synthesis of synchronization using uninterpreted functions
play

Synthesis of Synchronization using Uninterpreted Functions* October - PowerPoint PPT Presentation

Mar 09, 2023 •472 likes •741 views

Robert Knighofer Synthesis of Synchronization using Uninterpreted Functions Synthesis of Synchronization using Uninterpreted Functions* October 22, 2014 Roderick Bloem, Georg Hofferek, Bettina Knighofer, Robert Knighofer, Simon

  1. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Synthesis of Synchronization using Uninterpreted Functions* October 22, 2014 Roderick Bloem, Georg Hofferek, Bettina Könighofer, Robert Könighofer, Simon Außerlechner, and Raphael Spörk * This work was supported in part by the Austrian Science Fund (FWF) through the national research network RiSE (S11406-N23) and the project QUAINT (I774-N23). u www.iaik.tugraz.at u www.iaik.tugraz.at

  2. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions 2 What is Synthesis?   Specification: What? Implementation: How?  Walk to Moserhofgasse  From: Graz, Synthesis  Tram 6 to Jakominiplatz Inffeldgasse  Buy tram ticket  To: Lausanne, 6pm  Tram 3 to train station Graz  Buy train ticket  Train to Salzburg  Train to Zürich  Train to Launsanne  Walk to Lausanne Fon FMCAD  And so on … FMCAD 2014 Lausanne, October 22

  3. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions 3 What is Synthesis?   Specification: What? Implementation: How?  Walk to Moserhofgasse  From: Graz, Synthesis  Tram ??? to Jakominiplatz Inffeldgasse  Buy tram ticket  To: Lausanne, 6pm  Tram 3 to train station Graz  Buy train ticket  Train to ???  Train to Zürich  Train to Launsanne  Walk to Lausanne Fon FMCAD  And so on … FMCAD 2014 Lausanne, October 22

  4. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Concurrent Programs 4 Functionality: Concurrent Correctness:   Hard to specify Easy to specify   Same result Easy to implement   Implement manually Hard to implement  Synthesize Vision: Same Results Sequentially Parallel Synthesizing Correct Code Code Compiler Programmer FMCAD 2014 Lausanne, October 22

  5. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Synthesizing Atomic Sections 5 Example:  RSA decryption using Chinese Remainder Theorem  Goal: m = c d mod (p*q)  Faster: m p = c d mod p m q = c d mod q m = crt(m p , m q )  Parallelization: thread2() { thread1() { 11 1 m q := c d mod q; m p := c d mod p; 12 2 fin 2 := true; fin 1 := true; 13 3 if(!merged && fin 1 ) if(!merged && fin 2 ) 14 4 merged := true; merged := true; 15 5 m p := crt(m p , m q ); m p := crt(m p , m q ); 16 6 } } 17 7 FMCAD 2014 Lausanne, October 22

  6. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Flow 6 Counterexample Atomic Program Analysis Sections Abstraction SMT Encoding Verification Synchronized Program FMCAD 2014 Lausanne, October 22

  7. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Abstraction 7 Challenge: Complicated arithmetic  Synchronization should not depend on arithmetic   Abstract using uninterpreted functions thread2() { thread1() { 11 1 m q := c d mod q; m p := c d mod p; 12 2 fin 2 := true; fin 1 := true; 13 3 if(!merged && fin 1 ) if(!merged && fin 2 ) 14 4 merged := true; merged := true; 15 5 m p := crt(m p , m q ); m p := crt(m p , m q ); 16 6 } } 17 7 FMCAD 2014 Lausanne, October 22

  8. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Abstraction 8 Challenge: Complicated arithmetic  Synchronization should not depend on arithmetic   Abstract using uninterpreted functions  All arithmetic operations: +,- ,*, …  Calls of functions without side-effects thread2() { thread1() { 11 1 m q := f me (c, d, q) ; m p := f me (c, d, p) ; 12 2 fin 2 := true; fin 1 := true; 13 3 if(!merged && fin 1 ) if(!merged && fin 2 ) 14 4 merged := true; merged := true; 15 5 m p := f crt (m p , m q ) ; m p := f crt (m p , m q ) ; 16 6 } } 17 7 FMCAD 2014 Lausanne, October 22

  9. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Flow 9 Counterexample Atomic Program Analysis Sections Abstraction SMT Encoding Verification Synchronized Program FMCAD 2014 Lausanne, October 22

  10. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions SMT Encoding 10  Implicit specification  result(Thread1 || Thread2) = result(Thread1 ○ Thread2) or result(Thread2 ○ Thread1)  result(): global variables at termination  Often called “ serializability ” or “ linearizability ”  Construct SMT formula:  incorrect(inputs, scheduling)  Satisfying assignment = incorrect execution  Approach based on Bounded Model Checking [CAV’05]  Loops are unrolled  Function calls are inlined (or abstracted) FMCAD 2014 Lausanne, October 22

  11. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Flow 11 Counterexample Atomic Program Analysis Sections counterexample SMT Solver SMT Abstraction SMT Encoding Verification UNSAT Synchronized Program FMCAD 2014 Lausanne, October 22

  12. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Counterexample Analysis: 12 Method 1 [POPL’10]  Eliminate counterexample: Thread 1 Thread 2  Atomic section at 𝑩 ∨ 𝑪 Line A Line B Line C (end of T1)  FMCAD 2014 Lausanne, October 22

  13. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Counterexample Analysis: 13 Method 1 [POPL’10] Iteration 2:  Eliminate counterexample: Thread 1 Thread 2  Atomic section at 𝑩 ∨ 𝑪 Line A  Atomic section at 𝑩 ∨ 𝑬 Line D Line C (end of T1)  FMCAD 2014 Lausanne, October 22

  14. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Counterexample Analysis: 14 Method 1 [POPL’10] Iteration 3:  Eliminate counterexample: Thread 1 Thread 2  Atomic section at 𝑩 ∨ 𝑪  Atomic section at 𝑩 ∨ 𝑬   Minimal satisfying assignment   Atomic section at 𝑩 No more counterexamples FMCAD 2014 Lausanne, October 22

  15. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Counterexample Analysis: 15 Method 2  Start with last (non-mandatory) Thread 1 Thread 2 thread switch B Line A  Can we build a valid run from B on? Line B Line C (end of T1)  FMCAD 2014 Lausanne, October 22

  16. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Counterexample Analysis: 16 Method 2  Start with last (non-mandatory) Thread 1 Thread 2 thread switch B Line A  Can we build a valid run from B on?  No? Problem already before Line B  Investigate A in the same way  Yes? B is suspicious.  Add atomic section at B  This is a heuristic!  May not find the minimal solution  FMCAD 2014 Lausanne, October 22

  17. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Flow 17 Counterexample Atomic Program Analysis Sections counterexample SMT Solver SMT Abstraction SMT Encoding Verification UNSAT Synchronized Program FMCAD 2014 Lausanne, October 22

  18. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Experimental Results 18  Prototype tool for (simple) C programs  Toy examples:  linEq:  Given: linear equation 4a + 3b + 9c -4d = 6  Given: assignment a=100, b=0, c=3, d=12  Program performs parallelized check  Abstraction: +,*  f + (), f * ()  VecPrime:  Counts prime numbers in a vector  Abstraction: isPrime()  f p () FMCAD 2014 Lausanne, October 22

  19. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Experimental Results: Toy Examples 19 Speedup due to Abstraction With abstraction (UIF) [sec] 1000 Method 1 Method 2 100 Average speedup factor: 10 110 not counting time-outs 160 when counting time-outs 1 1 10 100 1000 Without abstraction [sec] FMCAD 2014 Lausanne, October 22

  20. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Experimental Results 20  Real-world examples:  CVE-2014-0196 bug in Linux TTY driver  Race condition can produce buffer overflow FMCAD 2014 Lausanne, October 22

  21. int tty_size; Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions int tty_offset; int OPOST_tty; int STATE = 1; Experimental Results void thread1() { 21 int c = 0; int nr = 22; int b = 77; int true_int = 1; while(true_int == 1) { if(OPOST_tty) {  STATE = 2; Real-world examples: while(nr > 0) { int num = nr + 3;  CVE-2014-0196 bug in Linux TTY driver b = b + num; nr = nr - num; if(nr != 0){  Race condition can produce buffer overflow c = b; b = b + 1; nr = nr - 1; } } } else { STATE = 3; while(nr > 0) { atomic section int tmpOffset = tty_offset ; int tty_space_left = tty_size - tmpOffset; if( tty_space_left - nr >= 0 ) c = nr; else c = tty_space_left; tmpOffset = tty_offset; tmpOffset = tmpOffset + c; tty_offset = tmpOffset; if(c>0){ b = b + c; nr = nr - c; } } } } FMCAD 2014 } Lausanne, October 22

  22. Robert Könighofer Synthesis of Synchronization using Uninterpreted Functions Experimental Results 22  Real-world examples:  CVE-2014-0196 bug in Linux TTY driver  Race condition can produce buffer overflow  Race condition in iio-subsystem of linux-kernel  Variable that counts the number of running threads  Race condition in broadcom tigon3 ethernet driver  Statistics can get inconsistent FMCAD 2014 Lausanne, October 22

Recommend

Decision Procedures An Algorithmic Point of View Equalities and Uninterpreted Functions D.

Decision Procedures An Algorithmic Point of View Equalities and Uninterpreted Functions D.

Decision Procedures An Algorithmic Point of View Equalities and Uninterpreted Functions D. Kroening O. Strichman ETH/Technion Version 1.0, 2007 Part III Equalities and Uninterpreted Functions Outline 1 Introduction to Equality Logic

1.03k views • 90 slides
Craig Interpolation for Integer Arithmetic, Uninterpreted Functions, and the Theory of Arrays

Craig Interpolation for Integer Arithmetic, Uninterpreted Functions, and the Theory of Arrays

Craig Interpolation for Integer Arithmetic, Uninterpreted Functions, and the Theory of Arrays Angelo Brillout 1 Daniel Kroening 2 ome Leroux 3 J er ummer 4 Thomas Wahl 2 Philipp R 1 ETH Zurich 2 University of Oxford 3 Laboratoire

989 views • 50 slides
Synthesis of Ranking Functions and Synthesis of Inductive Invariants and Synthesis of

Synthesis of Ranking Functions and Synthesis of Inductive Invariants and Synthesis of

Synthesis of Ranking Functions and Synthesis of Inductive Invariants and Synthesis of Recurrence Sets via Constraint Solving Andreas Podelski January 17, 2012 1 Program Verification and Constraints Reasoning about program

422 views • 28 slides
Uninterpreted Functions: Their use in Code Transformation Catherine Olschanowsky Mary Hall

Uninterpreted Functions: Their use in Code Transformation Catherine Olschanowsky Mary Hall

Uninterpreted Functions: Their use in Code Transformation Catherine Olschanowsky Mary Hall Michelle Strout CHiLL-I/E Team, Collaborators, and Funding Mary Hall (University of Utah) Michelle Strout (University of Arizona) Catherine

324 views • 10 slides
CS156: The Calculus of E : { = , a , b , c , . . . , f , g , h , . . . , p , q , r , . . . }

CS156: The Calculus of E : { = , a , b , c , . . . , f , g , h , . . . , p , q , r , . . . }

The Theory of Equality T E CS156: The Calculus of E : { = , a , b , c , . . . , f , g , h , . . . , p , q , r , . . . } Computation uninterpreted symbols: constants a , b , c , . . . Zohar Manna functions f , g , h , . . . Autumn

602 views • 12 slides
Content Synchronization Content Synchronization March 2nd 2005 Jukka Honkola T-110.456

Content Synchronization Content Synchronization March 2nd 2005 Jukka Honkola T-110.456

Content Synchronization Content Synchronization March 2nd 2005 Jukka Honkola T-110.456 Synchronization Synchronization Needed whenever multiple copies of an object may be updated independently After synchronization objects should be

413 views • 14 slides
Condition Synchronization 1 Synchronization Now that you have seen locks, is that all there is?

Condition Synchronization 1 Synchronization Now that you have seen locks, is that all there is?

Condition Synchronization 1 Synchronization Now that you have seen locks, is that all there is? No, but what is the right way to build a parallel program. People are still trying to figure that out. Compromises: between making it

643 views • 16 slides
Chapter 6: Process [& Thread] Synchronization Why is synchronization needed? CSCI [4|6]

Chapter 6: Process [& Thread] Synchronization Why is synchronization needed? CSCI [4|6]

Chapter 6: Process [& Thread] Synchronization Why is synchronization needed? CSCI [4|6] 730 Synchronization Language/Definitions: What are race conditions? Operating Systems What are critical sections? What are atomic

488 views • 11 slides
Semaphores and Monitors: High-level Synchronization Constructs 1 Synchronization Constructs

Semaphores and Monitors: High-level Synchronization Constructs 1 Synchronization Constructs

Semaphores and Monitors: High-level Synchronization Constructs 1 Synchronization Constructs Synchronization Coordinating execution of multiple threads that share data structures Past few lectures: Locks: provide mutual

384 views • 27 slides
Using Synchronization Using Synchronization Administrative Administrative Lab 2 due Thursday at

Using Synchronization Using Synchronization Administrative Administrative Lab 2 due Thursday at

Using Synchronization Using Synchronization Administrative Administrative Lab 2 due Thursday at midnight. Sign up for demos on the Web; e-mail your writeup to me and your demoee, and cc: all group members. Problem set will be available on the

289 views • 11 slides
Towards Pareto-Optimal Parameter Synthesis for Monotonic Cost Functions FMCAD 2014, Lausanne B.

Towards Pareto-Optimal Parameter Synthesis for Monotonic Cost Functions FMCAD 2014, Lausanne B.

Towards Pareto-Optimal Parameter Synthesis for Monotonic Cost Functions FMCAD 2014, Lausanne B. Bittner, M. Bozzano, A. Cimatti, M. Gario, A. Griggio October 23, 2014 Motivations Parameters: variables with constant value, only partially

799 views • 33 slides
Guarded Kleene Algebra with Tests Verification of Uninterpreted Programs in Nearly Linear Time

Guarded Kleene Algebra with Tests Verification of Uninterpreted Programs in Nearly Linear Time

Guarded Kleene Algebra with Tests Verification of Uninterpreted Programs in Nearly Linear Time Steffen Smolka 1 Nate Foster 1 Justin Hsu 2 e 3 Dexter Kozen 1 Alexandra Silva 3 Tobias Kapp 1 Cornell University 2 University of Wisconsin-Madison 3

1.15k views • 80 slides
Fault detection and mitigation from uninterpreted data of robotic sensorimotor cascades Andrea

Fault detection and mitigation from uninterpreted data of robotic sensorimotor cascades Andrea

1 Fault detection and mitigation from uninterpreted data of robotic sensorimotor cascades Andrea Censi * Magnus Hkansson # Richard M. Murray Caltech LTH Caltech * 5th year graduate student, # spent a California summer defending in a few

295 views • 26 slides
Synchronization in sensor networks Synchronization in sensor networks Jie Gao Computer Science

Synchronization in sensor networks Synchronization in sensor networks Jie Gao Computer Science

Synchronization in sensor networks Synchronization in sensor networks Jie Gao Computer Science Department Stony Brook University Papers Papers [Mirollo90] M. Mirollo and S. Strogatz. Synchronization of pulse-coupled biological oscillators

1.2k views • 96 slides
Thread and Synchronization Synchronization Mechanisms (Module 20) Yann-Hang Lee Arizona State

Thread and Synchronization Synchronization Mechanisms (Module 20) Yann-Hang Lee Arizona State

Thread and Synchronization Synchronization Mechanisms (Module 20) Yann-Hang Lee Arizona State University yhlee@asu.edu (480) 727-7507 Summer 2014 Real-time Systems Lab, Computer Science and Engineering, ASU Thread Synchronization --

254 views • 8 slides
Chapter 7: Process Synchronization Background The Critical-Section Problem

Chapter 7: Process Synchronization Background The Critical-Section Problem

Chapter 7: Process Synchronization Background The Critical-Section Problem Synchronization Hardware Semaphores Classical Problems of Synchronization Critical Regions Monitors Synchronization in Solaris 2 &

833 views • 61 slides
Module 6: Process Synchronization Background The Critical-Section Problem

Module 6: Process Synchronization Background The Critical-Section Problem

' $ Module 6: Process Synchronization Background The Critical-Section Problem Synchronization Hardware Semaphores Classical Problems of Synchronization Critical Regions Monitors Synchronization in Solaris 2

430 views • 29 slides
Chapter 7: Process Synchronization Background The Critical-Section Problem

Chapter 7: Process Synchronization Background The Critical-Section Problem

Chapter 7: Process Synchronization Background The Critical-Section Problem Synchronization Hardware Semaphores Classical Problems of Synchronization Critical Regions Monitors Synchronization in Solaris 2 &

492 views • 31 slides
NOW Handout Page 1 Strawman Lock Atomic Instructions Specifies a location, register, &

NOW Handout Page 1 Strawman Lock Atomic Instructions Specifies a location, register, &

Role of Synchronization A parallel computer is a collection of processing elements that cooperate and communicate to solve large problems fast. Hardware-Software Trade-offs in Synchronization Types of Synchronization Mutual

346 views • 10 slides
Transfer Functions Transfer functions defined Examples System stability Pole-Zero

Transfer Functions Transfer functions defined Examples System stability Pole-Zero

Transfer Functions Transfer functions defined Examples System stability Pole-Zero Plots Sinusoidal steady-state analysis Linearity and time invariance defined Transfer function synthesis J. McNames Portland State

726 views • 40 slides
More Threads and Synchronization More Threads and Synchronization Administrivia Administrivia

More Threads and Synchronization More Threads and Synchronization Administrivia Administrivia

More Threads and Synchronization More Threads and Synchronization Administrivia Administrivia Lab #1 is due at midnight. Carefully follow submission instructions in the Project Guide. E-mail me your project writeup and group info before

116 views • 11 slides
Outline 0024 Spring 2010 12 :: 2 Synchronization, revisited Two aspects of synchronization

Outline 0024 Spring 2010 12 :: 2 Synchronization, revisited Two aspects of synchronization

Outline 0024 Spring 2010 12 :: 2 Synchronization, revisited Two aspects of synchronization Avoid that a thread sees an object in an inconsistent state As defined by the programmer s design Ensure that all threads see all updates

585 views • 29 slides
Today Synchronization Problem: Taking turns Synchronization Mechanisms Condition

Today Synchronization Problem: Taking turns Synchronization Mechanisms Condition

Today Synchronization Problem: Taking turns Synchronization Mechanisms Condition Variables Semaphores Oct 31, 2018 Sprenkle - CSCI330 1 Project 3 Development Recommendation At least after every step, git commit and push your

499 views • 17 slides
Knowledge Compilation for Boolean Functional Synthesis S. Akshay, Jatin Arora, Supratik

Knowledge Compilation for Boolean Functional Synthesis S. Akshay, Jatin Arora, Supratik

Knowledge Compilation for Boolean Functional Synthesis S. Akshay, Jatin Arora, Supratik Chakraborty, S. Krishna, Divya Raghunathan, Shetal Shah Indian Institute of Technology Bombay 1 Boolean Functional Synthesis Boolean functions:

1.09k views • 86 slides

More recommend