effective abstractions for verification under relaxed
play

Effective Abstractions for Verification under Relaxed Memory Models - PowerPoint PPT Presentation

Oct 23, 2023 •177 likes •855 views

Effective Abstractions for Verification under Relaxed Memory Models Andrei Dan Yuri Meshman Martin Vechev Eran Yahav ETH Zurich Technion ETH Zurich Technion 1 Dekkers Algorithm initial: flag[0] = false, flag[1] = false, turn = 0

  1. Effective Abstractions for Verification under Relaxed Memory Models Andrei Dan Yuri Meshman Martin Vechev Eran Yahav ETH Zurich Technion ETH Zurich Technion 1

  2. Dekker’s Algorithm initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 2

  3. Sequential Consistency Dekker’s Algorithm initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 2

  4. Sequential Consistency Dekker’s Algorithm initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 2

  5. Sequential Consistency Dekker’s Algorithm Relaxed Model x86 TSO initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 2

  6. Sequential Consistency Dekker’s Algorithm Relaxed Model x86 TSO initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 2

  7. Sequential Consistency Dekker’s Algorithm Relaxed Model x86 TSO initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 2

  8. Correct Dekker’s Algorithm Relaxed Model x86 TSO initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true fence fence while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true fence fence /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 3

  9. Correct Dekker’s Algorithm Relaxed Model x86 TSO initial: flag[0] = false, flag[1] = false, turn = 0 Thread 1: Thread 0: flag[1] := true flag[0] := true fence fence while (flag[1] = true) while (flag[0] = true) if (turn ≠ 0) if (turn ≠ 1) flag[0] := false flag[1] := false while (turn ≠ 0) { } while (turn ≠ 1) { } flag[0] := true flag[1] := true fence fence /* Critical Section */ /* Critical Section */ Spec : mutual exclusion over Critical Section 3

  10. This work Concurrent Program P Memory Model M Specification S

  11. This work Concurrent Program P Source-to-source Concurrent translation Program P M Memory Model M Specification S

  12. This work Concurrent Program P Source-to-source Concurrent translation Program P M Memory Model M Abstract interpreter Program for sequential invariants consistency Specification S

  13. This work Concurrent Program P Source-to-source Concurrent translation Program P M Memory Model M Abstract interpreter Program for sequential invariants consistency Specification SMT Solver S

  14. This work Abstraction-aware translation Concurrent Program P Source-to-source Concurrent translation Program P M Memory Model M Abstract interpreter Program for sequential invariants consistency Specification SMT Solver S

  15. Talk outline Direct translation [SAS ‘14] Abstraction-aware translation: 1. Leverage more refined abstract domain 2. Buffer semantics without shifting [Abstraction] Evaluation 5

  16. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence 6

  17. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence 7

  18. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence lhs 1 := ‘ X ’; rhs 1 := 1; translated to X := 1 cnt := cnt + 1 Introduce 2 local variables in Thread 0 to encode each location of the finite buffer. Introduce a variable cnt. It represents the number of elements in the buffer: {0 .. k}. 7

  19. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence 8

  20. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence Establish a limit k for the size of the buffers for each thread. For example k = 3. Sound abstraction. 8

  21. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence 9

  22. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 Flush a := X Y = 0 Flush Y := a + 1 Flush X := a – 1 Flush fence 9

  23. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence 10

  24. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence while (cnt > 0 ∧ random) do if (lhs 1 = ‘ X ’) then X := rhs 1 ; translated to Flush if (lhs 1 = ‘ Y ’) then Y := rhs 1 ; cnt := cnt – 1 10

  25. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence 11

  26. Direct translation for x86 TSO [SAS ‘14] Thread 0: Write Buffer 0: Shared Memory: X := 1 X := 1 X = 0 a := X Y = 0 Y := a + 1 X := a – 1 fence if (cnt ≥ 1 ∧ lhs 1 = ‘ X ’) then a := rhs 1 ; translated to a := X else a := X; 11

  27. Analysis with the direct translation Original program: Direct Translation: Numerical abstract interpretation: lhs 1 := ‘ X ’; rhs 1 := 1; translated to X := 1 cnt := cnt + 1 while (cnt > 0 ∧ random) do if (lhs 1 = ‘ X ’) then X := rhs 1 ; translated to Flush if (lhs 1 = ‘ Y ’) then Y := rhs 1 ; cnt := cnt – 1 if (cnt ≥ 1 ∧ lhs 1 = ‘ X ’) then a := rhs 1 ; translated to a := X else a := X; 12

  28. Analysis with the direct translation Original program: Direct Translation: Numerical abstract interpretation: lhs 1 := ‘ X ’; rhs 1 := 1; translated to X := 1 lhs 1 = ‘X’ ∧ rhs 1 = 1 ∧ cnt = 1 ∧ cnt := cnt + 1 X = 0 while (cnt > 0 ∧ random) do if (lhs 1 = ‘ X ’) then X := rhs 1 ; translated to Flush if (lhs 1 = ‘ Y ’) then Y := rhs 1 ; cnt := cnt – 1 if (cnt ≥ 1 ∧ lhs 1 = ‘ X ’) then a := rhs 1 ; translated to a := X else a := X; 12

  29. Analysis with the direct translation Original program: Direct Translation: Numerical abstract interpretation: lhs 1 := ‘ X ’; rhs 1 := 1; translated to X := 1 lhs 1 = ‘X’ ∧ rhs 1 = 1 ∧ cnt = 1 ∧ cnt := cnt + 1 X = 0 while (cnt > 0 ∧ random) do if (lhs 1 = ‘ X ’) then X := rhs 1 ; translated to Flush if (lhs 1 = ‘ Y ’) then Y := rhs 1 ; lhs 1 = ‘X’ ∧ rhs 1 = 1 ∧ cnt = [0, 1] cnt := cnt – 1 ∧ X = [0, 1] if (cnt ≥ 1 ∧ lhs 1 = ‘ X ’) then a := rhs 1 ; translated to a := X else a := X; 12

  30. Analysis with the direct translation Original program: Direct Translation: Numerical abstract interpretation: lhs 1 := ‘ X ’; rhs 1 := 1; translated to X := 1 lhs 1 = ‘X’ ∧ rhs 1 = 1 ∧ cnt = 1 ∧ cnt := cnt + 1 X = 0 while (cnt > 0 ∧ random) do if (lhs 1 = ‘ X ’) then X := rhs 1 ; translated to Flush if (lhs 1 = ‘ Y ’) then Y := rhs 1 ; lhs 1 = ‘X’ ∧ rhs 1 = 1 ∧ cnt = [0, 1] cnt := cnt – 1 ∧ X = [0, 1] if (cnt ≥ 1 ∧ lhs 1 = ‘ X ’) then a := rhs 1 ; translated to a := X else a := X; lhs 1 = ‘X’ ∧ rhs 1 = 1 ∧ cnt = [0, 1] ∧ X = [0, 1] ∧ a = [0, 1] 12

Recommend

Relaxed Separation Logic Tutorial @ POPL14 Viktor Vafeiadis MPI-SWS 20 January 2014

Relaxed Separation Logic Tutorial @ POPL14 Viktor Vafeiadis MPI-SWS 20 January 2014

Relaxed Separation Logic Tutorial @ POPL14 Viktor Vafeiadis MPI-SWS 20 January 2014 Tutorial outline Part I. Weak memory models 1. Introduction to relaxed concurrency 2. The C11 relaxed memory model Part II. Relaxed program logics 3.

699 views • 34 slides
Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI,

Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI,

Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI, Universit e Bordeaux 1 Software modeling and verification group, RWTH-Aachen MOVES Seminar, March 2013 Lazy abstractions for timed automata -

609 views • 60 slides
5th STL Workshop, June 2005 Title: Relaxed weak queues: an alternative to run-relaxed heaps

5th STL Workshop, June 2005 Title: Relaxed weak queues: an alternative to run-relaxed heaps

5th STL Workshop, June 2005 Title: Relaxed weak queues: an alternative to run-relaxed heaps Speaker: Jyrki Katajainen Co-workers: Amr Elmasry and Claus Jensen These slides as well as the underlying paper are available at

262 views • 22 slides
Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions

Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions

Transition Systems and Abstractions Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions Conclusion Malte Helmert Albert-Ludwigs-Universit at Freiburg, Germany STAIR 2008 About This Talk

870 views • 43 slides
Relaxed memory concurrency and verified compilation Viktor Vafeiadis Max Planck Institute for

Relaxed memory concurrency and verified compilation Viktor Vafeiadis Max Planck Institute for

Relaxed memory concurrency and verified compilation Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) Full functional verification Method: Come up with a complete specification of the program Prove the program

852 views • 52 slides
Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas

Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas

Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas Keller Universit at Basel October 29, 2018 Multiple Abstractions Additivity Outlook Summary Content of this Course Tasks Progression/

684 views • 31 slides
A solution of A solution of the cusp problem the cusp problem in relaxed halos in relaxed

A solution of A solution of the cusp problem the cusp problem in relaxed halos in relaxed

A solution of A solution of the cusp problem the cusp problem in relaxed halos in relaxed halos E.V. Mikheeva in collaboration with A.G.Doroshkevich and V.N.Lukash Astro Space Centre of P.N.Lebedev Physics Institute Cusp problem: density

398 views • 14 slides
Relaxed memory models No sequential consistency (SC) in chips today Chip designers

Relaxed memory models No sequential consistency (SC) in chips today Chip designers

Dynamic Synthesis for Relaxed Memory Models Feng Liu*, Nayden Nedev*, Nedyalko Prisadnikov , Martin Vechev, Eran Yahav *Princeton University, Sofia University, ETH Zurich, Technion 06/13/2012 PLDI 2012, Beijing Relaxed

410 views • 27 slides
INDEPENDENT VERIFICATION AND CODING VALIDATION (IV & V) FOR APR-DRG Effective September 1,

INDEPENDENT VERIFICATION AND CODING VALIDATION (IV & V) FOR APR-DRG Effective September 1,

INDEPENDENT VERIFICATION AND CODING VALIDATION (IV & V) FOR APR-DRG Effective September 1, 2014 Who are we? eQHealth has a 16 year partnership with Mississippi Division of Medicaid (DOM) as the Utilization Management and Quality

575 views • 35 slides
Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST

Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST

FMCAD 2011 Effective Word-Level Interpolation for Software Verification Alberto Griggio FBK-IRST Motivations Craig interpolation applied succesfully for Formal Verification of both hardware and software Ongoing research (at least for

572 views • 41 slides
Scalable and Cost-Effective Model-Based Software Verification and Testing University of

Scalable and Cost-Effective Model-Based Software Verification and Testing University of

Scalable and Cost-Effective Model-Based Software Verification and Testing University of Luxembourg Interdisciplinary Centre for Security, Reliability and Trust Software Verification and Validation Lab (www.svv.lu) May 17th, 2013 University of

1.03k views • 72 slides
Planning and Optimization C2. Delete Relaxation: Finding Relaxed Plans Malte Helmert and Gabriele

Planning and Optimization C2. Delete Relaxation: Finding Relaxed Plans Malte Helmert and Gabriele

Planning and Optimization C2. Delete Relaxation: Finding Relaxed Plans Malte Helmert and Gabriele R oger Universit at Basel October 24, 2016 Greedy Algorithm Optimal Relaxed Plans Discussion Summary Finding Relaxed Plans Using the

714 views • 15 slides
Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F.

Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F.

Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F. Teraoka, K. Gogo, K. Mitsuya, R. Shibui, K. Mitani Keio University 06.11.7 67th IETF MOBOPTS l2-abstractions 1 ToC Gap Analysis against IEEE

431 views • 25 slides
An out-of-order thread-local semantics for something like volatile relaxed atomics in C and the

An out-of-order thread-local semantics for something like volatile relaxed atomics in C and the

An out-of-order thread-local semantics for something like volatile relaxed atomics in C and the problems it highlights Jean Pichon 24th of September 2014 Goal How to avoid out-of-thin-air with C11s relaxed atomics? Remark by Mark

305 views • 18 slides
Producing Effective Interpolants for SAT-based Incremental Verification and Upgrade Checking

Producing Effective Interpolants for SAT-based Incremental Verification and Upgrade Checking

Producing Effective Interpolants for SAT-based Incremental Verification and Upgrade Checking Grigory Fedyukovich Joint work with: Ondrej Sery, Simone Fulvio Rollini, Leonardo Alt, Antti E. J. Hyvrinen, and Natasha Sharygina F ORMAL V ERIFICATION

843 views • 81 slides
Energy consumption in embedded systems; abstractions for software models, programming languages

Energy consumption in embedded systems; abstractions for software models, programming languages

Energy consumption in embedded systems; abstractions for software models, programming languages and verification methods Florence Maraninchi orcid.org/0000-0003-0783-9178 thanks to M. Moy, L. Mounier, L. Maillet-Contoz, D. Barthel, J.

489 views • 45 slides
FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions

FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions

FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions have we built? And how did we do it? Server rendered desktop site Less memory, bandwidth, and latency Device constraints More products Multiple

898 views • 61 slides
EFFECTIVE FACE VERIFICATION SYSTEMS BASED ON THE HISTOGRAM OF ORIENTED GRADIENTS AND DEEP

EFFECTIVE FACE VERIFICATION SYSTEMS BASED ON THE HISTOGRAM OF ORIENTED GRADIENTS AND DEEP

EFFECTIVE FACE VERIFICATION SYSTEMS BASED ON THE HISTOGRAM OF ORIENTED GRADIENTS AND DEEP LEARNING TECHNIQUES Sawitree Khunthi, Pichada Saichua and Olarik Surinta Present at the 14 th International Joint Symposium on Artificial Intelligence and

309 views • 18 slides
Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R oger Universit at Basel November 6, 2017 Additivity Outlook Summary Content of this Course Tasks Progression/ Regression Planning

570 views • 30 slides
ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services,

ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services,

ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services, Architecture, and Implementation Pamela Zave AT&T LaboratoriesResearch Florham Park, New Jersey, USA joint work with Jennifer Rexford, Princeton

347 views • 33 slides
Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller Universit at Basel October 30, 2019 Additivity Outlook Summary Content of this Course Foundations Logic Classical Heuristics

432 views • 30 slides
APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops)

APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops)

APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops) Manage complexity in deploying software systems Examples covered VMs, containers Infrastructure as a Service Platform as a

1.08k views • 33 slides
Community Detection by Decomposing a Graph into Relaxed Cliques Fabio Furini, Timo Gschwind,

Community Detection by Decomposing a Graph into Relaxed Cliques Fabio Furini, Timo Gschwind,

General context Relaxed Clique Definitions Unified Branch-and-Price Framework Computational Results Community Detection by Decomposing a Graph into Relaxed Cliques Fabio Furini, Timo Gschwind, Stefan Irnich, Roberto Wolfler Calvo LAMSADE,

667 views • 48 slides
L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend

L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend

L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend Abstractions Overview of abstractions that support building declarative and reactive frontend applications Case study demonstrating these

399 views • 22 slides

More recommend