lecture 4 verification of weak memory models
play

Lecture 4: Verification of Weak Memory Models Part 2: Robustness - PowerPoint PPT Presentation

Jul 29, 2023 •532 likes •1.53k views

Lecture 4: Verification of Weak Memory Models Part 2: Robustness against TSO Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 Joint work with Roland Meyer, Egor Derevenetc (Univ. Kaiserslautern) and Eike M ohlmann (Univ.

  1. Lecture 4: Verification of Weak Memory Models Part 2: Robustness against TSO Ahmed Bouajjani LIAFA, University Paris Diderot – Paris 7 Joint work with Roland Meyer, Egor Derevenetc (Univ. Kaiserslautern) and Eike M¨ ohlmann (Univ. Oldenburg) VTSA, MPI-Saarbr¨ ucken, September 2012

  2. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  3. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ( w , x , 1) t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  4. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ( w , x , 1) ( r , y , 0) t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  5. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ◮ Symmetry Second thread behaves similarly ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs

  6. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ◮ Symmetry Second thread behaves similarly ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs ◮ What is the semantics of this program?

  7. Dekker’s Protocol Synchronise access of two threads to their critical sections Dekker’s mutual exclusion protocol ◮ Indicate wish to enter Write own variable x to 1 ◮ Check no wish from partner Check partner variable ◮ Symmetry Second thread behaves similarly ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs ◮ What is the semantics of this program? ◮ Depends on the hardware architecture!

  8. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Threads directly write to and read from memory ◮ Programmers often rely on this intuitive behaviour

  9. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 writes x to 1 M t 1 : q 0 x = 0 t 2 : q 0 y = 0

  10. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 reads 0 from y M t 1 : q 1 x = 1 y = 0 t 2 : q 0

  11. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 writes y to 1 M t 1 : cs x = 1 y = 0 t 2 : q 0

  12. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) . ( w , y , 1 ) Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 executes fence f M t 1 : cs x = 1 t 2 : q 1 y = 1

  13. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) . ( w , y , 1 ) . f Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 cannot read 0 from x M t 1 : cs x = 1 t 2 : q 2 y = 1

  14. Sequential Consistency Semantics Sequential Consistency memory model [Lamport 1979] ◮ Take view from memory ( w , x , 1) . ( r , y , 0) . ( w , y , 1 ) . f Sequential Consistency semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs M t 1 : cs x = 1 Mutual exclusion holds! y = 1 t 2 : q 2

  15. Total Store Ordering Semantics ◮ Buffers reduce latency of memory accesses Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs t 1 : M x = 0 y = 0 t 2 :

  16. Total Store Ordering Semantics ◮ Buffers reduce latency of memory accesses ◮ Total Store Ordering architectures have write buffers Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs t 1 : M x = 0 y = 0 t 2 :

  17. Total Store Ordering Semantics Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 writes ( w , x , 1) to its buffer t 1 : q 0 M x = 0 y = 0 t 2 : q 0

  18. Total Store Ordering Semantics Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 writes ( w , y , 1 ) to its buffer t 1 : q 1 ( w , x , 1) M x = 0 y = 0 t 2 : q 0

  19. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 fails to read ( r , y , 0) from its buffer t 1 : q 1 ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 ) ×

  20. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer, if exists ( r , y , 0) Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 1 reads ( r , y , 0) from memory t 1 : q 1 ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 )

  21. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer, if exists ◮ Fences forbid prefetches ( r , y , 0) Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: t 2 cannot execute fence f while buffer not empty t 1 : cs ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 )

  22. Total Store Ordering Semantics ◮ Reads prefetch last value written to x from buffer, if exists ◮ Fences forbid prefetches ( r , y , 0) Total Store Ordering semantics of Dekker’s protocol ( w , x , 1) ( r , y , 0) ( w , y , 1 ) ( r , x , 0 ) f t 1 : q 0 − − − − → q 1 − − − − → cs t 2 : q 0 − − − − → q 1 − → q 2 − − − − → cs Next: memory updates ( w , y , 1 ) from buffer of t 2 t 1 : cs ( w , x , 1) M x = 0 y = 0 t 2 : q 1 ( w , y , 1 )

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lecture 3: Verification of Weak Memory Models Part 1: State Reachability Problem Ahmed Bouajjani

Lecture 3: Verification of Weak Memory Models Part 1: State Reachability Problem Ahmed Bouajjani

Lecture 3: Verification of Weak Memory Models Part 1: State Reachability Problem Ahmed Bouajjani LIAFA, University Paris Diderot Paris 7 [Atig, B., Burckhardt, Musuvathi, POPL10, ESOP12] [Atig, B., Parlato, 2011] VTSA, MPI-Saarbr

1.11k views • 110 slides
Weak memory models INF4140 - Models of concurrency Weak memory models Fall 2016 30. 10. 2016

Weak memory models INF4140 - Models of concurrency Weak memory models Fall 2016 30. 10. 2016

Weak memory models INF4140 - Models of concurrency Weak memory models Fall 2016 30. 10. 2016 Overview Weak memory models 1 Introduction 2 Hardware architectures Compiler optimizations Sequential consistency Weak memory models 3 TSO

1.3k views • 87 slides
Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of

Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of weak bisimilarity Example: a

587 views • 24 slides
Weak memory models Mai Thuong Tran PMA Group, University of Oslo, Norway 31 Oct. 2014 Overview

Weak memory models Mai Thuong Tran PMA Group, University of Oslo, Norway 31 Oct. 2014 Overview

Weak memory models Mai Thuong Tran PMA Group, University of Oslo, Norway 31 Oct. 2014 Overview 1 Introduction Hardware architectures Compiler optimizations Sequential consistency Weak memory models 2 TSO memory model (Sparc, x86-TSO)

1.04k views • 64 slides
Owicki-Gries for Weak Memory Models Ori Lahav Viktor Vafeiadis Max Planck Institute for Software

Owicki-Gries for Weak Memory Models Ori Lahav Viktor Vafeiadis Max Planck Institute for Software

Owicki-Gries for Weak Memory Models Ori Lahav Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) Uppsala, 23 February 2015 Weak memory models Sequential consistency (a.k.a. interleaving semantics") is the standard

602 views • 36 slides
Software verification under weak memory consistency Viktor Vafeiadis Max Planck Institute for

Software verification under weak memory consistency Viktor Vafeiadis Max Planck Institute for

Software verification under weak memory consistency Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) January 2016 Joint work with Soham Chakraborty, Derek Dreyer, Marko Doko, Nick Giannarakis, Ori Lahav, Chinmay Narayan,

776 views • 42 slides
Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani

Parametric Verification of Concurrent Programs under the TSO Weak Memory Model Ahmed Bouajjani Paris Diderot University Based on joint work with Parosh A. Abdulla Mohamed Faouzi Atig T. Phong Ngo Uppsala University Sebastian

897 views • 77 slides
Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation games Weak bisimilarity and weak

872 views • 47 slides
Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems

Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems

Focus of the Course Overview of the Course Semantics and Verification 2005 Transition systems and CCS. Strong and weak bisimilarity, bisimulation games. Study of mathematical models for the formal description and analysis Lecture 1 of

385 views • 5 slides
Lecture 5.2 Parallel Memory Models EN 600.320/420/620 Instructor: Randal Burns 12 February 2018

Lecture 5.2 Parallel Memory Models EN 600.320/420/620 Instructor: Randal Burns 12 February 2018

Lecture 5.2 Parallel Memory Models EN 600.320/420/620 Instructor: Randal Burns 12 February 2018 Department of Computer Science, Johns Hopkins University Shared Memory Systems Large class defined by memory model And thus, the programming

106 views • 8 slides
Weak Memory Models: A Tutorial Jade Alglave University College London February 3rd, 2014

Weak Memory Models: A Tutorial Jade Alglave University College London February 3rd, 2014

Weak Memory Models: A Tutorial Jade Alglave University College London February 3rd, 2014 Sequential Consistency A comfortable model for concurrent programming would be Sequential Consistency (SC), as defined by Leslie Lamport in 1979: The

2.4k views • 51 slides
Vectors, Matrices, and Associative Memory Computational Models of Neural Systems Lecture 3.1

Vectors, Matrices, and Associative Memory Computational Models of Neural Systems Lecture 3.1

Vectors, Matrices, and Associative Memory Computational Models of Neural Systems Lecture 3.1 David S. Touretzky September, 2013 A Simple Memory Memory Key 4.7 1 4.7 Result = Key Memory 2 Computational Models of Neural Systems

710 views • 47 slides
Verification with the Check suite Yatin Manerkar Princeton University ARM Cambridge, July 20 th ,

Verification with the Check suite Yatin Manerkar Princeton University ARM Cambridge, July 20 th ,

Automated Full-Stack Memory Model Verification with the Check suite Yatin Manerkar Princeton University ARM Cambridge, July 20 th , 2018 http:/ ://check.cs.p .princeton.edu/ What are Memory (Consistency) Models? Memory Consistency Models

2.2k views • 192 slides
Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) 23 September 2014 Understanding weak memory consistency Read the architecture/language specs? Too informal, often wrong. Read

378 views • 35 slides
Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software

Reasoning about the C/C++ weak memory model Viktor Vafeiadis Max Planck Institute for Software Systems (MPI-SWS) 17 July 2014 Understanding weak memory consistency Read the architecture/language specs? Too informal, often wrong. Read the

430 views • 40 slides
On abstraction and compositionality for weak-memory linearisability Brijesh Dongol Radha

On abstraction and compositionality for weak-memory linearisability Brijesh Dongol Radha

On abstraction and compositionality for weak-memory linearisability Brijesh Dongol Radha Jagadeesan James Riely Alasdair Armstrong Atomicity abstraction and weak memory How do we provide reliable atomicity abstractions? Concurrent

1.03k views • 59 slides
Statistical Methods for Plant Biology PBIO 3150/5150 Anirudh V. S. Ruhil February 23, 2016 The

Statistical Methods for Plant Biology PBIO 3150/5150 Anirudh V. S. Ruhil February 23, 2016 The

Statistical Methods for Plant Biology PBIO 3150/5150 Anirudh V. S. Ruhil February 23, 2016 The Voinovich School of Leadership and Public Affairs 1/26 Table of Contents 1 Association Between 2 Categorical Variables 2 The Odds Ratio ( OR ) 3

553 views • 26 slides
Turbulence on APE: towards channel@apeNEXT GGI Firenze 2007 Federico Toschi IAC-CNR

Turbulence on APE: towards channel@apeNEXT GGI Firenze 2007 Federico Toschi IAC-CNR

Turbulence on APE: towards channel@apeNEXT GGI Firenze 2007 Federico Toschi IAC-CNR http://www.iac.cnr.it/~toschi The past, the present and the future APE100 RB, Channel flow APEmille RB, Channel flow, Fast Fourier

955 views • 61 slides
Participants University of Wrzburg Thomas Zinner, Dominik Klein, Christian Schwartz, Daniel

Participants University of Wrzburg Thomas Zinner, Dominik Klein, Christian Schwartz, Daniel

Institute of Computer Science Chair of Communication Systems Prof. Dr.-Ing. P. Tran-Gia MultiNext: Measuring Concurrent Multipath Transmissions in an Experimental Facility T. Zinner (Uni Wrzburg), K. Tutschku (Uni Vienna), T. Zseby

754 views • 11 slides
How to (passively) measure? Packet Monitoring 1 What to expect? Overview / What is packet

How to (passively) measure? Packet Monitoring 1 What to expect? Overview / What is packet

How to (passively) measure? Packet Monitoring 1 What to expect? Overview / What is packet monitor? How to acquire the data Handling performance bottlenecks Case Study: Packet Capture Performance Analyzing the transport and

487 views • 37 slides
MATH FONTS: notes from the trenches Den Haag, August 31 st September 4 th , 2009 Bogusaw

MATH FONTS: notes from the trenches Den Haag, August 31 st September 4 th , 2009 Bogusaw

MATH FONTS: notes from the trenches Den Haag, August 31 st September 4 th , 2009 Bogusaw Jackowski, Jerzy B. Ludwichowski, Piotr Strzelczyk Math typesetting In order to typeset math, one needs a math font and a typesetting engine that is

663 views • 34 slides
DESIGNING FOR RAPID RELEASE Sam Newman ThoughtWorks Tuesday, 2 October 12 Not Him Were

DESIGNING FOR RAPID RELEASE Sam Newman ThoughtWorks Tuesday, 2 October 12 Not Him Were

DESIGNING FOR RAPID RELEASE Sam Newman ThoughtWorks Tuesday, 2 October 12 Not Him Were hiring... @samnewman GOTO: Aarhus 2012 Tuesday, 2 October 12 @samnewman GOTO: Aarhus 2012 Tuesday, 2 October 12 Tuesday, 2 October 12 Were

699 views • 53 slides
Omit Needless Words Use the Active Voice Bad: Bad: With the beginning of the new 2010s, it

Omit Needless Words Use the Active Voice Bad: Bad: With the beginning of the new 2010s, it

Omit Needless Words Use the Active Voice Bad: Bad: With the beginning of the new 2010s, it is readily ascertainable More remote, less densely populated suburbs, whose lower values that there has been little if any improvement in the overall

527 views • 4 slides
1 Samuel 9 D OWNLOAD T HIS P RESENTATION : L IVING W ATER C ORONA . COM / SLIDES 1 Samuel 9-10

1 Samuel 9 D OWNLOAD T HIS P RESENTATION : L IVING W ATER C ORONA . COM / SLIDES 1 Samuel 9-10

Open Your Bible To: 1 Samuel 9 D OWNLOAD T HIS P RESENTATION : L IVING W ATER C ORONA . COM / SLIDES 1 Samuel 9-10 God Sets You Up To Finish Well 1 Samuel 9-10 God Sets You Up To Finish Well 1. God Creates You Uniquely For Your Role (9:1-2) 1

277 views • 16 slides

More recommend