Presentation is loading. Please wait.

Presentation is loading. Please wait.

Syntax-driven partitioning for model-checking of Esterel programs Eric Vecchié - INRIA Aoste.

Published byRoderick Stokes Modified over 10 years ago

Similar presentations

Presentation on theme: "Syntax-driven partitioning for model-checking of Esterel programs Eric Vecchié - INRIA Aoste."— Presentation transcript:

1 Syntax-driven partitioning for model-checking of Esterel programs Eric Vecchié - INRIA Aoste

2 Motivation Build the Reachable State Space… …following the syntax abort P when S; Q Reachable State Space allows –Model-checking –Code optimization –Test sequence generation –…–…

3 R ← INIT new ← R while ( new ≠ ø ) do new ← Image(new) \ R R ← R U new end while Reachable State Space Breadth First Search algorithm Symbolic methods (BDDs)

4 What is done

5 Size of Computations Solution : Rely on program structural syntax BDD size states reached non-saturated states set

6 What we do

7 Example : Wristwatch display watch time_setalarm_set stopwatch

8 Example : Wristwatch

9

10 How to partition ? According to program blocks –Separated by frontiers –Synthesized from signal receptions Build a control flow graph –Encoding frontiers –Guiding the RSS computation

11 Preemption / if-then-else P Q P1P1 P2P2 Q S S

12 abort P when S; present T then Q1 else Q2 end; R P Q2 R Q1 Partitioning Example

13 Parallel Constructs Avoid cartesian product –{P 1, P 2 }  {Q 1, Q 2 } Use signal information || P1P1 Q1Q1 P2P2 Q2Q2

14 Parallel and signals || P1P1 Q1Q1 R1R1 P2P2 Q2Q2 Q3Q3 R2R2 S1 S2

15 Only increasing  Avoid the cross product Can be not satisfying on loops –…but on rare cases Parallel and signals

16 Loops P Q

17 pause pause loopend || abort when S present T then else end ; Control Flow Graph construction || pause ;

18 Symbolic methods Boolean functions Sets (in a finite universe) Partitioned Transition Relations Binary Decision Diagrams (BDDs) allow to represent :

19 Cofactoring Given a domain D, reduce the BDD of a function f : f ↑D (x) = f(x) if x belongs to D Cofactoring is used 2 ways –Reduce the domain according to our frontiers –Transition function applied on new states

20 Experiments A medium-sized design : sequencer A big design : cabin

21 BDD sizes in “sequencer”

22 A big design : “cabin” Default methodPartitioning 534 states135 441 875 states 3 steps (11.85s)123 steps (35h40)

23 Conclusion Program verification following program syntax Preemptions, if-then-else Signals in parallels Smaller intermediate BDDs Lighter transition functions Lighter image computations  Less memory required

24 The End

25 Motivation Model-checking Code optimization Test sequence generation … Reachable State Space (RSS)

26 R ← INIT new ← R while ( new ≠ ø ) do new ← Image(new) \ R R ← R U new end while Reachable State Space (RSS) Breadth First Search algorithm Symbolic methods (BDDs)

27 Introduction Esterel Synchronous reactive structural programming –sequence, if-then-else –Parallelism, preemption Circuit translation (model-checking level)

28

29

30 Partitioning - detail

Download ppt "Syntax-driven partitioning for model-checking of Esterel programs Eric Vecchié - INRIA Aoste."

Similar presentations

Model Checking Lecture 4. Outline 1 Specifications: logic vs. automata, linear vs. branching, safety vs. liveness 2 Graph algorithms for model checking.

Model Checking Lecture 4. Outline 1 Specifications: logic vs. automata, linear vs. branching, safety vs. liveness 2 Graph algorithms for model checking.
Decision Structures - If / Else If / Else. Decisions Often we need to make decisions based on information that we receive. Often we need to make decisions.

Decision Structures - If / Else If / Else. Decisions Often we need to make decisions based on information that we receive. Often we need to make decisions.
Hybrid BDD and All-SAT Method for Model Checking Orna Grumberg Joint work with Assaf Schuster and Avi Yadgar Technion – Israel Institute of Technology.

Hybrid BDD and All-SAT Method for Model Checking Orna Grumberg Joint work with Assaf Schuster and Avi Yadgar Technion – Israel Institute of Technology.
Automatic Verification Book: Chapter 6. How can we check the model? The model is a graph. The specification should refer the the graph representation.

Automatic Verification Book: Chapter 6. How can we check the model? The model is a graph. The specification should refer the the graph representation.
1 Title Page Implicit and Explicit Reachable State Space Exploration Of Esterel Logical Circuits Advisor :

1 Title Page Implicit and Explicit Reachable State Space Exploration Of Esterel Logical Circuits Advisor :
Fixed Points and The Fixed Point Algorithm. Fixed Points A fixed point for a function f(x) is a value x 0 in the domain of the function such that f(x.

Fixed Points and The Fixed Point Algorithm. Fixed Points A fixed point for a function f(x) is a value x 0 in the domain of the function such that f(x.
Representing Boolean Functions for Symbolic Model Checking Supratik Chakraborty IIT Bombay.

Representing Boolean Functions for Symbolic Model Checking Supratik Chakraborty IIT Bombay.
M ODEL CHECKING -Vasvi Kakkad University of Sydney.

M ODEL CHECKING -Vasvi Kakkad University of Sydney.
Algorithmic Software Verification VII. Computation tree logic and bisimulations.

Algorithmic Software Verification VII. Computation tree logic and bisimulations.
Hardware and Petri nets Symbolic methods for analysis and verification.

Hardware and Petri nets Symbolic methods for analysis and verification.
Planning based on Model Checking Dept. of Information Systems and Applied CS Bamberg University Seminar Paper Svetlana Balinova.

Planning based on Model Checking Dept. of Information Systems and Applied CS Bamberg University Seminar Paper Svetlana Balinova.
Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:

Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:
Equivalence of Extended Symbolic Finite Transducers Presented By: Loris D’Antoni Joint work with: Margus Veanes.

Equivalence of Extended Symbolic Finite Transducers Presented By: Loris D’Antoni Joint work with: Margus Veanes.
CS357 Lecture: BDD basics David Dill 1. 2 BDDs (Boolean/binary decision diagrams) BDDs are a very successful representation for Boolean functions. A BDD.

CS357 Lecture: BDD basics David Dill 1. 2 BDDs (Boolean/binary decision diagrams) BDDs are a very successful representation for Boolean functions. A BDD.
Give qualifications of instructors: DAP

Give qualifications of instructors: DAP
Control Flow Analysis (Chapter 7) Mooly Sagiv (with Contributions by Hanne Riis Nielson)

Control Flow Analysis (Chapter 7) Mooly Sagiv (with Contributions by Hanne Riis Nielson)
Timed Automata.

Timed Automata.
Analyzing and Verifying Esterel Programs Taisook Han 2009-12-19, Division of Computer Science, KAIST.

Analyzing and Verifying Esterel Programs Taisook Han , Division of Computer Science, KAIST.
Efficient Reachability Analysis for Verification of Asynchronous Systems Nishant Sinha.

Efficient Reachability Analysis for Verification of Asynchronous Systems Nishant Sinha.
SYMBOLIC MODEL CHECKING: 10 20 STATES AND BEYOND J.R. Burch E.M. Clarke K.L. McMillan D. L. Dill L. J. Hwang Presented by Rehana Begam.

SYMBOLIC MODEL CHECKING: STATES AND BEYOND J.R. Burch E.M. Clarke K.L. McMillan D. L. Dill L. J. Hwang Presented by Rehana Begam.

Similar presentations

Ads by Google