automatic verification of rma programs via
play

Automatic Verification of RMA Programs via Abstraction Extrapolation - PowerPoint PPT Presentation

Jan 11, 2024 •145 likes •761 views

Automatic Verification of RMA Programs via Abstraction Extrapolation Cedric Baumann 1 , Andrei Marian Dan 1 , Yuri Meshman 2 , Torsten Hoefler 1 , Martin Vechev 1 1 Department of Computer Science, ETH Zurich, Switzerland 2 IMDEA Software Institute,

  1. Automatic Verification of RMA Programs via Abstraction Extrapolation Cedric Baumann 1 , Andrei Marian Dan 1 , Yuri Meshman 2 , Torsten Hoefler 1 , Martin Vechev 1 1 Department of Computer Science, ETH Zurich, Switzerland 2 IMDEA Software Institute, Madrid, Spain 1

  2. Remote Memory Access (RMA) Networks High-Performance Computing Modern datacenters Widely supported ( Cray Aries and Gemini , Infiniband , IBM Blue Gene and Percs ) 2

  3. Remote Memory Access (RMA) Networks CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC 3

  4. Remote Memory Access (RMA) Networks X = get (Y, P2); CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC 4

  5. Remote Memory Access (RMA) Networks X = get (Y, P2); CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC 5

  6. Remote Memory Access (RMA) Networks CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC 6

  7. Remote Memory Access (RMA) Networks CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC 7

  8. Remote Memory Access (RMA) Networks CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC 8

  9. Remote Memory Access (RMA) Networks CPU CPU MEMORY PCIe PCIe MEMORY (X) (Y) NIC NIC Low latency High bandwidth 9

  10. Goal Given an infinite-state program P running on an RMA network and a safety specification S, does P satisfy S under RMA? P ⊨ RMA S RMA asynchronous executions determine a weak-consistency memory model, more relaxed than x86 TSO, PSO, RMO 10

  11. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); 11

  12. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); Sequential Consistency (SC) Yes 12

  13. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); Sequential Consistency (SC) Yes Remote Memory Access (RMA) No 13

  14. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); Sequential Consistency (SC) Yes Remote Memory Access (RMA) No 14

  15. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); flush (P1); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); 15

  16. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); flush (P1); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); Remote Memory Access (RMA) Yes 16

  17. Process 1: Process 2: shared X = 1; shared Y = 2, Z = 0; local a; put (X, P1, Y); flush (P1); store Y = 3; Z = get (X, P1); load a = Z; assert final (a != 3); Remote Memory Access (RMA) Yes 17

  18. This work Main steps: 1. Prove that P satisfies S under SC: P ⊨ SC S 2. Construct P’ under SC that captures all behaviors of P under RMA: P’ ⊨ SC S ⇒ P ⊨ RMA S 3. Prove that P’ ⊨ SC S 18

  19. This work Main steps: 1. Prove that P satisfies S under SC: P ⊨ SC S 2. Construct P’ under SC that captures all behaviors of P under RMA: P’ ⊨ SC S ⇒ P ⊨ RMA S 3. Prove that P’ ⊨ SC S Key Idea: Extrapolate the abstraction of P under SC to an abstraction of P under RMA 19

  20. Predicate Abstraction Successful for sequential program analysis: Original by Graf and Saidi (CAV '96) Used by Microsoft's SLAM for device drivers (PLDI '01) Work for SC concurrent programs and weak memory models (x86 TSO, PSO): Kroening et al. (CAV '11), Gupta et al. (CAV '11), Dan et al. (SAS '13) 20

  21. Classic Predicate Abstraction Build a boolean program B that over-approximates the Program P Preds V behaviors of P : B ⊨ SC S ⇒ P ⊨ SC S Predicate Abstraction Bool Prog B Abstract Model Checker Counter Ex Verified 21

  22. Classic Predicate Abstraction Build a boolean program B that over-approximates the Program P Preds V behaviors of P : B ⊨ SC S ⇒ P ⊨ SC S Predicate Abstraction Using an abstract model checker, verify that B satisfies S : Bool Prog B B ⊨ SC S Abstract Model Checker Counter Ex Verified 22

  23. Step 1: Verify program P under SC Assume the RMA statements execute synchronously put (Y, P1, X); Y = X; 23

  24. Step 1: Verify program P under SC Assume the RMA statements execute synchronously put (Y, P1, X); Y = X; Find a set of predicates V Build the boolean program B that over-approximates P, using V Verify that B satisfies the property S under sequential consistency 24

  25. Step 2: Encode RMA effects into the program Reduce the problem of verifying P under RMA to Program P the problem of verifying P’ under SC P’ ⊨ SC S ⇒ P ⊨ RMA S Reduction Program P’ 25

  26. Step 2: Encode RMA effects into the program Program P put (Y, P1, X); Reduction Program P’ 26

  27. Step 2: Encode RMA effects into the program Program P put (Y, P1, X); Reduction Program P’ if (!putActive) //boolean flag putActive = true ; XSet = {X}; //set variable else addToSet (XSet, X); //adds X to XSet 27

  28. Example program P under RMA semantics Process 1: Process 2: shared X = 0; shared Y = 0; local r; put (Y, P2, X); store X = 1; load r = Y; 28

  29. Example: Reduced program P’ under SC that captures the behaviors of P under RMA Process 1: Process 2: shared X = 0; shared Y = 0; local r; //put (Y, P2, X); putActive = true ; //nondeterministic op XSet = {X}; if (*) Y = randomElem (XSet); // store X = 1; putActive = false ; store X = 1; addToSet (Xset, X); // load r = Y; load r = Y; Theorem. P’ under SC soundly approximates P under RMA. 29

  30. Step 3: Prove that P ’ ⊨ SC S Find new predicates for program P’ Predicates for the boolean flags: (putActive == true) 30

  31. Step 3: Prove that P ’ ⊨ SC S Find new predicates for program P’ Predicates for the boolean flags: Predicates for the set variables? (putActive == true) 31

  32. Step 3: Prove that P ’ ⊨ SC S Idea: Discover predicates for P ’ using the predicates for program P under SC. Preds V Pred Extrapolation Preds V’ 32

  33. Step 3: Prove that P ’ ⊨ SC S Idea: Discover predicates for P ’ using the predicates for program P under SC. Preds V (X < 0) Pred Extrapolation Preds V’ 33

  34. Step 3: Prove that P ’ ⊨ SC S Idea: Discover predicates for P ’ using the predicates for program P under SC. Preds V (X < 0) Pred Extrapolation Preds V’ (XSet < 0) 34

  35. Step 3: Prove that P ’ ⊨ SC S Idea: Discover predicates for P ’ using the predicates for program P under SC. Preds V (X < 0) (X < Y) Pred Extrapolation Preds V’ (XSet < 0) (XSet < Y) (X < YSet) 35

  36. Logic of the predicates (first attempt) true , ∀ e ∈ XSet | e < 0 false , ∃ e ∈ XSet | e ≥ 0 (XSet < 0) *, otherwise 36

  37. Logic of the predicates (first attempt) true , ∀ e ∈ XSet | e < 0 false , ∃ e ∈ XSet | e ≥ 0 (XSet < 0) *, otherwise Problem: Would have to add the predicate (XSet ≥ 0) to track whether all elements of the set are greater than 0. 37

  38. Logic of the predicates for the set variables true , ∀ e ∈ XSet | e < 0 false , ∀ e ∈ XSet | e ≥ 0 (XSet < 0) *, otherwise Solution: Refine the case when the predicate is false 38

  39. So far Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction Bool Prog B Abstract Model Checker Counter Ex Verified Prove that P ⊨ SC S 39

  40. Problem Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction 3x 2x Bool Prog B Abstract Model Checker Counter Ex Verified Prove that P ⊨ SC S 40

  41. Problem Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction 3x 2x Predicate Bool Prog B Abstraction Abstract Model Timeout Checker Counter Ex Verified Prove that P ⊨ SC S 41

  42. Problem Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction 3x 2x Predicate Bool Prog B Abstraction Abstract Model Timeout Checker Most time used by the Counter Ex Verified SMT solver, computing the abstract transformers Prove that P ⊨ SC S 42

  43. Core problem: computing abstract transformers Literals q = p or q = ¬ p, p ∈ V’ Cubes(V’) = {q 1 ∧ … ∧ q j } | Cubes(V’)| = 3 |V’| ∀ st ∈ Statements ∀ p ∈ V’ ∀ c ∈ Cubes(V’) if c ⇒ wp(p, st) //SMT call add c to the transformer 43

  44. Key Idea Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction Bool Prog B Abstract Model Checker Counter Ex Verified Prove that P ⊨ SC S 44

  45. Key Idea Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction Bool Prog B Abstract Model Checker Counter Ex Verified Prove that P ⊨ SC S 45

  46. Key Idea Program P Preds V Pred Program P Preds V Reduction Extrapolation Predicate Program P’ Preds V’ Abstraction Bool Prog Bool Prog B Extrapolation Abstract Model Bool Prog B’ Checker Counter Ex Verified Prove that P ⊨ SC S 46

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Toward Automatic Verification of Quantum Programs Xiaodi Wu QuICS, University of Maryland

Toward Automatic Verification of Quantum Programs Xiaodi Wu QuICS, University of Maryland

Toward Automatic Verification of Quantum Programs Xiaodi Wu QuICS, University of Maryland Outline Motivation A Quantum Programming Language Floyd-Hoare Logic for Quantum Programs Invariant Generation Recent Developments Summary My

1.24k views • 79 slides
Set-based methods in programs and systems verification Sylvie Putot and Eric Goubault Cosynus

Set-based methods in programs and systems verification Sylvie Putot and Eric Goubault Cosynus

Set-based methods in programs and systems verification Sylvie Putot and Eric Goubault Cosynus team, LIX, Ecole Polytechnique Workshop COVERIF 2016, I3S, Sophia Automatic validation of numerical programs and systems Validation of programs

633 views • 60 slides
Complexity of automatic verification of cryptographic protocols Clermont Ferrand 02/02/2017

Complexity of automatic verification of cryptographic protocols Clermont Ferrand 02/02/2017

Complexity of automatic verification of cryptographic protocols Clermont Ferrand 02/02/2017 Vincent Cheval Equipe Pesto, INRIA, Nancy 1 Cryptographic protocols Communication on public network Cryptographic protocols: Concurrent programs

946 views • 69 slides
Automatic Verification of Automatic Verification of Automatic Verification of Automatic

Automatic Verification of Automatic Verification of Automatic Verification of Automatic

Automatic Verification of Automatic Verification of Automatic Verification of Automatic Verification of Competitive Stochastic Systems Competitive Stochastic Systems Competitive Stochastic Systems Competitive Stochastic Systems Marta

500 views • 29 slides
Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Third International Workshop on Numerical Software Verification Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo INRIA Saclay - Ile-de-France July 15th, 2010 Thanks to the organizers !

1.72k views • 136 slides
+ proof obligations Automatic Verification of TLA with SMT solvers Stephan Merz and Hern an

+ proof obligations Automatic Verification of TLA with SMT solvers Stephan Merz and Hern an

+ proof obligations Automatic Verification of TLA with SMT solvers Stephan Merz and Hern an Vanzetto LPAR-18, M erida, Venezuela March 12th, 2012 1 + language The TLA Specification and verification language for (concurrent and

735 views • 27 slides
Verification of Imperative Programs through Transformation of Constraint Logic Programs Emanuele

Verification of Imperative Programs through Transformation of Constraint Logic Programs Emanuele

Verification of Imperative Programs through Transformation of Constraint Logic Programs Emanuele De Angelis 1 , Fabio Fioravanti 1 , Alberto Pettorossi 2 , and Maurizio Proietti 3 1 University of Chieti-Pescara G. dAnnunzio, Italy 2

671 views • 52 slides
Leveraging Automatic Deduction for Verification Antoine Defourn 11-14 th of June, 2019 Antoine

Leveraging Automatic Deduction for Verification Antoine Defourn 11-14 th of June, 2019 Antoine

Context Projects Leveraging Automatic Deduction for Verification Antoine Defourn 11-14 th of June, 2019 Antoine Defourn Leveraging Automatic Deduction for Verification Context Projects Summary Supervisors: Stephan Merz, Pascal Fontaine

379 views • 16 slides
CheckThat! 2020 3 rd edition Enabling the Automatic Identification and Verification of Claims in

CheckThat! 2020 3 rd edition Enabling the Automatic Identification and Verification of Claims in

CheckThat! 2020 3 rd edition Enabling the Automatic Identification and Verification of Claims in Social Media Organization Alberto Tamer Preslav Giovanni Maram Reem Barrn-Cedeo Elsayed Nakov da San Martino Hassanain Suwaileh

611 views • 24 slides
Automatic Verification of Cryptographic Protocols in the Formal Model Automatic Verifier ProVerif

Automatic Verification of Cryptographic Protocols in the Formal Model Automatic Verifier ProVerif

Automatic Verification of Cryptographic Protocols in the Formal Model Automatic Verifier ProVerif Bruno Blanchet INRIA, Ecole Normale Sup erieure, CNRS blanchet@di.ens.fr September 2011 Bruno Blanchet (INRIA) ProVerif September 2011

1.55k views • 143 slides
Aperitif: Relational semantics of loops Automatic program verification x by

Aperitif: Relational semantics of loops Automatic program verification x by

1 Aperitif: Relational semantics of loops Automatic program verification x by Lagrangian relaxation and x semidefinite programming Patrick Cousot 3 cole normale suprieure Relational semantics of

176 views • 13 slides
A System for Automatic Verification of Arrhythmia Detection Algorithms Yulia V. Zavyalova, Artem

A System for Automatic Verification of Arrhythmia Detection Algorithms Yulia V. Zavyalova, Artem

A System for Automatic Verification of Arrhythmia Detection Algorithms Yulia V. Zavyalova, Artem A. Rudenia, Alexander V. Borodin Petrozavodsk State University Department of Computer Science This project is supported by grant KA432 of Karelia

303 views • 6 slides
Integrated Presentation Attack Detection and Automatic Speaker Verification: Common Features and

Integrated Presentation Attack Detection and Automatic Speaker Verification: Common Features and

Integrated Presentation Attack Detection and Automatic Speaker Verification: Common Features and Gaussian Back-end Fusion Massimiliano Todisco 1 , H ector Delgado 1 , Kong Aik Lee 2 , Md Sahidullah 3 , Nicholas Evans 1 , Tomi Kinnunen 4 and

292 views • 5 slides
The KeY Platform for Verification and Analysis of Java Programs Reiner H ahnle Technische

The KeY Platform for Verification and Analysis of Java Programs Reiner H ahnle Technische

The KeY Platform for Verification and Analysis of Java Programs Reiner H ahnle Technische Universit at Darmstadt Department of Computer Science, Software Engineering Group Dagstuhl Seminar 16131: Language Based Verification Tools for

1.01k views • 68 slides
CheckThat! 2020 3 rd edition Automatic Identification and Verification of Claims Some tweets in

CheckThat! 2020 3 rd edition Automatic Identification and Verification of Claims Some tweets in

CheckThat! 2020 3 rd edition Automatic Identification and Verification of Claims Some tweets in your thread are worth checking. . . . A good Twitter citizen would verify before spreading the word! The good ci*zen (and journalist)

244 views • 6 slides
Polyhedral Domains and Widening for Verification of Numerical Programs Goran Frehse Verimag

Polyhedral Domains and Widening for Verification of Numerical Programs Goran Frehse Verimag

Polyhedral Domains and Widening for Verification of Numerical Programs Goran Frehse Verimag Hitashyam Maka and Bruce H. Krogh Carnegie Mellon University 1 Verification of numerical programs Problem definition Polyhedral domains

390 views • 26 slides
Formal Engineering of Reliable Software Natasha Sharygina Carnegie Mellon University LASER 2004

Formal Engineering of Reliable Software Natasha Sharygina Carnegie Mellon University LASER 2004

Formal Engineering of Reliable Software Natasha Sharygina Carnegie Mellon University LASER 2004 school Tutorial, Lecture1 1 Project Goals To Build Reliable and Robust Software Systems by 1) Integrating Systems Engineering with Formal

376 views • 24 slides
Stochastic Identification of Jet particles in pPb and PbPb Martin Schmidt Physikalisches

Stochastic Identification of Jet particles in pPb and PbPb Martin Schmidt Physikalisches

BMBF Forschungsschwerpunkt BMBF Forschungsschwerpunkt 202 ALICE Experiment ALICE Experiment Stochastic Identification of Jet particles in pPb and PbPb Martin Schmidt Physikalisches Institut, University of Tbingen Jet Meeting

581 views • 34 slides
Optimization Techniques for BDD-based Bisimulation Computation Ralf Wimmer, Marc Herbstritt,

Optimization Techniques for BDD-based Bisimulation Computation Ralf Wimmer, Marc Herbstritt,

Optimization Techniques for BDD-based Bisimulation Computation Ralf Wimmer, Marc Herbstritt, Bernd Becker Institute of Computer Science University of Freiburg Germany Great Lakes Symposium on VLSI March 13 th , 2007 Outline Motivation 1

623 views • 30 slides
Radiative energy loss in absorptive media Marcus Bluhm Laboratoire SUBATECH, Nantes with P . B.

Radiative energy loss in absorptive media Marcus Bluhm Laboratoire SUBATECH, Nantes with P . B.

Radiative energy loss in absorptive media Marcus Bluhm Laboratoire SUBATECH, Nantes with P . B. Gossiaux, T. Gousset, J. Aichelin Heavy Ion Collisions in the LHC Era - Rencontres du Vietnam Quy Nhon, Vietnam, July 15-21, 2012 based on: MB, P

454 views • 27 slides
Does metallicity influence the evolution and rate of Type Ia supernovae? (WD mergers) Ashley J.

Does metallicity influence the evolution and rate of Type Ia supernovae? (WD mergers) Ashley J.

Does metallicity influence the evolution and rate of Type Ia supernovae? (WD mergers) Ashley J. Ruiter Postdoctoral Research Fellow (group of Brian Schmidt) Research School of Astronomy &amp; Astrophysics Mount Stromlo Observatory The

481 views • 13 slides
IGDA Unity SIG II AI in Unity Emil AngryAnt Johansen Unity Technologies AI in Unity

IGDA Unity SIG II AI in Unity Emil AngryAnt Johansen Unity Technologies AI in Unity

IGDA Unity SIG II AI in Unity Emil AngryAnt Johansen Unity Technologies AI in Unity Sensors Decision logic Navigation Sensors Active &quot;Passive&quot; Message driven Second pass filtering Additional sensors or inclusion areas

719 views • 23 slides
Future or futures? Au ur Ingimarsdttir, Sigurkarl Stefnsson, Caitlin Wilson I SEE project

Future or futures? Au ur Ingimarsdttir, Sigurkarl Stefnsson, Caitlin Wilson I SEE project

Future or futures? Au ur Ingimarsdttir, Sigurkarl Stefnsson, Caitlin Wilson I SEE project In contemporary society, uncertainty prevails (Rosa, 2013) The future is perceived as threatening, and science and technology are

407 views • 12 slides
Alarm Processing with Model-Based Diagnosis of Discrete Event Systems Andreas Bauer Adi Botea

Alarm Processing with Model-Based Diagnosis of Discrete Event Systems Andreas Bauer Adi Botea

Alarm Processing with Model-Based Diagnosis of Discrete Event Systems Andreas Bauer Adi Botea Alban Grastien P@trik Haslum Jussi Rintanen Outline Alarm Processing of Electricity Networks 1 Related Works 2 Model-Based Alarm

260 views • 22 slides

More recommend