SMT-Based Context-Bounded Model Checking for ...

Recommend Documents

Model Checking Vs. Generalized Model Checking - CiteSeerX

true, false; and the truth ordering â¤T with a strict chain ... and a minimum min in the truth ordering. ...... as long as Ï is true forever, e.g. as in âThe elevator door.

Stateless Model Checking for POWER

May 7, 2016 - Here, we define validity and deadlock freedom for ..... that are not cb-before Ãªw are removed using the function cut (here, cut(Ï,e,Ï) restricts.

Model checking for performability - IscasMC

Aziz, A., Sanwal, K., Singhal, V. and Brayton, R. K. (2000) Model-checking .... 2nd International Joint Conference on Artificial Intelligence, William Kaufmann ...

Model checking for quality - APP

Aug 3, 2017 - A quick internet search reveals that many of the .... can make decisions about, and use to inform their vi

Puzzles for Learning Model Checking, Model

Basic ideas are illustrated by a model checking based solution for a complicated ... model checking and abstraction for programming puzzles (sections 4, 5), ..... checking algorithms for the -Calculus and nite models are exponential, ex.,. O(m f).

Deductive Model Checking - CiteSeerX

(x; x0), an assertion over the set of system variables x and a set of primed .... Mutual exclusion for bakery can be expressed as the invariance 2(:(`3^m3)), and ... a falsi cation diagram for S and ' is a directed graph G whose nodes are labeled ...

Model Checking Gossip Modalities?

properties of other agents according to the latest gossip which is related to local knowledge. The model checking procedure relies on a modularisation of LCSA ...

Model Checking Programs - CiteSeerX

abstraction, runtime analysis, and slicing with model checking. .... Fourth, studying formal methods for programming languages may ... The first version of JPF [20], as well as the JCAT system. [10], were .... the components mentioned above is a

Thread-Modular Model Checking

Abstract. We present thread-modular model checking, a novel tech- nique for verifying correctness properties of loosely-coupled multithreaded software systems.

Model Checking - Google Sites

where v1, v2, . . . . v represents the current state and v., v, ..., v, represents the next state. By converting this ..

Architectural Model Checking

More specifically, the automotive safety standard ISO 26262 recommends ... ISO 26262 recommends formally verifying software architectural designs at the ..... component, others manual review and testing would be needed to check the final ...

Fluid Model Checking

Jan 21, 2013 - The notion of size can be different from domain to domain, yet in models of ... the fluid convergence theorems, known by the name of fast ...

Model Checking and Security

Tools: Spin. ○ Generic model checker. ○ Input language Promela. ○ Transition systems. ○ Bounded N of thread. ○ Bounded heap allocation. ○ Started in ...

Model-Checking - Springer Link

Markus Müller-Olm1, David Schmidt2, and Bernhard Steffen1. 1 Dortmund University, Department of Computer Science, FB 4, LS 5,. 44221 Dortmund, Germany,.

Model Checking Agent Communication

model checker3 based on Promela [27] and Java PathFinder 2 (JPF2) model checker4 based on ..... Rules R17, R18, and R19 are straightforward. According to ...

overview of concepts for model checking

by thinking that passing a validation check proves a good design of the building ... model checking for a large number of design software based on IFC-export / import ..... Borrmann, A. and Rank, E. (2008) âTopological Operators in a 3D Spatial ...

Model Checking Executable Specification for Reactive ... - ThinkMind

are abstractions for internal actions like method calls or ... VALID 2012 : The Fourth International Conference on Advances in System Testing and Validation ..... S4. UNKNOWN = 0. S10 year = 1980. S12. (!((days>365))). S18. ((days>365)).

LTL model checking for security protocols - AVANTSSAR

Roberto Carbone*. â Luca Compagna** ...... Armando A., Carbone R., Compagna L., Cuellar J., Abad L. T., âFormal Analysis of SAML. 2.0 Web Browser Single ...

Learning Abstractions for Model Checking - CiteSeerX

Abstract. Learning is a process that causes a system to improve its performance ..... 8.2 Counterexample on the abstract model of the C program in Figure.

Model Checking for Graded CTL - Semantic Scholar

of graded-CTL, and have proved that the model-checking problem is ... In fact the realization process for a system passes through the âCheck/Analyze/Fixâ.

Stateless Model Checking for TSO and PSO

Jan 9, 2015 - sequential consistency (SC) the number of possible thread schedulings ..... the same wrong value; all of these loads will cause races, which will ...

overview of concepts for model checking

four level taxonomy of model checking 1) Intention, 2) Result, 3) Rule set and 4) .... accessibility are based on a defined standard, checking within this domain of ...

Stateless Model Checking for TSO and PSO

LO] 9 Jan 2015 ...... To the best of our knowledge, our work is the first to apply stateless model checking techniques to the setting of ... Shared memory consistency models: A tutorial. .... 9: Illustration of the definitions of updst() and updld(

SOFTWARE MODEL CHECKING FOR AVIONICS ... - Semantic Scholar

Feb 11, 2010 - C, Ada code. 5.D.5-3. Authorized licensed use limited to: University of Minnesota. Downloaded on February 11, 2010 at 13:12 from IEEE Xplore ...

SMT-Based Context-Bounded Model Checking for ...

Download PDF

1 downloads 0 Views 181KB Size Report

Comment

We present ESBMC-GPU tool, an extension to the Efficient SMT-Based Context-Bounded Model Checker. (ESBMC), which is aimed at verifying Graphics ...

CONCURRENCY AND COMPUTATION: PRACTICE AND EXPERIENCE Concurrency Computat.: Pract. Exper. 2016; 00:1–25 Published online in Wiley InterScience (www.interscience.wiley.com). DOI: 10.1002/cpe

SMT-Based Context-Bounded Model Checking for CUDA Programs P. A. Pereira1 , H. F. Albuquerque1 , I. S. da Silva1 , H. M. Marques1 , F. R. Monteiro1 , R. dos S. Ferreira2 , and L. C. Cordeiro1⇤ 1 Faculty

of Technology, Federal University of Amazonas, Amazonas, Brazil of Informatics, Federal University of Vic¸osa, Minas Gerais, Brazil

2 Department

SUMMARY We present ESBMC-GPU tool, an extension to the Efficient SMT-Based Context-Bounded Model Checker (ESBMC), which is aimed at verifying Graphics Processing Unit (GPU) programs written for the Compute Unified Device Architecture (CUDA) platform. ESBMC-GPU uses an operational model, i.e., an abstract representation of the standard CUDA libraries, which conservatively approximates their semantics, in order to verify CUDA-based programs. It then explicitly explores the possible interleavings (up to the given context bound), while treats each interleaving itself symbolically. Additionally, ESBMC-GPU employs the monotonic partial order reduction and the two-thread analysis to prune the state space exploration. Experimental results show that ESBMC-GPU can successfully verify 82% of all benchmarks, while keeping lower rates of false results. Going further than previous attempts, ESBMC-GPU is able to detect more properties violations than other existing GPU verifiers due to its ability to verify errors of the program execution flow and to detect array out-of-bounds and data race violations. Copyright c 2016 John Wiley & Sons, Ltd. Received . . .

KEY WORDS: model checking; GPU; CUDA programs; formal verification;

1. INTRODUCTION Compute Unified Device Architecture (CUDA) is a parallel computing platform and Application Programming Interface (API) model created by NVIDIA [1], which extends C/C++ and Fortran, in order to create a computational model that aims to harness the computational power of Graphical Processing Units (GPUs) [2]. As in other programming languages, errors in CUDA programs eventually occur, in particular, due to array out-of-bounds, arithmetic overflow, and division by zero violations. Additionally, since CUDA is a platform that deals with parallel programming, specific concurrency errors related to data race and barrier divergence can be exposed due to the non-deterministic behaviour of the threads interleavings [3]. ⇤ Correspondence

to: 3000 Av. Rodrigo Ot´avio, 69077–000, Electronic and Information Research Center at Federal University of Amazonas, Manaus, Amazonas, Brazil. E-mail: [email protected] Copyright c 2016 John Wiley & Sons, Ltd. Prepared using cpeauth.cls [Version: 2010/05/13 v3.00]