Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Software Model Checking Andrey Rybalchenko Max Planck Institute for Software Systems Incomplete notes summarizing the 2 nd lecture, Nov 5 th, 2007.

Published byCynthia Brooks Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Software Model Checking Andrey Rybalchenko Max Planck Institute for Software Systems Incomplete notes summarizing the 2 nd lecture, Nov 5 th, 2007."— Presentation transcript:

1 1 Software Model Checking Andrey Rybalchenko Max Planck Institute for Software Systems Incomplete notes summarizing the 2 nd lecture, Nov 5 th, 2007

2 2 Today Administrativia –HISPOS registration for exams deadline Dec 1, 2007 –New location for lectures and tutorials see the webpage Topics –Programs computations and related objects symbolic representation modeling data: integers, arrays, objects –Testing –Directed automated random testing

3 3 Programs Program P consists of V – set of variables L – set of control locations l 0 – initial location, l 0 2 L l E – error location, l E 2 L T – set of transitions Let V’ be a set of primed program variables Each transition t 2 T is a triple (l, , l’) l – start location, l \in L  – transition relation, represented by a formula over V and V’ l’ – final location, l’ \in L

4 4 States, sets, relations Program state is a valuation of program variables –use s for states –s(v) is the value of the variable v in the state s S – the set of all program states Symbolic representation of sets: –State s satisfies a formula  over V = (v 1,..., v n ) iff  Æ v 1 =s(v 1 ) Æ... Æ v n = s(v n ) evaluates to true, written as s ²  –Formula  over V represents a set of states X: S  = { s | s ²  } Symbolic representation of binary relations: –use formula  over V and V’ –pair of states s and s’ satisfies  iff  Æ v 1 =s(v 1 ) Æ... Æ v n = s(v n ) Æ v’ 1 =s’(v 1 ) Æ... Æ v’ n = s’(v n ) evaluates to true, written as (s, s’) ²  –Formula  over V and V’ represents a binary relation over states R: S  = { (s, s’) | (s, s’) ²  }

5 5 Computations and paths Program computation: finite or infinite sequence  of states (l 1, s 1 ), (l 2, s 2 ),... such that 1.l 1 = l 0 – initial location 2.for each i = 1 to length of  there exists transition (l, , l’) 2 T such that l i = l, (s i, s i+1 ) ² , and l i+1 = l’ written as s i – t ! s i+1  is safe if error location l E is not visited Program terminates if there is no infinite computation Program path  is a sequence of transitions Path t 1, t 2,... is feasible if there is a computation s 1, s 2,... induced by the path, i.e., s i – t i ! s i+1 for each t i

6 6 Path relation Relational composition of  and  over V and V’:  ±  = 9 V’’:  [V’’/V’] Æ  [V’’/V] Path relation of path  = t 1,..., t n   =  1 ±... ±  n

7 7 Modeling data Program variables range over intended data domains, e.g. integers, Booleans, arrays, objects, etc. We use logical theories to describe sets of states and binary relations over states. For integer variables, we may use the theory of linear arithmetic. For arrays, the theory of arrays Please read: Modeling data structuresModeling data structures article in Viktor Kuncak’s lecture notes What's decidable about arraysWhat's decidable about arrays [optional]

8 8 Testing Please read Sections 1 to 9 in Software Testing article at Wikipedia Software Testing

9 9 Directed Automated Random Testing Please read slides 29 to 50 from Patrice Godefroid’s presentation onDynamic and Static AnalysisDynamic and Static Analysis

Download ppt "1 Software Model Checking Andrey Rybalchenko Max Planck Institute for Software Systems Incomplete notes summarizing the 2 nd lecture, Nov 5 th, 2007."

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

1 Verification by Model Checking. 2 Part 1 : Motivation.
CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.

CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.
Dana Nau: Lecture slides for Automated Planning Licensed under the Creative Commons Attribution-NonCommercial-ShareAlike License:

Dana Nau: Lecture slides for Automated Planning Licensed under the Creative Commons Attribution-NonCommercial-ShareAlike License:
50.530: Software Engineering Sun Jun SUTD. Week 10: Invariant Generation.

50.530: Software Engineering Sun Jun SUTD. Week 10: Invariant Generation.
Rigorous Software Development CSCI-GA 3033-011 Instructor: Thomas Wies Spring 2012 Lecture 11.

Rigorous Software Development CSCI-GA Instructor: Thomas Wies Spring 2012 Lecture 11.
Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?

Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?
Discrete Mathematics Lecture 5 Alexander Bukharovich New York University.

Discrete Mathematics Lecture 5 Alexander Bukharovich New York University.
1. What number does the following array represent?

1. What number does the following array represent?
1 Introduction to Computability Theory Lecture12: Decidable Languages Prof. Amos Israeli.

1 Introduction to Computability Theory Lecture12: Decidable Languages Prof. Amos Israeli.
Review. In this lecture we will review and fill in loose ends regarding… Variables and how to name them Floating point data types Deciding what type to.

Review. In this lecture we will review and fill in loose ends regarding… Variables and how to name them Floating point data types Deciding what type to.
1 2. Constraint Databases Next level of data abstraction: Constraint level – finitely represents by constraints the logical level.

1 2. Constraint Databases Next level of data abstraction: Constraint level – finitely represents by constraints the logical level.
ECIV 301 Programming & Graphics Numerical Methods for Engineers Lecture 4 Programming and Software EXCEL and MathCAD.

ECIV 301 Programming & Graphics Numerical Methods for Engineers Lecture 4 Programming and Software EXCEL and MathCAD.
Discrete Mathematics Lecture 4: Sequences and Mathematical Induction

Discrete Mathematics Lecture 4: Sequences and Mathematical Induction
Solving Partial Order Constraints for LPO termination.

Solving Partial Order Constraints for LPO termination.
Discrete Mathematics Lecture 4 Harper Langston New York University.

Discrete Mathematics Lecture 4 Harper Langston New York University.
Loops – While, Do, For Repetition Statements Introduction to Arrays

Loops – While, Do, For Repetition Statements Introduction to Arrays
October 8, 2009Theory of Computation Lecture 10: A Universal Program II 1 Pairing Functions and Gödel Numbers This way the equation  x, y  = z defines.

October 8, 2009Theory of Computation Lecture 10: A Universal Program II 1 Pairing Functions and Gödel Numbers This way the equation  x, y  = z defines.
Embedded Systems Laboratory Department of Computer and Information Science Linköping University Sweden Formal Verification and Model Checking Traian Pop.

Embedded Systems Laboratory Department of Computer and Information Science Linköping University Sweden Formal Verification and Model Checking Traian Pop.
ESE601: Hybrid Systems Introduction to verification Spring 2006.

ESE601: Hybrid Systems Introduction to verification Spring 2006.
ENEE244-02xx Digital Logic Design Lecture 7. Announcements Homework 3 due on Thursday. Review session will be held by Shang during class on Thursday.

ENEE244-02xx Digital Logic Design Lecture 7. Announcements Homework 3 due on Thursday. Review session will be held by Shang during class on Thursday.

Similar presentations

Ads by Google