the software model checker blast applications to software
play

The Software Model Checker BLAST: Applications to Software - PowerPoint PPT Presentation

Jun 29, 2023 •331 likes •456 views

The Software Model Checker BLAST: Applications to Software Engineering Dirk Beyer, Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar Int. Journal on Software Tools for Technology Transfer, 2007 Stefan Buchholz March 17, 2009 1 Model

  1. The Software Model Checker BLAST: Applications to Software Engineering Dirk Beyer, Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar Int. Journal on Software Tools for Technology Transfer, 2007 Stefan Buchholz March 17, 2009 1

  2. Model checking Program source software model checker Property e.g. modified C-code (SLAM, BLAST) - Valid according to the specification - Error path 2

  3. Model checking Goal Find a path from an initial state to an error state (reachability) Problem State explosion ! Infeasible to check every state. BLAST's solution Dynamic (lazy) predicate abstraction 3

  4. CEGAR Counterexample-guided abstraction refinement Start with a coarse abstraction Try to reach an error state in the abstract domain Success Fail Is the path feasible ? Program satisfies the specification Yes No Refine the abstraction Safety property violated (bug) 4

  5. Optimizations Lazy predicate abstraction don't refine error-free regions Interpolation-based predicate discovery add predicates locally when refining 5

  6. Applications Reduce runtime memory-checks Test their reachability and remove unnecessary ones Automatic test generation For any counterexample found try to generate a test vector BLASTing Linux Code 6

  7. Demonstration Open source ! http://mtc.epfl.ch/software-tools/blast/ 7

  8. Limitations False alarms (can't show infeasability of a path) Mathematical integers (no overflows modeled) Decision functions only implement linear arithmetic Uninterpreted functions (e.g. bit-level manipulations) Simple pointer arithmetic and alias-handling Weak predicate language No logical quantifiers No precise reasoning about recursive functions possible 8

  9. Conclusion + Good performance and scalability - Limitations make it impractical for a lot of real world applications (pointer arithmetic !) - Manually modifying the source code is always required 9

  10. BACKUP 10

  11. Data structures Control flow automaton (CFA) Internal representation of a program Nodes are control points, edges are operations Abstract reachability tree (ART) Represents a portion of the reachable state space A path in the ART corresponds to a program execution Each node stores a link to a CFA-location, the current call stack and the state of variables 11

  12. Automatic test generation Target Predicate Coverage Can a location be reached and the variables satisfy a predicate p ? e.g. p = true for location coverage Coverage of a location L Test if L is reachable (dead code detection) When a feasible path is found generate a variable assignment that guides it to the location Embarrassingly parallel 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Software Verification with BLAST Model Checking Blast Motivation Rigorous Sofware Development

Software Verification with BLAST Model Checking Blast Motivation Rigorous Sofware Development

Software Verification with BLAST Daniele Sgandurra Introduction Software Verification with BLAST Model Checking Blast Motivation Rigorous Sofware Development via Model Checking Lazy Abstraction Reachability Tree Seminar Complete

970 views • 95 slides
Towards a Software Model Checker for ML Naoki Kobayashi Tohoku University Joint work with:

Towards a Software Model Checker for ML Naoki Kobayashi Tohoku University Joint work with:

Towards a Software Model Checker for ML Naoki Kobayashi Tohoku University Joint work with: Ryosuke Sato and Hiroshi Unno (Tohoku University) in collaboration with Luke Ong (Oxford), Naoshi Tabuchi and Takeshi Tsukada (Tohoku) This Talk

786 views • 66 slides
Introducing Software Software Applications A.Y. 2020/2021 What is software? What is software?

Introducing Software Software Applications A.Y. 2020/2021 What is software? What is software?

Introducing Software Software Applications A.Y. 2020/2021 What is software? What is software? - Nave answer: anything that is not hardware - A collection of data or computer instructions that tell the computer how to work, in contrast to

1.72k views • 32 slides
McErlang a Model Checker for Erlang Programs Lars- Ake Fredlund, Clara Benac Earle

McErlang a Model Checker for Erlang Programs Lars- Ake Fredlund, Clara Benac Earle

McErlang a Model Checker for Erlang Programs Lars- Ake Fredlund, Clara Benac Earle Universidad Polit ecnica de Madrid McErlang basics McErlang is useful for checking concurrent software , not for checking sequential software

957 views • 78 slides
Software Engineering Software Applications A.Y. 2020/2021 What is software engineering? What is

Software Engineering Software Applications A.Y. 2020/2021 What is software engineering? What is

Software Engineering Software Applications A.Y. 2020/2021 What is software engineering? What is software engineering? An engineering discipline that is concerned with all aspects of software production from the early stages of system

676 views • 29 slides
B U Y I N G Q U A L .. I T Y SOFTWARE by HENRY OLDERS presented at SOFTWARE '77 -~ B U Y I

B U Y I N G Q U A L .. I T Y SOFTWARE by HENRY OLDERS presented at SOFTWARE '77 -~ B U Y I

B U Y I N G Q U A L .. I T Y SOFTWARE by HENRY OLDERS presented at SOFTWARE '77 -~ B U Y I N G QUALITY SOFTWARE The author describes his experiences in purchasing applications software for real time process control systems.

641 views • 4 slides
Software Testing Software testing 1 V model Software testing 2 Program testing goals To

Software Testing Software testing 1 V model Software testing 2 Program testing goals To

Software Testing Software testing 1 V model Software testing 2 Program testing goals To demonstrate to the developer and the customer that the software meets its requirements. => leads to validation testing To discover situations

264 views • 11 slides
Engineering Culture Secret Sauce of Great Software Great Software process model Great

Engineering Culture Secret Sauce of Great Software Great Software process model Great

Engineering Culture Secret Sauce of Great Software Great Software process model Great Software language framework technology Great Software tools Great Software trends Great Software 4 Great Software Overlooked Deep impact

993 views • 53 slides
Fugue: Annotations for Protocol Checking Reading: The Fugue Protocol Checker: Is Your Software

Fugue: Annotations for Protocol Checking Reading: The Fugue Protocol Checker: Is Your Software

Fugue: Annotations for Protocol Checking Reading: The Fugue Protocol Checker: Is Your Software Baroque? 17-654/17-765 Analysis of Software Artifacts Jonathan Aldrich Find the Bug! 2/22/2005 4 Find the Bug! 2/22/2005 6 Specifications(1)

338 views • 15 slides
Software Is Details @KevlinHenney Any program is a model of a model within a theory of a model

Software Is Details @KevlinHenney Any program is a model of a model within a theory of a model

Software Is Details @KevlinHenney Any program is a model of a model within a theory of a model of an abstraction of some portion of the world or of some universe of discourse. Meir M Lehman "Programs, Life Cycles, and Laws of Software

1.23k views • 75 slides
Software Life Cycle Chapter 12, Outline Software Life Cycle Waterfall model and its

Software Life Cycle Chapter 12, Outline Software Life Cycle Waterfall model and its

Object-Oriented Software Engineering Conquering Complex and Changing Systems Software Life Cycle Chapter 12, Outline Software Life Cycle Waterfall model and its problems Pure Waterfall Model V-Model Sawtooth Model

595 views • 47 slides
1 Waterfall Model Waterfall Model Description of complete system. Includes: functional

1 Waterfall Model Waterfall Model Description of complete system. Includes: functional

Next Topic: Software Process Examples of Software Processes To manage complexity of software, we require a Waterfall process process that codifies the activities of software Incremental process design, development and validation

591 views • 18 slides
Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on

Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on

Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on Verification Technology, Systems & Applications VTSA 2018 Nancy, France Carsten Sinz Institute for Theoretical Informatics (ITI) Karlsruhe

569 views • 45 slides
The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision

The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision

The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision Group. UIB. SPAIN Julin Proenza. UIB. Oct 2008 The aim of this presentation Introduce the basic concepts of model checking from a practical

804 views • 68 slides
SOFTWARE-SELECTION AND Model-Driven Software Engineering Research Group Department of Software

SOFTWARE-SELECTION AND Model-Driven Software Engineering Research Group Department of Software

SOLVING THE QUALITY-BASED SOFTWARE-SELECTION AND Model-Driven Software Engineering Research Group Department of Software Engineering University of Isfahan HARDWARE-MAPPING PROBLEM Samaneh Hoseindoost s.hoseindoost@eng.ui.ac.ir WITH ACO

320 views • 15 slides
CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and Design 8 January 2019 OSU CSE 1 Restated Learning Outcomes Theme 1: software engineering concepts Be familiar with sound software engineering

535 views • 17 slides
Expression of Interest Letters for FY17 Audio is available only by conference call. Please call :

Expression of Interest Letters for FY17 Audio is available only by conference call. Please call :

Expression of Interest Letters for FY17 Audio is available only by conference call. Please call : (800) 700-7784 Participant Access Code: 407190 to join the conference call portion of the webinar (date) Office of Housing Counseling Webinar

550 views • 20 slides
Challenges in Delivering and Deploying Software at Scale in Large Clusters Douglas Thain and Kyle

Challenges in Delivering and Deploying Software at Scale in Large Clusters Douglas Thain and Kyle

Challenges in Delivering and Deploying Software at Scale in Large Clusters Douglas Thain and Kyle Sweeney University of Notre Dame {dthain|ksweene3}@nd.edu Software Deployment on HPC Classic Approach Single process MPI app created by end

1.06k views • 50 slides
Predicting Intermediate Storage Performance for Workflow Applications Lauro B. Costa , Samer

Predicting Intermediate Storage Performance for Workflow Applications Lauro B. Costa , Samer

Predicting Intermediate Storage Performance for Workflow Applications Lauro B. Costa , Samer Al-Kiswany, Abmar Barros*, Hao Yang, and Matei Ripeanu University of British Columbia *UFCG, Brazil PSDW13 Nov, 18th co-located with SC13 Storage

341 views • 31 slides
Lecture 15: Recursion (Sections 5.8-5.10) CS 1110 Introduction to Computing Using Python [E.

Lecture 15: Recursion (Sections 5.8-5.10) CS 1110 Introduction to Computing Using Python [E.

http://www.cs.cornell.edu/courses/cs1110/2019sp Lecture 15: Recursion (Sections 5.8-5.10) CS 1110 Introduction to Computing Using Python [E. Andersen, A. Bracy, D. Gries, L. Lee, S. Marschner, C. Van Loan, W. White] Recursion Recursive

488 views • 28 slides
SMT-based Software Model Checking: Experimental Comparison of Four Algorithms Matthias Dangl

SMT-based Software Model Checking: Experimental Comparison of Four Algorithms Matthias Dangl

SMT-based Software Model Checking: Experimental Comparison of Four Algorithms Matthias Dangl Joint work with Dirk Beyer University of Passau, Germany SMT-based Software Model Checking Bounded Model Checking ( Cbmc , CPAchecker , Esbmc ,

496 views • 26 slides
B a s e b a n d e x p l o i t a t i o n i n 2 0 1 3 : H e x a g o

B a s e b a n d e x p l o i t a t i o n i n 2 0 1 3 : H e x a g o

B a s e b a n d e x p l o i t a t i o n i n 2 0 1 3 : H e x a g o n c h a l l e n g e s R a l f - P h i l i p p W e i n m a n n < r a l f @ c o m s e c u r i s . c

478 views • 21 slides
Be sure you have signed-in Team registration is open http://www.purdue.edu/dp/bdmce/

Be sure you have signed-in Team registration is open http://www.purdue.edu/dp/bdmce/

Be sure you have signed-in Team registration is open http://www.purdue.edu/dp/bdmce/ Questions can be emailed to bmc@purdue.edu Competition Statistics 31 st year One of the oldest competitions in the US Purdue: 1987

363 views • 23 slides
Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using

Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using

Introduction to SAT and SMT Solvers Interfacing Yosys and SMT Solvers for BMC and more using SMT-LIB 2.5 Clifford Wolf 1 Abstract Bounded model checking and other SAT-based formal methods are an important part of todays digital design

773 views • 52 slides

More recommend