lecture 2 verification of concurrent programs
play

Lecture 2: Verification of Concurrent Programs Part 2: Under - PowerPoint PPT Presentation

Jan 13, 2023 •171 likes •654 views

Lecture 2: Verification of Concurrent Programs Part 2: Under Approximate Analysis Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 VTSA, MPI-Saarbr ucken, September 2012 A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs

  1. Lecture 2: Verification of Concurrent Programs Part 2: Under Approximate Analysis Ahmed Bouajjani LIAFA, University Paris Diderot – Paris 7 VTSA, MPI-Saarbr¨ ucken, September 2012 A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 1 / 18

  2. Concurrent Programs with Procedures Parallel threads (with/without procedure calls) Shared memory Interleaving semantics (sequential consistency) Model = Concurrent Pushdown Systems (Multistack systems) A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 2 / 18

  3. Concurrent Programs with Procedures Parallel threads (with/without procedure calls) Shared memory Interleaving semantics (sequential consistency) Model = Concurrent Pushdown Systems (Multistack systems) Turing powerful: 2 threads ⇒ Restrictions: Consider only some schedules Aim: detect bugs A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 2 / 18

  4. Concurrent Programs with Procedures Parallel threads (with/without procedure calls) Shared memory Interleaving semantics (sequential consistency) Model = Concurrent Pushdown Systems (Multistack systems) Turing powerful: 2 threads ⇒ Restrictions: Consider only some schedules Aim: detect bugs What is a good concept for restricting the set of behaviors ? A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 2 / 18

  5. Context-Bounded Analysis [Qadeer, Rehof, 2005] The number of context switches in a computation is bounded w 0 w 1 w 1 w 2 q 0 q 1 q 2 q 3 Thread 1: u 0 u 1 u 1 q 1 q 2 q 3 Thread 2: Context 1 Context 2 Context 3 Context 4 Suitable for finding bugs in concurrent programs. Concurrency bugs show up after a small number of context switches. A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 3 / 18

  6. Context-Bounded Analysis [Qadeer, Rehof, 2005] The number of context switches in a computation is bounded w 0 w 1 w 1 w 2 q 0 q 1 q 2 q 3 Thread 1: u 0 u 1 u 1 q 1 q 2 q 3 Thread 2: Context 1 Context 2 Context 3 Context 4 Suitable for finding bugs in concurrent programs. Concurrency bugs show up after a small number of context switches. Infinite-state space: Unbounded sequential computations Decidability ? A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 3 / 18

  7. Basic case: Pushdown system Pushdown system = ( Q , Γ , ∆) Configuration: ( q , w ) where q ∈ Q is a control state, w ∈ Γ is the stack content. A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 4 / 18

  8. Basic case: Pushdown system Pushdown system = ( Q , Γ , ∆) Configuration: ( q , w ) where q ∈ Q is a control state, w ∈ Γ is the stack content. Symbolic representation: A finite state automaton. Computation of the predecessors/successors: For every regular set of configurations C, the pre ∗ ( C ) and post ∗ ( C ) are regular and effectively constructible. [B¨ uchi 62], ..., [B., Esparza, Maler, 97], ... Reachability: Polynomial algorithms. Can be generalized to model checking. A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 4 / 18

  9. Context-Bounded Analysis: Decidability Consider a multi-stack systems with n stacks Configuration: ( q , w 1 , . . . , w n ), where q is a control state, w i ∈ Γ i are stack contents. A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 5 / 18

  10. Context-Bounded Analysis: Decidability Consider a multi-stack systems with n stacks Configuration: ( q , w 1 , . . . , w n ), where q is a control state, w i ∈ Γ i are stack contents. Symbolic representation: clusters ( q , A 1 , . . . , A n ), q a control state, A i are FSA over Γ i Given a cluster C , compute a set of clusters characterizing K - pre ∗ ( C ) (resp. K - post ∗ ( C )) A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 5 / 18

  11. Context-Bounded Analysis: Decidability Consider a multi-stack systems with n stacks Configuration: ( q , w 1 , . . . , w n ), where q is a control state, w i ∈ Γ i are stack contents. Symbolic representation: clusters ( q , A 1 , . . . , A n ), q a control state, A i are FSA over Γ i Given a cluster C , compute a set of clusters characterizing K - pre ∗ ( C ) (resp. K - post ∗ ( C )) Generalize the pre ∗ / post ∗ constructions for PDS A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 5 / 18

  12. Context-Bounded Analysis: Decidability Consider a multi-stack systems with n stacks Configuration: ( q , w 1 , . . . , w n ), where q is a control state, w i ∈ Γ i are stack contents. Symbolic representation: clusters ( q , A 1 , . . . , A n ), q a control state, A i are FSA over Γ i Given a cluster C , compute a set of clusters characterizing K - pre ∗ ( C ) (resp. K - post ∗ ( C )) Generalize the pre ∗ / post ∗ constructions for PDS Enumerate sequences of the form q 0 i 0 q 1 i 1 q 2 i 2 . . . i K q K i K +1 , where q j ’s are states, and i j ∈ { 1 , . . . , n } are threads identities. Let X K +1 = C . Compute: for j = K back to 0 ◮ A ′ j +1 = pre ∗ i j +1 ( X j +1 [ i j +1 ]) ∩ q j Γ ∗ i ◮ X j = ( q j , A j +1 j +1 , . . . , A j +1 , . . . , A ′ ) 1 n A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 5 / 18

  13. Dynamic Creation of Threads ? [Atig, B., Qadeer, 09] Problem Bounding the number of context switches ⇒ bounding the number of threads. ⇒ Inadequate bounding concept for the dynamic case. Each created thread must have a chance to be executed A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 6 / 18

  14. Dynamic Creation of Threads ? [Atig, B., Qadeer, 09] Problem Bounding the number of context switches ⇒ bounding the number of threads. ⇒ Inadequate bounding concept for the dynamic case. Each created thread must have a chance to be executed New definition Give to each thread a context switch budget ⇒ The number of context switches is bounded for each thread ⇒ The global number of context switches in a run is unbounded NB: Generalization of Asynchronous Programs A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 6 / 18

  15. Case 1: Dynamic Networks of Finite-State Processes Decidable ? A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 7 / 18

  16. Case 1: Dynamic Networks of Finite-State Processes Decidable ? Theorem The K-bounded state reachability problem is EXPSPACE-complete. Reduction to/from the coverability problem for Petri. A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 7 / 18

  17. Reduction to coverability in PN For every global store q ∈ Q , associate a place q . For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 1 , . . . , K } of the active thread, associate a place ( γ ,b,Act). For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 0 , . . . , K } of a pending thread, associate a place ( γ ,b,Pen). A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 8 / 18

  18. Reduction to coverability in PN For every global store q ∈ Q , associate a place q . For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 1 , . . . , K } of the active thread, associate a place ( γ ,b,Act). For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 0 , . . . , K } of a pending thread, associate a place ( γ ,b,Pen). q ( γ ,b,Act) = ⇒ Rule of the form: q γ − → q ′ γ ′ ( γ ′ ,b,Act) q ′ A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 8 / 18

  19. Reduction to coverability in PN For every global store q ∈ Q , associate a place q . For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 1 , . . . , K } of the active thread, associate a place ( γ ,b,Act). For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 0 , . . . , K } of a pending thread, associate a place ( γ ,b,Pen). q ( γ ,b,Act) → q ′ γ ′ ⊲ γ ′′ = ⇒ Rule of the form: q γ − ( γ ′′ ,K,Pen) ( γ ′ ,b,Act) q ′ A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 8 / 18

  20. Reduction to coverability in PN For every global store q ∈ Q , associate a place q . For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 1 , . . . , K } of the active thread, associate a place ( γ ,b,Act). For every stack configuration γ ∈ Γ ∪ { ǫ } and budget b ∈ { 0 , . . . , K } of a pending thread, associate a place ( γ ,b,Pen). ( γ ,b,Act) ( γ ′ ,b’,Pen) Context switch (with b’ > 0) = ⇒ ( γ ′ ,b’,Act) ( γ ,b-1,Pen) A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 8 / 18

  21. Case 2: Dynamic Networks of Pushdown Systems Decidable ? A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 9 / 18

  22. Case 2: Dynamic Networks of Pushdown Systems Decidable ? Difficulty: ◮ Unbounded number of pending local contexts ◮ Can not use the same construction as for the case of finite state threads. (This would need an unbounded number of places.) A. Bouajjani (LIAFA, UP7) Lecture 2: Concurrent Programs II September 2012 9 / 18

Recommend

Lecture 1: Verification of Concurrent Programs Part 1: Decidability and Complexity Results Ahmed

Lecture 1: Verification of Concurrent Programs Part 1: Decidability and Complexity Results Ahmed

Lecture 1: Verification of Concurrent Programs Part 1: Decidability and Complexity Results Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 VTSA, MPI-Saarbr ucken, September 2012 A. Bouajjani (LIAFA, UP7) Lecture 1: Concurrent

651 views • 61 slides
Software Specification and Verification in Rewriting Logic: Lecture 1 Jos e Meseguer Computer

Software Specification and Verification in Rewriting Logic: Lecture 1 Jos e Meseguer Computer

Software Specification and Verification in Rewriting Logic: Lecture 1 Jos e Meseguer Computer Science Department University of Illinois at Urbana-Champaign 1 Sequential vs. Concurrent Programs Programs come in many different languages and

1.82k views • 153 slides
Verification of Concurrent Programs Decidability, Complexity, Reductions. Ahmed Bouajjani U

Verification of Concurrent Programs Decidability, Complexity, Reductions. Ahmed Bouajjani U

Verification of Concurrent Programs Decidability, Complexity, Reductions. Ahmed Bouajjani U Paris Diderot Paris 7 Locali Workshop, Beijing, November 2013 A. Bouajjani (U Paris Diderot UP7) Verification of Concurrent Programs Beijing,

924 views • 50 slides
Towards full verification of concurrent libraries Viktor Vafeiadis Program verification

Towards full verification of concurrent libraries Viktor Vafeiadis Program verification

Towards full verification of concurrent libraries Viktor Vafeiadis Program verification Programs considered: Small (<100 LOC) Medium (KLOC) Large (MLOC) Simple

577 views • 45 slides
Program Correctness Literatuur Verification of Sequential and Concurrent Programs. Krzysztof R.

Program Correctness Literatuur Verification of Sequential and Concurrent Programs. Krzysztof R.

Program Correctness Literatuur Verification of Sequential and Concurrent Programs. Krzysztof R. Apt, Frank S. de Boer, Ernst-R udiger Olderog. Series: Texts in Computer Science. Springer. 3rd ed. 2nd Printing. ISBN: 978-1-84882-744-8. Te

1.23k views • 112 slides
Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis & Verification Group

Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis & Verification Group

Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis & Verification Group NEC Labs America, Princeton, USA www.nec-labs.com Tutorial: Verifying Concurrent Programs Oct 2011 Acknowledgements Malay Ganai, Vineet

982 views • 72 slides
Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani Paris Diderot University Based on joint work with Parosh A. Abdulla Mohamed Faouzi Atig T. Phong Ngo Uppsala University Sebastian

897 views • 77 slides
Local Verification of Global Invariants in Concurrent Programs Ernie Cohen 1 , Michal Moskal 2 ,

Local Verification of Global Invariants in Concurrent Programs Ernie Cohen 1 , Michal Moskal 2 ,

Local Verification of Global Invariants in Concurrent Programs Ernie Cohen 1 , Michal Moskal 2 , Wolfram Schulte 2 , Stephan Tobies 1 1 European Microsoft Innovation Center, Aachen 2 Microsoft Research, Redmond Presentation: Florian Besser

746 views • 27 slides
Mechanized Verification of Fine-grained Concurrent Programs Ilya Sergey Aleks Nanevski

Mechanized Verification of Fine-grained Concurrent Programs Ilya Sergey Aleks Nanevski

Mechanized Verification of Fine-grained Concurrent Programs Ilya Sergey Aleks Nanevski Anindya Banerjee PLDI 2015 Terminology Coarse-grained Concurrency synchronisation between threads via locks ; Fine-grained

973 views • 72 slides
Verification of Concurrent Systems Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7

Verification of Concurrent Systems Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7

Verification of Concurrent Systems Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 MOVEP12, CIRM, December 2012 A. Bouajjani (LIAFA, UP7) Verification of Concurrent Systems December 2012 1 / 42 Concurrent Programs Parallel

1.26k views • 112 slides
VERCORS: VERIFICATION OF CONCURRENT SYSTEMS MARIEKE HUISMAN UNIVERSITY OF TWENTE, NETHERLANDS

VERCORS: VERIFICATION OF CONCURRENT SYSTEMS MARIEKE HUISMAN UNIVERSITY OF TWENTE, NETHERLANDS

VERCORS: VERIFICATION OF CONCURRENT SYSTEMS MARIEKE HUISMAN UNIVERSITY OF TWENTE, NETHERLANDS OUTLINE OF THIS LECTURE How to ensure software quality? Classical program logic Separation logic The next challenge: concurrent

1.36k views • 108 slides
Viktor Vafeiadis Software Analysis & Verification Full functional verification

Viktor Vafeiadis Software Analysis & Verification Full functional verification

Viktor Vafeiadis Software Analysis & Verification Full functional verification Compilers , concurrent programs , theorem provers Program equivalence / Compositional reasoning Compositional compiler verification

266 views • 3 slides
Verification of Parameterized Concurrent Programs By Modular Reasoning about Data and Control

Verification of Parameterized Concurrent Programs By Modular Reasoning about Data and Control

Verification of Parameterized Concurrent Programs By Modular Reasoning about Data and Control Zachary Kincaid Azadeh Farzan University of Toronto January 18, 2013 Z. Kincaid (U. Toronto) Modular Reasoning about Data and Control January 18,

751 views • 54 slides
From Concurrent Programs to Simulating Sequential Programs: Correctness of a Transformation VPT

From Concurrent Programs to Simulating Sequential Programs: Correctness of a Transformation VPT

From Concurrent Programs to Simulating Sequential Programs: Correctness of a Transformation VPT 2017 Allan Blanchard, Fr ed eric Loulergue, Nikolai Kosmatov April 29 th , 2017 From Concurrent Programs to Simulating Sequential Programs

488 views • 37 slides
Concurrent Datatype Verification Verifying lock free data types using CSP and FDR Jonathan

Concurrent Datatype Verification Verifying lock free data types using CSP and FDR Jonathan

Concurrent Datatype Verification 01 Concurrent Datatype Verification Verifying lock free data types using CSP and FDR Jonathan Lawrence jonathan.lawrence@cs.ox.ac.uk Concurrent Datatype Verification 02 Introduction Case study using

618 views • 27 slides
A Graph-Based Semantics Workbench for Concurrent Asynchronous Programs Alexander Heuner Chris

A Graph-Based Semantics Workbench for Concurrent Asynchronous Programs Alexander Heuner Chris

A Graph-Based Semantics Workbench for Concurrent Asynchronous Programs Alexander Heuner Chris Poskitt Otto-Friedrich-Universitt ETH Zrich Bamberg Dagstuhl, November 2015 Analysis (Verification) of Evolving Graph Structures 2 CP AH

370 views • 15 slides
Testing Concurrent Java Programs Using Randomized Scheduling Scott D. Stoller Computer Science

Testing Concurrent Java Programs Using Randomized Scheduling Scott D. Stoller Computer Science

Testing Concurrent Java Programs Using Randomized Scheduling Scott D. Stoller Computer Science Department State University of New York at Stony Brook http://www.cs.sunysb.edu/stoller/ 1 Goal Pillars of Run-Time Verification monitoring :

208 views • 18 slides
SteelCore: An Extensible Concurrent Separation Logic for Effectful Dependent Programs Nikhil

SteelCore: An Extensible Concurrent Separation Logic for Effectful Dependent Programs Nikhil

SteelCore: An Extensible Concurrent Separation Logic for Effectful Dependent Programs Nikhil Swamy, Aseem Rastogi, Aymeric Fromherz , Denis Merigoux, Danel Ahman, Guido Martinez ICFP 2020 1/12 Verifying Concurrent Programs Lots of recent work

556 views • 37 slides
Verifying Concurrent Programs Daniel Kroening 28 May 1 June 2012 Outline Shared-Variable

Verifying Concurrent Programs Daniel Kroening 28 May 1 June 2012 Outline Shared-Variable

Verifying Concurrent Programs Daniel Kroening 28 May 1 June 2012 Outline Shared-Variable Concurrency Predicate Abstraction for Concurrent Programs Boolean Programs with Bounded Replication Boolean Programs with Unbounded Replication D.

774 views • 50 slides
Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Third International Workshop on Numerical Software Verification Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo INRIA Saclay - Ile-de-France July 15th, 2010 Thanks to the organizers !

1.72k views • 136 slides
Computational Logic Concurrent (Constraint) Logic Programming 1 Concurrent Logic Programs

Computational Logic Concurrent (Constraint) Logic Programming 1 Concurrent Logic Programs

Computational Logic Concurrent (Constraint) Logic Programming 1 Concurrent Logic Programs Predicate: Set of clauses Clause: Head :- Guard | Body. Head is an atom Guard and Body are conjunctions of atoms Resolvent: Set of goals

623 views • 28 slides
Java Concurrency 1 Shell CSCE 314 TAMU The World is Concurrent Concurrent programs: more than

Java Concurrency 1 Shell CSCE 314 TAMU The World is Concurrent Concurrent programs: more than

Shell CSCE 314 TAMU CSCE 314: Programming Languages Dr. Dylan Shell Java Concurrency 1 Shell CSCE 314 TAMU The World is Concurrent Concurrent programs: more than one activities execute simultaneously (concurrently) no interference

518 views • 35 slides
On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order

On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order

On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order Communication Masaki Murakami Okayama University JAPAN A Formal Model of Concurrent Systems the model presented here is a translation of asynchronous

847 views • 31 slides
Automatic Atomicity Verification for Clients of Concurrent Data Structures Mohsen Lesani Todd

Automatic Atomicity Verification for Clients of Concurrent Data Structures Mohsen Lesani Todd

Automatic Atomicity Verification for Clients of Concurrent Data Structures Mohsen Lesani Todd Millstein Jens Palsberg Concurrent Data Structures class ConcurrentHashmap<K, V> { // data structure V get(K k) { ... } void put(K k, V v)

512 views • 36 slides

More recommend