formal methods tools
play

formal methods & tools. SpinS : Extending LTSmin with Promela - PowerPoint PPT Presentation

Nov 10, 2022 •819 likes •1.23k views

UNIVERSITY OF TWENTE. formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman Joint with Freark van der Berg Sept 17, 2012 Imperial College, London, UK ... ... Spin Model Checker Process Meta-Language (

  1. UNIVERSITY OF TWENTE. formal methods & tools. SpinS : Extending LTSmin with Promela through SpinJa Alfons Laarman Joint with Freark van der Berg Sept 17, 2012 Imperial College, London, UK

  2. ... ... Spin Model Checker Process Meta-Language ( Promela ) Spin’s strengths ◮ Popular tool - early adopter of latest techniques ◮ Highly optimized C code UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 2 / 19

  3. ... ... Spin Model Checker Process Meta-Language ( Promela ) Spin’s strengths ◮ Popular tool - early adopter of latest techniques ◮ Highly optimized C code Weakness ◮ Hard to extend UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 2 / 19

  4. ... ... SpinJa Model Checker A Java reimplementation of Spin by Mark de Jonge & Theo Ruys - University of Twente Strengths ◮ Layered OO Design - Easier to maintain & extend UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 3 / 19

  5. ... ... SpinJa Model Checker A Java reimplementation of Spin by Mark de Jonge & Theo Ruys - University of Twente Strengths ◮ Layered OO Design - Easier to maintain & extend Weaknesses ◮ No parallel algorithms, no state compression, etc ◮ At least a factor 5 slower UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 3 / 19

  6. ... ... Introducing the LTSmin Model Checker Initially, an LTS manipulation tool (explore, store, minimize). Developed at University of Twente Grown to a full-blown model checking tool set: Multi-core, Distributed, Symbolic, Sequential (algorithmic backends) × LTL, CTL, µ -calculus, invariants, etc (properties) × POR, state compression, saturation, chaining (optimizations) × µ CRL , mCRL2 , DVE ( DiVinE ), UPPAAL , PBES, ETF (language frontends) UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 4 / 19

  7. ... ... Goals LTSmin’s goals 1 develop new model checking algorithms 2 reuse existing model checking algorithms 3 compare model checking algorithms UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 5 / 19

  8. ... ... Goals LTSmin’s goals 1 develop new model checking algorithms 2 reuse existing model checking algorithms 3 compare model checking algorithms Good Promela support enables reuse of our algorithms and a multitude of comparisons! UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 5 / 19

  9. ... ... Approach SpinJa ’s and SpinS’ workflow: generate compile parse verify load Model.prom Model.java SpinJa Model.class SpinJa result

  10. ... ... Approach SpinJa ’s and SpinS’ workflow: generate compile parse verify load Model.prom Model.java SpinJa Model.class SpinJa result generate compile parse verify load Model.prom Model.spins SpinS Model.c LTSmin result

  11. ... ... Approach SpinJa ’s and SpinS’ workflow: generate compile parse verify load Model.prom Model.java SpinJa Model.class SpinJa result generate compile parse verify load Model.prom Model.spins SpinS Model.c LTSmin result pins UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 6 / 19

  12. ... ... The Partitioned Next-State Interface pins defines: ◮ A state vector type: S : � s 1 , . . . , s n � ◮ An initial state function: initial() : S ◮ A k -partitioned next-state function: next-state i ( S ): S ◮ A dependency matrix: D k × n with D i , j ∈ 2 { read , write } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 7 / 19

  13. ... ... The Partitioned Next-State Interface pins defines: ◮ A state vector type: S : � s 1 , . . . , s n � ◮ An initial state function: initial() : S ◮ A k -partitioned next-state function: next-state i ( S ): S ◮ A dependency matrix: D k × n with D i , j ∈ 2 { read , write } A few additional dependency matrixes with guard-information for partial order reduction. UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 7 / 19

  14. ... ... Promela Example (simplified) int x = 0; chan c; active proctype p1() { c?; } proctype p2() { byte y = 1; c!; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 8 / 19

  15. ... ... From Promela to a pins state vector int x = 0; chan c; active proctype p1() { c?; } proctype p2() { byte y = 1; c!; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 9 / 19

  16. ... ... From Promela to a pins state vector typedef struct state s { int x; int x = 0; struct proctype p1 { chan c; int pc; } p1; struct proctype p2 { active proctype p1() { int pc; c?; char y; } } p2; struct proctype init { proctype p2() { int pc; byte y = 1; } init; c!; } state t; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 9 / 19

  17. ... ... From Promela to a pins state vector typedef struct state s { int x; int x = 0; struct proctype p1 { chan c; int pc; } p1; struct proctype p2 { active proctype p1() { int pc; c?; char y; } } p2; struct proctype init { proctype p2() { int pc; byte y = 1; } init; c!; } state t; x = x + y; } state t ∗ initial() { state t ∗ s = malloc( sizeof (state t)); init { s -> x = 0; run p2(); s -> p1. pc = 0; x > 0; s -> p2. pc = − 1; } s -> p2.y = 1; s -> init. pc = 0; return s; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 9 / 19

  18. ... ... From Promela to a pins next-state and dependencies int x = 0; chan c; active proctype p1() { c?; } proctype p2() { byte y = 1; c!; x = x + y; } init { run p2(); x > 0; } UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 10 / 19

  19. ... ... From Promela to a pins next-state and dependencies int x = 0; chan c; active proctype p1() { x=x+y x>0 run c! c? c?; p1 0 p1 0 } proctype p2() { byte y = 1; c!; p2 0 p2 1 p2 2 x = x + y; } init { run p2(); x > 0; } init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 10 / 19

  20. ... ... From Promela to a pins next-state and dependencies int x = 0; chan c; active proctype p1() { x=x+y x>0 run c! c? c?; p1 0 p1 0 } proctype p2() { × c byte y = 1; c!; p2 0 p2 1 p2 2 x = x + y; } init { × c run p2(); x > 0; } init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 10 / 19

  21. ... ... From Promela to a pins next-state and dependencies x=x+y c?/c! x>0 run p * 0 p * 1 p2 2 init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  22. ... ... From Promela to a pins next-state and dependencies x=x+y c?/c! x>0 run p * 0 p * 1 p2 2 (1) (2) (3) (4) init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  23. ... ... From Promela to a pins next-state and dependencies state t ∗ next − state( int i, state t ∗ in) { switch (i) { . . . case 2 : if (in -> p2. pc == 1) { state t ∗ out = malloc( sizeof (state t)); x=x+y c?/c! memcpy(out, in, sizeof (state t)); run x>0 p * 0 p * 1 p2 2 out -> p2. pc = 2; (4) (2) (1) (3) out -> x = out -> x + out -> p2.y; return out; } break ; . . . }} init 0 init 1 init 2 UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  24. ... ... From Promela to a pins next-state and dependencies state t ∗ next − state( int i, state t ∗ in) { switch (i) { . . . case 2 : if (in -> p2. pc == 1) { state t ∗ out = malloc( sizeof (state t)); x=x+y c?/c! memcpy(out, in, sizeof (state t)); x>0 run p * 0 p * 1 p2 2 out -> p2. pc = 2; (1) (2) (3) (4) out -> x = out -> x + out -> p2.y; return out; } break ; . . . }} Dependency matrix: x p1 p2 y init init 0 init 1 init 2 1 rw rw 2 rw rw r 3 rw rw 4 r rw UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 11 / 19

  25. ... ... SpinS Extends SpinJa We extended SpinJa with: ◮ channel operations ( empty , full , etc) ◮ user-defined structures ( typedef ) ◮ pre-defined variables ( pid and nr pr ) ◮ channel polling and random receives ( ?[] and ?? ), ◮ remote references (@) ◮ preprocessor ( #if, #ifdef , #define f(a,b) , inline, and #include ) ◮ and others UNIVERSITY OF TWENTE. SpinS : Extending LTSmin with Promela through SpinJa Sept 17, 2012 12 / 19

Recommend

Formal Methods && Tools Group Stefania Gnesi F F F M&&T M&&T

Formal Methods && Tools Group Stefania Gnesi F F F M&&T M&&T

F F F Formal Methods && Tools Group Stefania Gnesi F F F M&&T M&&T M&&T June 27, 03 Formal Methods && Tools Group - ISTI CNR CAF - 1 F F F Outline Overview of the Formal Methods

276 views • 23 slides
Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby

Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby

Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby Computer Science Laboratory SRI International Menlo Park, CA John Rushby, SR I Practical Formal Methods: 1 Need: Growing Importance and Cost of

278 views • 12 slides
Front-end Technologies for Formal-Methods Tools Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI

Front-end Technologies for Formal-Methods Tools Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI

Front-end Technologies for Formal-Methods Tools Makarius Wenzel Univ. Paris-Sud, Laboratoire LRI November 2013 Abstract Looking at the past decades of interactive (and automated) theorem proving, and tools that integrate both for program

461 views • 34 slides
Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical

Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical

Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical foundations of computer science 2 Formal Methods Logical foundations of computer science A language that machines can understand 2 Formal Methods

1.22k views • 121 slides
Methods and tools for design time and runtime formal analysis of security protocols and web

Methods and tools for design time and runtime formal analysis of security protocols and web

Methods and tools for design time and runtime formal analysis of security protocols and web applications Marco Rocchetto REsearch Group in I nformation S ecurity Department of Computer Science University of Verona, Italy Verona, May 8, 2015

731 views • 62 slides
Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why Formalisms? Relationships Flaws Some systems Conclusions Why Formal Methods? We already can build systems. Roman Engineers built

671 views • 12 slides
Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3. Course syllabus 4. Course objectives Introductory Lecture 5. Course organization 1. Lecturer 2. Formal Methods Name: Dilian Gurov Formal

56 views • 3 slides
Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations

Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations

Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations of computer science Formal Methods Logical foundations of computer science A language that machines can understand Formal Methods Logical

1.67k views • 123 slides
Formal Methods and Tools for Distributed Systems Thomas Ball Microsoft

Formal Methods and Tools for Distributed Systems Thomas Ball Microsoft

Formal Methods and Tools for Distributed Systems Thomas Ball Microsoft http://research.microsoft.com/~tball Outline 20 Years at Microsoft (1999-present) The great work of others at Microsoft 20 Years at Microsoft From EULA to SLA

888 views • 72 slides
Tools for Formal Methods: ICS, SAL, and Stateflow John Rushby Computer Science Laboratory SRI

Tools for Formal Methods: ICS, SAL, and Stateflow John Rushby Computer Science Laboratory SRI

Tools for Formal Methods: ICS, SAL, and Stateflow John Rushby Computer Science Laboratory SRI International Menlo Park, California, USA John Rushby, SRI ICS, SAL, and Stateflow: 1 Introduction Weve distributed the PVS Verification

978 views • 45 slides
Testing/Simulation Formal Analysis Real System Formal Model Partial coverage Complete coverage

Testing/Simulation Formal Analysis Real System Formal Model Partial coverage Complete coverage

Formal Methods Assurance for TTP John Rushby Computer Science Laboratory SRI International Menlo Park CA USA John Rushby, SR I Formal Methods Assurance for TTP: 1 Formal Methods for Analysis and Assurance: The Idea Testing/Simulation Formal

200 views • 6 slides
Generating and Solving Symbolic Parity Games Gijs Kant Jaco van de Pol Formal Methods &

Generating and Solving Symbolic Parity Games Gijs Kant Jaco van de Pol Formal Methods &

Generating and Solving Symbolic Parity Games Gijs Kant Jaco van de Pol Formal Methods & Tools University of Twente The Netherlands Games 2012, Napoli, Italia 1 / 26 Motivation Application: formal verification of process algebraic

531 views • 26 slides
Specifying circuit properties in PSL Formal methods Mathematical and logical methods used in

Specifying circuit properties in PSL Formal methods Mathematical and logical methods used in

Specifying circuit properties in PSL Formal methods Mathematical and logical methods used in system development Aim to increase confidence in riktighet of system Apply to both hardware and software 1 Formal methods Complement other

524 views • 25 slides
A Review of Formal Methods : 200514170 : (T4) (T4)

A Review of Formal Methods : 200514170 : (T4) (T4)

A Review of Formal Methods : 200514170 : (T4) (T4) Contents INTRODUCTION INTRODUCTION DEFINITION AND OVERVIEW OF FORMAL METHODS SPECIFICATION METHODS LIFE CYCLES AND

317 views • 19 slides
Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process

Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process

Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process What are Formal Methods? Advantages and Disadvantages of Formal Methods Formal Methods in the Requirement Process Mathematical Formulas

561 views • 20 slides
INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for

INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for

INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for Summer, 2008 Michele Rousseau Lecture Note 10 Effort Estimation Announcements Assignment #3 is due on Monday Quiz #3 regrades are due today

647 views • 21 slides
THEY DIDNT KNOW THEY WERE DOING MATHEMATICS INTRODUCING FORMAL METHODS USING REWRITING

THEY DIDNT KNOW THEY WERE DOING MATHEMATICS INTRODUCING FORMAL METHODS USING REWRITING

THEY DIDNT KNOW THEY WERE DOING MATHEMATICS INTRODUCING FORMAL METHODS USING REWRITING LOGIC Peter Olveczky University of Oslo FMfun19, December 3, 2019 OUTLINE How to introduce formal methods to undergraduates? Fun!

1.95k views • 171 slides
Formal Methods Group ETH Z urich June 2003 Armin Biere, Cyrille Artho, Malek Haroud, Viktor

Formal Methods Group ETH Z urich June 2003 Armin Biere, Cyrille Artho, Malek Haroud, Viktor

Formal Methods Group ETH Z urich June 2003 Armin Biere, Cyrille Artho, Malek Haroud, Viktor Schuppan Computer Systems Institute ETH Z urich, Switzerland FMICS03, Rros, Norway Vision 2 Formal method tools are used like compilers:

269 views • 12 slides
Formal Methods at Intel An Overview John Harrison Intel Corporation Second NASA Formal

Formal Methods at Intel An Overview John Harrison Intel Corporation Second NASA Formal

Formal Methods at Intel An Overview John Harrison Intel Corporation Second NASA Formal Methods Symposium NASA HQ, Washington DC 14th April 2010 (09:0010:00) 0 Table of contents Intels diverse verification problems Verifying

834 views • 45 slides
INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for

INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for

INF 111 / CSE 121: Software Tools and Methods Software Tools and Methods Lecture Notes for Summer Quarter 2008 Michele Rousseau Lecture Notes 7 - UML Announcements Quiz #3- Thursday What will it cover? All readings assigned since

711 views • 44 slides
A Formal (proved) Approach to Discrete System Development Modeling J-R. Abrial September 2004

A Formal (proved) Approach to Discrete System Development Modeling J-R. Abrial September 2004

A Formal (proved) Approach to Discrete System Development Modeling J-R. Abrial September 2004 Purpose of the Course - Giving some insights about Formal Methods - Showing that Formal Methods can be made practical - Illustrating Formal Methods

1.25k views • 112 slides
Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

3BA31 Formal Methods 1 3BA31: Formal Methods Andrew Butterfield Foundations & Methods Group, Software Systems Laboratory Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember This? A Stock

631 views • 33 slides
Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

3BA31 Formal Methods 1 3BA31: Formal Methods Andrew Butterfield Foundations & Methods Group, Software Systems Laboratory Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember This? A Stock

1.75k views • 151 slides
1Initial Ideas on Formal Methods UIT2206: The Importance of Being Formal Martin Henz January

1Initial Ideas on Formal Methods UIT2206: The Importance of Being Formal Martin Henz January

Preliminaries Hallmarks of a Formal Approach Formal Systems in Information Technology 1Initial Ideas on Formal Methods UIT2206: The Importance of Being Formal Martin Henz January 15, 2014 Generated on Wednesday 15 th January, 2014, 09:54

517 views • 49 slides

More recommend