中文摘要：

随着多处理器实时系统在安全性攸关系统中的广泛应用，保证这类系统的正确性成为一项重要的工作．可调度性是实时系统正确性的一项关键性质．它表示系统必须满足的一些时间要求．传统的可调度性分析方法结论保守或者不完备,为了避免这些方法的缺陷，提出使用模型检测的方法来实现可调度性分析．提出了一个用于多处理器实时系统可调度性分析的模板，将与系统可调度性相关的部分包括实时任务、运行平台和调度管理模块都用时间自动机建模，并使用uPP从L验证可调度的性质是否总被满足．符号化模型检测方法被用于推断可调度性，但是由于秒表触发的近似机制，符号化模型检测方法不能用于证明系统不可调度．作为补充，统计模型检测方法被用于估算系统不可调度的概率，并在系统不可调度时生成反例．此外，在系统可调度时，通过统计模型检测方法获取一些性能相关的信息．

英文摘要：

As multiprocessor real-time systems are increasingly applied in safety critical systems, it＇s important to ensure the correctness of such systems. One key attribute of the correctness of real-time system is the sehedulability that guarantees to satisfy the timing requirements. The traditional methods for determining the schedulability are either pessimistic or unsafe. To tackle the drawbacks of those methods, this paper proposes a scheme to achieve the schedulability analysis using model checking. It provides a schedulability analysis framework for multiprocessor real-time system. All the components involved in the schedulability of the system, including the tasks, the execution infrastructure and the dispatching management unit, are modeled as timed automata and implemented in UPPAAL. Further, UPPAAL is employed to verify whether the schedulability property is always satisfied. Symbolic model checking is applied to determine schedulability. However, because of the over-approximation for stopwatches, symbolic model checking cannot be used to disprove schedulability. As a supplement, statistical model checking is used to estimate the probability of non-schedulability and generate concrete counterexamples going along with non-schedulability. Statistical model checking is also used to obtain some performance information when system is schedulable.