stateless model checking for tso and pso
play

Stateless Model Checking for TSO and PSO Parosh Aziz Abdulla - PowerPoint PPT Presentation

Aug 31, 2023 •44 likes •544 views

Introduction TSO Traces and Happens-Before Experiments Future Work Stateless Model Checking for TSO and PSO Parosh Aziz Abdulla Stavros Aronis Mohamed Faouzi Atig Bengt Jonsson Carl Leonardsson Konstantinos Sagonas Uppsala University,

  1. Introduction TSO Traces and Happens-Before Experiments Future Work Stateless Model Checking for TSO and PSO Parosh Aziz Abdulla Stavros Aronis Mohamed Faouzi Atig Bengt Jonsson Carl Leonardsson Konstantinos Sagonas Uppsala University, Sweden MM’15 2015-02-24 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  2. Introduction TSO Traces and Happens-Before Experiments Future Work Test Cases Goals Stateless Model Checking Find safety errors... in given test case (fixed input program) for all interleavings for all reorderings (TSO/PSO) Works on real code in C/pthreads Valid Test Case (in this presentation) 1 Terminates in bounded time 2 Nondeterminism: Interleavings, Reordering Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  3. Introduction TSO Traces and Happens-Before Experiments Future Work Test Cases Goals Stateless Model Checking Find safety errors... in given test case (fixed input program) for all interleavings for all reorderings (TSO/PSO) Works on real code in C/pthreads Valid Test Case (in this presentation) 1 Terminates in bounded time 2 Nondeterminism: Interleavings, Reordering Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  4. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR Partial Order Reduction (SC) volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; Executions p :wx1 p :wx1 p :wx1 p :ry0 q :wy1 q :wy1 q :wy1 p :ry1 q :rx1 q :rx1 q :rx1 p :ry1 q :wy1 q :wy1 q :wy1 q :rx0 p :wx1 p :wx1 p :wx1 q :rx1 p :ry1 p :ry1 p :ry1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  5. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR Partial Order Reduction (SC) volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; Executions p :wx1 p :wx1 p :wx1 p :ry0 q :wy1 q :wy1 q :wy1 p :ry1 q :rx1 q :rx1 q :rx1 p :ry1 q :wy1 q :wy1 q :wy1 q :rx0 p :wx1 p :wx1 p :wx1 q :rx1 p :ry1 p :ry1 p :ry1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  6. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR Partial Order Reduction (SC) volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; Executions (Happens-Before) p :wx1 p :wx1 p :wx1 p :ry0 q :wy1 q :wy1 q :wy1 p :ry1 q :rx1 q :rx1 q :rx1 p :ry1 q :wy1 q :wy1 q :wy1 q :rx0 p :wx1 p :wx1 p :wx1 q :rx1 p :ry1 p :ry1 p :ry1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  7. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR Partial Order Reduction (SC) volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; Mazurkiewicz Traces ∼ Equivalence Classes over Executions p :wx1 p :wx1 p :wx1 p :ry0 q :wy1 q :wy1 q :wy1 p :ry1 q :rx1 q :rx1 q :rx1 p :ry1 q :wy1 q :wy1 q :wy1 q :rx0 p :wx1 p :wx1 p :wx1 q :rx1 p :ry1 p :ry1 p :ry1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  8. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR Stateless Model Checking with DPOR [Flanagan, Godefroid 2005] Idea Explore one execution per Mazurkiewicz trace. → Cover all observable behaviours. Keep only one execution in memory. Examine happens-before relation to find the next trace. Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  9. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  10. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 p :ry0 q :wy1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  11. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 HB: Necessary Edges p :ry0 Program order (under SC) Thread spawning to child’s q :wy1 first event q :rx1 ... Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  12. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 HB: Races p :ry0 Conflicting stores and loads. ... q :wy1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  13. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 Reverse Races p :ry0 Start from the end of the execution. q :wy1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  14. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 Previous Trace p :wx1 q :wy1 p :ry0 p :ry1 q :wy1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  15. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 Previous Trace p :wx1 q :wy1 p :ry0 p :ry1 q :wy1 q :rx1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  16. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 Previous Trace p :wx1 q :wy1 p :ry0 p :ry1 q :wy1 q :rx1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  17. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; p :wx1 Previous Trace p :wx1 q :wy1 p :ry0 p :ry1 q :wy1 q :rx1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  18. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; q :wy1 Previous Traces p :wx1 p :wx1 q :rx0 p :ry0 q :wy1 p :wx1 q :wy1 p :ry1 q :rx1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  19. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; q :wy1 Previous Traces p :wx1 p :wx1 q :rx0 p :ry0 q :wy1 p :wx1 q :wy1 p :ry1 p :ry1 q :rx1 q :rx1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  20. Introduction TSO Traces and Happens-Before Experiments Future Work SMC & DPOR volatile int x = 0, y = 0; p q x = 1; y = 1; int a = y; int b = x; All Traces p :wx1 p :wx1 q :wy1 p :ry0 q :wy1 q :rx0 q :wy1 p :ry1 p :wx1 q :rx1 q :rx1 p :ry1 Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  21. Introduction TSO Traces and Happens-Before Experiments Future Work Summary TSO Relaxes W → R Store forwarding to own reads (ROWE) Operational semantics: store buffer per thread Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

  22. Introduction TSO Traces and Happens-Before Experiments Future Work Problem Defining Traces for TSO Extend Mazurkiewicz Traces to TSO Suitable equivalence classes Compatible with DPOR Parosh Aziz Abdulla, Stavros Aronis, Mohamed Faouzi Atig, Bengt Jonsson, Carl Leonardsson , Konstantinos Sagonas Stateless Model Checking for TSO and PSO

Recommend

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking Checking Checking for Timed Automata Timed Automata Coll C l C ll b llabora orators: t ors: Peter Bulychev, Alexandre David Axel Legay, Marius

725 views • 59 slides
Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree

Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree

Hoare Logic and Model Checking Model Checking Lecture 11: Model checking for Computation Tree Logic Dominic Mulligan Based on previous slides by Alan Mycroft and Mike Gordon Programming, Logic, and Semantics Group University of Cambridge

402 views • 25 slides
Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model

Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model

Bounded Model Checking bmc Revision: 1.11 1 [BiereCimattiClarkeZhu99] uses SAT for model checking historically not the first symbolic model checking approach scales better than original BDD based techniques mostly incomplete in

521 views • 28 slides
CTL Chapter 6 Part 2 Overview Review CTL Model Checking CTL model Checking algorithms

CTL Chapter 6 Part 2 Overview Review CTL Model Checking CTL model Checking algorithms

CTL Chapter 6 Part 2 Overview Review CTL Model Checking CTL model Checking algorithms for ( U ) Counter Examples and witnesses Symbolic Model Checking (Thursday) Binary Decision Trees

740 views • 40 slides
Hoare Logic and Model Checking Model Checking But perhaps theres a clever way of

Hoare Logic and Model Checking Model Checking But perhaps theres a clever way of

Hoare Logic and Model Checking Model Checking But perhaps theres a clever way of compiling one into the other? Both have very different models of time How do they compare? We have seen two widely used temporal logics Relative

510 views • 10 slides
Hoare Logic and Model Checking 1. You should be able to model simple systems in NuSMV, an LTL

Hoare Logic and Model Checking 1. You should be able to model simple systems in NuSMV, an LTL

Hoare Logic and Model Checking 1. You should be able to model simple systems in NuSMV, an LTL Other interesting books: Model Checking by Clarke, Grumberg, and Peled Principles of Model Checking by Baier and Katoen 3 Course

636 views • 11 slides
Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and Extensible Model Checking Framework a Modular and Extensible Model Checking Framework 3rd Estonian Summer School in Computer and System Science

301 views • 8 slides
Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and Extensible Model Checking Framework a Modular and Extensible Model Checking Framework 3rd Estonian Summer School in Computer and System Science

628 views • 34 slides
Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and Extensible Model Checking Framework a Modular and Extensible Model Checking Framework 3rd Estonian Summer School in Computer and System Science

777 views • 31 slides
Modeling and Analyzing Concurrent Systems using Model Checking Robert B. France 1 What is

Modeling and Analyzing Concurrent Systems using Model Checking Robert B. France 1 What is

Modeling and Analyzing Concurrent Systems using Model Checking Robert B. France 1 What is Model Checking? Model checking is an automated technique that, given a finite-state model of a system and a logical property , systematically

484 views • 36 slides
Automated Reasoning LTL Model Checking Alan Bundy Automated Reasoning LTL Model Checking

Automated Reasoning LTL Model Checking Alan Bundy Automated Reasoning LTL Model Checking

Automated Reasoning LTL Model Checking Alan Bundy Automated Reasoning LTL Model Checking Lecture 9, page 1 Introduction So far we have looked at theorem proving Powerful, especially where good sets of rewrite rules or decision procedures

639 views • 26 slides
Model Checking: the Interval Way Alberto Molinari ( j.w. with L. Bozzelli, A. Montanari, A. Peron,

Model Checking: the Interval Way Alberto Molinari ( j.w. with L. Bozzelli, A. Montanari, A. Peron,

Model Checking: the Interval Way Alberto Molinari ( j.w. with L. Bozzelli, A. Montanari, A. Peron, P. Sala ) University of Udine Department of Mathematics, Computer Science, and Physics (DMIF) July 27, 2018 MODEL CHECKING Model checking : the

701 views • 38 slides
Hoare Logic and Model Checking Model Checking Lecture 7: Introduction and background Dominic

Hoare Logic and Model Checking Model Checking Lecture 7: Introduction and background Dominic

Hoare Logic and Model Checking Model Checking Lecture 7: Introduction and background Dominic Mulligan Based on previous slides by Alan Mycroft and Mike Gordon Programming, Logic, and Semantics Group, University of Cambridge Academic year

972 views • 41 slides
Hoare Logic and Model Checking Model Checking See NuSMV homepage to download: http://nusmv.fbk.eu/

Hoare Logic and Model Checking Model Checking See NuSMV homepage to download: http://nusmv.fbk.eu/

Hoare Logic and Model Checking Model Checking See NuSMV homepage to download: http://nusmv.fbk.eu/ Was popular in semiconductor industry via Cadence SMV Could handle large models A re-implementation of the SMV model checker: Good

110 views • 10 slides
Probabilisti tic Model Checking in Practi tice Dave Parker Oxford University

Probabilisti tic Model Checking in Practi tice Dave Parker Oxford University

Probabilisti tic Model Checking in Practi tice Dave Parker Oxford University Computing Laboratory Quantitative Model Checking PhD School, Copenhagen, March 2010 Overview Tool support for probabilistic model checking The PRISM

317 views • 14 slides
Hoare Logic and Model Checking Model Checking Lecture 10: Computation Tree Logic (CTL) Dominic

Hoare Logic and Model Checking Model Checking Lecture 10: Computation Tree Logic (CTL) Dominic

Hoare Logic and Model Checking Model Checking Lecture 10: Computation Tree Logic (CTL) Dominic Mulligan Based on previous slides by Alan Mycroft and Mike Gordon Programming, Logic, and Semantics Group University of Cambridge Academic year

1.15k views • 48 slides
Towards efficient model checking for variants of ATL under different semantics Wojciech Penczek

Towards efficient model checking for variants of ATL under different semantics Wojciech Penczek

Specification of Strategic Abilities in ATL* Model checking Multi-Valued ATL* Partial order reductions for sATL* Simpler strategies for Timed ATL Conclusions Towards efficient model checking for variants of ATL under different semantics

1.1k views • 88 slides
Model Checking in Systems Biology s Brim and Milan ska and David Lubo Ce Safr

Model Checking in Systems Biology s Brim and Milan ska and David Lubo Ce Safr

Model Checking in Systems Biology s Brim and Milan ska and David Lubo Ce Safr anek Masaryk University Czech Republic SFM 2013 1/150 Outline Introduction 1 LTL Model Checking 2 Parallel LTL Model Checking 3 Discrete

2.18k views • 199 slides
Introduction to Model Checking Radu Mateescu Inria Univ. Grenoble Alpes LIG What is model

Introduction to Model Checking Radu Mateescu Inria Univ. Grenoble Alpes LIG What is model

Introduction to Model Checking Radu Mateescu Inria Univ. Grenoble Alpes LIG What is model checking? Model checking is the method by which a desired behavioral property of a reactive system is verified over a given system (the model )

606 views • 32 slides
Model Checking Finite State Finite State Model Checking Finite State Systems

Model Checking Finite State Finite State Model Checking Finite State Systems

Model Checking Finite State Finite State Model Checking Finite State Systems Informationsteknologi System Description A No! Debugging Information TOOL TOOL Yes, Requirement F Prototypes C T L Executable Code Test sequences Tools:

637 views • 34 slides
Context-Bounded Model Checking of LTL Properties for ANSI-C Software Jeremy Morse, Lucas

Context-Bounded Model Checking of LTL Properties for ANSI-C Software Jeremy Morse, Lucas

Context-Bounded Model Checking of LTL Properties for ANSI-C Software Jeremy Morse, Lucas Cordeiro, Bernd Fischer, Denis Nicole Model Checking C Model checking: normally applied to formal state transition systems checks safety and

439 views • 17 slides
Model checking perhaps the most important part of applied statistical modelling Simon Wood

Model checking perhaps the most important part of applied statistical modelling Simon Wood

Model checking perhaps the most important part of applied statistical modelling Simon Wood Model checking Checking validation! As with detection function, checking is important Want to know the model conforms to assumptions What

524 views • 26 slides
SMT-based Software Model Checking: Experimental Comparison of Four Algorithms Matthias Dangl

SMT-based Software Model Checking: Experimental Comparison of Four Algorithms Matthias Dangl

SMT-based Software Model Checking: Experimental Comparison of Four Algorithms Matthias Dangl Joint work with Dirk Beyer University of Passau, Germany SMT-based Software Model Checking Bounded Model Checking ( Cbmc , CPAchecker , Esbmc ,

496 views • 26 slides
Static verification framework for Go Overview 2 Model checking Behavioural mCRL2 model checker

Static verification framework for Go Overview 2 Model checking Behavioural mCRL2 model checker

Concurrency in Go Behavioural type inference Model checking behavioural types Termination checking Summary Static verification framework for Go Overview 2 Model checking Behavioural mCRL2 model checker Types Transform Check safety and

681 views • 67 slides

More recommend