Abstract

Verification by state-space exploration, also often referred to as "model checking", is an effective method for analyzing the correctness of concurrent reactive systems (e.g., communication protocols). Unfortunately, existing model-checking techniques are restricted to the verification of properties of models, i.e., abstractions, of concurrent systems. In this paper, we discuss how model checking can be extended to deal directly with "actual" descriptions of concurrent systems, e.g., implementations of communication protocols written in programming languages such as C or C++. We then introduce a new search technique that is suitable for exploring the state spaces of such systems. This algorithm has been implemented in VeriSoft, a tool for systematically exploring the state spaces of systems composed of several concurrent processes executing arbitrary C code. As an example of application, we describe how VeriSoft successfully discovered an error in a 2500-line C program controlling rob...

Citations

2172	The Design and Analysis of Computer Algorithms - Aho, Hopcroft, et al. - 1974
1635	Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints - Cousot, Cousot - 1977
1085	Automatic verification of finite-state concurrent systems using temporal logic specifications - Clarke, Emerson, et al. - 1986
792	Symbolic boolean manipulation with ordered binary decision diagrams - Bryant - 1992
732	The Design and Validation of Computer Protocols - Holzmann - 1991
575	Model Checking and Abstraction - Clarke, Grumberg, et al. - 1994
274	Proving the Correctness of Multiprocess Programs - Lamport - 1977
240	Compilers: principles, techniques and tools - Aho, Sethi, et al. - 1986
238	Partial-Order Methods for the Verification of Concurrent Systems - An Approach to the State-Explosion Problem - Godefroid - 1996
219	A.: Checking that finite state concurrent programs satisfy their linear specification - Lichtenstein, Pnueli - 1985
217	C.: Protocol Verification as a Hardware Design Aid - Dill, Drexler, et al. - 1992
152	Using partial orders for the efficient verification of deadlock freedom and safety properties - Godefroid, Wolper
133	Using partial orders to improve automatic verification methods - Godefroid
95	The concurrency workbench: A semantics based tool for the verification of concurrent systems - Cleaveland, Parrow, et al. - 1994
84	Techniques for debugging parallel programs with flowback analysis - Choi, Miller, et al. - 1991
51	D.: Refining dependencies improves partial-order verification methods (extended abstract - Godefroid, Pirottin - 1993
45	Software for analytical development of communications protocols - Har'E1, Kurshan - 1990
37	Tracing Protocols - Holzmann - 1985
26	Data flow analysis of concurrent systems that use the rendezvous model of synchronization - Long, Clarke - 1991
24	D.: State-space caching revisited - Godefroid, Holzmann, et al. - 1995
21	Bounded-memory Algorithms for Verification On-the-fly - Jard, Jeron - 1992
21	Trace theory. In Petri Nets: Applications and Relationships to Other Models of Concurrency - MAZURKIEWICZ - 1986
20	Defining conditional independence using collapses - Katz, Peled - 1992
14	Model checking in practice: an analysis of the access. bus protocol using spin - Boigelot, Godefroid - 1996
9	Constructing abstract models of concurrent real-time software - Corbett - 1996
7	Formal validation of virtual finite state machines - Flora-Holmquist, Staskauskas - 1995