lecture 1 verification of concurrent programs
play

Lecture 1: Verification of Concurrent Programs Part 1: Decidability - PowerPoint PPT Presentation

Apr 06, 2023 •41 likes •651 views

Lecture 1: Verification of Concurrent Programs Part 1: Decidability and Complexity Results Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 VTSA, MPI-Saarbr ucken, September 2012 A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent

  1. Lecture 1: Verification of Concurrent Programs Part 1: Decidability and Complexity Results Ahmed Bouajjani LIAFA, University Paris Diderot – Paris 7 VTSA, MPI-Saarbr¨ ucken, September 2012 A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 1 / 28

  2. Outline of the lectures Lecture 1: Concurrent programs: Decidability and complexity Results ◮ Basic models ◮ Limits of the decidability of the reachability problem ◮ Classes of programs/models with a decidable state reachability problem Lecture 2: Concurrent programs: Under-approximate analysis ◮ Bounded analysis for concurrent programs ◮ Decidability and complexity issues ◮ Compositional reduction to state reachability in sequential programs Lecture 3: Weak memory models: State reachability problem ◮ Weaker models than Sequential Consistency ◮ (Un)Decidability and complexity of the state reachability problem ◮ Efficient under-approximate analysis: Reduction to SC state reachability Lecture 4: Weak memory models: Robustness against a WMM ◮ Check that all behaviors are still sequentially consistent ◮ Decidability and complexity ◮ Reduction to SC state reachability A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 2 / 28

  3. Concurrent Programs Parallel threads (with/without procedure calls) Static/Dynamic number of threads Communication ◮ Shared memory ⋆ Notion of action atomicity ⋆ Actions by a same threads are executed in the same order (Sequential Consistency) ⋆ Actions by different threads are interleaved non-deterministically ◮ Message passing ⋆ Channels (queues) ⋆ Unordered/FIFO ... ⋆ Perfect/Lossy We assume finite data domain (e.g., booleans). A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 3 / 28

  4. Finite number of threads + Shared variables Fixed number of threads Iterative processes (no recursive procedure calls) Finite number of variables A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 4 / 28

  5. Finite number of threads + Shared variables Fixed number of threads Iterative processes (no recursive procedure calls) Finite number of variables A variable has a finite number of possible values ⇒ Finite product of finite-state systems (threads + variables) ⇒ Decidable A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 4 / 28

  6. Finite number of threads + Shared variables Fixed number of threads Iterative processes (no recursive procedure calls) Finite number of variables A variable has a finite number of possible values ⇒ Finite product of finite-state systems (threads + variables) ⇒ Decidable Product grows exponentially in # threads and # variables. Reachability is decidable, and PSPACE-complete. [Kozen, FOCS’77] A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 4 / 28

  7. Finite number of threads + bounded queues Fixed number of threads Iterative processes (no recursive procedure calls) Bounded channels A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 5 / 28

  8. Finite number of threads + bounded queues Fixed number of threads Iterative processes (no recursive procedure calls) Bounded channels ⇒ Finite number of possible channel contents ⇒ Finite product of finite-state systems (threads + channels) ⇒ Decidable A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 5 / 28

  9. Finite number of threads + bounded queues Fixed number of threads Iterative processes (no recursive procedure calls) Bounded channels ⇒ Finite number of possible channel contents ⇒ Finite product of finite-state systems (threads + channels) ⇒ Decidable Product grows exponentially in # threads and size of channels. Reachability is decidable, and PSPACE-complete. A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 5 / 28

  10. Facing the state-space explosion Partial order techniques ◮ Independent actions ⇒ commutable actions ⇒ many interleavings ◮ Explore representatives up to independent actions commutations Godefroid, Wolper, Peled, Holzman, Valmari, ... Symbolic techniques ◮ Compact representations of sets of states + fixpoint calculations ◮ Bounded model checking + SAT solvers Clarke, McMillan, Somenzi, Biere, Cimatti, ... A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 6 / 28

  11. Beyond the finite-state case Unbounded (parametric/dynamic) number of threads ◮ Undecidable in general if threads Ids are allowed ◮ ⇒ Anonymous threads Unbounded channels ◮ Undecidable in general in case of FIFO queues ◮ ⇒ Unordered queues (multisets), lossy queues A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 7 / 28

  12. Programs with Dynamic Creation of Threads Finite number of variables Finite data domain ⇒ Threads are anonymous (no way to refer to identities) A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 8 / 28

  13. Programs with Dynamic Creation of Threads Finite number of variables Finite data domain ⇒ Threads are anonymous (no way to refer to identities) Iterative processes (no recursive procedure calls) ⇒ Counting abstraction ◮ Finite number of possible local states ℓ 1 , . . . , ℓ m ◮ Count how many threads are in a given local state A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 8 / 28

  14. Programs with Dynamic Creation of Threads Finite number of variables Finite data domain ⇒ Threads are anonymous (no way to refer to identities) Iterative processes (no recursive procedure calls) ⇒ Counting abstraction ◮ Finite number of possible local states ℓ 1 , . . . , ℓ m ◮ Count how many threads are in a given local state Safety is reducible to state reachability in VASS / Coverability in PN A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 8 / 28

  15. Vector Addtion Systems with States Finite state machine + finite number of counter C = { c 1 , . . . , c n } . Operations: (No test to zero) ◮ c i := c i + 1 ◮ c i > 0 / c i := c i − 1 Configuration: ( q , V ) where q is a control state and V ∈ N n Initial configuration: ( q 0 , 0 ) where 0 = 0 n . Transition relation: op ( q 1 , V 1 ) − − → ( q 2 , V 2 ) iff ◮ op = “c i := c i + 1 ”, and V 2 = V 1 [ c i ← ( V 1 ( c i ) + 1)] ◮ op = “c i > 0 / c i := c i − 1 , and (V 1 ( c i ) > 0 and V 2 = V 1 [ c i ← ( V 1 ( c i ) − 1)]) A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 9 / 28

  16. From Multithreaded Programs to VASS Associate a control state with each valuation of the globals Associate a counter with each valuation of thread locals A statement moving globals from g to g ′ and locals from ℓ to ℓ ′ : c ℓ > 0 / c ℓ := c ℓ − 1 ; c ℓ ′ := c ℓ ′ +1 g − − − − − − − − − − − − − − − − − → g ′ Creation of a new thread at initial state ℓ : c ℓ := c ℓ +1 g − − − − − − → g A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 10 / 28

  17. VASS: Reachability Problems State reachability problem: Given a state q, determine if a configuration ( q , V ) is reachable, for some V ∈ N n (any one). Coverability problem: Given a configuration ( q , V ) , determine if a configuration ( q , V ′ ) is reachable, for some V ′ ≥ V . (We say that ( q , V ) is coverable .) EXSPACE-complete [Rackoff 78] NB: Coverability can be reduced to State reachability and vice-versa. Configuration reachability problem: Determine if a given configuration ( q , V ) is reachable. Decidable [Mayr 81], [Kosaraju 82]. EXPSPACE-hard [Lipton 75]. No upper bound known. A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 11 / 28

  18. Well Structured Systems [Abdulla et al. 96], [Finkel, Schnoebelen, 00] Let U be a universe. Well-quasi ordering � over U : ∀ c 0 , c 1 , c 2 , . . . , ∃ i < j , c i � c j ⇒ Each (infinite) set has a finite minor set. Let S ⊆ U . Upward-closure S = minimal subset of U s.t. ◮ S ⊆ S , ◮ ∀ x , y . ( x ∈ S and x � y ) ⇒ y ∈ S . A set is upward closed if S = S Upward closed sets are definable by their minor sets ◮ Assume there is a function Min which associates a minor to each set. ◮ Assume pre ( Min ( S )) is computable for each set S . Monotonicity: � is a simulation relation � � ∀ c 1 , c ′ → c ′ 1 and c 1 � c 2 ) ⇒ ∃ c ′ → c ′ 2 and c ′ 1 � c ′ 1 , c 2 . ( c 1 − 2 . c 2 − 2 A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 12 / 28

  19. Key lemma Lemma The pre and pre ∗ images of upward closed set are upward closed 1 Let S be an upward closed set. 2 Assume pre ( S ) is not upward closed. 3 Let c 1 ∈ pre ( S ), and let c 2 ∈ U such that c 1 � c 2 and c 2 �∈ pre ( S ) A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 13 / 28

  20. Key lemma Lemma The pre and pre ∗ images of upward closed set are upward closed 1 Let S be an upward closed set. 2 Assume pre ( S ) is not upward closed. 3 Let c 1 ∈ pre ( S ), and let c 2 ∈ U such that c 1 � c 2 and c 2 �∈ pre ( S ) 4 Let c ′ 1 ∈ S such that c 1 − → c ′ 1 A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent Programs I September 2012 13 / 28

Recommend

Lecture 2: Verification of Concurrent Programs Part 2: Under Approximate Analysis Ahmed

Lecture 2: Verification of Concurrent Programs Part 2: Under Approximate Analysis Ahmed

Lecture 2: Verification of Concurrent Programs Part 2: Under Approximate Analysis Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 VTSA, MPI-Saarbr ucken, September 2012 A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs

654 views • 47 slides
Software Specification and Verification in Rewriting Logic: Lecture 1 Jos e Meseguer Computer

Software Specification and Verification in Rewriting Logic: Lecture 1 Jos e Meseguer Computer

Software Specification and Verification in Rewriting Logic: Lecture 1 Jos e Meseguer Computer Science Department University of Illinois at Urbana-Champaign 1 Sequential vs. Concurrent Programs Programs come in many different languages and

1.82k views • 153 slides
Verification of Concurrent Programs Decidability, Complexity, Reductions. Ahmed Bouajjani U

Verification of Concurrent Programs Decidability, Complexity, Reductions. Ahmed Bouajjani U

Verification of Concurrent Programs Decidability, Complexity, Reductions. Ahmed Bouajjani U Paris Diderot Paris 7 Locali Workshop, Beijing, November 2013 A. Bouajjani (U Paris Diderot UP7) Verification of Concurrent Programs Beijing,

924 views • 50 slides
Towards full verification of concurrent libraries Viktor Vafeiadis Program verification

Towards full verification of concurrent libraries Viktor Vafeiadis Program verification

Towards full verification of concurrent libraries Viktor Vafeiadis Program verification Programs considered: Small (&lt;100 LOC) Medium (KLOC) Large (MLOC) Simple

577 views • 45 slides
Program Correctness Literatuur Verification of Sequential and Concurrent Programs. Krzysztof R.

Program Correctness Literatuur Verification of Sequential and Concurrent Programs. Krzysztof R.

Program Correctness Literatuur Verification of Sequential and Concurrent Programs. Krzysztof R. Apt, Frank S. de Boer, Ernst-R udiger Olderog. Series: Texts in Computer Science. Springer. 3rd ed. 2nd Printing. ISBN: 978-1-84882-744-8. Te

1.23k views • 112 slides
Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis &amp; Verification Group

Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis &amp; Verification Group

Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis &amp; Verification Group NEC Labs America, Princeton, USA www.nec-labs.com Tutorial: Verifying Concurrent Programs Oct 2011 Acknowledgements Malay Ganai, Vineet

982 views • 72 slides
Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani Paris Diderot University Based on joint work with Parosh A. Abdulla Mohamed Faouzi Atig T. Phong Ngo Uppsala University Sebastian

897 views • 77 slides
Local Verification of Global Invariants in Concurrent Programs Ernie Cohen 1 , Michal Moskal 2 ,

Local Verification of Global Invariants in Concurrent Programs Ernie Cohen 1 , Michal Moskal 2 ,

Local Verification of Global Invariants in Concurrent Programs Ernie Cohen 1 , Michal Moskal 2 , Wolfram Schulte 2 , Stephan Tobies 1 1 European Microsoft Innovation Center, Aachen 2 Microsoft Research, Redmond Presentation: Florian Besser

746 views • 27 slides
Mechanized Verification of Fine-grained Concurrent Programs Ilya Sergey Aleks Nanevski

Mechanized Verification of Fine-grained Concurrent Programs Ilya Sergey Aleks Nanevski

Mechanized Verification of Fine-grained Concurrent Programs Ilya Sergey Aleks Nanevski Anindya Banerjee PLDI 2015 Terminology Coarse-grained Concurrency synchronisation between threads via locks ; Fine-grained

973 views • 72 slides
Verification of Concurrent Systems Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7

Verification of Concurrent Systems Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7

Verification of Concurrent Systems Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 MOVEP12, CIRM, December 2012 A. Bouajjani (LIAFA, UP7) Verification of Concurrent Systems December 2012 1 / 42 Concurrent Programs Parallel

1.26k views • 112 slides
VERCORS: VERIFICATION OF CONCURRENT SYSTEMS MARIEKE HUISMAN UNIVERSITY OF TWENTE, NETHERLANDS

VERCORS: VERIFICATION OF CONCURRENT SYSTEMS MARIEKE HUISMAN UNIVERSITY OF TWENTE, NETHERLANDS

VERCORS: VERIFICATION OF CONCURRENT SYSTEMS MARIEKE HUISMAN UNIVERSITY OF TWENTE, NETHERLANDS OUTLINE OF THIS LECTURE How to ensure software quality? Classical program logic Separation logic The next challenge: concurrent

1.36k views • 108 slides
Viktor Vafeiadis Software Analysis &amp; Verification Full functional verification

Viktor Vafeiadis Software Analysis &amp; Verification Full functional verification

Viktor Vafeiadis Software Analysis &amp; Verification Full functional verification Compilers , concurrent programs , theorem provers Program equivalence / Compositional reasoning Compositional compiler verification

266 views • 3 slides
Verification of Parameterized Concurrent Programs By Modular Reasoning about Data and Control

Verification of Parameterized Concurrent Programs By Modular Reasoning about Data and Control

Verification of Parameterized Concurrent Programs By Modular Reasoning about Data and Control Zachary Kincaid Azadeh Farzan University of Toronto January 18, 2013 Z. Kincaid (U. Toronto) Modular Reasoning about Data and Control January 18,

751 views • 54 slides
From Concurrent Programs to Simulating Sequential Programs: Correctness of a Transformation VPT

From Concurrent Programs to Simulating Sequential Programs: Correctness of a Transformation VPT

From Concurrent Programs to Simulating Sequential Programs: Correctness of a Transformation VPT 2017 Allan Blanchard, Fr ed eric Loulergue, Nikolai Kosmatov April 29 th , 2017 From Concurrent Programs to Simulating Sequential Programs

488 views • 37 slides
Concurrent Datatype Verification Verifying lock free data types using CSP and FDR Jonathan

Concurrent Datatype Verification Verifying lock free data types using CSP and FDR Jonathan

Concurrent Datatype Verification 01 Concurrent Datatype Verification Verifying lock free data types using CSP and FDR Jonathan Lawrence jonathan.lawrence@cs.ox.ac.uk Concurrent Datatype Verification 02 Introduction Case study using

618 views • 27 slides
A Graph-Based Semantics Workbench for Concurrent Asynchronous Programs Alexander Heuner Chris

A Graph-Based Semantics Workbench for Concurrent Asynchronous Programs Alexander Heuner Chris

A Graph-Based Semantics Workbench for Concurrent Asynchronous Programs Alexander Heuner Chris Poskitt Otto-Friedrich-Universitt ETH Zrich Bamberg Dagstuhl, November 2015 Analysis (Verification) of Evolving Graph Structures 2 CP AH

370 views • 15 slides
Testing Concurrent Java Programs Using Randomized Scheduling Scott D. Stoller Computer Science

Testing Concurrent Java Programs Using Randomized Scheduling Scott D. Stoller Computer Science

Testing Concurrent Java Programs Using Randomized Scheduling Scott D. Stoller Computer Science Department State University of New York at Stony Brook http://www.cs.sunysb.edu/stoller/ 1 Goal Pillars of Run-Time Verification monitoring :

208 views • 18 slides
SteelCore: An Extensible Concurrent Separation Logic for Effectful Dependent Programs Nikhil

SteelCore: An Extensible Concurrent Separation Logic for Effectful Dependent Programs Nikhil

SteelCore: An Extensible Concurrent Separation Logic for Effectful Dependent Programs Nikhil Swamy, Aseem Rastogi, Aymeric Fromherz , Denis Merigoux, Danel Ahman, Guido Martinez ICFP 2020 1/12 Verifying Concurrent Programs Lots of recent work

556 views • 37 slides
Verifying Concurrent Programs Daniel Kroening 28 May 1 June 2012 Outline Shared-Variable

Verifying Concurrent Programs Daniel Kroening 28 May 1 June 2012 Outline Shared-Variable

Verifying Concurrent Programs Daniel Kroening 28 May 1 June 2012 Outline Shared-Variable Concurrency Predicate Abstraction for Concurrent Programs Boolean Programs with Bounded Replication Boolean Programs with Unbounded Replication D.

774 views • 50 slides
Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Third International Workshop on Numerical Software Verification Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo INRIA Saclay - Ile-de-France July 15th, 2010 Thanks to the organizers !

1.72k views • 136 slides
Computational Logic Concurrent (Constraint) Logic Programming 1 Concurrent Logic Programs

Computational Logic Concurrent (Constraint) Logic Programming 1 Concurrent Logic Programs

Computational Logic Concurrent (Constraint) Logic Programming 1 Concurrent Logic Programs Predicate: Set of clauses Clause: Head :- Guard | Body. Head is an atom Guard and Body are conjunctions of atoms Resolvent: Set of goals

623 views • 28 slides
Java Concurrency 1 Shell CSCE 314 TAMU The World is Concurrent Concurrent programs: more than

Java Concurrency 1 Shell CSCE 314 TAMU The World is Concurrent Concurrent programs: more than

Shell CSCE 314 TAMU CSCE 314: Programming Languages Dr. Dylan Shell Java Concurrency 1 Shell CSCE 314 TAMU The World is Concurrent Concurrent programs: more than one activities execute simultaneously (concurrently) no interference

518 views • 35 slides
On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order

On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order

On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order Communication Masaki Murakami Okayama University JAPAN A Formal Model of Concurrent Systems the model presented here is a translation of asynchronous

847 views • 31 slides
Automatic Atomicity Verification for Clients of Concurrent Data Structures Mohsen Lesani Todd

Automatic Atomicity Verification for Clients of Concurrent Data Structures Mohsen Lesani Todd

Automatic Atomicity Verification for Clients of Concurrent Data Structures Mohsen Lesani Todd Millstein Jens Palsberg Concurrent Data Structures class ConcurrentHashmap&lt;K, V&gt; { // data structure V get(K k) { ... } void put(K k, V v)

512 views • 36 slides

More recommend