Article

Finding Feasible Counter-examples when Model Checking Abstracted Java Programs

Authors:

Corina S. Pasareanu,

Matthew B. Dwyer,

Willem VisserAuthors Info & Claims

TACAS 2001: Proceedings of the 7th International Conference on Tools and Algorithms for the Construction and Analysis of Systems

Pages 284 - 298

Published: 02 April 2001 Publication History

Abstract

Despite recent advances in model checking and in adapting model checking techniques to software, the state explosion problem remains a major hurdle in applying model checking to software. Recent work in automated program abstraction has shown promise as a means of scaling model checking to larger systems. Most common abstraction techniques compute an upper approximation of the original program. Thus, when a specification is found true for the abstracted program, it is known to be true for the original program. Finding a specification to be false, however, is inconclusive since the specification may be violated on a behavior in the abstracted program which is not present in the original program. We have extended an explicit-state model checker, Java PathFinder (JPF), to analyze counter-examples in the presence of abstractions. We enhanced JPF to search for "feasible" (i.e. nondeterminismfree) counter-examples "on-the-fly", during model checking. Alternatively, an abstract counter-example can be used to guide the simulation of the concrete computation and thereby check feasibility of the counterexample. We demonstrate the effectiveness of these techniques on counterexamples from checks of several multi-threaded Java programs.

References

[1]

S. Abramsky and C. Hankin. Abstract Interpretation of Declarative Languages . Ellis Horwood Limited, 1987.

[2]

K. Arnold and J. Gosling. The Java Programming Language . Addison-Wesley, 1998.

[3]

T. Ball and S.K. Rajamani. Checking temporal properties of software with boolean programs. In Proc. of the Workshop on Advances in Verification , July 2000.

[4]

S. Bensalem, Y. Lakhnech, and S. Owre. Computing abstractions of infinite state systems compositionally and automatically. In Proc. 10th International Conference on Computer-Aided Verification , June 1998.

[5]

E.M. Clarke, O. Grumberg, S. Jha, Y. Lu, and H. Veith. Counterexample-guided abstraction refinement. In Proc. 12th International Conference on Computer-Aided Verification , July 2000.

[6]

E.M. Clarke, O. Grumberg, and D.E. Long. Model checking and abstraction. ACM Transactions on Programming Languages and Systems , 16(5):1512-1542, September 1994.

[7]

J.C. Corbett, M. B. Dwyer, J. Hatcliff, and Robby. Bandera : A source-level interface for model checking Java programs. In {14}.

[8]

J.C. Corbett, M.B. Dwyer, J. Hatcliff, S. Laubach, C.S. Pasareanu, Robby, and H. Zheng. Bandera : Extracting finite-state models from Java source code. In {14}.

[9]

P. Cousot and R. Cousot. Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints. In Conference Record of the Fourth Annual ACM Symposium on Principles of Programming Languages , pages 238-252, 1977.

[10]

D. Dams, R. Gerth, G. Dhmen, R. Herrmann, P. Kelb, and H. Pargmann. Model checking using adaptive state and data abstraction. In D.L.Dill, editor, Proc. 6th International Conference on Computer-Aided Verification , volume 818 of Lecture Notes in Computer Science , pages 455-467. Springer Verlag, June 1994.

[11]

D. Dams, R. Gerth, and O. Grumberg. Abstract interpretation of reactive systems. ACM Transactions on Programming Languages and Systems , 19(2):253-291, March 1997.

[12]

C. Demartini, R. Iosif, and R. Sisto. A deadlock detection tool for concurrent Java programs. Software - Practice and Experience , 29(7):577-603, July 1999.

[13]

M.B. Dwyer, J. Hatcliff, R. Joehanes, S. Laubach, C.S. Pasareanu, Robby, W. Visser, and H. Zheng. Tool-supported program abstraction for finite-state verification. In Proceedings of the 23rd International Conference on Software Engineering , May 2001.

[14]

C. Ghezzi, M. Jazayeri, and A. Wolf, editors. Proceedings of the 22nd International Conference on Software Engineering , June 2000.

[15]

J. Hatcliff, J.C. Corbett, M.B. Dwyer, S. Sokolowski, and H. Zheng. A formal study of slicing for multi-threaded programs with JVM concurrency primitives. In Proceedings of the 6th International Static Analysis Symposium , September 1999.

[16]

G.J. Holzmann. The model checker SPIN. IEEE Transactions on Software Engineering , 23(5):279-294, May 1997.

[17]

Y. Kesten and A. Pnueli. Modularization and abstraction: The keys to practical formal verification. Lecture Notes in Computer Science , 1450, 1998.

[18]

D. Lea. Concurrent Programming in Java{tm}, Second Edition: Design principles and Patterns . The Java Series. Addison-Wesley, 2nd edition, 1999.

[19]

C. Loiseaux, S. Graf, J. Sifakis, A. Bouajiani, and S. Bensalem. Property preserving abstractions for the verification of concurrent systems. Formal Methods in System Design , 6(1):11-44, 1995.

[20]

K.L. McMillan. Symbolic Model Checking . Kluwer Academic Publishers, 1993.

[21]

J. Penix, W. Visser, E. Engstrom, A. Larson, and N. Weininger. Verification of time partitioning in the DEOS real-time scheduling kernel. In {14}.

[22]

V. Rusu and E. Singerman. On proving safety properties by integrating static analysis, theorem proving and abstraction. In Proceedings of Tools and Algorithms for the Construction and Analysis of Systems , March 1999.

[23]

H. Saïdi. Model checking guided abstraction and analysis. In Proceedings of the 7th International Static Analysis Symposium , 2000.

[24]

W. Visser, G. Brat, K. Havelund, and S. Park. Model checking programs. In Proceedings of the 15th IEEE International Conference on Automated Software Engineering , September 2000.

[25]

W. Visser, S. Park, and J. Penix. Applying predicate abstraction to model check object-oriented programs. In Proceedings of the 3rd ACM SIGSOFT Workshop on Formal Methods in Software Practice , August 2000.

Cited By

Beyer DLöwe S(2013)Explicit-State software model checking based on CEGAR and interpolationProceedings of the 16th international conference on Fundamental Approaches to Software Engineering10.1007/978-3-642-37057-1_11(146-162)Online publication date: 16-Mar-2013
https://dl.acm.org/doi/10.1007/978-3-642-37057-1_11
Albarghouthi AGurfinkel AWei OChechik M(2010)Abstract analysis of symbolic executionsProceedings of the 22nd international conference on Computer Aided Verification10.1007/978-3-642-14295-6_43(495-510)Online publication date: 15-Jul-2010
https://dl.acm.org/doi/10.1007/978-3-642-14295-6_43
Jiang LSu ZHarrold MMurphy G(2008)Profile-guided program simplification for effective testing and analysisProceedings of the 16th ACM SIGSOFT International Symposium on Foundations of software engineering10.1145/1453101.1453110(48-58)Online publication date: 9-Nov-2008
https://dl.acm.org/doi/10.1145/1453101.1453110
Show More Cited By

Recommendations

Finding feasible abstract counter-examples

A strength of model checking is its ability to automate the detection of subtle system errors and produce traces that exhibit those errors. Given the high-computational cost of model checking most researchers advocate the use of aggressive property-...
Compositional verification by model checking for counter-examples
ISSTA '96: Proceedings of the 1996 ACM SIGSOFT international symposium on Software testing and analysis

Many concurrent systems are required to maintain certain safety and liveness properties. One emerging method of achieving confidence in such systems is to statically verify them using model checking. In this approach an abstract, finite-state model of ...
Compositional verification by model checking for counter-examples

Many concurrent systems are required to maintain certain safety and liveness properties. One emerging method of achieving confidence in such systems is to statically verify them using model checking. In this approach an abstract, finite-state model of ...

Comments

Information & Contributors

Information

Published In

cover image Guide Proceedings

TACAS 2001: Proceedings of the 7th International Conference on Tools and Algorithms for the Construction and Analysis of Systems

April 2001

585 pages

ISBN:3540418652

Publisher

Springer-Verlag

Berlin, Heidelberg

Publication History

Published: 02 April 2001

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

23
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 25 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Beyer DLöwe S(2013)Explicit-State software model checking based on CEGAR and interpolationProceedings of the 16th international conference on Fundamental Approaches to Software Engineering10.1007/978-3-642-37057-1_11(146-162)Online publication date: 16-Mar-2013
https://dl.acm.org/doi/10.1007/978-3-642-37057-1_11
Albarghouthi AGurfinkel AWei OChechik M(2010)Abstract analysis of symbolic executionsProceedings of the 22nd international conference on Computer Aided Verification10.1007/978-3-642-14295-6_43(495-510)Online publication date: 15-Jul-2010
https://dl.acm.org/doi/10.1007/978-3-642-14295-6_43
Jiang LSu ZHarrold MMurphy G(2008)Profile-guided program simplification for effective testing and analysisProceedings of the 16th ACM SIGSOFT International Symposium on Foundations of software engineering10.1145/1453101.1453110(48-58)Online publication date: 9-Nov-2008
https://dl.acm.org/doi/10.1145/1453101.1453110
de Melo ANunes PXavier KWainwright RHaddad H(2008)Towards verification and testing of Java programsProceedings of the 2008 ACM symposium on Applied computing10.1145/1363686.1363858(730-734)Online publication date: 16-Mar-2008
https://dl.acm.org/doi/10.1145/1363686.1363858
Kim M(2007)Formal modeling and verification of high-availability protocol for network security appliancesProceedings of the 5th international conference on Automated technology for verification and analysis10.5555/1779046.1779083(489-500)Online publication date: 22-Oct-2007
https://dl.acm.org/doi/10.5555/1779046.1779083
Calamé JIoustinova NVan De Pol JSidorova N(2007)Bug hunting with false negativesProceedings of the 6th international conference on Integrated formal methods10.5555/1770498.1770504(98-117)Online publication date: 2-Jul-2007
https://dl.acm.org/doi/10.5555/1770498.1770504
Chen GKandemir MVijaykrishnan NIrwin MHirose F(2006)Object duplication for improving reliabilityProceedings of the 2006 Asia and South Pacific Design Automation Conference10.1145/1118299.1118343(140-145)Online publication date: 24-Jan-2006
https://dl.acm.org/doi/10.1145/1118299.1118343
Sen KAgha G(2006)Automated systematic testing of open distributed programsProceedings of the 9th international conference on Fundamental Approaches to Software Engineering10.1007/11693017_25(339-356)Online publication date: 27-Mar-2006
https://dl.acm.org/doi/10.1007/11693017_25
Gurfinkel AChechik M(2006)Why waste a perfectly good abstraction?Proceedings of the 12th international conference on Tools and Algorithms for the Construction and Analysis of Systems10.1007/11691372_14(212-226)Online publication date: 25-Mar-2006
https://dl.acm.org/doi/10.1007/11691372_14
Sen KMarinov DAgha G(2005)CUTEACM SIGSOFT Software Engineering Notes10.1145/1095430.108175030:5(263-272)Online publication date: 1-Sep-2005
https://dl.acm.org/doi/10.1145/1095430.1081750
Show More Cited By

View Options

View options

Media

Figures

Other

Tables

View Table of Contents