formal methods tools
play

formal methods & tools. SpinS : Extending LTSmin with Promela - PowerPoint PPT Presentation

Nov 10, 2022 •819 likes •1.23k views

UNIVERSITY OF TWENTE. formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman Joint with Freark van der Berg Sept 17, 2012 Imperial College, London, UK ... ... Spin Model Checker Process Meta-Language (

  1. UNIVERSITY OF TWENTE. formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman Joint with Freark van der Berg Sept 17, 2012 Imperial College, London, UK

  2. ... ... Spin Model Checker Process Meta-Language ( Promela ) Spin’s strengths ◮ Popular tool - early adopter of latest techniques ◮ Highly optimized C code UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 2 / 19

  3. ... ... Spin Model Checker Process Meta-Language ( Promela ) Spin’s strengths ◮ Popular tool - early adopter of latest techniques ◮ Highly optimized C code Weakness ◮ Hard to extend UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 2 / 19

  4. ... ... SpinJa Model Checker A Java reimplementation of Spin by Mark de Jonge & Theo Ruys - University of Twente Strengths ◮ Layered OO Design - Easier to maintain & extend UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 3 / 19

  5. ... ... SpinJa Model Checker A Java reimplementation of Spin by Mark de Jonge & Theo Ruys - University of Twente Strengths ◮ Layered OO Design - Easier to maintain & extend Weaknesses ◮ No parallel algorithms, no state compression, etc ◮ At least a factor 5 slower UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 3 / 19

  6. ... ... Introducing the LTSmin Model Checker Initially, an LTS manipulation tool (explore, store, minimize). Developed at University of Twente Grown to a full-blown model checking tool set: Multi-core, Distributed, Symbolic, Sequential (algorithmic backends) × LTL, CTL, µ -calculus, invariants, etc (properties) × POR, state compression, saturation, chaining (optimizations) × µ CRL , mCRL2 , DVE ( DiVinE ), UPPAAL , PBES, ETF (language frontends) UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 4 / 19

  7. ... ... Goals LTSmin’s goals 1 develop new model checking algorithms 2 reuse existing model checking algorithms 3 compare model checking algorithms UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 5 / 19

  8. ... ... Goals LTSmin’s goals 1 develop new model checking algorithms 2 reuse existing model checking algorithms 3 compare model checking algorithms Good Promela support enables reuse of our algorithms and a multitude of comparisons! UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 5 / 19

  9. ... ... Approach SpinJa ’s and SpinS’ workflow: generate compile parse verify load Model.prom Model.java SpinJa Model.class SpinJa result

  10. ... ... Approach SpinJa ’s and SpinS’ workflow: generate compile parse verify load Model.prom Model.java SpinJa Model.class SpinJa result generate compile parse verify load Model.prom Model.spins SpinS Model.c LTSmin result

  11. ... ... Approach SpinJa ’s and SpinS’ workflow: generate compile parse verify load Model.prom Model.java SpinJa Model.class SpinJa result generate compile parse verify load Model.prom Model.spins SpinS Model.c LTSmin result pins UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 6 / 19

  12. ... ... The Partitioned Next-State Interface pins defines: ◮ A state vector type: S : � s 1 , . . . , s n � ◮ An initial state function: initial() : S ◮ A k -partitioned next-state function: next-state i ( S ): S ◮ A dependency matrix: D k × n with D i , j ∈ 2 { read , write } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 7 / 19

  13. ... ... The Partitioned Next-State Interface pins defines: ◮ A state vector type: S : � s 1 , . . . , s n � ◮ An initial state function: initial() : S ◮ A k -partitioned next-state function: next-state i ( S ): S ◮ A dependency matrix: D k × n with D i , j ∈ 2 { read , write } A few additional dependency matrixes with guard-information for partial order reduction. UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 7 / 19

  14. ... ... Promela Example (simplified) int x = 0; chan c; active proctype p1() { c?; } proctype p2() { byte y = 1; c!; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 8 / 19

  15. ... ... From Promela to a pins state vector int x = 0; chan c; active proctype p1() { c?; } proctype p2() { byte y = 1; c!; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 9 / 19

  16. ... ... From Promela to a pins state vector typedef struct state s { int x; int x = 0; struct proctype p1 { chan c; int pc; } p1; struct proctype p2 { active proctype p1() { int pc; c?; char y; } } p2; struct proctype init { proctype p2() { int pc; byte y = 1; } init; c!; } state t; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 9 / 19

  17. ... ... From Promela to a pins state vector typedef struct state s { int x; int x = 0; struct proctype p1 { chan c; int pc; } p1; struct proctype p2 { active proctype p1() { int pc; c?; char y; } } p2; struct proctype init { proctype p2() { int pc; byte y = 1; } init; c!; } state t; x = x + y; } state t ∗ initial() { state t ∗ s = malloc( sizeof (state t)); init { s -> x = 0; run p2(); s -> p1. pc = 0; x > 0; s -> p2. pc = − 1; } s -> p2.y = 1; s -> init. pc = 0; return s; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 9 / 19

  18. ... ... From Promela to a pins next-state and dependencies int x = 0; chan c; active proctype p1() { c?; } proctype p2() { byte y = 1; c!; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 10 / 19

  19. ... ... From Promela to a pins next-state and dependencies int x = 0; chan c; active proctype p1() { x=x+y x>0 run c! c? c?; p1 0 p1 0 } proctype p2() { byte y = 1; c!; p2 0 p2 1 p2 2 x = x + y; } init { run p2(); x > 0; } init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 10 / 19

  20. ... ... From Promela to a pins next-state and dependencies int x = 0; chan c; active proctype p1() { x=x+y x>0 run c! c? c?; p1 0 p1 0 } proctype p2() { × c byte y = 1; c!; p2 0 p2 1 p2 2 x = x + y; } init { × c run p2(); x > 0; } init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 10 / 19

  21. ... ... From Promela to a pins next-state and dependencies x=x+y c?/c! x>0 run p * 0 p * 1 p2 2 init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  22. ... ... From Promela to a pins next-state and dependencies x=x+y c?/c! x>0 run p * 0 p * 1 p2 2 (1) (2) (3) (4) init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  23. ... ... From Promela to a pins next-state and dependencies state t ∗ next − state( int i, state t ∗ in) { switch (i) { . . . case 2 : if (in -> p2. pc == 1) { state t ∗ out = malloc( sizeof (state t)); x=x+y c?/c! memcpy(out, in, sizeof (state t)); run x>0 p * 0 p * 1 p2 2 out -> p2. pc = 2; (4) (2) (1) (3) out -> x = out -> x + out -> p2.y; return out; } break ; . . . }} init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  24. ... ... From Promela to a pins next-state and dependencies state t ∗ next − state( int i, state t ∗ in) { switch (i) { . . . case 2 : if (in -> p2. pc == 1) { state t ∗ out = malloc( sizeof (state t)); x=x+y c?/c! memcpy(out, in, sizeof (state t)); x>0 run p * 0 p * 1 p2 2 out -> p2. pc = 2; (1) (2) (3) (4) out -> x = out -> x + out -> p2.y; return out; } break ; . . . }} Dependency matrix: x p1 p2 y init init 0 init 1 init 2 1 rw rw 2 rw rw r 3 rw rw 4 r rw UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  25. ... ... SpinS Extends SpinJa We extended SpinJa with: ◮ channel operations ( empty , full , etc) ◮ user-defined structures ( typedef ) ◮ pre-defined variables ( pid and nr pr ) ◮ channel polling and random receives ( ?[] and ?? ), ◮ remote references (@) ◮ preprocessor ( #if, #ifdef , #define f(a,b) , inline, and #include ) ◮ and others UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 12 / 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Formal Methods && Tools Group Stefania Gnesi F F F M&&T M&&T

Formal Methods && Tools Group Stefania Gnesi F F F M&&T M&&T

F F F Formal Methods && Tools Group Stefania Gnesi F F F M&&T M&&T M&&T June 27, 03 Formal Methods && Tools Group - ISTI CNR CAF - 1 F F F Outline Overview of the Formal Methods

276 views • 23 slides
Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby

Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby

Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby Computer Science Laboratory SRI International Menlo Park, CA John Rushby, SR I Practical Formal Methods: 1 Need: Growing Importance and Cost of

278 views • 12 slides
Front-end Technologies for Formal-Methods Tools Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI

Front-end Technologies for Formal-Methods Tools Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI

Front-end Technologies for Formal-Methods Tools Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI November 2013 Abstract Looking at the past decades of interactive (and automated) theorem proving, and tools that integrate both for program

461 views • 34 slides
Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical

Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical

Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical foundations of computer science 2 Formal Methods Logical foundations of computer science A language that machines can understand 2 Formal Methods

1.22k views • 121 slides
Methods and tools for design time and runtime formal analysis of security protocols and web

Methods and tools for design time and runtime formal analysis of security protocols and web

Methods and tools for design time and runtime formal analysis of security protocols and web applications Marco Rocchetto REsearch Group in I nformation S ecurity Department of Computer Science University of Verona, Italy Verona, May 8, 2015

731 views • 62 slides
Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why Formalisms? Relationships Flaws Some systems Conclusions Why Formal Methods? We already can build systems. Roman Engineers built

671 views • 12 slides
Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3. Course syllabus 4. Course objectives Introductory Lecture 5. Course organization 1. Lecturer 2. Formal Methods Name: Dilian Gurov Formal

56 views • 3 slides
Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations

Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations

Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations of computer science Formal Methods Logical foundations of computer science A language that machines can understand Formal Methods Logical

1.67k views • 123 slides
Formal Methods and Tools for Distributed Systems Thomas Ball Microsoft

Formal Methods and Tools for Distributed Systems Thomas Ball Microsoft

Formal Methods and Tools for Distributed Systems Thomas Ball Microsoft http://research.microsoft.com/~tball Outline 20 Years at Microsoft (1999-present) The great work of others at Microsoft 20 Years at Microsoft From EULA to SLA

888 views • 72 slides
Tools for Formal Methods: ICS, SAL, and Stateflow John Rushby Computer Science Laboratory SRI

Tools for Formal Methods: ICS, SAL, and Stateflow John Rushby Computer Science Laboratory SRI

Tools for Formal Methods: ICS, SAL, and Stateflow John Rushby Computer Science Laboratory SRI International Menlo Park, California, USA John Rushby, SRI ICS, SAL, and Stateflow: 1 Introduction Weve distributed the PVS Verification

978 views • 45 slides
Testing/Simulation Formal Analysis Real System Formal Model Partial coverage Complete coverage

Testing/Simulation Formal Analysis Real System Formal Model Partial coverage Complete coverage

Formal Methods Assurance for TTP John Rushby Computer Science Laboratory SRI International Menlo Park CA USA John Rushby, SR I Formal Methods Assurance for TTP: 1 Formal Methods for Analysis and Assurance: The Idea Testing/Simulation Formal

200 views • 6 slides
Generating and Solving Symbolic Parity Games Gijs Kant Jaco van de Pol Formal Methods &

Generating and Solving Symbolic Parity Games Gijs Kant Jaco van de Pol Formal Methods &

Generating and Solving Symbolic Parity Games Gijs Kant Jaco van de Pol Formal Methods & Tools University of Twente The Netherlands Games 2012, Napoli, Italia 1 / 26 Motivation Application: formal verification of process algebraic

531 views • 26 slides
Specifying circuit properties in PSL Formal methods Mathematical and logical methods used in

Specifying circuit properties in PSL Formal methods Mathematical and logical methods used in

Specifying circuit properties in PSL Formal methods Mathematical and logical methods used in system development Aim to increase confidence in riktighet of system Apply to both hardware and software 1 Formal methods Complement other

524 views • 25 slides
A Review of Formal Methods : 200514170 : (T4) (T4)

A Review of Formal Methods : 200514170 : (T4) (T4)

A Review of Formal Methods : 200514170 : (T4) (T4) Contents INTRODUCTION INTRODUCTION DEFINITION AND OVERVIEW OF FORMAL METHODS SPECIFICATION METHODS LIFE CYCLES AND

317 views • 19 slides
Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process

Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process

Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process What are Formal Methods? Advantages and Disadvantages of Formal Methods Formal Methods in the Requirement Process Mathematical Formulas

561 views • 20 slides
INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for

INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for

INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for Summer, 2008 Michele Rousseau Lecture Note 10 Effort Estimation Announcements Assignment #3 is due on Monday Quiz #3 regrades are due today

647 views • 21 slides
Validatetools Edwin de Jonge, Statistics Netherlands @edwindjonge | github.com/edwindj eRum2018

Validatetools Edwin de Jonge, Statistics Netherlands @edwindjonge | github.com/edwindj eRum2018

Validatetools Edwin de Jonge, Statistics Netherlands @edwindjonge | github.com/edwindj eRum2018 Who am I? Data scientist / Methodologist at Statistics Netherlands (aka CBS). Author of several R-packages, including whisker , validate ,

278 views • 23 slides
Dealing with Artificially Dichotomized Variables in Meta-Analytic Structural Equation Modeling

Dealing with Artificially Dichotomized Variables in Meta-Analytic Structural Equation Modeling

Dealing with Artificially Dichotomized Variables in Meta-Analytic Structural Equation Modeling Hannelies de Jonge, Suzanne Jak, & Kees Jan Kan University of Amsterdam H.deJonge@uva.nl Psychoco 2020: International Workshop on Psychometric

514 views • 15 slides
UI Automation CocoaConf PDX 2013 Jonathan Penn @jonathanpenn Slides n Sample Code

UI Automation CocoaConf PDX 2013 Jonathan Penn @jonathanpenn Slides n Sample Code

UI Automation CocoaConf PDX 2013 Jonathan Penn @jonathanpenn Slides n Sample Code cocoamanifest.net/features T e problem Wash. Rinse. Repeat. So...? First, some theory... Edge Cases Wired up right? T ink like a user Show me the

489 views • 26 slides
Automating MongoDB Clusters Jonathan Rudenberg @"tanous Flynn is an easy PaaS Flynn git

Automating MongoDB Clusters Jonathan Rudenberg @"tanous Flynn is an easy PaaS Flynn git

Automating MongoDB Clusters Jonathan Rudenberg @"tanous Flynn is an easy PaaS Flynn git push and Docker deploys HTTPS load balancing Log aggrega<on Everything is highly available Flynn TCP load balancing Service discovery with DNS

359 views • 34 slides
APPLICATION DEVELOPMENT LECTURE 1: INTRODUCTION class AppDev { Part of SmartProducts }

APPLICATION DEVELOPMENT LECTURE 1: INTRODUCTION class AppDev { Part of SmartProducts }

APPLICATION DEVELOPMENT LECTURE 1: INTRODUCTION class AppDev { Part of SmartProducts } INTRODUCTION APPLICATION DEVELOPMENT Intro to course Assignments Fjodor van Slooten slides & clips @ vanslooten.com/appdev W241 (Horst-wing

253 views • 11 slides
APNA 30th Annual Conference Session 2024: October 20, 2016 B UILDING AND S USTAINING R ESILIENCE

APNA 30th Annual Conference Session 2024: October 20, 2016 B UILDING AND S USTAINING R ESILIENCE

APNA 30th Annual Conference Session 2024: October 20, 2016 B UILDING AND S USTAINING R ESILIENCE FOR N URSE L EADERS IN M ENTAL H EALTH N URSING Chelsie Monroe, MSN, APN, PMHNP-BC Audrey Nottke, MBA, MS, BSN RN PMH-BC D ISCLOSURES The speakers

123 views • 8 slides
Attribute Grammars for Modular Disambiguation Valentin David 1 Akim Demaille 2 Olivier Gournet 2 1

Attribute Grammars for Modular Disambiguation Valentin David 1 Akim Demaille 2 Olivier Gournet 2 1

Attribute Grammars for Modular Disambiguation Valentin David 1 Akim Demaille 2 Olivier Gournet 2 1 Bergen University Norway 2 EPITA Research and Development Laboratory (LRDE) France International Conference on Intelligent Computer

679 views • 45 slides
Introduction to Today Generic Language Technology Tools for software analysis and

Introduction to Today Generic Language Technology Tools for software analysis and

Introduction to Today Generic Language Technology Tools for software analysis and manipulation Mark van den Brand Programming language independent (parametric) Paul Klint The story is from the IDE/PE perspective The story is from

208 views • 10 slides

More recommend