TLA+ Model Checking Made Symbolic (SPLASH 2019 - OOPSLA)

Write a Blog >>

Sun 20 - Fri 25 October 2019 Athens, Greece

Who

Igor Konnov, Jure Kukovec, Thanh-Hai Tran

Track

SPLASH 2019 OOPSLA

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Fri 25 Oct 2019 14:45 - 15:07 at Templars - Model Checking Chair(s): Casper Bach Poulsen

Abstract

TLA+ is a language for formal specification of all kinds of computer systems. System designers use this language to specify concurrent, distributed, and fault-tolerant protocols, which are traditionally presented in pseudo-code. TLA+ is extremely concise yet expressive: The language primitives include Booleans, integers, functions, tuples, records, sequences, and sets thereof, which can be also nested. This is probably why the only model checker for TLA+ (called TLC) relies on explicit enumeration of values and states.

In this paper, we present APALACHE – a first symbolic model checker for TLA+. Like TLC, it assumes that all specification parameters are fixed and all states are finite structures. Unlike TLC, APALACHE translates the underlying transition relation into quantifier-free SMT constraints, which allows us to exploit the power of SMT solvers. Designing this translation is the central challenge that we address in this paper.
Our experiments show that APALACHE outperforms TLC on examples with large state spaces.

DOI

https://doi.org/10.1145/3360549

Igor Konnov

Inria Nancy - Grand Est, France

France

Jure Kukovec

TU Wien, Austria

Thanh-Hai Tran