another approach to runtime checking
play

Another approach to runtime checking Typical runtime checking is by - PowerPoint PPT Presentation

Aug 14, 2022 •173 likes •246 views

Another approach to runtime checking Typical runtime checking is by duplicating entire CPU Expensive in power, area No protection from design errors Does not survive permanent faults Last time we saw an approach that leveraged

  1. Another approach to runtime checking ◮ Typical runtime checking is by duplicating entire CPU ◮ Expensive in power, area ◮ No protection from design errors ◮ Does not survive permanent faults ◮ Last time we saw an approach that leveraged SMT ◮ Somewhat better in power and area, but more complex ◮ Still no protection from design errors ◮ Still doesn’t survive permanent faults

  2. Another approach to runtime checking ◮ Typical runtime checking is by duplicating entire CPU ◮ Expensive in power, area ◮ No protection from design errors ◮ Does not survive permanent faults ◮ Last time we saw an approach that leveraged SMT ◮ Somewhat better in power and area, but more complex ◮ Still no protection from design errors ◮ Still doesn’t survive permanent faults ◮ DIVA: custom-design a checking module ◮ Simple, small addition to commit stage ◮ May be able to formally verify ◮ Fabricate for extra robustness ◮ Can take over execution on permanent fault ◮ Authors claim negligible performance hit

  3. Details Traditional Out-of-Order Core DIVA Core DIVA Checker out-of-order out-of-order execute execute WT EX EX instructions nonspec with inputs results and outputs IF ID REN R O B CT IF ID REN R O B CHK CT in-order in-order in-order in-order issue retirement issue verify and commit Shaded components must be verified for correct operation ◮ Replaces commit stage of traditional OOO pipeline ◮ Fed all instructions with inputs and outputs ◮ CHK stage repeats all calculations before allowing commit ◮ On error, replaces erroneous result with its own calculation and restarts main processor ◮ WT (watchdog timer) ensures forward progress

  4. What is validated Traditional Out-of-Order Core DIVA Core DIVA Checker out-of-order out-of-order execute execute WT EX EX instructions nonspec with inputs results and outputs IF ID REN R O B CT IF ID REN R O B CHK CT in-order in-order in-order in-order issue retirement issue verify and commit Shaded components must be verified for correct operation ◮ DIVA assumes accurate: ◮ Decoded instructions arriving at CHK stage ◮ Values fetched from memory ◮ Values fetched from architectural registers ◮ Issues its own reads to memory and register file ◮ Validates address calculation ◮ Validates all arithmetic ◮ Validates order of operations

  5. More efficient than paired CPUs in lockstep. . . Traditional Out-of-Order Core DIVA Core DIVA Checker out-of-order out-of-order execute execute WT EX EX instructions nonspec with inputs results and outputs IF ID REN R O B CT IF ID REN R O B CHK CT in-order in-order in-order in-order issue retirement issue verify and commit Shaded components must be verified for correct operation ◮ Checker pipeline does much less work than a second CPU ◮ No inter-instruction dependencies ◮ No second register file ◮ No cache ◮ Main CPU can rely on DIVA to catch errors—can be simplified ◮ Only data fetches from memory are duplicated ◮ 0.3% slower than unchecked CPU (with extra data-cache memory port)

  6. Other advantages Traditional Out-of-Order Core DIVA Core DIVA Checker out-of-order out-of-order execute execute WT EX EX instructions nonspec with inputs results and outputs IF ID REN R O B CT IF ID REN R O B CHK CT in-order in-order in-order in-order issue retirement issue verify and commit Shaded components must be verified for correct operation ◮ For sure: ◮ Can recover from permanent faults in core ◮ Can even recover from completely dead core ◮ Core only needs design validation for performance ◮ Scales better to multicore designs ◮ More speculative: ◮ Practical to build checker with bigger transistors, higher voltages, more robust circuitry ◮ Practical to formally verify checker (?) ◮ Could use fault rate to tune clock speed, temperature

  7. Disadvantages and handwaves Traditional Out-of-Order Core DIVA Core DIVA Checker out-of-order out-of-order execute execute WT EX EX instructions nonspec with inputs results and outputs IF ID REN R O B CT IF ID REN R O B CHK CT in-order in-order in-order in-order issue retirement issue verify and commit Shaded components must be verified for correct operation ◮ Correct behavior totally dependent on checker ◮ Pipeline lengthened ◮ Needs ECC register file and caches, with lots of ports ◮ Performance sims assume checker ALU is as fast as core ALU. . . ◮ correctness benefits assume checker ALU is simpler than core ALU

Recommend

Efficient Runtime Invariant Checking: A Framework and Case S tudy Michael Gorbovitski Y. Annie

Efficient Runtime Invariant Checking: A Framework and Case S tudy Michael Gorbovitski Y. Annie

Efficient Runtime Invariant Checking: A Framework and Case S tudy Michael Gorbovitski Y. Annie Liu Tom Rothamel Scott D. Stoller Computer Science Department State University of New York at Stony Brook Invariants An invariant is a predicate

532 views • 17 slides
Interfaces for Runtime Correctness Checking of Parallel Programs Joachim Protze

Interfaces for Runtime Correctness Checking of Parallel Programs Joachim Protze

Interfaces for Runtime Correctness Checking of Parallel Programs Joachim Protze (protze@itc.rwth-aachen.de) Motivation OpenMP 3 introduced tasks (2008) Several data race detection tools for OpenMP tasks popped up just last year How can

384 views • 16 slides
assertion-driven analyses from compile-time checking to runtime error recovery sarfraz khurshid

assertion-driven analyses from compile-time checking to runtime error recovery sarfraz khurshid

assertion-driven analyses from compile-time checking to runtime error recovery sarfraz khurshid the university of texas at austin state of the art in software testing and analysis day, 2008 rutgers university overview programmers have long

648 views • 27 slides
Runtime Programmable Pipelines for Model Checkers on FPGAs Mrunal Patel, Shenghsun Cho , Michael

Runtime Programmable Pipelines for Model Checkers on FPGAs Mrunal Patel, Shenghsun Cho , Michael

Runtime Programmable Pipelines for Model Checkers on FPGAs Mrunal Patel, Shenghsun Cho , Michael Ferdman, Peter Milder FPGA Accelerates Model Checking Model checking ensures system correctness By exploring all states of a system Hours

814 views • 37 slides
Runtime Session Types in C# Per Andersson Christian Genne http://www.pean.se/sessiontypes/

Runtime Session Types in C# Per Andersson Christian Genne http://www.pean.se/sessiontypes/

Runtime Session Types in C# Per Andersson Christian Genne http://www.pean.se/sessiontypes/ Runtime Checking Idea: Generate and check types when parties connect +Problems can be detected in a determinstic way with a single test run + Small

299 views • 11 slides
A Proactive Approach for Runtime Self-Adaptation Based on Queueing Network Fluid Analysis Emilio

A Proactive Approach for Runtime Self-Adaptation Based on Queueing Network Fluid Analysis Emilio

Introduction Background Our Approach Illustrative Example Conclusion and future work A Proactive Approach for Runtime Self-Adaptation Based on Queueing Network Fluid Analysis Emilio Incerto 1 Mirco Tribastone 2 Catia Trubiani 1 1 Gran Sasso

503 views • 21 slides
Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F.

Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F.

Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F. Raskin (ULB) TACAS 2007 Braga - Portugal March 28, 2007 Automata-based approach to model-checking Programs and properties are formalized as

812 views • 52 slides
Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model

Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model

Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model checking historically not the first symbolic model checking approach scales better than original BDD based techniques mostly incomplete in

521 views • 28 slides
15-150 Fall 2020 Lecture 10 Stephen Brookes Type checking Type inference Polymorphism

15-150 Fall 2020 Lecture 10 Stephen Brookes Type checking Type inference Polymorphism

15-150 Fall 2020 Lecture 10 Stephen Brookes Type checking Type inference Polymorphism type benefits ... a static check provides a runtime guarantee static property runtime guarantee e has type t if e =>* v then v : t d

775 views • 49 slides
A Circuit Approach to LTL Model Checking Koen Claessen

A Circuit Approach to LTL Model Checking Koen Claessen

A Circuit Approach to LTL Model Checking Koen Claessen Chalmers University of Technology Niklas Een, Baruch Sterin UC Berkeley PLTL Linear

752 views • 29 slides
An Event-Based Approach to Runtime Adaptation in Communication-Centric Systems Jorge A. P erez

An Event-Based Approach to Runtime Adaptation in Communication-Centric Systems Jorge A. P erez

An Event-Based Approach to Runtime Adaptation in Communication-Centric Systems Jorge A. P erez University of Groningen (NL) Joint work with Cinzia Di Giusto Universit e de Nice Sophia-Antipolis (FR) 11th International Workshop on Web

272 views • 24 slides
A Mixture of Experts Approach for Runtime Mapping in Dynamic Environments Murali Emani School of

A Mixture of Experts Approach for Runtime Mapping in Dynamic Environments Murali Emani School of

A Mixture of Experts Approach for Runtime Mapping in Dynamic Environments Murali Emani School of Informatics University of Edinburgh Modern computing hardware Diverse Stochastjc Evolving 2 Parallelism Mapping Program Computatjon Steps

759 views • 51 slides
Ele lectio ions approach are you ready? Fact-checking for ed educators and fu future

Ele lectio ions approach are you ready? Fact-checking for ed educators and fu future

Ele lectio ions approach are you ready? Fact-checking for ed educators and fu future voters Mikko Salo, Kari Kivinen, Pirjo Sallinen & Valentina Uitto Brussels, 13.11.2018 Fight disinformation with media literacy event organized

298 views • 19 slides
Linear Temporal Logic to Rewrite Propositions Towards a New Model-Checking Approach P.-C.

Linear Temporal Logic to Rewrite Propositions Towards a New Model-Checking Approach P.-C.

From Linear Temporal Logic to Rewrite Propositions Towards a New Model-Checking Approach P.-C. Ham, Vincent Hugot, O. Kouchnarenko {pheam,vhugot,okouchna}@femto-st.fr University of Franche-Comt DGA & INRIA/CASSIS & FEMTO-ST

801 views • 61 slides
A Game-Theoretic Approach for Runtime Capacity Allocation in MapReduce Eugenio Gianniti * , Danilo

A Game-Theoretic Approach for Runtime Capacity Allocation in MapReduce Eugenio Gianniti * , Danilo

A Game-Theoretic Approach for Runtime Capacity Allocation in MapReduce Eugenio Gianniti * , Danilo Ardagna * , Michele Ciavotta * , Mauro Passacantando * * * Politecnico di Milano ** Universit di Pisa Slide 1 POLITECNICO DI MILANO Goals

421 views • 23 slides
Self-Loop Aggregation Product A New Hybrid Approach to On-the-Fly LTL Model Checking

Self-Loop Aggregation Product A New Hybrid Approach to On-the-Fly LTL Model Checking

Self-Loop Aggregation Product A New Hybrid Approach to On-the-Fly LTL Model Checking Alexandre Duret-Lutz (LRDE/EPITA) Kais Klai (LIPN/Paris 13) Denis Poitrenaud (LIP6/Paris 6) Yann Thierry-Mieg (LIP6/Paris 6) ATVA 2011 October 2011

937 views • 46 slides
3. Satisfiability Checking 3.1 SAT-Checking Procedures Verification Technology

3. Satisfiability Checking 3.1 SAT-Checking Procedures Verification Technology

Fachgebiet RechnerSysteme Technische Universitt Verification Technology Darmstadt 3. Satisfiability Checking Computer Systems Lab 1 3. Satisfiability Checking 3 3. Satisfiability Checking 3.1 SAT-Checking Procedures Verification

278 views • 11 slides
A Rewriting Logic Approach to Static Checking of Units of Measurement in C Mark Hills, Feng Chen,

A Rewriting Logic Approach to Static Checking of Units of Measurement in C Mark Hills, Feng Chen,

Outline Motivation CPF Unit Safety Related Work Conclusion A Rewriting Logic Approach to Static Checking of Units of Measurement in C Mark Hills, Feng Chen, and Grigore Ro su { mhills, fengchen, grosu } @cs.uiuc.edu Formal Systems

851 views • 39 slides
Runtime Considerations Were moving towards actually producing target code. This means we need

Runtime Considerations Were moving towards actually producing target code. This means we need

10/29/2012 Runtime Considerations Were moving towards actually producing target code. This means we need to consider the runtime actions of the program. CS 1622: Runtime support: Functions and local variable storage Activation

160 views • 4 slides
Self Checking Network Protocols: A Monitor Based Approach Gunjan Khanna, Padma Varadharajan,

Self Checking Network Protocols: A Monitor Based Approach Gunjan Khanna, Padma Varadharajan,

Self Checking Network Protocols: A Monitor Based Approach Gunjan Khanna, Padma Varadharajan, Saurabh Bagchi Dependable Computing Systems Lab School of Electrical and Computer Engineering Purdue University http://shay.ecn.purdue.edu/~dcsl

420 views • 18 slides
A Constraint-Solving Approach to Faust Program Type Checking Constraint Programming Meets

A Constraint-Solving Approach to Faust Program Type Checking Constraint Programming Meets

A Constraint-Solving Approach to Faust Program Type Checking Constraint Programming Meets Verification 2014 Workhsop Imr Frotier de la Messelire 1 , Pierre Jouvelot 1 , Jean-Pierre Talpin 2 1 MINES ParisTech, PSL Research University 2 INRIA

620 views • 26 slides
Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree

Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree

Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree Logic Dominic Mulligan Based on previous slides by Alan Mycroft and Mike Gordon Programming, Logic, and Semantics Group University of Cambridge

402 views • 25 slides
A Receding Horizon Approach for the Runtime Management of IaaS Cloud Systems www.modaclouds.eu

A Receding Horizon Approach for the Runtime Management of IaaS Cloud Systems www.modaclouds.eu

A Receding Horizon Approach for the Runtime Management of IaaS Cloud Systems www.modaclouds.eu Danilo Ardagna, Michele Ciavotta {danilo.ardagna, michele.ciavotta}@polimi.it Politecnico di Milano Riccardo Lancellotti

694 views • 26 slides
Runtime systems Runtime systems Functional program are very high-level: its not obvious how to

Runtime systems Runtime systems Functional program are very high-level: its not obvious how to

Runtime systems Runtime systems Functional program are very high-level: its not obvious how to Programmation Fonctionnelle Avance implement them. http://www-lipn.univ-paris13.fr/~saiu/teaching/PFA-2010 Complex library support at run time

220 views • 8 slides

More recommend