Directed Model Checking for Fast Abstract Reachability Analysis

Directed Model Checking for Fast Abstract Reachability Analysis

We propose a novel technique (TOUR) to improve both bug detection ability and verification speed of ARMC by detecting a target path quickly. The key idea of TOUR is an error location directed search that utilizes the distance to an error location and function call context at runtime. TOUR applies fo...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE access 2021, Vol.9, p.158738-158750
Hauptverfasser: Lee, Nakwon, Kim, Yunho, Kim, Moonzoo, Ryu, Duksan, Baik, Jongmoon
Format: Artikel
Sprache:eng
Schlagworte:
abstract reachability
Annotations
Computer bugs
Computer programming
Computer Science
Computer Science, Information Systems
directed search
Engineering
Engineering, Electrical & Electronic
Errors
interprocedural analysis
Measurement
Model checking
Program verification (computers)
Reachability analysis
Run time (computers)
Runtime
Science & Technology
Software
software testing
Software verification
symbolic model checking
Target detection
Technology
Telecommunications
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:We propose a novel technique (TOUR) to improve both bug detection ability and verification speed of ARMC by detecting a target path quickly. The key idea of TOUR is an error location directed search that utilizes the distance to an error location and function call context at runtime. TOUR applies four different distance metrics and a distance metric selection heuristic using static features of a target program. We have extensively evaluated TOUR on 3,042 real-world C programs in a software verification competition benchmark. The experiment results show that TOUR, due to its error location directed search, finds bugs in 20% more programs in 11% less model checking time than the state-of-the-art ARMC technique (i.e., block-abstraction memoization) for 354 buggy programs. Also, TOUR verifies 15% more programs within 15% less model checking time than the block-abstraction memoization for 652 complex clean programs.
ISSN:2169-3536
2169-3536
DOI:10.1109/ACCESS.2021.3130569