Symbolic Execution of Multithreaded Programs from Arbitrary Program Contexts (SPLASH 2014 - OOPSLA)

Mon 20 - Fri 24 October 2014 Portland, Oregon, United States

Who

Tom Bergan, Dan Grossman, Luis Ceze

Track

SPLASH 2014 OOPSLA

Time Zone

The program is currently displayed in (GMT-07:00) Tijuana, Baja California.

Use conference time zone: (GMT-07:00) Tijuana, Baja CaliforniaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Thu 23 Oct 2014 14:37 - 15:00 at Salon F - Concurrency Chair(s): David Grove

Abstract

We describe an algorithm to perform symbolic execution of a multithreaded program starting from an arbitrary program context. We argue that this can enable more efficient symbolic exploration of deep code paths in multithreaded programs by allowing the symbolic engine to jump directly to program contexts of interest.

The key challenge is modeling the initial context with reasonable precision—an overly approximate model leads to exploration of many infeasible paths during symbolic execution, while a very precise model would be so expensive to compute that computing it would defeat the purpose of jumping directly to the initial context in the first place. We propose a \emph{context-specific dataflow analysis} that approximates the initial context cheaply, but precisely enough to avoid some common causes of infeasible-path explosion. This model is necessarily approximate—it may leave portions of the memory state unconstrained, leaving our symbolic execution unable to answer simple questions such as ``which thread holds lock A?''. For such cases, we describe a novel algorithm for evaluating \emph{symbolic synchronization} during symbolic execution. Our symbolic execution semantics are sound and complete up to the limits of the underlying SMT solver. We describe initial experiments on an implementation in Cloud9.

Link to Publication

http://dl.acm.org/authorize?N80785

Tom Bergan

University of Washington

Dan Grossman

University of Washington

Luis Ceze

University of Washington

Time Zone

The program is currently displayed in (GMT-07:00) Tijuana, Baja California.

Use conference time zone: (GMT-07:00) Tijuana, Baja CaliforniaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

Display full programSpecify a time band

Save

Session Program

Thu 23 Oct
Times are displayed in time zone: Tijuana, Baja California change

	13:30 - 15:00: ConcurrencyOOPSLA at Salon F Chair(s): David GroveIBM Research

	13:30 - 13:52 Talk		Atlas: Leveraging Locks for Non-volatile Memory Consistency OOPSLA Dhruva ChakrabartiHP Labs, Hans-J. BoehmGoogle, Kumud BhandariRice University Link to publication
	13:52 - 14:15 Talk		Fast Splittable Pseudorandom Number Generators OOPSLA Guy L. Steele Jr.Oracle Labs, Doug LeaState University of New York (SUNY) Oswego, Christine H. FloodRed Hat Link to publication
	14:15 - 14:37 Talk		Multithreaded Test Synthesis for Deadlock Detection OOPSLA Malavika SamakIndian Institute of Science, Bangalore, Murali Krishna RamanathanIndian Institute of Science, Bangalore Link to publication
	14:37 - 15:00 Talk		Symbolic Execution of Multithreaded Programs from Arbitrary Program Contexts OOPSLA Tom BerganUniversity of Washington, Dan GrossmanUniversity of Washington, Luis CezeUniversity of Washington Link to publication