An axiomatic memory model for POWER multiprocessors

Sela Mador-Haim; Luc Maranget; Susmit Sarkar; Kayvan Memarian; Jade Alglave; Scott Owens; Rajeev Alur; Milo Martin; Peter Sewell; Derek Williams

doi:10.1007/978-3-642-31424-7_36

An axiomatic memory model for POWER multiprocessors

Sela Mador-Haim, Luc Maranget, Susmit Sarkar, Kayvan Memarian, Jade Alglave, Scott Owens, Rajeev Alur, Milo Martin, Peter Sewell, Derek Williams

School of Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The growing complexity of hardware optimizations employed by multiprocessors leads to subtle distinctions among allowed and dis- allowed behaviors, posing challenges in specifying their memory models formally and accurately, and in understanding and analyzing the behavior of concurrent software. This complexity is particularly evident in the IBM Power Architecture , for which a faithful specification was published only in 2011 using an operational style. In this paper we present an equivalent axiomatic specification, which is more abstract and concise. Although not officially sanctioned by the vendor, our results indicate that this axiomatic specification provides a reasonable basis for reasoning about current IBM POWER multiprocessors. We establish the equivalence of the axiomatic and operational specifications using both manual proof and extensive testing. To demonstrate that the constraint-based style of axiomatic specification is more amenable to computer-aided verification, we develop a SAT-based tool for evaluating possible outcomes of multi-threaded test programs, and we show that this tool is significantly more efficient than a tool based on an operational specification.

Original language	English
Title of host publication	Computer aided verification
Subtitle of host publication	24th International Conference, CAV 2012, Berkeley, CA, USA, July 7-13, 2012 Proceedings
Editors	P. Madhusudan, Sanjit A. Seshia
Place of Publication	Berlin
Publisher	Springer-Verlag
Pages	495-512
Number of pages	18
ISBN (Electronic)	9783642314247
ISBN (Print)	9783642314230
DOIs	https://doi.org/10.1007/978-3-642-31424-7_36
Publication status	Published - 27 Jun 2012

Publication series

Name	Lecture notes in computer science
Volume	7358
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Access to Document

10.1007/978-3-642-31424-7_36

Cite this

Mador-Haim, S., Maranget, L., Sarkar, S., Memarian, K., Alglave, J., Owens, S., Alur, R., Martin, M., Sewell, P., & Williams, D. (2012). An axiomatic memory model for POWER multiprocessors. In P. Madhusudan, & S. A. Seshia (Eds.), Computer aided verification: 24th International Conference, CAV 2012, Berkeley, CA, USA, July 7-13, 2012 Proceedings (pp. 495-512). (Lecture notes in computer science; Vol. 7358). Springer-Verlag. https://doi.org/10.1007/978-3-642-31424-7_36

@inproceedings{232e6129bb2e482d8e1ff127d46b2dfd,

title = "An axiomatic memory model for POWER multiprocessors",

abstract = "The growing complexity of hardware optimizations employed by multiprocessors leads to subtle distinctions among allowed and dis- allowed behaviors, posing challenges in specifying their memory models formally and accurately, and in understanding and analyzing the behavior of concurrent software. This complexity is particularly evident in the IBM Power Architecture , for which a faithful specification was published only in 2011 using an operational style. In this paper we present an equivalent axiomatic specification, which is more abstract and concise. Although not officially sanctioned by the vendor, our results indicate that this axiomatic specification provides a reasonable basis for reasoning about current IBM POWER multiprocessors. We establish the equivalence of the axiomatic and operational specifications using both manual proof and extensive testing. To demonstrate that the constraint-based style of axiomatic specification is more amenable to computer-aided verification, we develop a SAT-based tool for evaluating possible outcomes of multi-threaded test programs, and we show that this tool is significantly more efficient than a tool based on an operational specification.",

author = "Sela Mador-Haim and Luc Maranget and Susmit Sarkar and Kayvan Memarian and Jade Alglave and Scott Owens and Rajeev Alur and Milo Martin and Peter Sewell and Derek Williams",

year = "2012",

month = jun,

day = "27",

doi = "10.1007/978-3-642-31424-7\_36",

language = "English",

isbn = "9783642314230",

series = "Lecture notes in computer science",

publisher = "Springer-Verlag",

pages = "495--512",

editor = "P. Madhusudan and Seshia, \{Sanjit A.\}",

booktitle = "Computer aided verification",

address = "Germany",

}

Mador-Haim, S, Maranget, L, Sarkar, S, Memarian, K, Alglave, J, Owens, S, Alur, R, Martin, M, Sewell, P & Williams, D 2012, An axiomatic memory model for POWER multiprocessors. in P Madhusudan & SA Seshia (eds), Computer aided verification: 24th International Conference, CAV 2012, Berkeley, CA, USA, July 7-13, 2012 Proceedings. Lecture notes in computer science, vol. 7358, Springer-Verlag, Berlin, pp. 495-512. https://doi.org/10.1007/978-3-642-31424-7_36

An axiomatic memory model for POWER multiprocessors. / Mador-Haim, Sela; Maranget, Luc; Sarkar, Susmit et al.
Computer aided verification: 24th International Conference, CAV 2012, Berkeley, CA, USA, July 7-13, 2012 Proceedings. ed. / P. Madhusudan; Sanjit A. Seshia. Berlin: Springer-Verlag, 2012. p. 495-512 (Lecture notes in computer science; Vol. 7358).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - An axiomatic memory model for POWER multiprocessors

AU - Mador-Haim, Sela

AU - Maranget, Luc

AU - Sarkar, Susmit

AU - Memarian, Kayvan

AU - Alglave, Jade

AU - Owens, Scott

AU - Alur, Rajeev

AU - Martin, Milo

AU - Sewell, Peter

AU - Williams, Derek

PY - 2012/6/27

Y1 - 2012/6/27

N2 - The growing complexity of hardware optimizations employed by multiprocessors leads to subtle distinctions among allowed and dis- allowed behaviors, posing challenges in specifying their memory models formally and accurately, and in understanding and analyzing the behavior of concurrent software. This complexity is particularly evident in the IBM Power Architecture , for which a faithful specification was published only in 2011 using an operational style. In this paper we present an equivalent axiomatic specification, which is more abstract and concise. Although not officially sanctioned by the vendor, our results indicate that this axiomatic specification provides a reasonable basis for reasoning about current IBM POWER multiprocessors. We establish the equivalence of the axiomatic and operational specifications using both manual proof and extensive testing. To demonstrate that the constraint-based style of axiomatic specification is more amenable to computer-aided verification, we develop a SAT-based tool for evaluating possible outcomes of multi-threaded test programs, and we show that this tool is significantly more efficient than a tool based on an operational specification.

AB - The growing complexity of hardware optimizations employed by multiprocessors leads to subtle distinctions among allowed and dis- allowed behaviors, posing challenges in specifying their memory models formally and accurately, and in understanding and analyzing the behavior of concurrent software. This complexity is particularly evident in the IBM Power Architecture , for which a faithful specification was published only in 2011 using an operational style. In this paper we present an equivalent axiomatic specification, which is more abstract and concise. Although not officially sanctioned by the vendor, our results indicate that this axiomatic specification provides a reasonable basis for reasoning about current IBM POWER multiprocessors. We establish the equivalence of the axiomatic and operational specifications using both manual proof and extensive testing. To demonstrate that the constraint-based style of axiomatic specification is more amenable to computer-aided verification, we develop a SAT-based tool for evaluating possible outcomes of multi-threaded test programs, and we show that this tool is significantly more efficient than a tool based on an operational specification.

UR - https://doi.org/10.1007/978-3-642-31424-7

UR - https://www.scopus.com/pages/publications/84864056988

U2 - 10.1007/978-3-642-31424-7_36

DO - 10.1007/978-3-642-31424-7_36

M3 - Conference contribution

SN - 9783642314230

T3 - Lecture notes in computer science

SP - 495

EP - 512

BT - Computer aided verification

A2 - Madhusudan, P.

A2 - Seshia, Sanjit A.

PB - Springer-Verlag

CY - Berlin

ER -

Mador-Haim S, Maranget L, Sarkar S, Memarian K, Alglave J, Owens S et al. An axiomatic memory model for POWER multiprocessors. In Madhusudan P, Seshia SA, editors, Computer aided verification: 24th International Conference, CAV 2012, Berkeley, CA, USA, July 7-13, 2012 Proceedings. Berlin: Springer-Verlag. 2012. p. 495-512. (Lecture notes in computer science). doi: 10.1007/978-3-642-31424-7_36

An axiomatic memory model for POWER multiprocessors

Abstract

Publication series

Access to Document

Other files and links

Fingerprint

Cite this