Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Active Random Testing of Parallel Programs Koushik Sen University of California, Berkeley.

Published byPaulina Garrett Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Active Random Testing of Parallel Programs Koushik Sen University of California, Berkeley."— Presentation transcript:

1 1 Active Random Testing of Parallel Programs Koushik Sen University of California, Berkeley

2 2 Personal Health Image Retrieval Hearing, Music Speech Parallel Browser Design Patterns/Motifs Sketching Legacy Code Schedulers Communication & Synch. Primitives Par Lab Research Overview Easy to write correct programs that run efficiently on manycore Multicore/GPGPURAMP Manycore OS Arch. Productivity Layer Efficiency Layer Correctness Applications Composition & Coordination Language (C&CL) Parallel Libraries Parallel Frameworks Static Verification Dynamic Checking Debugging with Replay Directed Testing Autotuners C&CL Compiler/Interpreter Efficiency Languages Type Systems Diagnosing Power/Performance Efficiency Language Compilers Hypervisor OS Libraries & Services Legacy OS Multicore/GPGPURAMP Manycore Correctness Static Verification Dynamic Checking Debugging with Replay Directed Testing Type Systems

3 Correctness and Debugging Projects Static Analysis –Annotations Automatically generate test inputs for parallel programs –Concolic testing [DART, CUTE, jCUTE] Automatically generate schedules –Model Checking –Active Random Testing Debugging –Record/replay and checkpointing –Localize the bug –Floating point debugging 3

4 Correctness and Debugging Projects Static Analysis –Annotations Automatically generate test inputs for parallel programs –Concolic testing [DART, CUTE, jCUTE] Automatically generate schedules –Model Checking –Active Random Testing Debugging –Record/replay and checkpointing –Localize the bug –Floating point debugging 4

5 Goal Build a tool to test and verify parallel programs –More Practical: That works for large programs –Efficient –No false alarms –Finds many bugs quickly –Reproducible 5

6 Techniques for Effective Random Testing “Effective Random Testing of Concurrent Programs” Koushik Sen, [ASE'07] –Making random testing effective through randomized partial order reduction “Race Directed Random Testing of Concurrent Programs” Koushik Sen, [PLDI'08] –Making random testing directed towards bugs using race detection “Randomized Active Atomicity Violation Detection in Concurrent Programs” Chang-Seo Park and Koushik Sen[FSE’08] –Make random testing directed towards atomicity violation detection 6

7 7 Testing Parallel Programs Stress Testing: repeated execution –Cannot come up with bugs that may happen under different schedule Schedule changes with environment –No effort to control thread scheduler Same schedule gets tested many times Advantages –Testing is inexpensive compared to formal techniques –Scales to very large programs

8 8 Model Checking Parallel Programs Systematically search the state space –SPIN, Verisoft, Java Pathfinder, BOGOR –Suffers from the state-explosion problem –Partial order reduction methods to combat state space explosion –Dynamic partial order reduction (DPOR) Key observation: –A number of interleavings are equivalent to each other –Equivalent interleavings are called partial orders

9 9 Limitations of DPOR Techniques Localized Search Explored by DPOR (Must be DFS) Entire State Space

10 Simple Randomized Algorithm 10 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

11 Simple Randomized Algorithm 11 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

12 Simple Randomized Algorithm 12 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

13 Simple Randomized Algorithm 13 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

14 Simple Randomized Algorithm 14 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

15 Simple Randomized Algorithm 15 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

16 Simple Randomized Algorithm 16 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

17 Simple Randomized Algorithm 17 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

18 Simple Randomized Algorithm 18 Simple Scheduler At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread

19 19 Simple Randomized Algorithm At every state during a concurrent execution –Pick a thread randomly –Execute the next instruction of the thread Pros: No Localized Search –Works well because number of choices at any state is small and finite Cons: some state may get sampled more often than others

20 Randomized Partial Order Sampling Algorithm RAPOS (ASE’07) –Samples states (i.e. partial orders) more uniformly than the simple randomized algorithm –Randomized DPOR (dynamic partial order reduction.) RAPOS makes random testing of concurrent programs more effective by building on ideas from model checking 20

21 21 Lessons Learned Random testing is simple, inexpensive, and yet effective technique Number of states is astronomically large even for medium sized parallel programs –Cannot give good coverage of bugs Any Practical Solution?

22 A Solution Prioritize the Randomized Search –So that bugs can be discovered quickly –Focus on bugs such as data races, deadlocks, atomicity violations –Try to sample interleavings that have high probability of exhibiting a bug 22

23 Key Idea Find potential bugs –Races [PLDI’08] –Deadlocks [Work in progress] –Atomicity violations [FSE’08] –Typestate errors [ASE’08] –Using existing dynamic or static analysis tools Use potential bug reports to bias the random scheduler –One can also use a systematic scheduler => directed model checking 23

24 Generic Algorithm Compute events involved in potential bugs –EA: Active Set of Events –EP: Passive Set of Events What are the active and passive sets for –Data race –Atomicity –Deadlock –Typestate errors 24

25 Generic Algorithm: Compute EA and EP Active and Passive Sets for Data Race –Use Eraser or Chord like algorithm 25 e1: o1.f=2 e2: o2.f=1 Thread 1Thread 2 Potential Race EA= {e1, e2} EP= {e1, e2}

26 Generic Algorithm: Compute EA and EP Active and Passive Sets for Atomicity –Trivial 26 e1: atomic{ e7: acq(l) Thread 1Thread 2 Potential Atomicity Violation EA= {e4} EP= {e7} e2: acq(l) e3: rel(l) e4: acq(l) e5: rel(l) e6: } e8: rel(l)

27 Generic Algorithm: Compute EA and EP Active and Passive Sets for Atomicity –Trivial 27 e1: atomic{ e7: acq(l) Thread 1Thread 2 Potential Atomicity Violation EA= {e4} EP= {e7} e2: acq(l) e3: rel(l) e4: acq(l) e5: rel(l) e6: } e8: rel(l) Remaining Atomicity Violations are due to data race

28 Generic Algorithm: Compute EA and EP Active and Passive Sets for Deadlock –Use Goodlock algorithm (Havelund et al.) 28 Thread 1Thread 2 Potential Deadlock EA= {e2, e6} EP= {e2, e6} e1: acq(l1) e2: acq(l2) e3: rel(l2) e4: rel(l1) e5: acq(l2) e6: acq(l1) e7: rel(l1) e8: rel(l2)

29 Generic Algorithm: Active Random Scheduler 29 e1 Thread 1 EA= {e1} EP= {e2} Postponed= { }

30 Generic Algorithm: Active Random Scheduler 30 e1 Thread 1 EA= {e1} EP= {e2} Postponed= { }

31 Generic Algorithm: Active Random Scheduler 31 Thread 1 EA= {e1} EP= {e2} Postponed= { e1 }

32 Generic Algorithm: Active Random Scheduler 32 Thread 1 EA= {e1} EP= {e2} Postponed= { e1 } Thread 2

33 Generic Algorithm: Active Random Scheduler 33 Thread 1 EA= {e1} EP= {e2} Postponed= { e1 } Thread 2Thread 3

34 Generic Algorithm: Active Random Scheduler 34 Thread 1 EA= {e1} EP= {e2} Postponed= { e1 } Thread 2Thread 3 e2 Thread 4

35 Generic Algorithm: Active Random Scheduler 35 Thread 1 EA= {e1} EP= {e2} Postponed= { e1 } Thread 2Thread 3 e2 Thread 4

36 Generic Algorithm: Active Random Scheduler 36 Thread 1 EA= {e1} EP= {e2} Postponed= { e1 } Thread 2Thread 3 e2 Thread 4 Bug? Bug ε {Race, Deadlock, Atomicity Violation, …}

37 An Instance: RACEFUZZER RaceFuzzer: Race directed random testing STEP1: Use an existing technique to find set of pairs of events that could potentially race –We use hybrid dynamic race detection –Static race detection can also be used –Events are approximated using program statements 37

38 An Instance: RACEFUZZER RaceFuzzer: Race directed random testing STEP1: Use an existing technique to find set of pairs of events that could potentially race –We use hybrid dynamic race detection –Static race detection can also be used –Events are approximated using program statements STEP2: Bias a random scheduler so that two events under race can be executed temporally next to each other 38

39 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 39 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Run ERASER: Statement pair (s5,s6) are in race

40 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 40 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Run ERASER: Statement pair (s5,s6) are in race

41 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 41 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); (s5,s6) in race Goal: Create a trace exhibiting the race

42 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 42 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Example Trace: s1: g1(); s2: g2(); s3: g3(); s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; s6: if (o1.f==1) s7: ERROR; s4: g4(); s5: o2.f = 1; Racing Statements Temporally Adjacent (s5,s6) in race Goal: Create a trace exhibiting the race

43 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 43 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: (s5,s6) in race

44 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 44 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); (s5,s6) in race

45 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 45 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); (s5,s6) in race

46 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 46 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); (s5,s6) in race

47 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 47 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); (s5,s6) in race

48 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 48 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s6: if (o1.f==1) (s5,s6) in race

49 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 49 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s6: if (o1.f==1) (s5,s6) in race

50 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 50 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s6: if (o1.f==1) (s5,s6) in race Postponed = { }

51 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 51 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); (s5,s6) in race Postponed = { } s6: if (o1.f==1) Do not postpone if there is a deadlock

52 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 52 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); (s5,s6) in race

53 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 53 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); (s5,s6) in race Postponed = { s6: if (o1.f==1) }

54 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 54 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); (s5,s6) in race Postponed = { s6: if (o1.f==1) }

55 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 55 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); (s5,s6) in race Postponed = { s6: if (o1.f==1) }

56 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 56 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); (s5,s6) in race Postponed = { s6: if (o1.f==1) }

57 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 57 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); (s5,s6) in race Postponed = { s6: if (o1.f==1) }

58 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 58 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); (s5,s6) in race Postponed = { s6: if (o1.f==1) }

59 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 59 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o2.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1) }

60 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 60 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o2.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1) }

61 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 61 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o2.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1) } Race?

62 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 62 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o2.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1) } Race? NO o1.f ≠ o2.f

63 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 63 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); (s5,s6) in race Postponed = { s6: if (o1.f==1), } s5: o2.f = 1;

64 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 64 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); (s5,s6) in race Postponed = { s6: if (o1.f==1), s5: o2.f = 1; }

65 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 65 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); (s5,s6) in race Postponed = { s6: if (o1.f==1), s5: o2.f = 1; }

66 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 66 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1), s5: o2.f = 1; }

67 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 67 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1), s5: o2.f = 1; }

68 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 68 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; (s5,s6) in race Postponed = { s6: if (o1.f==1), s5: o2.f = 1; } Race? YES o1.f = o1.f

69 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 69 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); (s5,s6) in race Postponed = { s5: o2.f = 1; } s6: if (o1.f==1) s5: o1.f = 1;

70 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 70 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; s6: if (o1.f==1) (s5,s6) in race Postponed = { s5: o2.f = 1; }

71 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 71 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; s6: if (o1.f==1) (s5,s6) in race Postponed = { s5: o2.f = 1; } Racing Statements Temporally Adjacent

72 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 72 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; s6: if (o1.f==1) s7: ERROR; (s5,s6) in race Postponed = { s5: o2.f = 1; } Racing Statements Temporally Adjacent

73 RACEFUZZER using an example Thread1 foo(o1); sync foo(C x) { s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: x.f = 1; } 73 Thread2 bar(o1); bar(C y) { s6: if (y.f==1) s7: ERROR; } Thread3 foo(o2); Execution: s1: g1(); s2: g2(); s3: g3(); s4: g4(); s5: o1.f = 1; s6: if (o1.f==1) s7: ERROR; s5: o2.f = 1; (s5,s6) in race Postponed = { } Racing Statements Temporally Adjacent

74 Another Example Thread1{ 1:lock(L); 2:f1(); 3:f2(); 4:f3(); 5:f4(); 6:f5(); 7:unlock(L); 8:if (x==0) 9:ERROR; } Thread2{ 10:x = 1; 11:lock(L); 12:f6(); 13:unlock(L); }

75 Another Example Thread1{ 1:lock(L); 2:f1(); 3:f2(); 4:f3(); 5:f4(); 6:f5(); 7:unlock(L); 8:if (x==0) 9:ERROR; } Thread2{ 10:x = 1; 11:lock(L); 12:f6(); 13:unlock(L); } Race Racing Pair: (8,10)

76 Another Example Thread1{ 1:lock(L); 2:f1(); 3:f2(); 4:f3(); 5:f4(); 6:f5(); 7:unlock(L); 8:if (x==0) 9:ERROR; } Thread2{ 10:x = 1; 11:lock(L); 12:f6(); 13:unlock(L); } Racing Pair: (8,10) Postponed Set = {Thread2}

77 Another Example Thread1{ 1:lock(L); 2:f1(); 3:f2(); 4:f3(); 5:f4(); 6:f5(); 7:unlock(L); 8:if (x==0) 9:ERROR; } Thread2{ 10:x = 1; 11:lock(L); 12:f6(); 13:unlock(L); }

78 Another Example Thread1{ 1:lock(L); 2:f1(); 3:f2(); 4:f3(); 5:f4(); 6:f5(); 7:unlock(L); 8:if (x==0) 9:ERROR; } Thread2{ 10:x = 1; 11:lock(L); 12:f6(); 13:unlock(L); }

79 Another Example Thread1{ 1:lock(L); 2:f1(); 3:f2(); 4:f3(); 5:f4(); 6:f5(); 7:unlock(L); 8:if (x==0) 9:ERROR; } Thread2{ 10:x = 1; 11:lock(L); 12:f6(); 13:unlock(L); } Hit error with 0.5 probability

80 80 Implementation RaceFuzzer: Part of CalFuzzer tool suite Instrument using SOOT compiler framework Instrumentations are used to “hijack” the scheduler –Implement a custom scheduler –Run one thread at a time –Use semaphores to control threads Deadlock detector –Because we cannot instrument native method calls lock(L1); X=1; unlock(L1); lock(L2); Y=2; unlock(L2);

81 81 Implementation CalFuzzer Instrument using SOOT compiler framework Instrumentations are used to “hijack” the scheduler –Implement a custom scheduler –Run one thread at a time –Use semaphores to control threads Deadlock detector –Because we cannot instrument native method calls ins_lock(L1); lock(L1); ins_write(&X); X=1; unlock(L1); ins_unlock(L1); ins_lock(L1); lock(L2); Y=2; unlock(L2); ins_unlock(L1); Custom Scheduler

82 Experimental Results 82

83 RACEFUZZER: Useful Features Classify real races from false alarms Inexpensive replay of a concurrent execution exhibiting a real race Separate some harmful races from benign races No false warning Very efficient –We instrument at most two memory access statements and all synchronization statements Embarrassingly parallel 83

84 RACEFUZZER: Limitations Not complete: can miss a real race –Can only detect races that happen on the given test suite on some schedule May not be able to separate all real races from false warnings –Being random in nature May not be able to separate harmful races from benign races –If a harmful race does not cause in a program crash Each test run is sequential 84

85 Summary Parallel computing will become more widespread with the manycore revolution –Need verification and testing tools Claim: testing (a.k.a verification in industry) is the most practical way to find software bugs –We need to make software testing systematic and rigorous Random testing works amazingly well in practice –Randomizing a scheduler is more effective than randomizing inputs –We need to make random testing smarter and closer to verification Bias random testing – Prioritize random testing Find interesting preemption points in the program Randomly or systematically preempt threads at these interesting points 85

86 86 Related work Stoller et al. and Edelstein et al. [ConTest] –Inserts yield() and sleep() randomly in Java code Parallel randomized depth-first search by Dwyer et al. –Modifies search strategy in Java Pathfinder by Visser et al. Iterative context bounding (Musuvathi and Qadeer) –Systematic testing with bounded context switches Satish Narayanasamy, Zhenghao Wang, Jordan Tigani, Andrew Edwards and Brad Calder “Automatically Classifying Benign and Harmful Data Races Using Replay Analysis”, PLDI 07

87 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); }

88 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Race

89 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Race

90 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Race X

91 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Race Racing Pair: (5,7)

92 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Racing Pair: (5,7) Postponed Set = {Thread2}

93 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Racing Pair: (5,7) Postponed Set = {Thread2}

94 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Race X Racing Pair: (1,10)

95 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Racing Pair: (1,10) Postponed Set = {Thread 1}

96 An Example: Assume x = y = z = 0 Thread1 { 1:x = 1; 2:lock(L); 3:y = 1; 4:unlock(L); 5:if (z==1) 6:ERROR1; } Thread2 { 7:z = 1; 8:lock(L); 9:if (y==1) { 10:if (x != 1){ 11:ERROR2; 12:} 13:} 14:unlock(L); } Racing Pair: (1,10) Postponed Set = {Thread 1}

Download ppt "1 Active Random Testing of Parallel Programs Koushik Sen University of California, Berkeley."

Similar presentations

CHESS : Systematic Testing of Concurrent Programs

CHESS : Systematic Testing of Concurrent Programs
Openflow App Testing Chao SHI, Stephen Duraski. Motivation Network is still a complex stuff ! o Distributed mechanism o Complex protocol o Large state.

Openflow App Testing Chao SHI, Stephen Duraski. Motivation Network is still a complex stuff ! o Distributed mechanism o Complex protocol o Large state.
A Randomized Dynamic Program Analysis for Detecting Real Deadlocks Pallavi Joshi  Chang-Seo Park  Koushik Sen  Mayur Naik ‡  Par Lab, EECS, UC Berkeley‡

A Randomized Dynamic Program Analysis for Detecting Real Deadlocks Pallavi Joshi  Chang-Seo Park  Koushik Sen  Mayur Naik ‡  Par Lab, EECS, UC Berkeley‡
1 Chao Wang, Yu Yang*, Aarti Gupta, and Ganesh Gopalakrishnan* NEC Laboratories America, Princeton, NJ * University of Utah, Salt Lake City, UT Dynamic.

1 Chao Wang, Yu Yang*, Aarti Gupta, and Ganesh Gopalakrishnan* NEC Laboratories America, Princeton, NJ * University of Utah, Salt Lake City, UT Dynamic.
Architecture-aware Analysis of Concurrent Software Rajeev Alur University of Pennsylvania Amir Pnueli Memorial Symposium New York University, May 2010.

Architecture-aware Analysis of Concurrent Software Rajeev Alur University of Pennsylvania Amir Pnueli Memorial Symposium New York University, May 2010.
Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.

Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.
Race Directed Random Testing of Concurrent Programs KOUSHIK SEN - UNIVERSITY OF CALIFORNIA, BERKELEY PRESENTED BY – ARTHUR KIYANOVSKI – TECHNION, ISRAEL.

Race Directed Random Testing of Concurrent Programs KOUSHIK SEN - UNIVERSITY OF CALIFORNIA, BERKELEY PRESENTED BY – ARTHUR KIYANOVSKI – TECHNION, ISRAEL.
A Randomized Dynamic Program Analysis for Detecting Real Deadlocks Koushik Sen CS 265.

A Randomized Dynamic Program Analysis for Detecting Real Deadlocks Koushik Sen CS 265.
Testing Concurrent/Distributed Systems Review of Final CEN 5076 Class 14 – 12/05.

Testing Concurrent/Distributed Systems Review of Final CEN 5076 Class 14 – 12/05.
Carnegie Mellon University Java PathFinder and Model Checking of Programs Guillaume Brat, Dimitra Giannakopoulou, Klaus Havelund, Mike Lowry, Phil Oh,

Carnegie Mellon University Java PathFinder and Model Checking of Programs Guillaume Brat, Dimitra Giannakopoulou, Klaus Havelund, Mike Lowry, Phil Oh,
Iterative Context Bounding for Systematic Testing of Multithreaded Programs Madan Musuvathi Shaz Qadeer Microsoft Research.

Iterative Context Bounding for Systematic Testing of Multithreaded Programs Madan Musuvathi Shaz Qadeer Microsoft Research.
CHESS: A Systematic Testing Tool for Concurrent Software CSCI6900 George.

CHESS: A Systematic Testing Tool for Concurrent Software CSCI6900 George.
Tom Ball, Sebastian Burckhardt, Madan Musuvathi, Shaz Qadeer Microsoft Research.

Tom Ball, Sebastian Burckhardt, Madan Musuvathi, Shaz Qadeer Microsoft Research.
Hybrid Concolic Testing Rupak Majumdar Koushik Sen UC Los Angeles UC Berkeley.

Hybrid Concolic Testing Rupak Majumdar Koushik Sen UC Los Angeles UC Berkeley.
CS294-32: Dynamic Data Race Detection Koushik Sen UC Berkeley.

CS294-32: Dynamic Data Race Detection Koushik Sen UC Berkeley.
Atomicity in Multi-Threaded Programs Prachi Tiwari University of California, Santa Cruz CMPS 203 Programming Languages, Fall 2004.

Atomicity in Multi-Threaded Programs Prachi Tiwari University of California, Santa Cruz CMPS 203 Programming Languages, Fall 2004.
Parallel Applications Parallel Hardware Parallel Software 1 The Parallel Computing Laboratory Krste Asanovic, Ras Bodik, Jim Demmel, Tony Keaveny, Kurt.

Parallel Applications Parallel Hardware Parallel Software 1 The Parallel Computing Laboratory Krste Asanovic, Ras Bodik, Jim Demmel, Tony Keaveny, Kurt.
Thread-modular Abstraction Refinement Tom Henzinger Ranjit Jhala Rupak Majumdar Shaz Qadeer.

Thread-modular Abstraction Refinement Tom Henzinger Ranjit Jhala Rupak Majumdar Shaz Qadeer.
Concurrency.

Concurrency.
S. Narayanasamy, Z. Wang, J. Tigani, A. Edwards, B. Calder UCSD and Microsoft PLDI 2007.

S. Narayanasamy, Z. Wang, J. Tigani, A. Edwards, B. Calder UCSD and Microsoft PLDI 2007.

Similar presentations

Ads by Google