Linear Completeness Thresholdsfor Bounded Model Checking

Thomas Wahlwith: Daniel Kroening, Joel Ouaknine,

Ofer Strichman, James Worrell

CAV 2011, Snowbird, Utah

2

Bounded LTL Model Checking= search for CEXs along bounded paths:

Computer-Aided Verification, Snowbird, Utah

10/19/2011

3

Toward Verification: Lifting the Bound

Computer-Aided Verification, Snowbird, Utah

10/19/2011

4

Doesn’t that already exist?

Computer-Aided Verification, Snowbird, Utah

10/19/2011

5

Even for all of LTL?

Computer-Aided Verification, Snowbird, Utah10/19/2011

• Awedh & Somenzi, CAV’04• Clarke et al., VMCAI’04

6

Our Goal•

Computer-Aided Verification, Snowbird, Utah10/19/2011

⇒ no product; result parametric

7

Def.: Linear Compl. Thresholds

Computer-Aided Verification, Snowbird, Utah

10/19/2011

A Non-Linear Example

Computer-Aided Verification, Snowbird, Utah 810/19/2011

and familyof Kripkestructures:

9

Cliqueyness

Computer-Aided Verification, Snowbird, Utah

“Directed graph is cliquey”: every strongly connected component (SCC) is a clique.

cliquey! not cliquey

10/19/2011

10

Cliqueyness is what we need!

Computer-Aided Verification, Snowbird, Utah

Theorem: Cliquey automatahave linear completeness thresholds.

10/19/2011

11

Tightening the Threshold•

Computer-Aided Verification, Snowbird, Utah10/19/2011

Algorithm itself also has linear complexity!

12

Cliquey Automata and LTL

10/19/2011 Computer-Aided Verification, Snowbird, Utah

13

Is all of LTL\X cliquey?

Computer-Aided Verification, Snowbird, Utah10/19/2011

This formula’s BA is semantically non-cliquey.

14

A Cliquey LTL\X Fragment

Computer-Aided Verification, Snowbird, Utah10/19/2011

Theorem: Unary LTL\X formulas (LTL\XU)have cliquey automata encodings.

Corollary: LTL\XU ⇒ Cliquey ⇒ LCT.

15

Summary:Cliqueyness and LTL Fragments

Computer-Aided Verification, Snowbird, Utah10/19/2011

All inclusions are strict!

16

Back toLinear Completeness Thresholds

10/19/2011 Computer-Aided Verification, Snowbird, Utah

17

Non-Linear CTs:How complex does it get?

Computer-Aided Verification, Snowbird, Utah10/19/2011

18

Summary•

Computer-Aided Verification, Snowbird, Utah10/19/2011

19

Open Issues

Computer-Aided Verification, Snowbird, Utah10/19/2011

20

Open Issues

Computer-Aided Verification, Snowbird, Utah10/19/2011

21

End.

Computer-Aided Verification, Snowbird, Utah10/19/2011

22

Roadmap

Computer-Aided Verification, Snowbird, Utah

BAs of class “X”permit LCTs

LTL formulas of class “Y”have “X” automata

If not LCT,how bad is it?

10/19/2011

23

Nomenclature

Computer-Aided Verification, Snowbird, Utah10/19/2011

Product Automaton

Computer-Aided Verification, Snowbird, Utah 24

10/19/2011

25

Cliqueyness Expressible in LTL• Cliqueyness is expressible in LTL (*-free ω-regular expression)• Thus, cliquey BAs encode LTL formulas• Cliqueyness not expressible in LTL\X In fact, there are cliquey BAs that do not correspond to any LTL\X formula. (Problem: stuttering!)

10/19/2011 Computer-Aided Verification, Snowbird, Utah

26

Cliquey = LCT ?

•

Computer-Aided Verification, Snowbird, Utah10/19/2011