lecture 4 verification of weak memory models
play

Lecture 4: Verification of Weak Memory Models Part 2: Robustness - PowerPoint PPT Presentation

Jul 29, 2023 •532 likes •1.53k views

Lecture 4: Verification of Weak Memory Models Part 2: Robustness against TSO Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 Joint work with Roland Meyer, Egor Derevenetc (Univ. Kaiserslautern) and Eike M ohlmann (Univ.

  1. Lecture 4: Verification of Weak Memory Models Part 2: Robustness against TSO Ahmed Bouajjani LIAFA, University Paris Diderot – Paris 7 Joint work with Roland Meyer, Egor Derevenetc (Univ. Kaiserslautern) and Eike M¨ ohlmann (Univ. Oldenburg) VTSA, MPI-Saarbr¨ ucken, September 2012

  2. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  3. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ( w , x , 1) t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  4. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ( w , x , 1) ( r , y , 0) t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  5. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ◮ Symmetry Second thread behaves similarly ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  6. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ◮ Symmetry Second thread behaves similarly ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs ◮ What is the semantics of this program?

  7. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ◮ Symmetry Second thread behaves similarly ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs ◮ What is the semantics of this program? ◮ Depends on the hardware architecture!

  8. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Threads directly write to and read from memory ◮ Programmers often rely on this intuitive behaviour

  9. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 writes x to 1 M t 1 : q 0 x = 0 t 2 : q 0 y = 0

  10. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 reads 0 from y M t 1 : q 1 x = 1 y = 0 t 2 : q 0

  11. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 writes y to 1 M t 1 : cs x = 1 y = 0 t 2 : q 0

  12. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) . ( w , y , 1 ) Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 executes fence f M t 1 : cs x = 1 t 2 : q 1 y = 1

  13. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) . ( w , y , 1 ) . f Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 cannot read 0 from x M t 1 : cs x = 1 t 2 : q 2 y = 1

  14. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) . ( w , y , 1 ) . f Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs M t 1 : cs x = 1 Mutual exclusion holds! y = 1 t 2 : q 2

  15. Total Store Ordering Semantics ◮ Buffers reduce latency of memory accesses Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs t 1 : M x = 0 y = 0 t 2 :

  16. Total Store Ordering Semantics ◮ Buffers reduce latency of memory accesses ◮ Total Store Ordering architectures have write buffers Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs t 1 : M x = 0 y = 0 t 2 :

  17. Total Store Ordering Semantics Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 writes ( w , x , 1) to its buffer t 1 : q 0 M x = 0 y = 0 t 2 : q 0

  18. Total Store Ordering Semantics Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 writes ( w , y , 1 ) to its buffer t 1 : q 1 ( w , x , 1) M x = 0 y = 0 t 2 : q 0

  19. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 fails to read ( r , y , 0) from its buffer t 1 : q 1 ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 ) ×

  20. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer, if exists ( r , y , 0) Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 reads ( r , y , 0) from memory t 1 : q 1 ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 )

  21. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer, if exists ◮ Fences forbid prefetches ( r , y , 0) Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 cannot execute fence f while buffer not empty t 1 : cs ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 )

  22. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer, if exists ◮ Fences forbid prefetches ( r , y , 0) Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: memory updates ( w , y , 1 ) from buffer of t 2 t 1 : cs ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 )

Recommend

Lecture 3: Verification of Weak Memory Models Part 1: State Reachability Problem Ahmed Bouajjani

Lecture 3: Verification of Weak Memory Models Part 1: State Reachability Problem Ahmed Bouajjani

Lecture 3: Verification of Weak Memory Models Part 1: State Reachability Problem Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 [Atig, B., Burckhardt, Musuvathi, POPL10, ESOP12] [Atig, B., Parlato, 2011] VTSA, MPI-Saarbr

1.11k views • 110 slides
Weak memory models INF4140 - Models of concurrency Weak memory models Fall 2016 30. 10. 2016

Weak memory models INF4140 - Models of concurrency Weak memory models Fall 2016 30. 10. 2016

Weak memory models INF4140 - Models of concurrency Weak memory models Fall 2016 30. 10. 2016 Overview Weak memory models 1 Introduction 2 Hardware architectures Compiler optimizations Sequential consistency Weak memory models 3 TSO

1.3k views • 87 slides
Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of

Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of weak bisimilarity Example: a

587 views • 24 slides
Weak memory models Mai Thuong Tran PMA Group, University of Oslo, Norway 31 Oct. 2014 Overview

Weak memory models Mai Thuong Tran PMA Group, University of Oslo, Norway 31 Oct. 2014 Overview

Weak memory models Mai Thuong Tran PMA Group, University of Oslo, Norway 31 Oct. 2014 Overview 1 Introduction Hardware architectures Compiler optimizations Sequential consistency Weak memory models 2 TSO memory model (Sparc, x86-TSO)

1.04k views • 64 slides
Owicki-Gries for Weak Memory Models Ori Lahav Viktor Vafeiadis Max Planck Institute for Software

Owicki-Gries for Weak Memory Models Ori Lahav Viktor Vafeiadis Max Planck Institute for Software

Owicki-Gries for Weak Memory Models Ori Lahav Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) Uppsala, 23 February 2015 Weak memory models Sequential consistency (a.k.a. interleaving semantics") is the standard

602 views • 36 slides
Software verification under weak memory consistency Viktor Vafeiadis Max Planck Institute for

Software verification under weak memory consistency Viktor Vafeiadis Max Planck Institute for

Software verification under weak memory consistency Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) January 2016 Joint work with Soham Chakraborty, Derek Dreyer, Marko Doko, Nick Giannarakis, Ori Lahav, Chinmay Narayan,

776 views • 42 slides
Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani Paris Diderot University Based on joint work with Parosh A. Abdulla Mohamed Faouzi Atig T. Phong Ngo Uppsala University Sebastian

897 views • 77 slides
Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation games Weak bisimilarity and weak

872 views • 47 slides
Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems

Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems

Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems and CCS. Strong and weak bisimilarity, bisimulation games. Study of mathematical models for the formal description and analysis Lecture 1 of

385 views • 5 slides
Lecture 5.2 Parallel Memory Models EN 600.320/420/620 Instructor: Randal Burns 12 February 2018

Lecture 5.2 Parallel Memory Models EN 600.320/420/620 Instructor: Randal Burns 12 February 2018

Lecture 5.2 Parallel Memory Models EN 600.320/420/620 Instructor: Randal Burns 12 February 2018 Department of Computer Science, Johns Hopkins University Shared Memory Systems Large class defined by memory model And thus, the programming

106 views • 8 slides
Weak Memory Models: A Tutorial Jade Alglave University College London February 3rd, 2014

Weak Memory Models: A Tutorial Jade Alglave University College London February 3rd, 2014

Weak Memory Models: A Tutorial Jade Alglave University College London February 3rd, 2014 Sequential Consistency A comfortable model for concurrent programming would be Sequential Consistency (SC), as defined by Leslie Lamport in 1979: The

2.4k views • 51 slides
Vectors, Matrices, and Associative Memory Computational Models of Neural Systems Lecture 3.1

Vectors, Matrices, and Associative Memory Computational Models of Neural Systems Lecture 3.1

Vectors, Matrices, and Associative Memory Computational Models of Neural Systems Lecture 3.1 David S. Touretzky September, 2013 A Simple Memory Memory Key 4.7 1 4.7 Result = Key Memory 2 Computational Models of Neural Systems

710 views • 47 slides
Verification with the Check suite Yatin Manerkar Princeton University ARM Cambridge, July 20 th ,

Verification with the Check suite Yatin Manerkar Princeton University ARM Cambridge, July 20 th ,

Automated Full-Stack Memory Model Verification with the Check suite Yatin Manerkar Princeton University ARM Cambridge, July 20 th , 2018 http:/ ://check.cs.p .princeton.edu/ What are Memory (Consistency) Models? Memory Consistency Models

2.2k views • 192 slides
Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) 23 September 2014 Understanding weak memory consistency Read the architecture/language specs? Too informal, often wrong. Read

378 views • 35 slides
Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) 17 July 2014 Understanding weak memory consistency Read the architecture/language specs? Too informal, often wrong. Read the

430 views • 40 slides
On abstraction and compositionality for weak-memory linearisability Brijesh Dongol Radha

On abstraction and compositionality for weak-memory linearisability Brijesh Dongol Radha

On abstraction and compositionality for weak-memory linearisability Brijesh Dongol Radha Jagadeesan James Riely Alasdair Armstrong Atomicity abstraction and weak memory How do we provide reliable atomicity abstractions? Concurrent

1.03k views • 59 slides
Effective Abstractions for Verification under Relaxed Memory Models Andrei Dan Yuri Meshman

Effective Abstractions for Verification under Relaxed Memory Models Andrei Dan Yuri Meshman

Effective Abstractions for Verification under Relaxed Memory Models Andrei Dan Yuri Meshman Martin Vechev Eran Yahav ETH Zurich Technion ETH Zurich Technion 1 Dekkers Algorithm initial: flag[0] = false, flag[1] = false, turn = 0

855 views • 66 slides
Persistence Semantics for Weak Memory Integrating Epoch Persistency with the TSO Memory Model

Persistence Semantics for Weak Memory Integrating Epoch Persistency with the TSO Memory Model

Persistence Semantics for Weak Memory Integrating Epoch Persistency with the TSO Memory Model Azalea Raad Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) Thursday 8 November OOPSLA 2018 Boston, USA azalea@mpi-sws.org

1.21k views • 88 slides
The Java Memory Model Jaroslav Sev c k University of Edinburgh Supported by ITI

The Java Memory Model Jaroslav Sev c k University of Edinburgh Supported by ITI

The Java Memory Model Jaroslav Sev c k University of Edinburgh Supported by ITI Techmedia The Java Memory Model p. 1/30 Overview Part I : Motivation for weak memory models: Compromise between standard optimisations and

813 views • 46 slides
Formal reasoning about the C11 weak memory model Invited talk @ CPP15 Viktor Vafeiadis Max

Formal reasoning about the C11 weak memory model Invited talk @ CPP15 Viktor Vafeiadis Max

Formal reasoning about the C11 weak memory model Invited talk @ CPP15 Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) 13 January 2015 What is a weak memory model? Viktor Vafeiadis Formal reasoning about the C11 weak

389 views • 38 slides
From weak to weedy Effective use of memory barriers in the ARM Linux Kernel Will Deacon

From weak to weedy Effective use of memory barriers in the ARM Linux Kernel Will Deacon

Introduction ARMs memory model Linuxs memory model Finer-grained control Questions Future work From weak to weedy Effective use of memory barriers in the ARM Linux Kernel Will Deacon will.deacon@arm.com Embedded Linux Conference

540 views • 52 slides
Memory Consistency Models CSE 451 James Bornholt Memory consistency models The short version:

Memory Consistency Models CSE 451 James Bornholt Memory consistency models The short version:

Memory Consistency Models CSE 451 James Bornholt Memory consistency models The short version: Multiprocessors reorder memory operations in unintuitive, scary ways This behavior is necessary for performance Application programmers

803 views • 36 slides
Lecture 27: Pot-Pourri Todays topics: Consistency Models Shared memory vs

Lecture 27: Pot-Pourri Todays topics: Consistency Models Shared memory vs

Lecture 27: Pot-Pourri Todays topics: Consistency Models Shared memory vs message-passing Simultaneous multi-threading (SMT) GPUs Accelerators Disks and reliability 1 Coherence Vs. Consistency Recall that

630 views • 31 slides
SCATTERING THEORY FOR MATHEMATICAL MODELS OF THE WEAK INTERACTION BENJAMIN LOUIS ALVAREZ AND J

SCATTERING THEORY FOR MATHEMATICAL MODELS OF THE WEAK INTERACTION BENJAMIN LOUIS ALVAREZ AND J

SCATTERING THEORY FOR MATHEMATICAL MODELS OF THE WEAK INTERACTION BENJAMIN LOUIS ALVAREZ AND J ER EMY FAUPIN Abstract. We consider mathematical models of the weak decay of the vector bosons W into leptons. The free quantum field

718 views • 54 slides

More recommend