Presentation is loading. Please wait.

Presentation is loading. Please wait.

Research Heaven, West Virginia 1 Translation Validation of Compilers for Model-based Programming Supratik Mukhopadhyay Research Heaven,

Published byAdrian Davidson Modified over 8 years ago

Similar presentations

Presentation on theme: "Research Heaven, West Virginia 1 Translation Validation of Compilers for Model-based Programming Supratik Mukhopadhyay Research Heaven,"— Presentation transcript:

1 Research Heaven, West Virginia 1 Translation Validation of Compilers for Model-based Programming Supratik Mukhopadhyay supratik@csee.wvu.edu Research Heaven, West Virginia

2 2 Why Model-based Programming? Most effective way to amortize software development cost is to make the software plug and play Immobots programmed by specifying component models of hardware and software behavior to support plug and play Development of model libraries reduces design time, facilitate reuse and amortize modeling costs Reduces sensitivity to modeling inaccuracies and hardware errors Validation can be done in an early phase - 37.5 % - 25 % - 75 % - 50 %

3 Research Heaven, West Virginia 3 Model-based Development at NASA Much publicized use of Remote Agent autonomy architecture used in Deep Space Mode Identification and Recovery (MIR) component uses Lisp-based Livingstone (L1) Integrated Vehicle Health Management (IVHM) system Accepts models of components of system; infers overall behavior of system Being used in the next-generation shuttle project for Vehicle health management

4 Research Heaven, West Virginia 4 Livingstone: How it works Model in JMPL JMPL Compiler Model in XMPL Livingstone (L2) Source in C++ C++ Compiler Livingstone Executable System Behavior Are these translations correct?

5 Research Heaven, West Virginia 5 In other words… Is the right model getting fed to Livingstone? Is Livingstone correctly inferring behavior of the system?

6 Research Heaven, West Virginia 6 Things can go wrong… i=0 0<=i<=max … i++ no yes for(i=0; i<=max; i++){ … } For implementations disregarding arithmetic overflows to improve performance, loop may not terminate

7 Research Heaven, West Virginia 7 Things can go wrong… Actual machines have finite stack sizes while programming languages have unbounded recursion

8 Research Heaven, West Virginia 8 Why do we care? Model in JMPL JMPL Compiler Model in XMPL Livingstone (L2) Source in C++ C++ Compiler Livingstone Executable System Behavior Validate these Validating high level source code useless if correctness does not transfer to Machine code that is finally executed

9 Research Heaven, West Virginia 9 Why Validate Translations? Mistrust in compilers is one of the reasons why safety-critical software certified at the level of machine or assembly code. Results: – increased time and cost – error-prone – difficult to maintain; no modularity – difficult to reuse – Vulnerability to ‘self-modifying’ code Question: –How to bridge such a huge gap in the software development cycle?

10 Research Heaven, West Virginia 10 Why Validate Translations? Answer 1: –Hoare, Mueller-Olm et. al.: Verify the compiler. Feasible?? –Too complicated; too much details –Equally time-consuming and costly –‘Freezes’ updates to compiler Answer2: –Validate each run of the compile individually –Manageable; do not have to go to the low level compiler details –Independent of the particular compiler; depends only on source and target languages

11 Research Heaven, West Virginia 11 Why model-based landscape is so special? Procedural (Livingstone C++) Object-oriented (source of L2).Declarative (JMPL) Involves Concurrency and Components embedded and real-time aspects More high- level than traditional programs Object-oriented to unstructured Declarative to declarative Declarative to Procedural (e.g., MPL to SMV) Dynamics Optimizations

12 Research Heaven, West Virginia 12 Which parts are important? The most interesting stage where bugs are most likely Assigns correct target programs To AST’s Scan Parse Generate Code Source Code Target Code

13 Research Heaven, West Virginia 13 So what do we need? Source code and target code represented using a common semantic framework Establish refinement mapping from target code to source code Consideration: –XMPL is in prefix notation Consideration: –In the containers for “equals”, “or” etc., XMPL allows n-ary arguments whereas JMPL allows 2 arguments

14 Research Heaven, West Virginia 14 Translation Validation Technology Developed Use a symbolic logical semantic framework; we use Quantified Propositional Temporal Logic (QPTL) with fixpoints (for loops) Translate both source and target program to their logical semantics (QPTL formulas) Developed an automatic tool to generate logical semantics from C++ source code; Can handle multi-threading in the source program Developed a classification methodology for acceptable and unacceptable failures in target program

15 Research Heaven, West Virginia 15 Translation Validation Technology Illustrated Tool obtains logical semantics (QPTL) formulas from C++ source code bottom-up Φ x=e; ψ φ = ◊(A \/ ψ[x->e]) A= Set of acceptable failures

16 Research Heaven, West Virginia 16 Establishing Refinement Mapping Refinement = Logical semantics of target code entails that of the source code Refinement checking done using a tool called Temporal Logic Verifier (TLV) TLV implements decision procedure for QPTL but not for the fixpoint part TLV programmable; implementing the decision procedure for the fixpoint part on top of TLV in TLV- Basic Source Code Refine ment Calcul us Abstract Frame work Target Code Automatic Tool TLV CounterexampleYes

17 Research Heaven, West Virginia 17 Refinement of Source Code Tool built using Lex/Yacc and 500 lines of Awk code Used our tool to automatically generate logical semantics of methods in L2 code written in C++ 1000 lines of code handled in less than 10 seconds Currently refinement calculus for JMPL being implemented

18 Research Heaven, West Virginia 18 Abstraction of Target Code Currently developing abstraction calculus for assembly and machine language of Pentium-4 Abstraction calculus for XMPL being implemented

19 Research Heaven, West Virginia 19 State Space Explosion Abstraction and Refinement leads to state explosion Need to be less ambitious More “abstract” methods coming up

20 Research Heaven, West Virginia 20 New Methods for Refinement Checking Randomized refinement checking – at each branching point pretend that go along all branches with different probabilities Bounded Refinement Checking and Refinement Testing – Bound the size of the models built by TLV. Experiments show that faster in finding counterexamples – Generate automatically (based on the specifications of the source code) a sequence of models and check whether they are counterexamples;

21 Research Heaven, West Virginia 21 Validating Compiler Optimizations Optimizations potential cause for introducing errors Code motion can convert a terminating program to a non-terminating one and vice-versa Most compiler optimizations conveniently represented as rewrite rules of the form: I → I’, φ Φ is a logical condition

22 Research Heaven, West Virginia 22 Rewriting and Static Analysis Source Code Optimized Code Optimizer Developed a preliminary tool for validating compiler optimizations combining rewriting and static analysis Binds free variables in conditions to program locations and program variables

23 Research Heaven, West Virginia 23 Source Code Counterexample Compiler Translation Validator Target Code Translation Validation: System Architecture Proof Script Rudimentary Proof Checker TLV Refinement tool Abstraction tool

24 Research Heaven, West Virginia 24 Current status Automatic tool for logical semantics of C++ code –implemented Abstraction calculus for Pentium 4 assembly code developed – currently under implementation Preliminary tool for validating compiler optimizations –implemented Refinement calculus for JMPL developed – to be implemented Experiments –new methods for refinement checking conducted –Found bounded refinement cheking to be faster in some cases Preliminary case studies – Livingstone source code –Translated several methods of Livingstone to their logical semantics –Maximum ~ 1400 lines taking < 12 seconds

25 Research Heaven, West Virginia 25 To do… (next quarter) Developing and implementing –abstraction calculus for XMPL and Pentium 4 machine language Studying and developing abstraction calculus –for Power PC machine language Completing the pending implementations More rigorous case studies

26 Research Heaven, West Virginia 26 Related Work Translation Validation for Synchronous Languages (Pnueli et. al) Proof-carrying compilation (Necula et. al) Compiler verification (Hoare, Mueller-Olm et. al)

27 Research Heaven, West Virginia 27 Lessons learnt Semi-automatic tools for translation validation possible –Features of model-based programming both provide advantages (less data dependency) and disadvantages (communication) –Use a combination of techniques Supratik’s law –Software reliability can be transferred from source to target code (reliability can be compiled)

Download ppt "Research Heaven, West Virginia 1 Translation Validation of Compilers for Model-based Programming Supratik Mukhopadhyay Research Heaven,"

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

1 Verification by Model Checking. 2 Part 1 : Motivation.
Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.

Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.
Semantics Static semantics Dynamic semantics attribute grammars

Semantics Static semantics Dynamic semantics attribute grammars
Introducing Formal Methods, Module 1, Version 1.1, Oct., 1998 1 Formal Specification and Analytical Verification L 5.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.
Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.

Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.
CHAPTER 2 GC101 Program’s algorithm 1. COMMUNICATING WITH A COMPUTER  Programming languages bridge the gap between human thought processes and computer.

CHAPTER 2 GC101 Program’s algorithm 1. COMMUNICATING WITH A COMPUTER  Programming languages bridge the gap between human thought processes and computer.
1 Translation Validation: From Simulink to C Michael RyabtsevOfer Strichman Technion, Haifa, Israel Acknowledgement: sponsored by a grant from General.

1 Translation Validation: From Simulink to C Michael RyabtsevOfer Strichman Technion, Haifa, Israel Acknowledgement: sponsored by a grant from General.
SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.

SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.
LIFE CYCLE MODELS FORMAL TRANSFORMATION

LIFE CYCLE MODELS FORMAL TRANSFORMATION
Programming Languages Marjan Sirjani 2 2. Language Design Issues Design to Run efficiently : early languages Easy to write correctly : new languages.

Programming Languages Marjan Sirjani 2 2. Language Design Issues Design to Run efficiently : early languages Easy to write correctly : new languages.
CSI 3125, Preliminaries, page 1 Programming languages and the process of programming –Programming means more than coding. –Why study programming languages?

CSI 3125, Preliminaries, page 1 Programming languages and the process of programming –Programming means more than coding. –Why study programming languages?
Background information Formal verification methods based on theorem proving techniques and model­checking –to prove the absence of errors (in the formal.

Background information Formal verification methods based on theorem proving techniques and model­checking –to prove the absence of errors (in the formal.
ISBN 0-321-33025-0 Chapter 3 Describing Syntax and Semantics.

ISBN Chapter 3 Describing Syntax and Semantics.
1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.

1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.
CS 355 – Programming Languages

CS 355 – Programming Languages
Research Heaven, West Virginia 1 Static Analysis of Software for Autonomous Spacecrafts Supratik Mukhopadhyay Research Heaven, West.

Research Heaven, West Virginia 1 Static Analysis of Software for Autonomous Spacecrafts Supratik Mukhopadhyay Research Heaven, West.
Unit 251 Implementation and Integration Implementation Unit Testing Integration Integration Approaches.

Unit 251 Implementation and Integration Implementation Unit Testing Integration Integration Approaches.
Ritu Varma Roshanak Roshandel Manu Prasanna

Ritu Varma Roshanak Roshandel Manu Prasanna
Reference Book: Modern Compiler Design by Grune, Bal, Jacobs and Langendoen Wiley 2000.

Reference Book: Modern Compiler Design by Grune, Bal, Jacobs and Langendoen Wiley 2000.
Describing Syntax and Semantics

Describing Syntax and Semantics

Similar presentations

Ads by Google