretic foundation and that has been very effective in practice is that of trace abstraction due to Heizmann et al [15,16,17,10,11,12]. In this technique, one constructs iteratively regular sets that (incompletely) capture the set of all infeasible executions, eventually striving to cover all failing executions of a program, but handling complex theories such as arithmetic.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

What’s Decidable About Program Verification Modulo Axioms?

Mathur

Madhusudan

Viswanathan

2020

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

We consider the decidability of the verification problem of programs modulo axioms -automatically verifying whether programs satisfy their assertions, when the function and relation symbols are interpreted as arbitrary functions and relations that satisfy a set of first-order axioms. Though verification of uninterpreted programs (with no axioms) is already undecidable, a recent work introduced a subclass of coherent uninterpreted programs, and showed that they admit decidable verification [26]. We undertake a systematic study of various natural axioms for relations and functions, and study the decidability of the coherent verification problem. Axioms include relations being reflexive, symmetric, transitive, or total order relations, functions restricted to being associative, idempotent or commutative, and combinations of such axioms as well. Our comprehensive results unearth a rich landscape that shows that though several axiom classes admit decidability for coherent programs, coherence is not a panacea as several others continue to be undecidable. 1 We adapt the definition in a way that preserves the spirit of the definition of coherence. Moreover, if we do not adapt the definition, essentially all axioms classes we study in this paper would be undecidable.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

What’s Decidable About Program Verification Modulo Axioms?

Mathur

Madhusudan

Viswanathan

2020

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

show abstract

“…Similar to our SMT queries based on schemas, the inductive data flow graphs iDFG introduced in [24] are a succinct representations of schedules (they call them traces) for systems where the number of processes (or threads) is fixed. The work presented in [25] then considers parameterized verification. Further, our execution schemas are inspired by a general notion of semi-linear path schemas SLPS [45,46].…”

Section: Discussion and Related Workmentioning

confidence: 99%

Para $$^2$$ 2 : parameterized path reduction, acceleration, and SMT for reachability in threshold-guarded distributed algorithms

Konnov

Lazić

Veith

et al. 2017

Form Methods Syst Des

View full text Add to dashboard Cite

Automatic verification of threshold-based fault-tolerant distributed algorithms (FTDA) is challenging: FTDAs have multiple parameters that are restricted by arithmetic conditions, the number of processes and faults is parameterized, and the algorithm code is parameterized due to conditions counting the number of received messages. Recently, we introduced a technique that first applies data and counter abstraction and then runs bounded model checking (BMC). Given an FTDA, our technique computes an upper bound on the diameter of the system. This makes BMC complete for reachability properties: it always finds a counterexample, if there is an actual error. To verify state-of-the-art FTDAs, further improvement is needed. In contrast to encoding bounded executions of a counter system over an abstract finite domain in SAT, in this paper, we encode bounded executions over integer counters in SMT. In addition, we introduce a new form of reduction that exploits acceleration and the structure of the FTDAs. This aggressively prunes the execution space to be explored by the solver. In this way, we verified safety of seven FTDAs that were out of reach before.

show abstract

“…8-14: miscellaneous: 8-10 [24], 11 [15], 12 is the example from Sec. 2,[13][14] are the buggy and fixed versions of an Elevator controller [11].…”

Section: Empirical Evaluationmentioning

confidence: 99%

“…Our approach can be categorized as a cutoff detection technique [12,1,14,27]. Cutoffs are, however, typically determined statically, often leaving them too large for practical verification.…”

Section: Related Workmentioning

confidence: 99%

Verifying Asynchronous Event-Driven Programs Using Partial Abstract Transformers

Liu

Wahl

Lal

2019

Computer Aided Verification

View full text Add to dashboard Cite

We address the problem of analyzing asynchronous eventdriven programs, in which concurrent agents communicate via unbounded message queues. The safety verification problem for such programs is undecidable. We present in this paper a technique that combines queuebounded exploration with a convergence test: if the sequence of certain abstractions of the reachable states, for increasing queue bounds k, converges, we can prove any property of the program that is preserved by the abstraction. If the abstract state space is finite, convergence is guaranteed ; the challenge is to catch the point kmax where it happens. We further demonstrate how simple invariants formulated over the concrete domain can be used to eliminate spurious abstract states, which otherwise prevent the sequence from converging. We have implemented our technique for the P programming language for event-driven programs. We show experimentally that the sequence of abstractions often converges fully automatically, in hard cases with minimal designer support in the form of sequentially provable invariants, and that this happens for a value of kmax small enough to allow the method to succeed in practice.

show abstract

Proof Spaces for Unbounded Parallelism

Cited by 12 publications

References 44 publications

What’s Decidable About Program Verification Modulo Axioms?

What’s Decidable About Program Verification Modulo Axioms?

Para $$^2$$ 2 : parameterized path reduction, acceleration, and SMT for reachability in threshold-guarded distributed algorithms

Verifying Asynchronous Event-Driven Programs Using Partial Abstract Transformers

Contact Info

Product

Resources

About