Verifying Concurrent Message-Passing C Programs with Recursive Calls

Chaki, Sagar; Clarke, Edmund M.; Kidd, Nicholas; Reps, Thomas; Touili, Tayssir

doi:10.1007/11691372_22

Cited by 57 publications

(61 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Chaki et al [2] do this in a different context, namely the verification of concurrent C programs; an implementation was incorporated into the model checker MAGIC [3].…”

Section: Conclusion and Further Workmentioning

confidence: 99%

Unbounded Model-Checking with Interpolation for Regular Language Constraints

Gange

Navas

Stuckey

et al. 2013

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

Abstract. We present a decision procedure for the problem of, given a set of regular expressions R1, . . . , Rn, determining whether R = R1 ∩ · · · ∩ Rn is empty. Our solver, revenant, finitely unrolls automata for R1, . . . , Rn, encoding each as a set of propositional constraints. If a SAT solver determines satisfiability then R is non-empty. Otherwise our solver uses unbounded model checking techniques to extract an interpolant from the bounded proof. This interpolant serves as an overapproximation of R. If the solver reaches a fixed-point with the constraints remaining unsatisfiable, it has proven R to be empty. Otherwise, it increases the unrolling depth and repeats. We compare revenant with other stateof-the-art string solvers. Evaluation suggests that it behaves better for constraints that express the intersection of sets of regular languages, a case of interest in the context of verification.

show abstract

“…Chaki et al [2] do this in a different context, namely the verification of concurrent C programs; an implementation was incorporated into the model checker MAGIC [3].…”

Section: Conclusion and Further Workmentioning

confidence: 99%

Unbounded Model-Checking with Interpolation for Regular Language Constraints

Gange

Navas

Stuckey

et al. 2013

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

show abstract

“…, C n ), we define the target language of a CPDS CP with respect to S as Lang(CP, S) = 1≤i≤n Lang(P i , C i ), where intersection enforces that all the P i synchronize on the global actions. The goal of the CPDS model checker [3] is to determine if Lang(CP, S) is empty. Because each language Lang(P i , C i ) can be, in general, a context-free language, and the problem of checking their intersection for emptiness is known to be undecidable, the CPDS model checker algorithm is only a semi-decision procedure.…”

Section: Definitionmentioning

confidence: 99%

“…Additionally, in some cases, the semi-decision procedure can determine that Lang(CP, S) = ∅. We refer the reader to [3] for more details.…”

Section: Definitionmentioning

confidence: 99%

“…4 In Empire, a problematic interleaving scenario with respect to a set of shared memory locations is used as an input specification to a model checker. Specifically, Empire translates a concurrent Java program into a communicating pushdown system (CPDS) [2,3], and translates the scenario into a violation monitor that checks for the occurrence of the scenario, and runs concurrently with the other CPDS processes. Once the translation is performed, the generated CPDS is fed into a CPDS model checker [3].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Finding concurrency-related bugs using random isolation

Kidd

Reps

Dolby

et al. 2011

Int J Softw Tools Technol Transfer

View full text Add to dashboard Cite

Abstract. This paper describes the methods used in Empire, a tool to detect concurrency-related bugs, namely atomic-set serializability violations in Java programs. The correctness criterion is based on atomic sets of memory locations, which share a consistency property, and units of work, which preserve consistency when executed sequentially. Empire checks that, for each atomic set, its units of work are serializable. This notion subsumes data races (single-location atomic sets), and serializability (all locations in one atomic set).To obtain a sound, finite model of locking behavior for use in Empire, we devised a new abstraction principle, random isolation, which allows strong updates to be performed on the abstract counterpart of each randomly-isolated object. This permits Empire to track the status of a Java lock, even for programs that use an unbounded number of locks. The advantage of random isolation is that properties proved about a randomly-isolated object can be generalized to all objects allocated at the same site. We ran Empire on eight programs from the ConTest benchmark suite, for which Empire detected numerous violations.

show abstract

“…A context switch consists in a transfer of control from one process to another. This result allows for the discovery of many errors, since they typically manifest themselves after a few context switches [8,18,23]. Other approaches to analyzing multithreaded programs restrict the kind of communication between processes [18,26], or compute over-approximations of the set of reachable states [5].…”

Section: Introductionmentioning

confidence: 99%

Realizability of concurrent recursive programs

Bollig¹,

Grindei²,

Habermehl

2017

Form Methods Syst Des

View full text Add to dashboard Cite

Abstract. We define and study an automata model of concurrent recursive programs. An automaton consists of a finite number of pushdown systems running in parallel and communicating via shared actions. Actually, we combine multi-stack visibly pushdown automata and Zielonka's asynchronous automata towards a model with an undecidable emptiness problem. However, a reasonable restriction allows us to lift Zielonka's Theorem to this recursive setting and permits a logical characterization in terms of a suitable monadic second-order logic. Building on results from Mazurkiewicz trace theory and recent work by La Torre, Madhusudan, and Parlato, we thus develop a framework for the specification, synthesis, and verification of concurrent recursive processes.

show abstract

Verifying Concurrent Message-Passing C Programs with Recursive Calls

Cited by 57 publications

References 26 publications

Unbounded Model-Checking with Interpolation for Regular Language Constraints

Unbounded Model-Checking with Interpolation for Regular Language Constraints

Finding concurrency-related bugs using random isolation

Realizability of concurrent recursive programs

Contact Info

Product

Resources

About