a consistency checker for memory subsystem traces
play

A Consistency Checker for Memory Subsystem Traces Matthew Naylor , - PowerPoint PPT Presentation

Dec 11, 2023 •188 likes •564 views

A Consistency Checker for Memory Subsystem Traces Matthew Naylor , Simon Moore, Alan Mujumdar Email: matthew.naylor@cl.cam.ac.uk Problem Verify that the memory subsystem in a shared-memory multiprocessor implements a well-defined consistency

  1. A Consistency Checker for Memory Subsystem Traces Matthew Naylor , Simon Moore, Alan Mujumdar Email: matthew.naylor@cl.cam.ac.uk

  2. Problem Verify that the memory subsystem in a shared-memory multiprocessor implements a well-defined consistency model. This is a prerequisite for the correct execution of concurrent programs on such architectures.

  3. Our approach Black-box specification-based testing: 1. Feed auto-generated requests to mem subsystem 2. Record a trace of all requests and responses 3. Check that trace satisfies consistency model

  4. Attractions of black-box approach Generic: can be applied to a wide range of implementations and coherence protocols. Easy to apply: no modifications are required to the design under test.

  5. Drawback of black-box approach Checking traces is an NP-complete problem [Gibbons and Korach, 1994] . Corollary : larger traces involving more cores are more likely to contain bugs yet less likely to be checkable in reasonable time.

  6. State of the art TSOtool [Manovit, 2006] is a conformance checker for the TSO consistency model. It can handle large traces , on the order of millions of memory operations and hundreds of cores. Achieved through powerful inference rules and careful algorithm design.

  7. BUT... Many modern memory subsystem implementations are more relaxed than TSO . And TSOtool is a “proprietary product of Sun Microsystems” .

  8. Example: Limitations of TSO Thread 0 Thread 1 *data := 1 *flag == 1 *flag := 1 *data == 0 Forbidden under TSO, but observable if: ■ L1 cache is non-blocking , e.g. Rocket Chip, where first load is a miss & second is a hit. ■ Or, coherence protocol is lazy , e.g. BERI, where second load is a stale hit.

  9. Our main contributions ■ Generalisation of TSOtool’s algorithm to support a wider range of consistency models. ■ An open-source checker for memory subsystem traces called Axe . ■ Experiences of applying Axe to open-source SoCs BERI and Rocket Chip.

  10. Part II: Axe Consistency Checker

  11. What is Axe? Thread id Input: a memory subsystem trace Store 0: M[0] := 1 0: sync Barrier 0: { M[1] == 0; M[1] := 1 } 1: M[1] == 1 @ 100 : 110 Atomic RMW 1: M[0] == 0 @ 115 : Load Timestamps Axe Output Does trace satisfy SC , TSO , PSO, WMO or POW model? If not, emit smallest subset of trace that fails.

  12. SPARC models Non-deterministic Reorder Thread 0 Shared ... ... Switch Memory Reorder Thread n ■ SC prohibits reordering. ■ TSO can reorder S → L, simulating store buffer. ■ WMO can additionally reorder S → S, L → L, and L → S (provided addresses differ).

  13. Algorithm demo Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  14. Add thread-local edges Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  15. Add reads-from edges Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  16. Delete a root, add reads-before edges Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  17. Violation: cycle detected! Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  18. Backtrack, delete a root, add reads-before edges Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  19. Delete a root Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  20. Delete root, add reads-before edges Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  21. Delete root Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3

  22. Delete root Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3 Empty graph -- trace is valid!

  23. Lesson ■ Easy to encounter backtracking behaviour during topological sort. ■ Routine backtracking is catastrophic for checking even small traces. ■ In response, TSOtool uses inference rules .

  24. TSOtool’s inference rules Rule 1 M[ x ] := v M[ x ] := w M[ x ] == v M[ x ] := v M[ x ] := w Rule 2 M[ x ] == w

  25. Apply Rule 2 Thread 0 Thread 1 Thread 2 M[0] := 1 M[0] == 1 M[0] := 2 M[0] == 2 M[0] := 3 Picking a root is now deterministic

  26. Efficient graph representation ■ During checking, adding an edge to the graph is a very common operation. ■ Problem : need to quickly determine whether any added edge introduces a cycle. ■ Sounds like maintenance of an O(N 3 ) transitive closure, disastrous for large N .

  27. SC graph representation ■ Under SC , operations on the same thread are totally ordered . ■ For each node, we need only maintain the nearest successor on each thread. ■ Complexity: O(N*T)

  28. TSO graph representation ■ Under TSO , loads on the same thread are totally ordered . Likewise for stores. ■ For each node, we need only maintain the nearest load & store successor on each thread. ■ Complexity: O(2*N*T)

  29. WMO graph representation ■ Under WMO , loads from same address on same thread are totally ordered . Likewise for stores. ■ For each node, maintain the nearest load & store successor on each thread for each address. ■ Complexity: O(2*N*T*A) ■ Still much better than O(N 3 ): T and A are small.

  30. Axe performance evaluation (WMO) Averaged over a range of traces (576 in total): Checking time grows linearly with trace size.

  31. Trace shrinking Problem : It’s hard to determine why a large trace is invalid just by staring at it. Solution : A trace shrinking procedure. Given a trace that violates a model, it searches for the smallest subset of the trace that still violates the model.

  32. Part III: Applications

  33. Trace generation BERI or BERI or ... Rocket Rocket I$ D$ I$ D$ L2 Bus We replaced the core with a random traffic generator that logs all requests & responses, yielding a random trace .

  34. Rocket Chip coherence bug 260-element counterexample, after shrinking: 0: M[2] := 46 @ 497: 1: M[2] == 46 @ 280:513 1: M[2] := 61 @ 729: 1: M[2] == 46 @ 854:979 Write of 61 dropped Only write of 46 in trace Identified as “race condition” by Rocket Chip devs.

  35. Rocket Chip atomics bug After shrinking: 1: M[3] := 31 0: { M[3] == 31; M[3] := 178 } 0: { M[3] == 178; M[3] := 198 } Not 1: { M[3] == 178; M[3] := 59 } atomic Bug occurs when a store-conditional is issued before a load-reserve response is received.

  36. BERI barrier bug After shrinking: 1: M[39028] := 76 1: M[39028] := 79 # Set data 1: sync 1: M[2761] := 83 # Set flag 0: M[2761] == 83 # See flag 0: sync 0: M[39028] == 76 # See stale data This bug only observable after generating cancelled loads and stores in traffic generator.

  37. Summary & conclusions ■ We have generalised a state-of-the-art checker to a wider range of consistency models through our open-source tool Axe. ■ This enabled us to test BERI & Rocket Chip, uncovering several serious bugs, concisely reported using our trace shrinking procedure. ■ Time complexity now dependent on number of distinct addresses in trace, but still performs well .

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

MC-Checker: Detecting Memory Consistency Errors in MPI One-Sided Applications Zhezhe Chen 1 ,

MC-Checker: Detecting Memory Consistency Errors in MPI One-Sided Applications Zhezhe Chen 1 ,

MC-Checker: Detecting Memory Consistency Errors in MPI One-Sided Applications Zhezhe Chen 1 , James Dinan 2 , Zhen Tang 3 , Pavan Balaji 4 , Hua Zhong 3 , Jun Wei 3 , Tao Huang 3 , and Feng Qin 5 1. Twitter Inc. 2. Intel Corporation 3. Chinese

398 views • 27 slides
Exploiting Microarchitectural Flaws in the Heart of the Memory Subsystem Daniel Moghimi,

Exploiting Microarchitectural Flaws in the Heart of the Memory Subsystem Daniel Moghimi,

Exploiting Microarchitectural Flaws in the Heart of the Memory Subsystem Daniel Moghimi, Worcester Polytechnic University Feb 20, 2020 Columbia University Spoiler!! 2 CPU Memory Subsystem Allocation Queue Front End CPU Memory Subsystem

1.59k views • 127 slides
Memory Consistency Models CSE 451 James Bornholt Memory consistency models The short version:

Memory Consistency Models CSE 451 James Bornholt Memory consistency models The short version:

Memory Consistency Models CSE 451 James Bornholt Memory consistency models The short version: Multiprocessors reorder memory operations in unintuitive, scary ways This behavior is necessary for performance Application programmers

803 views • 36 slides
CSC2/458 Parallel and Distributed Systems Parallel Memory Systems Consistency Sreepathi Pai

CSC2/458 Parallel and Distributed Systems Parallel Memory Systems Consistency Sreepathi Pai

CSC2/458 Parallel and Distributed Systems Parallel Memory Systems Consistency Sreepathi Pai February 8, 2018 URCS Outline Memory Consistency Programming on Relaxed Consistency Machines Memory Models for Languages Special Relativity

375 views • 36 slides
Introduction Modern DRAM Memory Architectures Sam Miller Memory subsystem is a bottleneck

Introduction Modern DRAM Memory Architectures Sam Miller Memory subsystem is a bottleneck

Introduction Modern DRAM Memory Architectures Sam Miller Memory subsystem is a bottleneck Tam Chantem Memory stall time will become dominant Jon Lucas New architectures & accessing techniques proposed to combat these issues

422 views • 4 slides
Eligibility Traces Chapter 12 Eligibility traces are Another way of interpolating between MC and

Eligibility Traces Chapter 12 Eligibility traces are Another way of interpolating between MC and

Eligibility Traces Chapter 12 Eligibility traces are Another way of interpolating between MC and TD methods A way of implementing compound -return targets A basic mechanistic idea a short-term, fading memory A new style of algorithm

881 views • 31 slides
Memory Hierarchy: Caching CSE 141, S2'06 Jeff Brown The memory subsystem Computer Control

Memory Hierarchy: Caching CSE 141, S2'06 Jeff Brown The memory subsystem Computer Control

Memory Hierarchy: Caching CSE 141, S2'06 Jeff Brown The memory subsystem Computer Control Input Memory Output Datapath CSE 141, S2'06 Jeff Brown Memory Locality Memory hierarchies take advantage of memory locality . Memory

337 views • 33 slides
C++ 11 Memory Consistency Model Sebastian Gerstenberg NUMA Seminar 07.01.2015 Agenda 1.

C++ 11 Memory Consistency Model Sebastian Gerstenberg NUMA Seminar 07.01.2015 Agenda 1.

C++ 11 Memory Consistency Model Sebastian Gerstenberg NUMA Seminar 07.01.2015 Agenda 1. Sequential Consistency 2. Violation of Sequential Consistency Non-Atomic Operations Instruction Reordering 3. C++ 11 Memory Consistency

554 views • 27 slides
Distributed Memory and Cache Consistency Distributed Memory and Cache Consistency (some slides

Distributed Memory and Cache Consistency Distributed Memory and Cache Consistency (some slides

Distributed Memory and Cache Consistency Distributed Memory and Cache Consistency (some slides courtesy of Alvin Lebeck) Software DSM 101 Software DSM 101 Software-based distributed shared memory (DSM) provides an illusion of shared memory on

414 views • 12 slides
Distributed Memory and Cache Consistency Distributed Memory and Cache Consistency (some slides

Distributed Memory and Cache Consistency Distributed Memory and Cache Consistency (some slides

Distributed Memory and Cache Consistency Distributed Memory and Cache Consistency (some slides courtesy of Alvin Lebeck) Software DSM 101 Software DSM 101 Software-based distributed shared memory (DSM) provides an illusion of shared memory on

236 views • 23 slides
Discovering Bits of Place Histories from People's Activity Traces from People s Activity Traces

Discovering Bits of Place Histories from People's Activity Traces from People s Activity Traces

Discovering Bits of Place Histories from People's Activity Traces from People s Activity Traces Gennady Andrienko, Natalia Andrienko, y , , Martin Mladenov, Michael Mock, Christian Plitz Not in living memory Not in living memory

552 views • 27 slides
Lecture 12: Memory hierarchy & caches A modern memory subsystem combines fast small

Lecture 12: Memory hierarchy & caches A modern memory subsystem combines fast small

Lecture 12: Memory hierarchy & caches A modern memory subsystem combines fast small memory, slower larger memories This lecture looks at why and how Focus today mostly on electronic memories. Next lecture looks at supplementing

522 views • 17 slides
Todays Topics - Distributed Shared Memory The Shared Memory Abstraction, why? Approaches

Todays Topics - Distributed Shared Memory The Shared Memory Abstraction, why? Approaches

Distributed Systems Lecture 6 1 Todays Topics - Distributed Shared Memory The Shared Memory Abstraction, why? Approaches to implementation; Consistency Models: Slide 1 Strict Consistency; Sequential Consistency Release

271 views • 12 slides
Shared Memory Consistency Models: A Tutorial By Sarita Adve, Kourosh Gharachorloo WRL

Shared Memory Consistency Models: A Tutorial By Sarita Adve, Kourosh Gharachorloo WRL

Shared Memory Consistency Models: A Tutorial By Sarita Adve, Kourosh Gharachorloo WRL Research Report, 1995 Presentation: Vince Schuster Contents Overview Uniprocessor Review Sequential Consistency Relaxed Memory Models

598 views • 25 slides
Introduction Why memory subsystem design is important CPU speeds increase 25%-30% per year

Introduction Why memory subsystem design is important CPU speeds increase 25%-30% per year

Introduction Why memory subsystem design is important CPU speeds increase 25%-30% per year DRAM speeds increase 2%-11% per year Winter 2006 CSE 548 - Memory Hierarchy 1 Memory Hierarchy Levels of memory with different sizes &

415 views • 26 slides
Distributed Shared Memory Distributed Shared Memory Systems Page based

Distributed Shared Memory Distributed Shared Memory Systems Page based

Operating Systems DSM Distributed Shared Memory Distributed Shared Memory Systems Page based Shared-variable based Consistency Models Strict consistency Sequential consistency Release consistency

320 views • 11 slides
Testability Reid Holmes Testability The degree to which a system or component facilitates the

Testability Reid Holmes Testability The degree to which a system or component facilitates the

http://robertvbinder.com/wp-content/uploads/rvb-pdf/talks/GTAC-2010-Binder-Testability.pdf https://www.youtube.com/watch?v=1keyEiJHqPw https://www.youtube.com/watch?v=XcT4yYu_TTs Testability Reid Holmes Testability The degree to which a system

407 views • 20 slides
Specification-Based Testing 1 Stuart Anderson Stuart Anderson Specification-Based Testing 1

Specification-Based Testing 1 Stuart Anderson Stuart Anderson Specification-Based Testing 1

Specification-Based Testing 1 Stuart Anderson Stuart Anderson Specification-Based Testing 1 2011 c 1 Overview Basic terminology A view of faults through failure Systematic versus randomised testing A systematic approach to

492 views • 32 slides
UNIT TESTING 3 / 8 1 / 8 Unit testing involves: Lots of small, independent tests Reporting

UNIT TESTING 3 / 8 1 / 8 Unit testing involves: Lots of small, independent tests Reporting

UNIT TESTING 3 / 8 1 / 8 Unit testing involves: Lots of small, independent tests Reporting passes, failures, and errors Some optional setup and teardown shared across tests Aggregation (combining tests into test suites) 3 / 8 2 / 8 WHY

89 views • 8 slides
TDDE45 - Lecture 7: Testability Martin Sjlund Department of Computer and Information Science

TDDE45 - Lecture 7: Testability Martin Sjlund Department of Computer and Information Science

TDDE45 - Lecture 7: Testability Martin Sjlund Department of Computer and Information Science Linkping University 2020-10-06 Part I Testing What is testing? This course is not a course primarily in Software Testing (TDDD04 HT1).

310 views • 19 slides
Runway A new tool for distributed systems design Diego Ongaro Lead Software Engineer, Compute

Runway A new tool for distributed systems design Diego Ongaro Lead Software Engineer, Compute

Runway A new tool for distributed systems design Diego Ongaro Lead Software Engineer, Compute Infrastructure @ongardie https://runway.systems Outline 1. Why we need new tools for distributed systems design 2. Overview and demo of Runway

661 views • 19 slides
Mind the Gap Nick McKeown Stanford University President Dean My problem I get excited about

Mind the Gap Nick McKeown Stanford University President Dean My problem I get excited about

Mind the Gap Nick McKeown Stanford University President Dean My problem I get excited about improving the practice. I am a networking researcher. The Internets problem Architecture: Seems impossible to change Well-known

1.15k views • 80 slides
Implementing the Model Communication DEVS and Statechart Thomas Feng April 2, 2003 Email:

Implementing the Model Communication DEVS and Statechart Thomas Feng April 2, 2003 Email:

Implementing the Model Communication DEVS and Statechart Thomas Feng April 2, 2003 Email: thomas@email.com.cn Homepage: http://moncs.cs.mcgill.ca/people/tfeng/ Overview A communication protocol Sequence diagram to illustrate the

526 views • 28 slides
Design Verification Introduction Virendra Singh Associate Professor Computer Architecture and

Design Verification Introduction Virendra Singh Associate Professor Computer Architecture and

Design Verification Introduction Virendra Singh Associate Professor Computer Architecture and Dependable Systems Lab Department of Electrical Engineering Indian Institute of Technology Bombay http://www.ee.iitb.ac.in/~viren/ E-mail:

1.08k views • 21 slides

More recommend