Increasing attention has been paid recently to criteria that allow one to conclude that a structure models a linear-time property from the knowledge that no counterexamples exist up to a certain length. These termination criteria effectively turn Bounded Model Checking into a full-fledged verification technique and sometimes result in considerable time savings. In [M. Awedh and F. Somenzi. Proving more properties with bounded model checking. In R. Alur and D. Peled, editors, Sixteenth Conference on Computer Aided Verification (CAV'04), pages 96-108. Springer-Verlag, Berlin, July 2004. LNCS 3114] we presented a criterion based on the translation of the linear-time specification into a Buchi automaton. BMC can be terminated if no fair cycle is found up to a given length, and one can prove that no fair cycle exists beyond that length. The maximum length for which counterexamples are explicitly checked is called the termination length; it obviously depends on the model, the property, and the termination criterion. In this paper we improve the criterion of [M. Awedh and F. Somenzi. Proving more properties with bounded model checking. In R. Alur and D. Peled, editors, Sixteenth Conference on Computer Aided Verification (CAV'04), pages 96-108. Springer-Verlag, Berlin, July 2004. LNCS 3114] by adding a check that often substantially reduces termination length. Our previous work employed translation to a non-generalized Buchi automaton. Though a well-known technique converts a generalized automaton into that form by composing it with a counter, it has the undesirable effect of considerably lengthening the cycles in the graph to be searched. We propose several alternatives to that approach and compare them experimentally. The translation to automata can be accomplished in more than one way, and in this paper we contrast two of them: one based on the algorithms of [F. Somenzi and R. Bloem. Efficient Buchi automata from LTL formulae. In E. A. Emerson and A. P. Sistla, editors, Twelfth Conference on Computer Aided Verification (CAV'00), pages 248-263. Springer-Verlag, Berlin, July 2000. LNCS 1855], and one based on the notion of tight automaton of [E. Clarke, O. Grumberg, and K. Hamaguchi. Another look at LTL model checking. In D. L. Dill, editor, Sixth Conference on Computer Aided Verification (CAV'94), pages 415-427. Springer-Verlag, Berlin, 1994. LNCS 818]. The latter yields shorter counterexamples, but the former often leads to earlier termination. In addition, it can help in identifying safety properties, for which termination checks are much more efficient than for the general case. We finally present results on comparing techniques based on cycle detection to the technique of [V. Schuppan and A. Biere. Efficient reduction of finite state model checking to reachability analysis. Software Tools for Technology Transfer, 5(2-3):185-204, Mar. 2004], which converts liveness properties into safety properties by augmentation of the model.
[1]
Armando Tacchella,et al.
Benefits of Bounded Model Checking at an Industrial Setting
,
2001,
CAV.
[2]
A. Prasad Sistla,et al.
The complexity of propositional linear temporal logics
,
1982,
STOC '82.
[3]
Armin Biere,et al.
Simple Bounded LTL Model Checking
,
2004,
FMCAD.
[4]
Kenneth L. McMillan,et al.
Interpolation and SAT-Based Model Checking
,
2003,
CAV.
[5]
Toby Walsh,et al.
A Fixpoint Based Encoding for Bounded Model Checking
,
2002,
FMCAD.
[6]
Fabio Somenzi,et al.
Efficient Büchi Automata from LTL Formulae
,
2000,
CAV.
[7]
Amir Pnueli,et al.
Checking that finite state concurrent programs satisfy their linear specification
,
1985,
POPL.
[8]
Armin Biere,et al.
Symbolic Model Checking without BDDs
,
1999,
TACAS.
[9]
Simon L. Peyton Jones,et al.
Imperative functional programming
,
1993,
POPL '93.
[10]
Mary Sheeran,et al.
Checking Safety Properties Using Induction and a SAT-Solver
,
2000,
FMCAD.
[11]
Viktor Schuppan,et al.
Liveness Checking as Safety Checking
,
2002,
FMICS.
[12]
Pierre Wolper,et al.
Simple on-the-fly automatic verification of linear temporal logic
,
1995,
PSTV.
[13]
Viktor Schuppan,et al.
Efficient reduction of finite state model checking to reachability analysis
,
2004,
International Journal on Software Tools for Technology Transfer.
[14]
Edmund M. Clarke,et al.
Another Look at LTL Model Checking
,
1994,
CAV.
[15]
Kavita Ravi,et al.
Efficient Decision Procedures for Model Checking of Linear Time Logic Properties
,
1999,
CAV.
[16]
Ofer Strichman,et al.
Accelerating Bounded Model Checking of Safety Properties
,
2004,
Formal Methods Syst. Des..
[17]
Carl A. Sunshine,et al.
Protocol Specification, Testing and Verification - Guest Editorial
,
1982,
Comput. Networks.
[18]
A. Prasad Sistla,et al.
Safety, liveness and fairness in temporal logic
,
1994,
Formal Aspects of Computing.
[19]
Fabio Somenzi,et al.
Proving More Properties with Bounded Model Checking
,
2004,
CAV.
[20]
Armin Biere,et al.
Shortest Counterexamples for Symbolic Model Checking of LTL with Past
,
2005
.
[21]
Pierre Wolper,et al.
Reasoning about infinite computation paths
,
1983,
24th Annual Symposium on Foundations of Computer Science (sfcs 1983).
[22]
Joël Ouaknine,et al.
Completeness and Complexity of Bounded Model Checking
,
2004,
VMCAI.
[23]
Pierre Wolper,et al.
An Automata-Theoretic Approach to Automatic Program Verification (Preliminary Report)
,
1986,
LICS.