Presentation is loading. Please wait.

Presentation is loading. Please wait.

Improving the Precision of INCA by Preventing Spurious Cycles

Published byAlyson White Modified over 6 years ago

Similar presentations

Presentation on theme: "Improving the Precision of INCA by Preventing Spurious Cycles"— Presentation transcript:

1 Improving the Precision of INCA by Preventing Spurious Cycles
Stephen F. Siegel and George S. Avrunin University of Massachusetts Laboratory for Advanced Software Engineering Research

2 Approaches to Finite State Verification
Traditional Reachability Enumerate all states Precise, but State Explosion Problem INCA approach Formulate necessary conditions for the existence of a violation Trade precision for tractability ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

3 Improving the Precision of INCA by Preventing Spurious Cycles
How INCA Works Query Source INCA Front End answer FSAs Integer Linear Programming (ILP) Problem INCA Back End CPLEX INCA ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

4 Improving the Precision of INCA by Preventing Spurious Cycles
Inequality Necessary Condition Analyzer ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

5 Improving the Precision of INCA by Preventing Spurious Cycles
Simple Example t1 1 c 2 t2 5 b a c t3 7 c b 6 3 4 8 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

6 Property for simple example
Requirement: “On no execution is there a b preceded by an a.” (defquery “no-a-before-b” “nofair” (omega-star-less (sequence (interval :initial t :ends-with ’((rend “t3;t1.b”)) :require ’((rend “t2;t1.a”)))))) ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

7 Improving the Precision of INCA by Preventing Spurious Cycles
1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

8 Improving the Precision of INCA by Preventing Spurious Cycles
x1+x6 = x2+x4 t1 1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

9 Improving the Precision of INCA by Preventing Spurious Cycles
x1+x6 = x4+x5 = x2+x4 x5+x6 t1 1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

10 Improving the Precision of INCA by Preventing Spurious Cycles
x1+x6 = x4 = x2+x4 x6 t1 1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

11 Improving the Precision of INCA by Preventing Spurious Cycles
Flow Equations 1 = x1+x6 = x2+x3 = x4 = x7+x8 = x9 = x1 x2+x4 x3+1 x6 x7 x8+1 x9 1 t1 1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

12 Improving the Precision of INCA by Preventing Spurious Cycles
Flow Equations x3 +x4 +x5 = x8 1 = x1+x6 = x2+x3 = x4 = x7+x8 = x9 = x1 x2+x4 x3+1 x6 x7 x8+1 x9 1 t1 1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

13 Communication Equations
Flow Equations x3 +x4 +x5 = x2 = x1+x6 = x8 x9 x7 1 = x1+x6 = x2+x3 = x4 = x7+x8 = x9 = x1 x2+x4 x3+1 x6 x7 x8+1 x9 1 t1 1 1 c 2 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

14 Communication Equations Requirement Inequality
Flow Equations x3 +x4 +x5 = x2 = x1+x6 = x8 x9 x7 1 = x1+x6 = x2+x3 = x4 = x7+x8 = x9 = x1 x2+x4 x3+1 x6 x7 x8+1 x9 1 t1 1 1 c Requirement Inequality 2 x8 ≥ 1 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

15 Communication Equations Requirement Inequality
Flow Equations x3 +x4 +x5 = x2 = x1+x6 = x8 x9 x7 1 = x1+x6 = x2+x3 = x4 = x7+x8 = x9 = x1 x2+x4 x3+1 x6 x7 x8+1 x9 1 t1 1 1 c Requirement Inequality 2 x8 ≥ 1 t2 5 b a c 7 t3 7 c 2 4 9 b 6 8 3 4 5 8 3 6 a a a ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

16 Improving the Precision of INCA by Preventing Spurious Cycles
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

17 The Cycle Elimination Problem
Add constraints to ILP System so that (i) any solution with disconnected flow is eliminated, and (ii) no connected solutions are eliminated. Naïve solution: exponential number of constraints Our solution: linear ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

18 Distinguishing Solutions
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

19 Distinguishing Solutions
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

20 Connected solution has spanning tree
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

21 Our Solution to Cycle Elimination Problem
Add to INCA-generated ILP Problem: For each node v: new variable dv For each edge e: new binary variable se ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

22 Given connected solution:
Let se=1 if e is in spanning tree, 0 otherwise. Let dv=depth of v in tree if v is in solution, 0 otherwise. 1 3 1 1 1 1 4 2 1 1 3 5 1 4 ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

23 Improving the Precision of INCA by Preventing Spurious Cycles
Constraints (i) For each edge e: If xe=0 then se=0. 1 3 1 1 1 1 4 2 1 1 3 5 1 4 ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

24 Improving the Precision of INCA by Preventing Spurious Cycles
Constraints (i) For each edge e: If xe=0 then se=0. (ii) For each edge e=(u,v): If se=1 then dv > du. 1 3 1 1 1 1 4 2 1 1 3 5 1 4 ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

25 Improving the Precision of INCA by Preventing Spurious Cycles
Constraints (i) For each edge e: If xe=0 then se=0. (ii) For each edge e=(u,v): If se=1 then dv > du. (iii) For each node v: If ∑xe > 0 then for some e=(u,v), se=1. 1 3 1 1 1 1 4 2 1 1 3 5 1 4 ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

26 Disconnected solution cannot satisfy constraints
(i) For each edge e: If xe=0 then se=0. (ii) For each edge e=(u,v): If se=1 then dv > du. (iii) For each node v: If ∑xe > 0 then for some e=(u,v), se=1. u e v ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

27 Expressing Constraints in ILP
Suppose x,y ≥ 0. Problem: express “If x = 0 then y = 0” as linear constraint. Impossible! y x ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

28 Expressing Constraints in ILP
Suppose x,y ≥ 0. Problem: express “If x = 0 then y = 0” as linear constraint. Impossible! (But y ≤ xy works.) y x ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

29 Improving the Precision of INCA by Preventing Spurious Cycles
“If x = 0 then y = 0” B Add restriction: 0 ≤ y ≤ B y Then “if x = 0 then y = 0” is equivalent to y ≤ Bx x ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

30 Improving the Precision of INCA by Preventing Spurious Cycles
Compromise We must use bounds 0 ≤ xe ≤ B for flow variables. For experiments, B=10,000. Strictly speaking, INCA analysis is not conservative. ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

31 Preliminary Experiments
Can we solve a problem we could not solve before? How does cost (CPLEX time) scale? Compare cost to inconclusive case. For problems we could already solve: Compare cost of using cycle-elimination with cost of not using it ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

32 Experiment 1: Scaled Simple
tasks: linear in n nodes: linear in n edges: quadratic in n new variables: quadratic in n new constraints: quadratic in n ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

33 Improving the Precision of INCA by Preventing Spurious Cycles
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

34 Improving the Precision of INCA by Preventing Spurious Cycles
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

35 Improving the Precision of INCA by Preventing Spurious Cycles
ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

36 Improving the Precision of INCA by Preventing Spurious Cycles
Conclusions Technique eliminates solutions with spurious cycles, but not real solutions (except for those which exceed bound). Number of new variables & constraints linear in number of nodes, edges. ILP analysis time seems quite reasonable. ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

37 Improving the Precision of INCA by Preventing Spurious Cycles
Future Work Fully incorporate cycle-elimination into INCA. Do extensive experimentation. Work on the other major source of imprecision in INCA, the “Order Problem” solutions in which there is no global ordering of events which is consistent with the order implied by the flow in each task. ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

38 Expressing Constraint (i)
(i) For each edge e: if xe=0 then se=0. (i’) For each edge e: xe ≥ se ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

39 Expressing Constraint (ii)
(ii) For each edge e=(u,v): if se=1 then dv > du. BOUND: 0 ≤ dv ≤ N, N = number of nodes (ii’) dv ≥ du+(N+1)si - N ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

40 Expressing Constraint (iii)
(iii) For each node v: if ∑xe > 0 then for some e=(u,v), se=1. BOUND: 0 ≤ xe ≤ B (B=10,000 for now) v ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

41 Expressing Constraint (iii)
(iii) For each node v: if ∑xe > 0 then for some e=(u,v), se=1. BOUND: 0 ≤ xe ≤ B (B=10,000 for now) (iii’) B In(v) ∑se ≥ ∑xe v ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

42 Chiron client architecture
Client Initializer Application Artist Manager Client Protocol Manager Wrapper Artist(s) ADT Dispatcher Mapper ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

43 Chiron Notification Property
If Dispatcher receives event e1 from ADT Wrapper then it does not notify any artist of event e2 until it has notified the appropriate artists of event e1. ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

44 Chiron Unregister Property
Artist a1 never unregisters for event e1 unless a1 is already registered for e1. ISSTA 2000 Improving the Precision of INCA by Preventing Spurious Cycles

Download ppt "Improving the Precision of INCA by Preventing Spurious Cycles"

Similar presentations

Timed Automata.

Timed Automata.
7.1 The Greatest Common Factor and Factoring by Grouping

7.1 The Greatest Common Factor and Factoring by Grouping
1 5.12 Solving Quadratic Equations by Factoring Algebra I.

Solving Quadratic Equations by Factoring Algebra I.
1 Constraint Problems in Program Analysis from the sublime to the ridiculous Alex Aiken Stanford University.

1 Constraint Problems in Program Analysis from the sublime to the ridiculous Alex Aiken Stanford University.
Circuit Retiming with Interconnect Delay CUHK CSE CAD Group Meeting One Evangeline Young Aug 19, 2003.

Circuit Retiming with Interconnect Delay CUHK CSE CAD Group Meeting One Evangeline Young Aug 19, 2003.
Penn ESE535 Spring 2009 -- DeHon 1 ESE535: Electronic Design Automation Day 5: February 2, 2009 Architecture Synthesis (Provisioning, Allocation)

Penn ESE535 Spring DeHon 1 ESE535: Electronic Design Automation Day 5: February 2, 2009 Architecture Synthesis (Provisioning, Allocation)
Finite State Verification for Software Systems Lori A. Clarke University of Massachusetts Laboratory for Advanced Software Engineering Research

Finite State Verification for Software Systems Lori A. Clarke University of Massachusetts Laboratory for Advanced Software Engineering Research
ECE 667 - Synthesis & Verification - LP Scheduling 1 ECE 667 ECE 667 Synthesis and Verification of Digital Circuits Scheduling Algorithms Analytical approach.

ECE Synthesis & Verification - LP Scheduling 1 ECE 667 ECE 667 Synthesis and Verification of Digital Circuits Scheduling Algorithms Analytical approach.
Penn ESE535 Spring 2009 -- DeHon 1 ESE535: Electronic Design Automation Day 5: February 2, 2009 Architecture Synthesis (Provisioning, Allocation)

Penn ESE535 Spring DeHon 1 ESE535: Electronic Design Automation Day 5: February 2, 2009 Architecture Synthesis (Provisioning, Allocation)
5.1 - 1 Linear Systems The definition of a linear equation given in Chapter 1 can be extended to more variables; any equation of the form for real numbers.

Linear Systems The definition of a linear equation given in Chapter 1 can be extended to more variables; any equation of the form for real numbers.
Chapter 5 Objectives 1. Find ordered pairs associated with two equations 2. Solve a system by graphing 3. Solve a system by the addition method 4. Solve.

Chapter 5 Objectives 1. Find ordered pairs associated with two equations 2. Solve a system by graphing 3. Solve a system by the addition method 4. Solve.
Many quadratic equations can not be solved by factoring. Other techniques are required to solve them. 7.1 – Completing the Square x 2 = 20 5x 2 + 55 =

Many quadratic equations can not be solved by factoring. Other techniques are required to solve them. 7.1 – Completing the Square x 2 = 20 5x =
Essential Question: What is one important difference between solving equations and solving inequalities?

Essential Question: What is one important difference between solving equations and solving inequalities?
Linear, Exponential, and Quadratic Functions. Write an equation for the following sequences.

Linear, Exponential, and Quadratic Functions. Write an equation for the following sequences.
COMPASS Practice Test 13 Quadratics. This slide presentation will focus on quadratics. Quadratics will always have a variable raised to the second power,

COMPASS Practice Test 13 Quadratics. This slide presentation will focus on quadratics. Quadratics will always have a variable raised to the second power,
Daniel Kroening and Ofer Strichman Decision Procedures An Algorithmic Point of View Deciding ILPs with Branch & Bound ILP References: ‘Integer Programming’

Daniel Kroening and Ofer Strichman Decision Procedures An Algorithmic Point of View Deciding ILPs with Branch & Bound ILP References: ‘Integer Programming’
6.1 The Fundamental Property of Rational Expressions.

6.1 The Fundamental Property of Rational Expressions.
7.1 Graphing Linear Systems

7.1 Graphing Linear Systems
7.1 SOLVING SYSTEMS BY GRAPHING The students will be able to: Identify solutions of linear equations in two variables. Solve systems of linear equations.

7.1 SOLVING SYSTEMS BY GRAPHING The students will be able to: Identify solutions of linear equations in two variables. Solve systems of linear equations.
Decision Procedures An Algorithmic Point of View

Decision Procedures An Algorithmic Point of View

Similar presentations

Ads by Google