Introduction to Bounded Model Checking Armin Biere FATS Seminar

More documents

Recommendations

Info

Bounded Model Checking BMC [BiereCimattiClarkeZhu-TACAS’99] 17 • look only for counter example made of k states (the bound) s0 s1 sl sl+1 sk B B B B • simple for safety properties: bad state B is reachable BMC(k) : I(s0) ∧ T (s0,s1) ∧ ··· ∧ T (s k−1,s k) ∧ B or s0 s1 sl sl+1 sk N N k_ i=0 N B(si) • harder for liveness properties cycle with no progress states N reachable I(s0) ∧ T (s0,s1) ∧ ··· ∧ T (s k−1,s k) ∧ k^ i=0 N(si) ∧ • can also encode liveness into safety [BiereArthoSchuppan’01] k_ l=0 N T (s k,s l) Introduction to Bounded Model Checking – FATS Seminar ETH 2009 Armin Biere – FMV – JKU Linz N
Bounded Model Checking State of the Art BMC see also Chapter 14 on BMC in Handbook of Satisfiability 18 • increase in efficiency of SAT solvers [Grasp,zChaff,MiniSAT,SatELite,...] • SAT more robust than BDDs in bug finding (shallow bugs are easily reached by explicit model checking or testing) • better unbounded but still SAT based model checking algorithms – k-induction [SinghSheeranStalmarck’00] – interpolation [McMillan’03] • 4th Intl. Workshop on Bounded Model Checking (BMC’06) • other logics, better encodings, e.g. [LatvalaBiereHeljankoJuntilla-FMCAD’04] • other models, e.g. C/C++/Verilog [Kröning...], hybrid automata [Audemard...-BMC’04] Introduction to Bounded Model Checking – FATS Seminar ETH 2009 Armin Biere – FMV – JKU Linz
Page 1 and 2: Introduction to Bounded Model Check
Page 3 and 4: What is Model Checking? Model Check
Page 5 and 6: Forward Fixpoint: Initial and Bad S
Page 7 and 8: Forward Fixpoint: Step 2 Model Chec
Page 9 and 10: Forward Fixpoint: Bad State Reached
Page 11 and 12: Forward Least Fixpoint Algorithm fo
Page 13 and 14: Linear Size BDD for Bit-Vector Comp
Page 15 and 16: Unrolling of Forward Least Fixpoint
Page 17: Bounded Model Checking BMC [BiereCi
Page 21 and 22: Interpolation in Model Checking BMC
Page 23 and 24: Mining Inductive Invariants BMC 22
Page 25 and 26: Simple Path Constraints Symbolic Al
Page 27 and 28: Symbolic ADCs for Large Domains Sym
Page 29 and 30: Lemmas on Demand for Satisfiability
Page 31 and 32: Lemmas on Demand for Extensional Ar
Page 33 and 34: Combining Over- and Under-Approxima
Page 35 and 36: All Different Objects (ADOs) Symbol
Page 45 and 46: Implementation Details Symbolic All
Page 47 and 48: Mixed Approach versus Refine Only S
Page 49 and 50: SAT Solver Progress (SAT’06 Race

Introduction to Bounded Model Checking Armin Biere FATS Seminar

Create successful ePaper yourself

Delete template?

Save as template?