Pengyi Li,Jing Sun,Hai Wang

DOI: https://doi.org/10.1142/S0218194017400162

IF: 1.007

2017-01-01

International Journal of Software Engineering and Knowledge Engineering

Abstract:With the growing in size and complexity of modern computer systems, the need for improving the quality at all stages of software development has become a critical issue. The current software production has been largely dependent on manual code development. Despite the slow development process, the errors introduced by the programmers contribute to a substantial portion of defects in the final software product. This paper investigates the synergy of generating code and assertion constraints from formal design models and use them to verify the implementation. We translate Z formal models into their OCL counterparts and Java assertions. With the help of existing tools, we demonstrate various checkings at different levels to enhance correctness.

Pengyi Li,Jing Sun,Hai Wang

DOI: https://doi.org/10.18293/seke2017-133

2017-01-01

Abstract:With the growing in size and complexity of modern computer systems, the need for improving the quality at all stages of software development has become a critical issue. The current software production has been largely depended on manual code development. Despite the slow development process, the errors introduced by the programmers contribute to a substantial portion of defects in the final software product. This paper explores the possibility of generating code and assertion constraints from formal design models and use them to verify the implementation. We translate Z formal models into their OCL counter-parts and Java assertions. With the help of existing tools, we demonstrate various checking at different levels to enhance correctness.

Cong Wang,Fei He,Xiaoyu Song,Yu Jiang,Ming Gu,Jiaguang Sun

DOI: https://doi.org/10.1109/compsac.2017.66

2017-01-01

Abstract:Formal program verification is a powerful technique to ensure the correctness of programs. To perform this technique, one oftentimes needs to manually specify assertions, which is a time-consuming and error-prone task. Generating assertions automatically can significantly improve the usability of formal program verification. To decide where an assertion is needed heavily and which value range of the variable should be checked are the most challenging parts of assertion recommendation. This paper proposes the first assertion recommendation approach for program verification. With the help of machine learning techniques, the approach automatically decides whether a program function needs to add assertions. If an assertion is needed, the approach automatically recommends a variable that is most likely to occur in this assertion. Meanwhile, a value range of the variable is suggested. Our method of assertion recommendation has been integrated into Ceagle Online (a program verifier) and evaluated on the benchmarks of SV-COMP and CProver. Our best performance in assertion necessity classification can reach 92.1192% accuracy rate, 84.2281% precision rate and 86.8512% recall rate.

Mohammad Shahidzadeh,Behnam Ghavami,Steve Wilton,Lesley Shannon

2024-11-23

Abstract:Formal Property Verification (FPV), using SystemVerilog Assertions (SVA), is crucial for ensuring the completeness of design with respect to the specification. However, writing SVA is a laborious task and has a steep learning curve. In this work, we present a large language model (LLM) -based flow to automatically generate high-quality SVA from the design specification documents, named \ToolName. We introduce a novel sub-task-focused fine-tuning approach that effectively addresses functionally incorrect assertions produced by baseline LLMs, leading to a remarkable 7.3-fold increase in the number of functionally correct assertions. Recognizing the prevalence of syntax and semantic errors, we also developed an iterative refinement method that enhances the LLM's initial outputs by systematically re-prompting it to correct identified issues. This process is further strengthened by a custom compiler that generates meaningful error messages, guiding the LLM towards improved accuracy. The experiments demonstrate a 26\% increase in the number of assertions free from syntax errors using this approach, showcasing its potential to streamline the FPV process.

Hardware Architecture,Artificial Intelligence

Hasini Witharana,Daniel Volya,Prabhat Mishra

2023-03-03

Abstract:Functional validation is necessary to detect any errors during quantum computation. There are promising avenues to debug quantum circuits using runtime assertions. However, the existing approaches rely on the expertise of the verification engineers to manually design and insert the assertions in suitable locations. In this paper, we propose automated generation and placement of quantum assertions based on static analysis and random sampling of quantum circuits. Specifically, this paper makes two important contributions. We automatically uncover special properties of a quantum circuit, such as purely classical states, superposition states, and entangled states using statistical methods. We also perform automated placement of quantum assertions to maximize the functional coverage as well as minimize the hardware overhead. We demonstrate the effectiveness of the generated assertions in error detection using a suite of quantum benchmarks, including Shor's factoring algorithm and Grover's search algorithm.

Quantum Physics,Software Engineering

Quanjun Zhang,Weifeng Sun,Chunrong Fang,Bowen Yu,Hongyan Li,Meng Yan,Jianyi Zhou,Zhenyu Chen

DOI: https://doi.org/10.1145/3699598

IF: 3.685

2024-01-01

ACM Transactions on Software Engineering and Methodology

Abstract:Unit testing aims to validate the correctness of software system units and has become an essential practice in software development and maintenance. However, it is incredibly time-consuming and labor-intensive for testing experts to write unit test cases manually, including test inputs (i.e., prefixes) and test oracles (i.e., assertions). Very recently, some techniques have been proposed to apply Large Language Models (LLMs) to generate unit assertions and have proven the potential in reducing manual testing efforts. However, there has been no systematic comparison of the effectiveness of these LLMs, and their pros and cons remain unexplored. To bridge this gap, we perform the first extensive study on applying various LLMs to automated assertion generation. The experimental results on two independent datasets show that studied LLMs outperform six state-of-the-art techniques with a prediction accuracy of 51.82% \(\sim\) 58.71% and 38.72% \(\sim\) 48.19%. The improvements achieve 29.60% and 12.47% on average. Besides, as a representative LLM, CodeT5 consistently outperforms all studied LLMs and all baselines on both datasets, with an average improvement of 13.85% and 26.64%, respectively. We also explore the performance of generated assertions in detecting real-world bugs, and find LLMs are able to detect 32 bugs from Defects4J on average, with an improvement of 52.38% against the most recent approach EditAS. Inspired by the findings, we construct a simplistic retrieval-and-repair-enhanced LLM-based approach by transforming the assertion generation problem into a program repair task for retrieved similar assertions. Surprisingly, such a simplistic approach can further improve the prediction accuracy of LLMs by 9.40% on average, leading to new records on both datasets. Besides, we provide additional discussions from different aspects (e.g., the impact of assertion types and test lengths) to illustrate the capacity and limitations of LLM-based approaches. Finally, we further pinpoint various practical guidelines (e.g., the improvement of multiple candidate assertions) for advanced LLM-based assertion generation in the near future. Overall, our work underscores the promising future of adopting off-the-shelf LLMs to generate accurate and meaningful assertions in real-world test cases and reduce the manual efforts of unit testing experts in practical scenarios.

Lezhi Ma,Shangqing Liu,Yi Li,Xiaofei Xie,Lei Bu

2024-03-24

Abstract:Formal program specifications play a crucial role in various stages of software development. However, manually crafting formal program specifications is rather difficult, making the job time-consuming and labor-intensive. It is even more challenging to write specifications that correctly and comprehensively describe the semantics of complex programs. To reduce the burden on software developers, automated specification generation methods have emerged. However, existing methods usually rely on predefined templates or grammar, making them struggle to accurately describe the behavior and functionality of complex real-world programs. To tackle this challenge, we introduce SpecGen, a novel technique for formal program specification generation based on Large Language Models. Our key insight is to overcome the limitations of existing methods by leveraging the code comprehension capability of LLMs. The process of SpecGen consists of two phases. The first phase employs a conversational approach that guides the LLM to generate appropriate specifications for a given program. The second phase, designed for where the LLM fails to generate correct specifications, applies four mutation operators to the model-generated specifications and selects verifiable specifications from the mutated ones through a novel heuristic selection strategy. We evaluate SpecGen on two datasets, including the SV-COMP Java category benchmark and a manually constructed dataset. Experimental results demonstrate that SpecGen succeeds in generating verifiable specifications for 279 out of 385 programs, outperforming the existing purely LLM-based approaches and conventional specification generation tools like Houdini and Daikon. Further investigations on the quality of generated specifications indicate that SpecGen can comprehensively articulate the behaviors of the input program.

Software Engineering

LV Ge-feng,ZOU Bei-ji,ZHOU Hao-yu,SUN Jia-guang

DOI: https://doi.org/10.3969/j.issn.1000-1220.2006.01.030

2006-01-01

Abstract:The automated test case generation is an important aspect of the software testing. The quality of test case directly determines the efficiency and overlay of the testing. While faced with systems such as Computer Assisted Design (CAD) systems or Image Processing systems, which involve complicated human-machine interactions, it is difficult to generate scientific and effective test cases with the existing automated test theories and models. In this paper, we propose a software testing model based on Functional Object (FO) which first records and analyses the user's operating stream of the software in test and encapsulates them into FO with object-oriented theory, then recombines the instance of FO according to certain restrictions to generate test cases. The testing model has been successfully applied to the CADTesting, a special testing platform for CAD systems. The experimentation results show that the quality of the test case generated is high.

Nabil M. Kabbani,Daniel Welch,Caleb Priester,Stephen Schaub,Blair Durkee,Yu-Shan Sun,Murali Sitaraman

DOI: https://doi.org/10.4204/EPTCS.187.5

2015-08-17

Abstract:This paper summarizes our experience in communicating the elements of reasoning about correctness, and the central role of formal specifications in reasoning about modular, component-based software using a language and an integrated Web IDE designed for the purpose. Our experience in using such an IDE, supported by a 'push-button' verifying compiler in a classroom setting, reveals the highly iterative process learners use to arrive at suitably specified, automatically provable code. We explain how the IDE facilitates reasoning at each step of this process by providing human readable verification conditions (VCs) and feedback from an integrated prover that clearly indicates unprovable VCs to help identify obstacles to completing proofs. The paper discusses the IDE's usage in verified software development using several examples drawn from actual classroom lectures and student assignments to illustrate principles of design-by-contract and the iterative process of creating and subsequently refining assertions, such as loop invariants in object-based code.

Software Engineering,Human-Computer Interaction,Programming Languages

Wenji Fang,Mengming Li,Min Li,Zhiyuan Yan,Shang Liu,Hongce Zhang,Zhiyao Xie

2024-02-01

Abstract:Assertion-based verification (ABV) is a critical method for ensuring design circuits comply with their architectural specifications, which are typically described in natural language. This process often requires significant interpretation by engineers to convert these specifications into functional verification assertions. Existing methods for generating assertions from natural language specifications are limited to sentences extracted by engineers, discouraging the practical application. In this work, we present AssertLLM, an automatic assertion generation framework for complete specification files. AssertLLM breaks down the complex task into three phases, incorporating three customized Large Language Models (LLMs) for extracting structural specifications, mapping signal definitions, and generating assertions. Additionally, we provide an open-source benchmark for assessing assertion generation capabilities. Our evaluation of AssertLLM on a full design, encompassing 23 signals, demonstrates that 89% of the generated assertions are both syntactically and functionally accurate.

Hardware Architecture

Ying Jin,Jing Zhang,Weiping Hao,Pengfei Ma,Yan Zhang,Haiyan Zhao,Hong Mei

DOI: https://doi.org/10.1007/s11704-010-0151-y

IF: 2.6688

2010-01-01

Frontiers of Computer Science

Abstract:Document driven requirements analysis, as proposed by Prof. David Parnas, which has had some success in practice, focuses on creating concise and complete formal requirements documents to serve as references for formal verification, software design, implementation, testing, inspection, and so on. However, at present large number of requirements documents are still written in natural languages. Therefore, generating formal requirements specification from informal textual requirements description has become a big challenge. In this paper, a concern-based approach to generating formal requirements specification from textual requirements document is proposed, which applies separation of concerns during requirements analysis and utilizes concerns and their relationships to bridge the gap between textual requirements statements and formal requirements documentation. A tool suite has been developed for supporting our approach, and a case study has been performed to illustrate the process of our approach. Results indicate that our approach facilitates guiding the process of formal requirements documentation with concerns and their relationships.

Vaishnavi Pulavarthi,Deeksha Nandal,Soham Dan,Debjit Pal

2024-06-26

Abstract:Assertions have been the de facto collateral for simulation-based and formal verification of hardware designs for over a decade. The quality of hardware verification, \ie, detection and diagnosis of corner-case design bugs, is critically dependent on the quality of the assertions. There has been a considerable amount of research leveraging a blend of data-driven statistical analysis and static analysis to generate high-quality assertions from hardware design source code and design execution trace data. Despite such concerted effort, all prior research struggles to scale to industrial-scale large designs, generates too many low-quality assertions, often fails to capture subtle and non-trivial design functionality, and does not produce any easy-to-comprehend explanations of the generated assertions to understand assertions' suitability to different downstream validation tasks. Recently, with the advent of Large-Language Models (LLMs), there has been a widespread effort to leverage prompt engineering to generate assertions. However, there is little effort to quantitatively establish the effectiveness and suitability of various LLMs for assertion generation. In this paper, we present AssertionBench, a novel benchmark to evaluate LLMs' effectiveness for assertion generation quantitatively. AssertioBench contains 100 curated Verilog hardware designs from OpenCores and formally verified assertions for each design generated from GoldMine and HARM. We use AssertionBench to compare state-of-the-art LLMs to assess their effectiveness in inferring functionally correct assertions for hardware designs. Our experiments demonstrate how LLMs perform relative to each other, the benefits of using more in-context exemplars in generating a higher fraction of functionally correct assertions, and the significant room for improvement for LLM-based assertion generators.

Software Engineering,Machine Learning

Zhiyuan Yan,Wenji Fang,Mengming Li,Min Li,Shang Liu,Zhiyao Xie,Hongce Zhang

2024-11-04

Abstract:Assertion-based verification (ABV) is a critical method to ensure logic designs comply with their architectural specifications. ABV requires assertions, which are generally converted from specifications through human interpretation by verification engineers. Existing methods for generating assertions from specification documents are limited to sentences extracted by engineers, discouraging their practical applications. In this work, we present AssertLLM, an automatic assertion generation framework that processes complete specification documents. AssertLLM can generate assertions from both natural language and waveform diagrams in specification files. It first converts unstructured specification sentences and waveforms into structured descriptions using natural language templates. Then, a customized Large Language Model (LLM) generates the final assertions based on these descriptions. Our evaluation demonstrates that AssertLLM can generate more accurate and higher-quality assertions compared to GPT-4o and GPT-3.5.

Hardware Architecture

Chuyue Sun,Ying Sheng,Oded Padon,Clark Barrett

2024-06-04

Abstract:The use of large language models for code generation is a rapidly growing trend in software development. However, without effective methods for ensuring the correctness of generated code, this trend could lead to any number of undesirable outcomes. In this paper, we lay out a vision for addressing this challenge: the Clover paradigm, short for Closed-Loop Verifiable Code Generation, which reduces correctness checking to the more accessible problem of consistency checking. At the core of Clover lies a checker that performs consistency checks among code, docstrings, and formal annotations. The checker is implemented using a novel integration of formal verification tools and large language models. We provide a theoretical analysis to support our thesis that Clover should be effective at consistency checking. We also empirically investigate its feasibility on a hand-designed dataset (CloverBench) featuring annotated Dafny programs at a textbook level of difficulty. Experimental results show that for this dataset, (i) LLMs are reasonably successful at automatically generating formal specifications; and (ii) our consistency checker achieves a promising acceptance rate (up to 87%) for correct instances while maintaining zero tolerance for incorrect ones (no false positives).

Artificial Intelligence,Machine Learning,Software Engineering

ZHAI Juan,TANG Zhen-Hao,LI Bin,ZHAO Jian-Hua,LI Xuan-Dong

DOI: https://doi.org/10.13328/j.cnki.jos.005211

2017-01-01

Abstract:Formal verification is an effective method to guarantee software reliability by proving the correctness of a program.Analyzing and verifying loops which are important and frequently-used statements is not only vital for formal verification,but also a hottopic in the research area of software development.This paper proposes using memories modified by a loop and new values stored inthese memories after executing the loop to describe the execution effect of the loop.Such execution effect is defined as loop summary.Inaddition,this paper proposes an approach to automatically synthesize loop summaries for loops manipulating commonly-used datastructures,including nested loops.Based on loop summaries,specifications can be generated automatically,including loop invariants,preconditions and post-conditions of loops.The proposed approach is implemented and integrated into the code-verification toolAccumulator.The approach is also evaluated with a variety of programs,and the results show that it is able to generate loop summaries and different kinds of specifications,therefore helping to ease the verification task by reducing the burden for programmers and improving the automatic level and efficiency.

T Li,HJ Yang,BW Xu,L Shi

2005-01-01

Abstract:In this paper, we propose an approach that transforms an assertion composed of a precondition and a postcondition into Java codes using function decomposition. The function decomposition is based on the functions defined by a precondition and a postcondition by means of matching the semantic subroutines in component base, matching the decomposition case in case base and executing the decomposition rules in rule base. The process of decomposition can be described by a decomposition tree. The decomposition process continues until all of the leaves in decomposition tree match the subroutines in component base. By synthesising the information in decomposition tree, a Java program is generated. The approach emphasises users' participation in the decomposition so that they can supply the knowledge that is insufficient in knowledge base.

Hasini Witharana,Yangdi Lyu,Prabhat Mishra

DOI: https://doi.org/10.1145/3441297

IF: 1.447

2021-04-01

ACM Transactions on Design Automation of Electronic Systems

Abstract:Assertions are widely used for functional validation as well as coverage analysis for both software and hardware designs. Assertions enable runtime error detection as well as faster localization of errors. While there is a vast literature on both software and hardware assertions for monitoring functional scenarios, there is limited effort in utilizing assertions to monitor System-on-Chip (SoC) security vulnerabilities. We have identified common SoC security vulnerabilities and defined several classes of assertions to enable runtime checking of security vulnerabilities. A major challenge in assertion-based validation is how to activate the security assertions to ensure that they are valid. While existing test generation using model checking is promising, it cannot generate directed tests for large designs due to state space explosion. We propose an automated and scalable mechanism to generate directed tests using a combination of symbolic execution and concrete simulation of RTL models. Experimental results on diverse benchmarks demonstrate that the directed tests are able to activate security assertions non-vacuously.

computer science, software engineering, hardware & architecture

Junyan Qian,Baowen Xu

DOI: https://doi.org/10.15388/informatica.2007.178

2007-01-01

Informatica

Abstract:Iterative abstraction refinement has emerged in the last few years as the leading approach to software model checking. We present an approach for automatically verifying C programs against safety specifications based on finite state machine. The approach eliminates unneeded variables using program slicing technique, and then automatically extracts an initial abstract model from C source code using predicate abstraction and theorem proving. In order to reduce time complexities, we partition the set of candidate predicates into subsets, and construct abstract model independently. On the basis of a counterexample-guided abstraction refinement scheme, the abstraction refines incrementally until the specification is either satisfied or refuted. Our methods can be extended to verifying concurrency C programs by parallel composition.

Jinyi Wang,Yican Sun,Hongfei Fu,Krishnendu Chatterjee,Amir Kafshdar Goharshady

DOI: https://doi.org/10.1145/3453483.3454102

2020-01-01

Abstract:We consider the fundamental problem of deriving quantitative bounds on the probability that a given assertion is violated in a probabilistic program. We provide automated algorithms that obtain both lower and upper bounds on the assertion violation probability. The main novelty of our approach is that we prove new and dedicated fixed-point theorems which serve as the theoretical basis of our algorithms and enable us to reason about assertion violation bounds in terms of pre and post fixed-point functions. To synthesize such fixed-points, we devise algorithms that utilize a wide range of mathematical tools, including repulsing ranking supermartingales, Hoeffding's lemma, Minkowski decompositions, Jensen's inequality, and convex optimization. On the theoretical side, we provide (i) the first automated algorithm for lower-bounds on assertion violation probabilities, (ii) the first complete algorithm for upper-bounds of exponential form in affine programs, and (iii) provably and significantly tighter upper-bounds than the previous approaches. On the practical side, we show our algorithms can handle a wide variety of programs from the literature and synthesize bounds that are remarkably tighter than previous results, in some cases by thousands of orders of magnitude.