ma maximal c causa sality r reduction on fo for tso and
play

Ma Maximal C Causa sality R Reduction on fo for TSO and PSO - PowerPoint PPT Presentation

Apr 02, 2023 •106 likes •449 views

Ma Maximal C Causa sality R Reduction on fo for TSO and PSO Shiyou Huang Jeff Huang huangsy@tamu.edu Parasol Lab, Texas A&M University 1 A Real PSO Bug $12 million loss of equipment curPos = new Point(1,2); class Point { int

  1. Ma Maximal C Causa sality R Reduction on fo for TSO and PSO Shiyou Huang Jeff Huang huangsy@tamu.edu Parasol Lab, Texas A&M University 1

  2. A Real PSO Bug – $12 million loss of equipment curPos = new Point(1,2); class Point { int x, y; } Thread 1: x=0 newPos = new y=0 Point( curPos.x+1, curPos.y+1 ); x=curPos.x+1 y=curPos.y+1 Thread 2: curPos = object while (newPos != null) if ( newPos.x+1 != newPos.y ) ERROR http://stackoverflow.com/questions/16159203/ 2

  3. Memory Consistencies http://preshing.com/20120930/weak-vs-strong-memory-models/ 3

  4. TSO and PSO Total Store Ordering (TSO) For a write w and a read r by the same thread, the read r can be reordered with the write w if the two operations access different locations. Partial Store Ordering (PSO) For a write w1 and a write w2 by the same thread, the write w2 can be reordered with the write w1 if the two operations access different locations. 4

  5. New State Generated under TSO/PSO Init: x=y=0 thread 1: thread 2: x = 1 //a1 y = 1 //b1 a = y //a2 b = x //b2 Assert (a==1 || b==1) b2 – a1 – a2 – b1 (a=0, b=0) 5

  6. Huge Interleaving Space #interleaving = & & !(# 𝑂 % (Lu et al. FSE’07) ) %'( 𝑂 ( ('* (M : #threads and N i : #accesses by thread i) M=4, N1=N2=N3=N4=4, #interleavings > 60 million 6

  7. Related Work • Dynamic Partial Order Reduction (DPOR) [Flanagan et al., POPL’05] • Maximal Causality Reduction [Huang, PLDI’15] • rInspect [Zhang et al., PLDI’15] • SATCheck [Demsky and Lam, OOPSLA’15] 7

  8. Maximal Causality Reduction (MCR) Given an executed trace, MCR generates new interleavings to explore the program state space. Each new interleaving (called seed interleaving ) enforces at least one read to read a new value. 8

  9. Workflow of MCR 1 2 Scheduler Interleaving Seed Trace Interleavings Constraints 3 Interleaving 1 Formula Formula Interleaving 2 4 SMT Solver ... New Seed Solution Interleavings Interleaving n 5 Interleaving Builder 9

  10. Workflow of MCR 1 2 Scheduler Interleaving Seed Trace Interleavings Constraints 3 Interleaving 1 Formula Following a seed interleaving will produce a new state Formula Interleaving 2 4 SMT Solver ... New Seed Solution Interleavings Interleaving n 5 Interleaving Builder 10

  11. Constraints (ϕ) • happens-before • lock-mutual-exclusion pairs ( l 1 , u 1 ) and ( l 2 , u 2 ): O u 1 < O l 2 _ O u 2 < O l 1 . V state constraint that ensures r to read a value v : • validity Φ value ( r, v ) ⌘ W ( Φ validity ( w ) ^ O w < O r w 2 W x v w 6 = w 0 2 W x ( O w 0 < O w _ O r < O w 0 )) V • new state 11

  12. Constraints (ϕ) • happens-before • lock-mutual-exclusion pairs ( l 1 , u 1 ) and ( l 2 , u 2 ): O u 1 < O l 2 _ O u 2 < O l 1 . V state constraint that ensures r to read a value v : • validity Φ value ( r, v ) ⌘ W ( Φ validity ( w ) ^ O w < O r An event is feasible if every read in the seed w 2 W x v w 6 = w 0 2 W x ( O w 0 < O w _ O r < O w 0 )) V interleaving returns the same value as that in • new state the previous trace. 12

  13. Constraints (ϕ) • happens-before • lock-mutual-exclusion pairs ( l 1 , u 1 ) and ( l 2 , u 2 ): O u 1 < O l 2 _ O u 2 < O l 1 . V state constraint that ensures r to read a value v : • validity Φ value ( r, v ) ⌘ W ( Φ validity ( w ) ^ O w < O r w 2 W x v w 6 = w 0 2 W x ( O w 0 < O w _ O r < O w 0 )) V • new state 13

  14. An Example S0: a1-a2-b1-b2 (a=0, b=1) Init: x=y=0 thread 1: O b1 < O a2 x = 1 //a1 O b2 < O a1 a = y //a2 O b1 < O b2 O a1 < O a2 thread 2: S2: b1 - b2 S1: a1- b1 - a2 y = 1 //b1 (a=1, b=0 ) ( a=1 , b=1) b = x //b2 3 executions 14

  15. Limitation of MCR The original MCR only checks the program under sequential consistency. 15

  16. Limitation of MCR Init: x=y=0 thread 1: thread 2: x = 1 //a1 y = 1 //b1 a = y //a2 b = x //b2 Assert (a==1 || b==1) 16

  17. Contributions • Extend MCR for TSO and PSO • Present a new replay algorithm • Evaluation on various applications • Explore 5x – 10x fewer executions than DPOR 17

  18. Two Challenges 1. Relax the happens-before constraints 2. Replay a schedule out of the program order 18

  19. Happens-before Relaxation Relax the happens-before relation of the write-read and write- write events by the same thread: ɸ rr r1 ≺ r2, iff r1,r2 ∈ Reads ɸ addr e1 ≺ e2, iff addr(e1) = addr(e2) ɸ hb = ɸ r-w r ≺ w, iff r ∈ Reads && w ∈ Writes ɸ w-w w1 ≺ w2, iff w1,w2 ∈ Writes 19

  20. Example Init: x=y=0 Under SC: thread 1: O a1 < O a2 x = 1 //a1 O b1 < O b2 a = y //a2 thread 2: Under TSO/PSO y = 1 //b1 O a1 , O a2 , O b1 , O b2 b = x //b2 20

  21. Replay thread 2: thread 1: y = 1 //b1 x = 1 //a1 b = x //b2 a = y //a2 Can’t decide whether to Expecting: b2 – a1 – a2 – b1 buffer T2 – T1 – T1 – T2 Actual: b1 – a1 – a2 – b2 21

  22. Replay Interleaving : a sequence of schedule choices, with each schedule choice c(tid, addr) . Case 1: when addr(e) ≠ Store Buffer B 2 A concurrent program t1: t2: ... addr(c), buffer e addr buffer y=1 x = 1; y = 1; conflicts a = y; b = x; Case 2: when addr(c) = addr matches, so t 2 :y addr(w), w is buffered, must correspond to W(y) update w Schedule Choice: 22

  23. Constraints Construction Execution: 1-2-3-4-5-6-7-8-8-9 Initially x=1, y=2, z=0 SC/TSO Thread 1: Thread 2: thread2.start() O 1 < O 2 < O 3 < O 4 < O 5 < O 6 7 if (z==1) z = 0 O 7 < O 𝟐 𝟗 < O 𝟑 1 8 if (x+1 != y) 𝟗 x = 0 2 9 PSO y = 0 ERROR 3 x = 2 4 O 1 < O 6 y = 3 5 O 2 < O 4 z = 1 6 O 3 < O 5 thread2.join() O 7 < O 𝟐 𝟗 < O 𝟑 𝟗 PSO: O 1 =1 , O 2 =2, O 3 =3, O 4 =7, O 5 =8, O 6 =4, O 7 =5, O 𝟐 𝟗 =6 A feasible schedule: 1-2-3-6-7-8-4-5 that can trigger the error! 23

  24. Replay Replay: 1 - 2 - 3 - 6 - 7 - 8 - 4 - 5 thread 1: thread 2: 1. z=0 7. if (z>0) 8. assert( x+1 == y) T 𝒜 𝟐 - T 𝒚 𝟐 - T 𝒛 𝟐 - T 𝒜 𝟐 - T 𝒜 𝟑 - T 𝒚 𝟑 - T 𝒚 𝟐 - T 𝒛 𝟐 2. x=0 3. y=0 1:z=0 4. x=1 Addr doesn’t match 2:x=0 5. y=2 3:y=0 Scheduler Addr doesn’t match 6. z=1 6:z=1 7:z>0 8:x+1 y=2 x=1 4:x=1 24

  25. Evaluation • Java implementation using ASM and Z3 • Compared with rInspect [Zhang et al., PLDI’15] and SATCheck [Demsky and Lam, OOPSLA’15] Ø States pace exploration effectiveness Ø Efficiency of finding errors • A collection of benchmarks with known errors 25

  26. Benchmarks • 7 popular small benchmarks • 6 real Java applications including a large one weblech Program LoC #Thrd #Evt Description Dekker 119 3 56 Two critical sections with 3 shared variables. Lamport 162 3 40 Two critical sections with 4 variables. bakery 119 3 27 n critical sections using 2n shared variables. We take n=2. Peterson 94 3 72 Two critical sections with 3 variables StackUnsafe 135 3 34 Unsafe operations on a stack by two threads, which cause the stack underflow. RVExample 79 3 32 An example from original MCR [21], which contains a very tricky error Example 73 2 44 The example program from Figure 6 with loop number from 1 to 4. Account 373 5 51 Concurrent account deposits and withdrawals suffering from atomicity violations. Airline 136 6 67 A race condition causing the tickets oversold. Allocation 348 3 125 An atomicity violation causing the same block allocated or freed twice. PingPong 388 6 44 The player is set to null by one thread and dereferenced by another throwing NPE. StringBuf 1339 3 70 An atomicity violation in Java StringBuffer causing StringIndexOutOfBoundsException. Weblech 35K 3 2045 A tool for downloading websites and enumerating standard web-browser behavior. 26

  27. State Space Exploration DPOR (rInspect) MCR (our approach) #Executions Reduction Program SC TSO PSO SC TSO PSO SC TSO PSO 4.0X 2.6X 3.3X Dekker 248 252 508 62 98 155 9.1X 2.3X 29.4X Lamport 128 208 2672 14 91 102 4.5X 7.1X 12.4X Bakery 350 1164 2040 77 158 165 2.8X 5.3X 6.3X Peterson 36 95 120 13 18 19 8.7X 5.5X 2.3X StackUnsafe 252 252 252 29 46 108 34.4X - - RVExample 1959 - - 57 64 70 2.0X 2.0X - 4 4 - 2 2 10 2.4X 2.4X - 105 105 - 43 43 89 Example (N=1 to 4) 14.5X 14.5X - 4282 4282 - 296 296 819 5.4X 5.4X - 14840 14840 - 2767 2767 8420 Avg. 435 394 1118 42 79 103 10.4X 5.0X 10.9X 27

  28. State Space Exploration DPOR (rInspect) MCR (our approach) #Executions Reduction Program SC TSO PSO SC TSO PSO SC TSO PSO 4.0X 2.6X 3.3X Dekker 248 252 508 62 98 155 9.1X 2.3X 29.4X Lamport 128 208 2672 14 91 102 4.5X 7.1X 12.4X Bakery 350 1164 2040 77 158 165 Our approach explores 5x – 10x fewer 2.8X 5.3X 6.3X Peterson 36 95 120 13 18 19 8.7X 5.5X 2.3X StackUnsafe 252 252 252 29 46 108 executions than DPOR. 34.4X - - RVExample 1959 - - 57 64 70 2.0X 2.0X - 4 4 - 2 2 10 2.4X 2.4X - 105 105 - 43 43 89 Example (N=1 to 4) 14.5X 14.5X - 4282 4282 - 296 296 819 5.4X 5.4X - 14840 14840 - 2767 2767 8420 Avg. 435 394 1118 42 79 103 10.4X 5.0X 10.9X 28

Recommend

Conferimento Laurea Magistrale Honoris Causa in Ingegneria Informatica Laurea honoris causa in

Conferimento Laurea Magistrale Honoris Causa in Ingegneria Informatica Laurea honoris causa in

Conferimento Laurea Magistrale Honoris Causa in Ingegneria Informatica Laurea honoris causa in Computer Engineering First laurea honoris causa conferred by the DIMES Department. First laurea honoris causa in the Engineering Area after more

514 views • 18 slides
Model Checking with Maximal Causality Reduction Jeff Huang Assistant Professor A Real Bug

Model Checking with Maximal Causality Reduction Jeff Huang Assistant Professor A Real Bug

Model Checking with Maximal Causality Reduction Jeff Huang Assistant Professor A Real Bug $12 million loss of equipment

823 views • 71 slides
Diagrammatically maximal and geometrically maximal knots Jessica Purcell Monash University,

Diagrammatically maximal and geometrically maximal knots Jessica Purcell Monash University,

Diagrammatically maximal and geometrically maximal knots Jessica Purcell Monash University, School of Mathematical Sciences Joint work with Abhijit Champanerkar, Ilya Kofman J. Purcell Diagrammatically maximal and geometrically maximal knots

792 views • 37 slides
Maximal subsemigroups via independent sets Wilf Wilson 26 th April 2017 Maximal subsemigroups? 1

Maximal subsemigroups via independent sets Wilf Wilson 26 th April 2017 Maximal subsemigroups? 1

Maximal subsemigroups via independent sets Wilf Wilson 26 th April 2017 Maximal subsemigroups? 1 2 3 A maximal subsemigroup is * * * formed by removing parts of one D -class. 5 7 It has one of several forms. * * However: A semigroup

345 views • 10 slides
Probability and Statistics for Computer Science Correla)on is not Causa)on but

Probability and Statistics for Computer Science Correla)on is not Causa)on but

Probability and Statistics for Computer Science Correla)on is not Causa)on but Correla)on is so beau)ful! Credit: wikipedia Hongye Liu, Teaching Assistant Prof, CS361, UIUC, 9.1.2020 Last time Mean Standard devia)on

737 views • 57 slides
Probability and Statistics for Computer Science Correla)on is not Causa)on but

Probability and Statistics for Computer Science Correla)on is not Causa)on but

Probability and Statistics for Computer Science Correla)on is not Causa)on but Correla)on is so beau)ful! Credit: wikipedia Hongye Liu, Teaching Assistant Prof, CS361, UIUC, 9.1.2020 &quot; &quot; # in your Please use sign *

759 views • 64 slides
The best Ethereum wallet Intro My main goal with the Pillar wallet design was to ensure maximal

The best Ethereum wallet Intro My main goal with the Pillar wallet design was to ensure maximal

The best Ethereum wallet Intro My main goal with the Pillar wallet design was to ensure maximal possible security for the users, without unnecessary limitations. Furthermore, I have focused on the reduction of redundant steps, legibility and

543 views • 16 slides
On the relationship of maximal clones and maximal C-clones Mike Behrisch Institute of Computer

On the relationship of maximal clones and maximal C-clones Mike Behrisch Institute of Computer

Galois theory C -clones Max clones On the relationship of maximal clones and maximal C-clones Mike Behrisch Institute of Computer Languages, Theory and Logic Group, Vienna University of Technology 21st June 2014 Warsaw, Poland Mike

961 views • 83 slides
RES - causa di maggior flessibilit o possibile soluzione? Simone Biondi 18 Ottobre 2018 Un

RES - causa di maggior flessibilit o possibile soluzione? Simone Biondi 18 Ottobre 2018 Un

RES - causa di maggior flessibilit o possibile soluzione? Simone Biondi 18 Ottobre 2018 Un Ponte fra Universit ed Aziende 2018 Beyond just the EU 2 Resource Adequacy: General Methodology Storage Network Infrastructure Available

194 views • 17 slides
Lower Bounds for Maximal Matchings and Maximal Independent Sets Alkida Balliu Aalto University,

Lower Bounds for Maximal Matchings and Maximal Independent Sets Alkida Balliu Aalto University,

Lower Bounds for Maximal Matchings and Maximal Independent Sets Alkida Balliu Aalto University, Finland Joint work with Sebastian Brandt ETH Zurich Juho Hirvonen Aalto University Dennis Olivetti Aalto University Mikal Rabie LIP6 -

937 views • 64 slides
The E 11 origin of gauged maximal supergravities Fabio Riccioni Kings College London based

The E 11 origin of gauged maximal supergravities Fabio Riccioni Kings College London based

The E 11 origin of gauged maximal supergravities Fabio Riccioni Kings College London based on work with Peter West arXiv:0705.0752 The E 11 origin ofgauged maximal supergravities p. 1/3 Introduction Massless maximal supergravities all

1.2k views • 90 slides
Causa Nostra: The Potentially Legitimate Business of Drawing Causal Inferences from Observational

Causa Nostra: The Potentially Legitimate Business of Drawing Causal Inferences from Observational

Page 1 Causa Nostra: The Potentially Legitimate Business of Drawing Causal Inferences from Observational Data Dr. James A. Rogers PhD October 9, 2018 Confidential Page 2 Overview Confidential Page 3 A Triage System for Causal

376 views • 33 slides
Maximal Independent Set Stefan Schmid @ T-Labs, 2011 What is a MIS? MIS An independent set

Maximal Independent Set Stefan Schmid @ T-Labs, 2011 What is a MIS? MIS An independent set

Foundations of Distributed Systems: Maximal Independent Set Stefan Schmid @ T-Labs, 2011 What is a MIS? MIS An independent set (IS) of an undirected graph is a subset U of nodes such that no two nodes in U are adjacent. An IS is maximal if

958 views • 80 slides
Maximal subsemigroups of finite semigroups Wilf Wilson 7 th November 2014 7 th November 2014 Wilf

Maximal subsemigroups of finite semigroups Wilf Wilson 7 th November 2014 7 th November 2014 Wilf

Maximal subsemigroups of finite semigroups Wilf Wilson 7 th November 2014 7 th November 2014 Wilf Wilson Maximal subsemigroups of finite semigroups 1 / 35 Maximal subgroups and maximal subsemigroups Definition (maximal subgroup) Let G be a

547 views • 35 slides
Distributed Maximal Matching: Greedy is Optimal Jukka Suomela Helsinki Institute for

Distributed Maximal Matching: Greedy is Optimal Jukka Suomela Helsinki Institute for

Distributed Maximal Matching: Greedy is Optimal Jukka Suomela Helsinki Institute for Information Technology HIIT University of Helsinki Joint work with Juho Hirvonen Weizmann Institute of Science, 27 November 2011 Background 2 Maximal

1.26k views • 86 slides
Maximal objects in the projective hierarchy J org Brendle Kobe University Sant Bernat,

Maximal objects in the projective hierarchy J org Brendle Kobe University Sant Bernat,

Maximal objects in the projective hierarchy J org Brendle Kobe University Sant Bernat, November 18, 2018 Reflections on Set Theoretic Reflection In celebration of Joan Bagarias 60th birthday J org Brendle Maximal objects in the

1.06k views • 78 slides
Listing All Maximal Cliques in Sparse Graphs in Near-Optimal Time Darren Strash Department of

Listing All Maximal Cliques in Sparse Graphs in Near-Optimal Time Darren Strash Department of

Listing All Maximal Cliques in Sparse Graphs in Near-Optimal Time Darren Strash Department of Computer Science UC Irvine Joint work with David Eppstein and Maarten L offler What is a Maximal Clique? A clique that cannot be extended by

1.74k views • 160 slides
Global Weyl modules and maximal parabolics of twisted affine Lie algebras Matthew Lee Department

Global Weyl modules and maximal parabolics of twisted affine Lie algebras Matthew Lee Department

Motivation Background Realization of Maximal Parabolic Global Weyl Module A Global Weyl modules and maximal parabolics of twisted affine Lie algebras Matthew Lee Department of Mathematics University of California, Riverside Interactions

606 views • 31 slides
Fully Dynamic Maximal Independent Set with Sublinear Update Time Sepehr Assadi University of

Fully Dynamic Maximal Independent Set with Sublinear Update Time Sepehr Assadi University of

Fully Dynamic Maximal Independent Set with Sublinear Update Time Sepehr Assadi University of Pennsylvania Joint work with: Krzysztof Onak, Baruch Schieber, and Shay Solomon IBM Research Sepehr Assadi (Penn) STOC 2018 The Maximal Independent

1.19k views • 102 slides
Introduction to Harm Reduction Definition of Harm Reduction Harm reduction refers to policies,

Introduction to Harm Reduction Definition of Harm Reduction Harm reduction refers to policies,

Introduction to Harm Reduction Definition of Harm Reduction Harm reduction refers to policies, programs and practices that aim to reduce the adverse consequences associated with a variety of health behaviors. Harm Reduction in Everyday Life

255 views • 25 slides
Tree sums and maximal connected I-spaces Adam Barto s drekin@gmail.com Faculty of Mathematics

Tree sums and maximal connected I-spaces Adam Barto s drekin@gmail.com Faculty of Mathematics

Tree sums and maximal connected I-spaces Adam Barto s drekin@gmail.com Faculty of Mathematics and Physics Charles University in Prague Twelfth Symposium on General Topology Prague, July 2016 Maximal and minimal topologies Definition Let X

503 views • 28 slides
Rigidity in Markovian maximal couplings. Sayan Banerjee (Joint work with Wilfrid S. Kendall).

Rigidity in Markovian maximal couplings. Sayan Banerjee (Joint work with Wilfrid S. Kendall).

Rigidity in Markovian maximal couplings. Sayan Banerjee (Joint work with Wilfrid S. Kendall). University of Warwick June 20, 2014. Maximal Couplings A coupling of Markov processes X and Y with laws and , with coupling time T , is called a

346 views • 15 slides
Maximal Regularity for the Initial-Boundary Value Problem of some Evolution Equations Yoshihiro

Maximal Regularity for the Initial-Boundary Value Problem of some Evolution Equations Yoshihiro

Maximal Regularity for the Initial-Boundary Value Problem of some Evolution Equations Yoshihiro Shibata Waseda University VIII Workshop in Partial Differential Equations August 25-28, Rio 2009 Yoshihiro Shibata (Waseda Univ.) Maximal

415 views • 23 slides
Maximal Vector Computation in Large Data Sets Parke Godfrey 1 Ryan Shipley 2 Jarek Gryz 1 1 York

Maximal Vector Computation in Large Data Sets Parke Godfrey 1 Ryan Shipley 2 Jarek Gryz 1 1 York

Maximal Vector Computation in Large Data Sets Parke Godfrey 1 Ryan Shipley 2 Jarek Gryz 1 1 York University 2 College of William and Mary Toronto, C ANADA Williamsburg, USA 30 August 2005 VLDB Trondheim, Norway Maximal VectorGodfrey,

1.07k views • 73 slides

More recommend