a promela front end for spot
play

A Promela front-end for Spot Guillaume Sadegh LRDE EPITA Research - PowerPoint PPT Presentation

Jun 01, 2023 •564 likes •1k views

Introduction Promela and state-space generation Implementation Benchmark Conclusion A Promela front-end for Spot Guillaume Sadegh LRDE EPITA Research and Development Laboratory July 02, 2008 Guillaume Sadegh A Promela front-end for

  1. Introduction Promela and state-space generation Implementation Benchmark Conclusion A Promela front-end for Spot Guillaume Sadegh LRDE – EPITA Research and Development Laboratory July 02, 2008 Guillaume Sadegh A Promela front-end for Spot 1 / 27

  2. Introduction Promela and state-space generation Implementation Benchmark Conclusion Spot [Duret-Lutz and Poitrenaud, 2004] Reminder. . . ◮ Model Checking library. ◮ Set of algorithms and data type to build a model checker. ◮ Relies on the automata-theoretic approach to model checking. Guillaume Sadegh A Promela front-end for Spot 2 / 27

  3. Introduction Promela and state-space generation Implementation Benchmark Conclusion Automata-theoretic approach High-level model LTL formula M ϕ Guillaume Sadegh A Promela front-end for Spot 3 / 27 Figure: Automata-theoretic approach to model-checking.

  4. Introduction Promela and state-space generation Implementation Benchmark Conclusion Automata-theoretic approach High-level model LTL formula M ϕ State-graph LTL-to-Büchi generation translation State-graph Negated formula automaton automaton A M A ¬ ϕ Guillaume Sadegh A Promela front-end for Spot 3 / 27 Figure: Automata-theoretic approach to model-checking.

  5. Introduction Promela and state-space generation Implementation Benchmark Conclusion Automata-theoretic approach High-level model LTL formula M ϕ State-graph LTL-to-Büchi generation translation State-graph Negated formula automaton automaton A M Synch. product A ¬ ϕ Product automaton A M ⊗ A ¬ ϕ Guillaume Sadegh A Promela front-end for Spot 3 / 27 Figure: Automata-theoretic approach to model-checking.

  6. Introduction Promela and state-space generation Implementation Benchmark Conclusion Automata-theoretic approach High-level model LTL formula M ϕ State-graph LTL-to-Büchi generation translation State-graph Negated formula automaton automaton A M Synch. product A ¬ ϕ Product automaton A M ⊗ A ¬ ϕ Emptiness check M | = ϕ or counter-example Guillaume Sadegh A Promela front-end for Spot 3 / 27 Figure: Automata-theoretic approach to model-checking.

  7. Introduction Promela and state-space generation Implementation Benchmark Conclusion Automata-theoretic approach High-level model LTL formula M ϕ State-graph LTL-to-Büchi generation translation State-graph Negated formula automaton automaton A M Synch. product A ¬ ϕ Product automaton A M ⊗ A ¬ ϕ Emptiness check M | = ϕ or counter-example Provided by Spot Guillaume Sadegh A Promela front-end for Spot 3 / 27 Figure: Automata-theoretic approach to model-checking.

  8. Introduction Promela and state-space generation Implementation Benchmark Conclusion Automata-theoretic approach Missing High-level model LTL formula M ϕ State-graph LTL-to-Büchi generation translation State-graph Negated formula automaton automaton A M Synch. product A ¬ ϕ Product automaton A M ⊗ A ¬ ϕ Emptiness check M | = ϕ or counter-example Provided by Spot Guillaume Sadegh A Promela front-end for Spot 3 / 27 Figure: Automata-theoretic approach to model-checking.

  9. Introduction Promela and state-space generation Implementation Benchmark Conclusion Adding a Promela front-end Why 1. To work on more abstract models. 2. To take advantage of a large set of models. 3. To compare Spot and another model checker (S PIN ). Guillaume Sadegh A Promela front-end for Spot 4 / 27

  10. Introduction Promela and state-space generation Implementation Benchmark Conclusion Outline 1 Promela and state-space generation Implementation 2 Existing hack N IPS Virtual Machine Benchmark 3 Conclusion 4 Guillaume Sadegh A Promela front-end for Spot 5 / 27

  11. Introduction Promela and state-space generation Implementation Benchmark Conclusion Outline 1 Promela and state-space generation Implementation 2 Existing hack N IPS Virtual Machine Benchmark 3 Conclusion 4 Guillaume Sadegh A Promela front-end for Spot 6 / 27

  12. Introduction Promela and state-space generation Implementation Benchmark Conclusion Promela High-level modeling language Overview ◮ The modeling language of the S PIN model checker [Holzmann, 1990]. ◮ To represent concurrent systems with abstraction. Why Promela ? 1. S PIN is the most used model-checker worldwide. 2. There is a large collection of Promela models to test or use with our algorithms. Guillaume Sadegh A Promela front-end for Spot 7 / 27

  13. Introduction Promela and state-space generation Implementation Benchmark Conclusion Promela High-level modeling language Overview ◮ The modeling language of the S PIN model checker [Holzmann, 1990]. ◮ To represent concurrent systems with abstraction. Why Promela ? 1. S PIN is the most used model-checker worldwide. 2. There is a large collection of Promela models to test or use with our algorithms. Guillaume Sadegh A Promela front-end for Spot 7 / 27

  14. Introduction Promela and state-space generation Implementation Benchmark Conclusion Promela semantics A Promela program is a set of ◮ Processes. ◮ Message channels. ◮ Variables. Let’s see an example. Guillaume Sadegh A Promela front-end for Spot 8 / 27

  15. Introduction Promela and state-space generation Implementation Benchmark Conclusion Promela example The dinning philosopher problem Dining philosophers problem ✞ ☎ chan stick_1 = [ 1 ] of { bool } ; chan stick_2 = [ 1 ] of { bool } ; byte p1 , p2 ; / ∗ Id of processes ∗ / proctype philo ( chan l e f t _ s t i c k , r i g h t _ s t i c k ) { do : : l e f t _ s t i c k ?_ ; / ∗ Wait f o r data from the l e f t s t i c k ∗ / take_r : r i g h t _ s t i c k ?_ ; / ∗ Wait f o r data from the r i g h t s t i c k ∗ / release_l : l e f t _ s t i c k ! 1 ; / ∗ F i l l the l e f t s t i c k ∗ / release_r : r i g h t _ s t i c k ! 1 ; / ∗ F i l l the r i g h t s t i c k ∗ / od } i n i t { atomic { stick_1 ! 1 ; stick_2 ! 1 ; p1 = run philo ( stick_1 , stick_2 ) ; / ∗ Philosopher 1 ∗ / p2 = run philo ( stick_2 , stick_1 ) ; / ∗ Philosopher 2 ∗ / } } ✝ ✆ Guillaume Sadegh A Promela front-end for Spot 9 / 27

  16. Introduction Promela and state-space generation Implementation Benchmark Conclusion State-space generation with the philosophers p[p1]@take_r p[p1]@release_l p[p1]@release_r stick_1: f stick_2: f p[p2]@ proctype philo( chan left_s, right_s) take_r { do :: left_s?_; /* Wait */ p[p2]@ take_r: right_s?_; /* Wait */ release_l release_l: left_s!1; /* Send */ release_r: right_s!1; /* Send */ od p[p2]@ } release_r Guillaume Sadegh A Promela front-end for Spot 10 / 27

  17. Introduction Promela and state-space generation Implementation Benchmark Conclusion State-space generation with the philosophers p[p1]@take_r p[p1]@release_l p[p1]@release_r stick_1: f stick_1: e stick_2: f stick_2: f p[p2]@ stick_1: f proctype philo( chan left_s, right_s) take_r stick_2: e { do :: left_s?_; /* Wait */ p[p2]@ take_r: right_s?_; /* Wait */ release_l release_l: left_s!1; /* Send */ release_r: right_s!1; /* Send */ od p[p2]@ } release_r Guillaume Sadegh A Promela front-end for Spot 10 / 27

  18. Introduction Promela and state-space generation Implementation Benchmark Conclusion State-space generation with the philosophers p[p1]@take_r p[p1]@release_l p[p1]@release_r stick_1: f stick_1: e stick_1: e stick_2: f stick_2: f stick_2: e p[p2]@ stick_1: f stick_1: e proctype philo( chan left_s, right_s) take_r stick_2: e stick_2: e { do :: left_s?_; /* Wait */ p[p2]@ stick_1: e take_r: right_s?_; /* Wait */ release_l stick_2: e release_l: left_s!1; /* Send */ release_r: right_s!1; /* Send */ od p[p2]@ } release_r Guillaume Sadegh A Promela front-end for Spot 10 / 27

  19. Introduction Promela and state-space generation Implementation Benchmark Conclusion State-space generation with the philosophers p[p1]@take_r p[p1]@release_l p[p1]@release_r stick_1: f stick_1: e stick_1: e stick_1: f stick_2: f stick_2: f stick_2: e stick_2: e p[p2]@ stick_1: f stick_1: e proctype philo( chan left_s, right_s) take_r stick_2: e stick_2: e { do :: left_s?_; /* Wait */ p[p2]@ stick_1: e take_r: right_s?_; /* Wait */ release_l stick_2: e release_l: left_s!1; /* Send */ release_r: right_s!1; /* Send */ od p[p2]@ stick_1: e } release_r stick_2: f Guillaume Sadegh A Promela front-end for Spot 10 / 27

  20. Introduction Promela and state-space generation Implementation Benchmark Conclusion State-space generation with the philosophers p[p1]@take_r p[p1]@release_l p[p1]@release_r stick_1: f stick_1: e stick_1: e stick_1: f stick_2: f stick_2: f stick_2: e stick_2: e p[p2]@ stick_1: f stick_1: e proctype philo( chan left_s, right_s) take_r stick_2: e stick_2: e { do :: left_s?_; /* Wait */ p[p2]@ stick_1: e take_r: right_s?_; /* Wait */ release_l stick_2: e release_l: left_s!1; /* Send */ release_r: right_s!1; /* Send */ od p[p2]@ stick_1: e } release_r stick_2: f Guillaume Sadegh A Promela front-end for Spot 10 / 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Linear Temporal Logic, Critical Sections and Promela Modelling Dr. Liam OConnor University of

Linear Temporal Logic, Critical Sections and Promela Modelling Dr. Liam OConnor University of

Linear Temporal Logic Promela Critical Sections Linear Temporal Logic, Critical Sections and Promela Modelling Dr. Liam OConnor University of Edinburgh LFCS (and UNSW) Term 2 2020 1 Linear Temporal Logic Promela Critical Sections Where

1.12k views • 98 slides
Linear Temporal Logic, Critical Sections and Promela Modelling Dr. Liam OConnor University of

Linear Temporal Logic, Critical Sections and Promela Modelling Dr. Liam OConnor University of

Linear Temporal Logic Promela Critical Sections Linear Temporal Logic, Critical Sections and Promela Modelling Dr. Liam OConnor University of Edinburgh LFCS (and UNSW) Term 2 2020 1 Linear Temporal Logic Promela Critical Sections Where

569 views • 35 slides
About the guy in front Conservation Biology BSC3052 About the guy in front About the guy in

About the guy in front Conservation Biology BSC3052 About the guy in front About the guy in

About the guy in front Conservation Biology BSC3052 About the guy in front About the guy in front About the guy in front About the guy in front PhD 1994 in Switzerland Evolutionary genetics 1994 move to Seattle Theoretical population

290 views • 7 slides
Cotton Incorporated TARGET SPOT UPDATE A. K. Hagan Auburn University TARGET SPOT Target Spot

Cotton Incorporated TARGET SPOT UPDATE A. K. Hagan Auburn University TARGET SPOT Target Spot

Cotton Incorporated TARGET SPOT UPDATE A. K. Hagan Auburn University TARGET SPOT Target Spot Ascochyta Blight Easily confused with Ascochyta Blight and Myrothecium Leaf Spot which are seen on 3 to 5 leaf cotton Target Spot thru first bloom.

337 views • 30 slides
SYSTEM UNILEVEL STRUCTURE YOU

SYSTEM UNILEVEL STRUCTURE YOU

GLOBAL BLOCKCHAIN COMMUNITY TM 2020 ACCELERATED REFERRAL REWARD SYSTEM UNILEVEL STRUCTURE YOU OPEN SPOT OPEN SPOT OPEN SPOT OPEN SPOT

714 views • 17 slides
formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman

formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman

UNIVERSITY OF TWENTE. formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman Joint with Freark van der Berg Sept 17, 2012 Imperial College, London, UK ... ... Spin Model Checker Process Meta-Language (

1.23k views • 39 slides
FDP101X: Lab Assignment 2 REFLECTION SPOT ACTIVITY IMAGE ON ALU IN MICROPROCESSOR Reflection

FDP101X: Lab Assignment 2 REFLECTION SPOT ACTIVITY IMAGE ON ALU IN MICROPROCESSOR Reflection

FDP101X: Lab Assignment 2 REFLECTION SPOT ACTIVITY IMAGE ON ALU IN MICROPROCESSOR Reflection Spot time stamp : #Reflection Spot time: (12.12) Reflection Spot question What is ALU? Answer ALU is a temperory register used to hold

186 views • 15 slides
How Yelp.com Runs on Apache Mesos in AWS Spot Fleet for Fun and Profit (75% Off) Kyle Anderson -

How Yelp.com Runs on Apache Mesos in AWS Spot Fleet for Fun and Profit (75% Off) Kyle Anderson -

How Yelp.com Runs on Apache Mesos in AWS Spot Fleet for Fun and Profit (75% Off) Kyle Anderson - Yelp Yelps Mission Connecting people with great local businesses. Part 0: Spot / Spot Fleet Primer Part 1: Spot Fleet management + Mesos

1.06k views • 53 slides
Verifying the CPA Networking Stack using SPIN/Promela Kevin Chalmers and Jon Kerridge Edinburgh

Verifying the CPA Networking Stack using SPIN/Promela Kevin Chalmers and Jon Kerridge Edinburgh

Verifying the CPA Networking Stack using SPIN/Promela Kevin Chalmers and Jon Kerridge Edinburgh Napier University Breakdown Introduction and Motivation CPA Networking Stack Architecture Operation SPIN Model of the CPA

468 views • 26 slides
Take the Top Spot by Transforming IT 157 157 Failure itself is not fatal, but failure to

Take the Top Spot by Transforming IT 157 157 Failure itself is not fatal, but failure to

Take the Top Spot by Transforming IT 157 157 Failure itself is not fatal, but failure to change might be. Legendary basketball coach John Wooden Transformation is the only way to take the top spot Transformed organizations:

387 views • 17 slides
SPOT App Syntax-Prosody in OT Jenny Bellik & Nick Kalivoda, UC Santa Cruz October 7, 2018 @

SPOT App Syntax-Prosody in OT Jenny Bellik & Nick Kalivoda, UC Santa Cruz October 7, 2018 @

SPOT App Syntax-Prosody in OT Jenny Bellik & Nick Kalivoda, UC Santa Cruz October 7, 2018 @ the Annual Meeting on Phonology SPOT interface: https://people.ucsc.edu/~jbellik/research/spot/interface1.html Thanks to Ozan Bellik Armin Mester

736 views • 31 slides
#join Front JellyBox Build: 21_LCD Front In this video, we add the front piece to the rest of the

#join Front JellyBox Build: 21_LCD Front In this video, we add the front piece to the rest of the

#join Front JellyBox Build: 21_LCD Front In this video, we add the front piece to the rest of the JellyBox. _______________________________________________________ Title: You Will Need: LCD display Front acrylic piece (it says IMADE3D

310 views • 5 slides
Front Office Department Introduction Reception The front office is the most visible

Front Office Department Introduction Reception The front office is the most visible

Front Office Department Introduction Reception The front office is the most visible department in a hotel and the front desk Grooming Standards for Ladies typically occupies a prominent place in the hotels lobby. Guests come to the

278 views • 13 slides
Flooding If the spot on the drawing is not empty return Color the spot using c

Flooding If the spot on the drawing is not empty return Color the spot using c

Flooding If the spot on the drawing is not empty return Color the spot using c Create a to-do list with spot as its element While the to-do list is not empty Pop an element from the to-do list and assign it to v

699 views • 66 slides
Tutorial 2: Promela/Spin Running Spin General Usage and Tips CISC422/853 Advice for

Tutorial 2: Promela/Spin Running Spin General Usage and Tips CISC422/853 Advice for

Overview Installing Spin Starting Spin Tutorial 2: Promela/Spin Running Spin General Usage and Tips CISC422/853 Advice for Assignment 2 Scott Grant Installing Spin Installing jSpin Spin has a few distributions

256 views • 10 slides
I- -66 Spot Improvement Design Study 66 Spot Improvement Design Study I 1 Spot Improvement

I- -66 Spot Improvement Design Study 66 Spot Improvement Design Study I 1 Spot Improvement

I- -66 Spot Improvement Design Study 66 Spot Improvement Design Study I 1 Spot Improvement Results Feasibility Study Results Agenda Agenda Next Steps Overview I - -66 I nside the Beltway 66 I nside the Beltway I

399 views • 23 slides
FOSS Outreach Program for Women (OPW) Linux Kernel Internship Report What is OPW? Organized

FOSS Outreach Program for Women (OPW) Linux Kernel Internship Report What is OPW? Organized

FOSS Outreach Program for Women (OPW) Linux Kernel Internship Report What is OPW? Organized by the GNOME Foundation Goal: Get more women into open source Internship: 3 months $5,500 stipend Paired with mentor Program

487 views • 36 slides
When the plain sense of Scripture makes common sense, make no other sense, therefore take every

When the plain sense of Scripture makes common sense, make no other sense, therefore take every

When the plain sense of Scripture makes common sense, make no other sense, therefore take every word at its ordinary, usual, literal meaning, unless the facts of the immediate context studied in the light of related passages and axiomatic and

496 views • 12 slides
Intuitionistic Epistemic Logic Tudor Protopopescu Higher School of Economics, Moscow Institute

Intuitionistic Epistemic Logic Tudor Protopopescu Higher School of Economics, Moscow Institute

Intuitionistic Epistemic Logic Tudor Protopopescu Higher School of Economics, Moscow Institute of Philosophy, Russian Academy of Sciences November 15, 2017 Tudor Protopopescu (HSE) Intuitionistic Epistemic Logic IP RAS 15/11/17 1 / 43

933 views • 44 slides
Philosophy 15 AI Slides (5e) c Lin Zuoquan@PKU 2003-2019 15 1 15 Philosophy 15.1 AI

Philosophy 15 AI Slides (5e) c Lin Zuoquan@PKU 2003-2019 15 1 15 Philosophy 15.1 AI

Philosophy 15 AI Slides (5e) c Lin Zuoquan@PKU 2003-2019 15 1 15 Philosophy 15.1 AI philosophy 15.2 Weak AI 15.3 Strong AI 15.4 Ethics 15.5 The future of AI AI Slides (5e) c Lin Zuoquan@PKU 2003-2019 15 2 AI Philosophy Big

1.03k views • 25 slides
The post-quantum Internet IP: Internet Protocol Daniel J. Bernstein IP communicates

The post-quantum Internet IP: Internet Protocol Daniel J. Bernstein IP communicates

1 2 The post-quantum Internet IP: Internet Protocol Daniel J. Bernstein IP communicates packets: limited-length byte strings. University of Illinois at Chicago & Technische Universiteit Eindhoven Each computer on the Internet has

1.36k views • 97 slides
polemic foundation for Christian service. Now comes the practical foundation for Christian

polemic foundation for Christian service. Now comes the practical foundation for Christian

The first 8 verses comprise the polemic foundation for Christian service. Now comes the practical foundation for Christian service. Romans 12:1-8 Compelled To Be A Servant (1) I. Changed To Be A Servant (2) II. III. Challenged To Be

535 views • 26 slides
OVERVIEW Key figures involved How it operated Some key initiatives NOTTING HILL SOCIAL

OVERVIEW Key figures involved How it operated Some key initiatives NOTTING HILL SOCIAL

T HE N OTTING H ILL S OCIAL C OUNCIL T ANK G REEN , IAM @ TANKGREEN . COM OVERVIEW Key figures involved How it operated Some key initiatives NOTTING HILL SOCIAL COUNCIL Est. 1960 Revd David Mason Notting Hill Methodist

406 views • 12 slides
Constructive Identities for Physics Andrei Rodin 17 juillet 2014 Andrei Rodin Constructive

Constructive Identities for Physics Andrei Rodin 17 juillet 2014 Andrei Rodin Constructive

Outline Axiomatization of Physics Identity and Objecthood Conclusions Constructive Identities for Physics Andrei Rodin 17 juillet 2014 Andrei Rodin Constructive Identities for Physics Outline Axiomatization of Physics Identity and

934 views • 75 slides

More recommend