Context-bounded model checking of LTL properties for ANSI-C software
Context-bounded model checking of LTL properties for ANSI-C software
Context-bounded model checking has successfully been used to verify safety properties in multi-threaded systems automatically, even if they are implemented in low-level programming languages like ANSI-C. In this paper, we describe and experiment with an approach to extend context-bounded model checking to liveness properties expressed in linear-time temporal logic (LTL). Our approach converts the LTL formulae into Buechi-automata and then further into C monitor threads, which are interleaved with the execution of the program under test. This combined system is then checked using the ESBMC model checker. Since this approach explores a larger number of interleavings than normal context-bounded model checking, we use a state hashing technique which substantially reduces the number of redundant interleavings that are explored and so mitigates state space explosion. Our experimental results show that we can verify non-trivial properties in the firmware of a medical device.
302-317
Morse, Jeremy
8ce3f639-6ea2-4b40-be62-5c603e8d6957
Cordeiro, Lucas
fc7cb054-f39e-4013-9faa-a471bd006596
Nicole, Denis
0aca6dd1-833f-4544-b7a4-58fb91c7395a
Fischer, Bernd
0c9575e6-d099-47f1-b3a2-2dbc93c53d18
17 November 2011
Morse, Jeremy
8ce3f639-6ea2-4b40-be62-5c603e8d6957
Cordeiro, Lucas
fc7cb054-f39e-4013-9faa-a471bd006596
Nicole, Denis
0aca6dd1-833f-4544-b7a4-58fb91c7395a
Fischer, Bernd
0c9575e6-d099-47f1-b3a2-2dbc93c53d18
Morse, Jeremy, Cordeiro, Lucas, Nicole, Denis and Fischer, Bernd
(2011)
Context-bounded model checking of LTL properties for ANSI-C software.
In Software Engineering and Formal Methods.
vol. 7041,
Springer.
.
(doi:10.1007/978-3-642-24690-6_21).
Record type:
Conference or Workshop Item
(Paper)
Abstract
Context-bounded model checking has successfully been used to verify safety properties in multi-threaded systems automatically, even if they are implemented in low-level programming languages like ANSI-C. In this paper, we describe and experiment with an approach to extend context-bounded model checking to liveness properties expressed in linear-time temporal logic (LTL). Our approach converts the LTL formulae into Buechi-automata and then further into C monitor threads, which are interleaved with the execution of the program under test. This combined system is then checked using the ESBMC model checker. Since this approach explores a larger number of interleavings than normal context-bounded model checking, we use a state hashing technique which substantially reduces the number of redundant interleavings that are explored and so mitigates state space explosion. Our experimental results show that we can verify non-trivial properties in the firmware of a medical device.
Text
sefm2011.pdf
- Other
Restricted to Repository staff only
Request a copy
Text
sefm2011-slides.pdf
- Other
More information
Accepted/In Press date: 19 June 2011
Published date: 17 November 2011
Venue - Dates:
9th International Conference on Software Engineering and Formal Methods, , Montevideo, Uruguay, 2011-11-14 - 2011-11-18
Organisations:
Electronic & Software Systems
Identifiers
Local EPrints ID: 272292
URI: http://eprints.soton.ac.uk/id/eprint/272292
PURE UUID: cd7bc965-d60a-46a1-a4d3-19ca9577b721
Catalogue record
Date deposited: 17 May 2011 12:36
Last modified: 15 Mar 2024 23:11
Export record
Altmetrics
Contributors
Author:
Jeremy Morse
Author:
Lucas Cordeiro
Author:
Denis Nicole
Author:
Bernd Fischer
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics