Select statement in Promela much slower than the equivalent if statement?
So I used the following line in my Promela code.
select( cycles: 26..31 );
However, it was causing state explosion. I replaced it with the following if statement and suddenly the state explosion problem vanished. Isn't the select statement I showed above supposed to be the equivalent of the if statement below? What is going on here?
if
:: cycles = 26;
:: cycles = 27;
:: cycles = 28;
:: cycles = 29;
:: cycles = 30;
:: cycles = 31;
fi;
Your select statement is converted by Spin into
cycles = 26;
do
:: cycles < 31 -> cycles++
:: break
od
This means that there are, in every loop execution, two possibilities to choose among, i.e. two different successor states in the transition system. If not break is chosen, you have to do a comparison and an assignment (two states), and then continue. If you want to reach the value 31, you have had 5 comparisons and 5 assignments before, whereas in the if version there is just a non-deterministic choice for an assignment.
I visualized the two different versions with spinspider, which should make the problem better understandable.
The following picture depicts the state space generated from a program with the "if"-version, where there are clearly only 6 possibilities to choose among:
int cycles;
active proctype testWithIf() {
if
:: cycles = 26;
:: cycles = 27;
:: cycles = 28;
:: cycles = 29;
:: cycles = 30;
:: cycles = 31;
fi;
assert(cycles >= 26 && cycles <= 31);
}
Compare to this the image generated from a program obtained as a transformation of your select statement into a do-loop:
int cycles;
active proctype test1() {
cycles = 26;
do
:: cycles < 31 -> cycles++
:: break
od;
assert(cycles >= 26 && cycles <= 31);
}
Do you see the differences? As I said, I think the main problem is that whereas in the if-version you just choose an assignment, you have to do multiple things in the do-version at each state where you do not choose break: You have to do the comparison, increment the counter, and then continue. This clearly generates a larger state space.
- Spin unreached in proctype "-end-"
- how to model golang RWLock using Promela modeling language
- Why SPIN cannot detect non-progress loop here?
- Excel vba spin button fetching wrong time value and data getting changed
- SPIN: How to interact with this model checker passing parameter from outside?
- Spin: gcc-6: unrecognized command line option
- Promela syntax error: Error: incomplete structure ref 'table' saw 'operator: ='
- Trying to include C libraries into Promela model
- How to generate a Buchi Automaton from a LTL formula?
- Promela: Errors with parameters in proctypes, and using 'end' label
- Trying to match to a typedef value in a receive statement causes "bad node type 44" error message
- How to create two dimensional array in Promela?
- All possible Knight moving on a chessboard in promela
- permission denied to execute '/usr/bin/spin' in WSL (ubuntu 18.04)
- Logical evaluation of "When A and B ... "
- Promela channel "??" removal order
- Why an infinite loop doesn't result in an error in model checking with Promela and Spin?
- Multiple Repeat..Until in Promela Spin
- Promela: Why is not this atomic block equivalent to an assignment statement?
- Semicolon usage in Promela
- Promela randomly select two elements at the same time
- Python file included with C in Promela/Spin: 'inline text too long'
- PROMELA: Would this be an example of a deadlock?
- PROMELA: What are interleavings?
- When to use semaphore locks / unlocks vs. wait / notify?
- Is this model of Peterson's algorithm incorrect?
- SPIN assert not triggered
- Spin verification - undefined reference to random and srandom
- Spin model checker - Error: memory exhausted because of yacc stack size
- How to join processes in Promela?