P ublications

The combination of static and dynamic software analysis, such as data flow analysis (DFA) and model checking, provides benefits for both disciplines. On the one hand, the information extracted by DFAs about program data may be utilized by model checkers to optimize the state space representation. On the other hand, the expressiveness of logic formulas allows us to consider model checkers as generic data flow analyzers. Following this second approach, we propose in this paper an algorithm to calculate DFAs using on-the-fly resolution of boolean equation systems (BESs). The overall framework includes the abstraction of the input program into an implicit labeled transition system (LTS), independent of the program specification language. Moreover, using BESs as an intermediate representation has allowed us to reformulate classic data flow analyses encountered in the literature, which were previously encoded in terms of mu-calculus formulas with forward and backward modalities. Our work has been implemented and integrated into the widespread verification platform CADP, and experimented on real examples.

Keywords:

data flow analysis, model checking, labeled transition system, boolean equation system

BibTeX:

@inproceedings{Gallardo-Joubert-Merino-07,

author = {{Mar\'{\i}a-del-Mar} Gallardo and Christophe Joubert and Pedro Merino},

title = {On-the-Fly Data Flow Analysis based on Verification Technology},

booktitle = {Proceedings of the 6th International Workshop on Compiler Optimization meets Compiler Verification COCV'2007 (Braga, Portugal)},

year = {2007},

editor = {Rolf Drechsler and Sabine Glesner and Jens Knoop},

publisher = {Elsevier},

month = {March}

}

The well-known problem of state space explosion in model checking is even more critical when applying this technique to programming languages, mainly due to the presence of complex data structures. One recent and promising approach to deal with this problem is the construction of an abstract and correct representation of the global program state allowing to match visited states during program model exploration. In particular, one powerful method to implement abstract matching is to fill the state vector with a minimal amount of relevant variables for each program point. In this paper, we combine the on-the-fly model checking approach (incremental construction of the program state space) and the static analysis method called influence analysis (extraction of significant variables for each program point) in order to automatically construct an abstract matching function. Firstly, we describe the problem as an alternation-free value-based mu-calculus formula, whose validity can be checked on the program model expressed as a labeled transition system (LTS). Secondly, we translate the analysis into the local resolution of a parameterised boolean equation system (PBES), whose representation enables a more efficient construction of the resulting abstract matching function. Finally, we show how our proposal has been elegantly integrated into CADP, a generic framework for both the design and analysis of distributed systems and the development of verification tools.

Keywords:

static analysis, model checking, labeled transition system, mu-calculus, parameterised boolean equation system

BibTeX:

@inproceedings{Gallardo-Joubert-Merino-06-b,

author = {{Mar\'{\i}a-del-Mar} Gallardo and Christophe Joubert and Pedro Merino},

title = {Implementing Influence Analysis using Parameterised Boolean Equation Systems},

booktitle = {Proceedings of the 2nd International Symposium on Leveraging Applications of Formal Methods, Verification and Validation {ISOLA}'06 (Paphos, Cyprus)},

year = {2006},

publisher = {IEEE Computer Society Press},

month = {November}

}

BibTeX:

@inproceedings{Garavel-Mateescu-Bergamini-et-al-06-a,

author = {Hubert Garavel and Radu Mateescu and Damien Bergamini and Adrian Curic and Nicolas Descoubes and Christophe Joubert and Irina Smarandache-Sturm and Gilles Stragier},

title = {\textsc{Distributor} and \textsc{Bcg\_Merge}: Tools for Distributed Explicit State Space Generation},

booktitle = {Proceedings of the 12th International Conference on Tools and Algorithms for the Construction and Analysis of Systems \textsc{Tacas}'2006 (Vienna, Austria)},

year = {2006},

editor = {Holger Hermanns and Jens Palsberg},

publisher = {Springer Verlag},

series = {Lecture Notes in Computer Science},

volume = {3920},

pages = {445--449},

month = {April}

}

The explicit-state analysis of concurrent systems must handle large state spaces, which correspond to realistic systems containing many parallel processes and complex data structures. In this paper, we combine the on-the-fly approach (incremental construction of the state space) and the distributed approach (state space exploration using several machines connected by a network) in order to increase the computing power of analysis tools. To achieve this, we propose MB-DSOLVE, a new algorithm for distributed on-the-fly resolution of multiple block, alternation-free boolean equation systems (BESs). First, we apply MB-DSOLVE to perform distributed on-the-fly model checking of alternation-free modal mu-calculus, using the standard encoding of the problem as a BES resolution. The speedup and memory consumption obtained on large state spaces improve over previously published approaches based on game graphs. Next, we propose an encoding of the conformance test case generation problem as a BES resolution from which a diagnostic representing the complete test graph (CTG) is built. By applying MB-DSOLVE, we obtain a distributed on-the-fly test case generator whose capabilities scale up smoothly w.r.t. well-established existing sequential tools.

Keywords:

boolean equation system, distributed algorithm, labeled transition system, model checking, mu-calculus, test case generation, verification

BibTeX:

@inproceedings{Joubert-Mateescu-06-a,

author = {Christophe Joubert and Radu Mateescu},

title = {Distributed On-the-Fly Model-Checking and Test Case Generation},

booktitle = {Proceedings of the 13th International SPIN Workshop on Model Checking of Software {SPIN}'06 (Vienna, Austria)},

year = {2006},

editor = {A. Valmari},

publisher = {Springer Verlag},

series = {Lecture Notes in Computer Science},

volume = {3925},

pages = {126--145},

month = {April}

}

BibTeX:

@inproceedings{Bergamini-Descoubes-Joubert-Mateescu-05-a,

author = {Damien Bergamini and Nicolas Descoubes and Christophe Joubert and Radu Mateescu},

title = {BISIMULATOR: A Modular Tool for On-the-Fly Equivalence Checking},

booktitle = {Proceedings of the 11th International Conference on Tools and Algorithms for the Construction and Analysis of Systems TACAS'2005 (Edinburgh, Scotland)},

year = {2005},

editor = {Nicolas Halbwachs and Lenore Zuck},

publisher = {Springer Verlag},

series = {Lecture Notes in Computer Science},

volume = {3440},

pages = {581--585},

month = {April}

}

Boolean Equation Systems (BESs) allow to represent various problems encountered in the area of propositional logic programming and verification of concurrent systems. Several sequential algorithms for global and local BES resolution have been proposed so far, mainly in the field of verification; however, these algorithms do not scale up satisfactorily as the size of BESs increases. In this paper, we propose a distributed algorithm, called DSOLVE, which performs the local resolution of a BES using a set of machines connected by a network. Our experiments for solving large BESs using clusters of PCs show linear speedups and a scalable behaviour of DSOLVE w.r.t. its sequential counterpart.

Keywords:

distributed memory algorithm, boolean equation systems, distributed termination detection, local resolution

BibTeX:

@inproceedings{Joubert-Mateescu-05,

author = {Christophe Joubert and Radu Mateescu},

title = {Distributed Local Resolution of Boolean Equation Systems},

booktitle = {Proceedings of the 13th Euromicro Conference on Parallel, Distributed and Network based Processing, PDP'05 (Lugano, Switzerland)},

publisher = {IEEE Computer Society Press},

year = {2005}

month = {February}

}

This paper describes a set of analysis components that open the way to perform performance and dependability analysis with the CADP toolbox, originally designed for verifying the functional correctness of LOTOS specifications. Three new tools (named BCG_STEADY, BCG_TRANSIENT, and DETERMINATOR) have been added to the toolbox. The approach taken fits well within the existing architecture of CADP, which doesn't need to be altered to enable performance evaluation.

Keywords:

performance evaluation, functional verification, steady-state and transient analysis, non-determinism reduction

BibTeX:

@inproceedings{Hermanns-Joubert-03-a,

author = {Holger Hermanns and Christophe Joubert},

title = {A Set of Performance and Dependability Analysis Components for CADP},

booktitle = {Proceedings of the 9th International Conference on Tools and Algorithms for the Construction and Analysis of Systems TACAS'2003 (Warsaw, Poland)},

year = {2003},

editor = {Hubert Garavel and John Hatcliff},

publisher = {Springer Verlag},

series = {Lecture Notes in Computer Science},

volume = {2619},

pages = {425--430},

month = {April}

}

On-the-fly equivalence checking consists in comparing two Labeled Transition Systems (LTSs) modulo a given equivalence relation by exploring them in a demand-driven way. Since it avoids the explicit construction of LTSs, this method is able to detect errors even in systems that are too large to fit in the memory of a computer. In this paper, we aim at further improving the performance of on-the-fly equivalence checking using several machines connected by a network. We propose DSOLVE, a new algorithm for distributed on-the-fly resolution of Boolean Equation Systems (BESs), which enables equivalence checking modulo various relations characterized in terms of BESs. DSOLVE serves as verification engine for the distributed version of BISIMULATOR, an on-the-fly equivalence checker developed within the CADP verification toolbox using the OPENCAESAR environment. Our experimental measures show quasi-linear speedups and a good scalability of the distributed version of BISIMULATOR w.r.t. its sequential version.

Keywords:

bisimulation, boolean equation system, distributed memory algorithm, equivalence checking, distributed termination detection, cluster of machines

BibTeX:

@inproceedings{Joubert-Mateescu-04,

author = {Christophe Joubert and Radu Mateescu},

title = {Distributed On-the-Fly Equivalence Checking},

booktitle = {Proceedings of the 3rd International Workshop on Parallel and Distributed Methods in Verification PDMC'2004 (London, UK)},

year = {2004},

editor = {Lubos Brim and Martin Leucker},

series = {Electronic Notes in Theoretical Computer Science},

volume = {128},

issue = {3},

pages = {47--62},

publisher = {Elsevier}

}

Distributed Model Checking (DMC) is based on several distributed algorithms, which are often complex and error prone. In this paper, we consider one fundamental aspect of DMC design: message passing communication, the implementation of which presents hidden tradeoffs often dismissed in DMC related literature. We show that, due to such communication models, high level abstract DMC algorithms might face implicit pitfalls when implemented concretely. We illustrate our discussion with a generic distributed state space generation algorithm.

Keywords:

distributed model checking, distributed memory algorithm, message passing, cluster of machines

BibTeX:

@inproceedings{Joubert-03,

author = {Christophe Joubert},

title = {Distributed Model Checking: From Abstract Algorithms to Concrete Implementations},

booktitle = {Proceedings of the 2nd International Workshop on Parallel and Distributed Model Checking PDMC'2003 (Boulder, Colorado, USA)},

year = {2003},

editor = {Lubos Brim and Orna Grumberg},

series = {Electronic Notes in Theoretical Computer Science},

volume = {89},

issue = {1},

publisher = {Elsevier}

}

BibTeX:

@techreport{Gallardo-Joubert-Merino-06-a,

author = {{Mar\'{\i}a-del-Mar} Gallardo and Christophe Joubert and Pedro Merino},

title = {Static Analysis using Parameterised Boolean Equation Systems},

institution = {University of M\'{a}laga},

year = {2006},

type = {Technical Report},

number = {LCC-ITI-2006-05},

address = {Spain},

month = {June}

}

BibTeX:

@techreport{Joubert-Mateescu-06-b,

author = {Christophe Joubert and Radu Mateescu},

title = {Distributed On-the-Fly Model Checking and Test Case Generation},

institution = {INRIA},

year = {2006},

type = {Research Report},

number = {RR-5880},

address = {Grenoble},

month = {April}

}

The verification of concurrent finite-state systems is confronted in practice with the state explosion problem (prohibitive size of the underlying state space), which occurs for realistic systems containing many parallel processes and complex data structures. Various techniques for fighting against state explosion have been proposed, such as on-the-fly verification, partial order reduction, and distributed verification. However, practical experience has shown that none of these techniques alone is always sufficient to handle large-scale systems.

In this thesis, we propose a combination of these approaches in order to scale up their capabilities. Our approach is based upon Boolean Equation Systems (BESs), which provide an elegant intermediate representation for verification problems defined on Labeled Transition Systems, such as equivalence checking, tau-confluence reduction, model checking of alternation-free mu-calculus, and test-case generation.

We propose DSolve and MB-DSolve, two new algorithms for distributed on-the-fly resolution of BESs (containing one, resp. several equation blocks), and employ them as computing engines for four on-the-fly verification tools developed within the CADP toolbox using the OPEN/CAESAR environment: the BISIMULATOR equivalence checker, the TAU_CONFLUENCE reductor, the EVALUATOR model checker, and the EXTRACTOR test-case generator. Experimental measures performed on clusters of machines show quasi-linear speedups and a good scalability of the distributed versions of these tools w.r.t. their sequential counterparts.

Keywords:

boolean equation system, distributed memory algorithm, on-the-fly verification, equivalence checking, partial order reduction, model checking, test case generation

BibTeX:

@phdthesis{Joubert-05-c,

author = {Christophe Joubert},

title = {V\'erification distribu\'ee \`a la vol\'ee de grands espaces d'\'etats},

school = {Institut National Polytechnique de Grenoble},

year = {2005},

type = {Manuscrit de th\`ese en informatique},

address = {Grenoble},

month = {December}

}

This master research work aimed at designing and implementing new algorithms for the massively parallel generation of large transition systems problem, in order to prepare distributed model checking. We gave a complete state of the art of research works on parallel generation of models. Then, we proposed a new algorithm for the parallel construction of models obtained from programs described with high level languages, such as LOTOS. One novel aspect of our approach is the distributed management of dynamic data structures (lists, trees, etc.) between several machines. We also specified our algorithm in LOTOS and verified its functional properties (absence of deadlock, termination detection, safety) by mean of the CADP toolbox. A prototype implementation of our algorithm has been implemented in DISTRIBUTOR tool of CADP. The experiments on a cluster of PCs confirmed the good behavior of our algorithm and showed important performance gain in memory and time execution.

Keywords:

on-the-fly generation, distributed memory algorithm, partitioned labelled transition systems, dynamic data structure, distributed termination detection, cluster of machines

BibTeX:

@mastersthesis{Joubert-02-a,

author = {Christophe Joubert},

title = {Techniques et outils pour la construction massivement parallèle de systèmes de transitions},

school = {Institut National Polytechnique de Grenoble et Université Joseph Fourier},

year = {2002}

type = {Mémoire de DEA en informatique},

address = {Grenoble},

month = jun

}

BibTeX:

@misc{Joubert-05-e,

author = {Christophe Joubert},

title = {Distributed On-the-Fly Verification of Large State Spaces},

howpublished = {Presentation at the GISUM group, Department of Computer Science, University of M'{a}laga (M'{a}laga, Spain)},

month = {December},

year = {2005}

}

BibTeX:

@misc{Joubert-05-d,

author = {Christophe Joubert},

title = {Distributed On-the-Fly Resolution of Boolean Equation Systems},

howpublished = {3rd International Workshop on System Engineering and Validation, meeting on Clusters and Grids for Verification and Performance Evaluation \textsc{Senva-Grid}'2005 (Montbonnot, Ise`re, France)},

month = {November},

year = {2005}

}

BibTeX:

@misc{Joubert-05-b,

author = {Christophe Joubert},

title = {Distributed On-the-Fly Verification of Transition Systems},

howpublished = {2nd International Workshop on System Engineering and Validation \textsc{Senva}'2005 (Saint Pierre de Chartreuse, France)},

month = {June},

year = {2005}

}

BibTeX:

@misc{Joubert-05-a,

author = {Christophe Joubert},

title = {Distributed On-the-Fly Verification of Finite-State Systems},

howpublished = {Invited presentation at the ELP group, Department of Information Systems and Computation, Technical University of Valencia (Valencia, Spain)},

month = {May},

year = {2005}

}

BibTeX:

@misc{Joubert-04-b,

author = {Christophe Joubert},

title = {Analyse d'espaces d'états par résolution distribuée de systèmes d'équations booléennes},

howpublished = {Journée des doctorants de l'Ecole Doctorale de Mathématiques, Sciences et Technologies de l'Information, Informatique MSTII'2004 (Grenoble, France)},

month = {November},

year = {2004}

}

BibTeX:

@misc{Joubert-04-a,

author = {Christophe Joubert},

title = {Distributed Local Resolution of Boolean Equation Systems for Distributed On-the-Fly Equivalence Checking},

howpublished = {1st International Workshop on System Engineering and Validation SENVA'2004 (Allevard-les-Bains, France)},

month = {June},

year = {2004}

}

BibTeX:

@misc{Joubert-03-b,

author = {Christophe Joubert},

title = {Combiner vérification compositionnelle et évaluation de performances dans CADP},

howpublished = {Séminaire annuel d'équipe VASY'2003 (Saint Pierre de Chartreuse, France)},

month = {June},

year = {2003}

}

BibTeX:

@misc{Joubert-03-a,

author = {Christophe Joubert},

title = {Approches massivement parallèles pour l'analyse de très grands espaces d'états},

howpublished = {Ecole de Jeunes Chercheurs en Programmation EJCP'2003 (Aussois, France)},

month = {May},

year = {2003}

}

BibTeX:

@misc{Joubert-02-b,

author = {Christophe Joubert},

title = {Outils logiciels pour la combinaison de vérification fonctionnelle et d'évaluation de performances au sein de CADP},

howpublished = {Séminaire annuel d'équipe VASY'2002 (Aix les Bains, France)},

month = {October},

year = {2002}

}

BibTeX:

@misc{Joubert-02-c,

author = {Christophe Joubert},

title = {Techniques et outils pour la construction massivement parallèle de systèmes de transitions},

howpublished = {Séminaire annuel d'équipe VASY'2002 (Aix les Bains, France)},

month = {October},

year = {2002}

}

BibTeX:

@misc{Garavel-Mateescu-Bergamini-et-al-06-b,

author = {Hubert Garavel and Radu Mateescu and Damien Bergamini and Adrian Curic and Nicolas Descoubes and Christophe Joubert and Irina Smarandache-Sturm and Gilles Stragier},

title = {\textsc{Distributor} and \textsc{Bcg\_Merge}: Tools for Distributed Explicit State Space Generation},

howpublished = {Tool session of the 12th International Conference on Tools and Algorithms for the Construction and Analysis of Systems \textsc{Tacas}'2006 (Vienna, Austria)},

year = {2006},

month = {April}

}

BibTeX:

@misc{Garavel-Mateescu-Bergamini-et-al-05,

author = {Hubert Garavel and Radu Mateescu and Damien Bergamini and Adrian Curic and Nicolas Descoubes and Christophe Joubert and Irina Smarandache-Sturm and Gilles Stragier},

title = {\textsc{Distributor} and \textsc{Bcg\_Merge}: Tools for Distributed Explicit State Space},

howpublished = {Tool session of the 4th International Workshop on Parallel and Distributed Methods in Verification \textsc{Pdmc}'2005 (Lisboa, Portugal)},

year = {2005},

month = {July}

}

BibTeX:

@misc{Bergamini-Descoubes-Joubert-Mateescu-05-b,

author = {Damien Bergamini and Nicolas Descoubes and Christophe Joubert and Radu Mateescu},

title = {BISIMULATOR: A Modular Tool for On-the-Fly Equivalence Checking},

howpublished = {Tool Session of the 11th International Conference on Tools and Algorithms for the Construction and Analysis of Systems TACAS'2005 (Edinburgh, Scotland)},

year = {2005},

month = {April}

}

BibTeX:

@misc{Hermanns-Joubert-03-b,

author = {Holger Hermanns and Christophe Joubert},

title = {A Set of Performance and Dependability Analysis Components for CADP},

howpublished = {Tool Session of the 9th International Conference on Tools and Algorithms for the Construction and Analysis of Systems TACAS'2003 (Warsaw, Poland)},

year = {2003},

month = {April}

}