ESP: A Language for Programmable Devices Sanjeev Kumar Princeton University Advisor : Kai Li.

Slides:



Advertisements
Similar presentations
1 Data Link Protocols By Erik Reeber. 2 Goals Use SPIN to model-check successively more complex protocols Using the protocols in Tannenbaums 3 rd Edition.
Advertisements

Threads, SMP, and Microkernels
CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.
ECE 454 Computer Systems Programming Compiler and Optimization (I) Ding Yuan ECE Dept., University of Toronto
Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.
ESP: A Language for Programmable Devices Sanjeev Kumar, Yitzhak Mandelbaum, Xiang Yu, Kai Li Princeton University.
Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.
Helper Threads via Virtual Multithreading on an experimental Itanium 2 processor platform. Perry H Wang et. Al.
Fast Communication Firefly RPC Lightweight RPC  CS 614  Tuesday March 13, 2001  Jeff Hoy.
Using Programmer-Written Compiler Extensions to Catch Security Holes Authors: Ken Ashcraft and Dawson Engler Presented by : Hong Chen CS590F 2/7/2007.
Fast Paths in Concurrent Programs Wen Xu, Princeton University Sanjeev Kumar, Intel Labs. Kai Li, Princeton University.
Extensibility, Safety and Performance in the SPIN Operating System Department of Computer Science and Engineering, University of Washington Brian N. Bershad,
ECE 526 – Network Processing Systems Design Software-based Protocol Processing Chapter 7: D. E. Comer.
Vertically Integrated Analysis and Transformation for Embedded Software John Regehr University of Utah.
490dp Synchronous vs. Asynchronous Invocation Robert Grimm.
Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.
Architectural Support for Operating Systems. Announcements Most office hours are finalized Assignments up every Wednesday, due next week CS 415 section.
Active Messages: a Mechanism for Integrated Communication and Computation von Eicken et. al. Brian Kazian CS258 Spring 2008.
Chapter 17 Parallel Processing.
Chapter 13 Embedded Systems
1/28/2004CSCI 315 Operating Systems Design1 Operating System Structures & Processes Notice: The slides for this lecture have been largely based on those.
Chapter 16 Control Unit Implemntation. A Basic Computer Model.
Microkernels: Mach and L4
1 Last Class: Introduction Operating system = interface between user & architecture Importance of OS OS history: Change is only constant User-level Applications.
PhD/Master course, Uppsala  Understanding the interaction between your program and computer  Structuring the code  Optimizing the code  Debugging.
MULTIVIE W Checking System Rules Using System-Specific, Program-Written Compiler Extensions Paper: Dawson Engler, Benjamin Chelf, Andy Chou, and Seth Hallem.
A. Frank - P. Weisberg Operating Systems Introduction to Tasks/Threads.
1 Threads Chapter 4 Reading: 4.1,4.4, Process Characteristics l Unit of resource ownership - process is allocated: n a virtual address space to.
Introduction to Symmetric Multiprocessors Süha TUNA Bilişim Enstitüsü UHeM Yaz Çalıştayı
Stack Management Each process/thread has two stacks  Kernel stack  User stack Stack pointer changes when exiting/entering the kernel Q: Why is this necessary?
Advances in Language Design
Lecture 4: Parallel Programming Models. Parallel Programming Models Parallel Programming Models: Data parallelism / Task parallelism Explicit parallelism.
© 2009 Matthew J. Sottile, Timothy G. Mattson, and Craig E Rasmussen 1 Concurrency in Programming Languages Matthew J. Sottile Timothy G. Mattson Craig.
Advanced Operating Systems CIS 720 Lecture 1. Instructor Dr. Gurdip Singh – 234 Nichols Hall –
Parallel Programming Models Jihad El-Sana These slides are based on the book: Introduction to Parallel Computing, Blaise Barney, Lawrence Livermore National.
LiNK: An Operating System Architecture for Network Processors Steve Muir, Jonathan Smith Princeton University, University of Pennsylvania
A Simple Method for Extracting Models from Protocol Code David Lie, Andy Chou, Dawson Engler and David Dill Computer Systems Laboratory Stanford University.
Using Model-Checking to Debug Device Firmware Sanjeev Kumar Microprocessor Research Labs, Intel Kai Li Princeton University.
Eric Keller, Evan Green Princeton University PRESTO /22/08 Virtualizing the Data Plane Through Source Code Merging.
Contact Information Office: 225 Neville Hall Office Hours: Monday and Wednesday 12:00-1:00 and by appointment.
Scientific Computing By: Fatima Hallak To: Dr. Guy Tel-Zur.
Cluster Computers. Introduction Cluster computing –Standard PCs or workstations connected by a fast network –Good price/performance ratio –Exploit existing.
Operating Systems Lecture 2 Processes and Threads Adapted from Operating Systems Lecture Notes, Copyright 1997 Martin C. Rinard. Zhiqing Liu School of.
Silberschatz, Galvin and Gagne  2002 Modified for CSCI 399, Royden, Operating System Concepts Operating Systems Lecture 7 OS System Structure.
Concurrent Aggregates (CA) Andrew A. Chien and William J. Dally Presented by: John Lynn and Ryan Wu.
Background: Operating Systems Brad Karp UCL Computer Science CS GZ03 / M th November, 2008.
The Cosmic Cube Charles L. Seitz Presented By: Jason D. Robey 2 APR 03.
CIS 842: Specification and Verification of Reactive Systems Lecture 1: Course Overview Copyright 2001, Matt Dwyer, John Hatcliff, and Radu Iosif. The.
EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM
Concurrency, Processes, and System calls Benefits and issues of concurrency The basic concept of process System calls.
By: Rob von Behren, Jeremy Condit and Eric Brewer 2003 Presenter: Farnoosh MoshirFatemi Jan
Lecture 4 Introduction to Promela. Promela and Spin Promela - process meta language G. Holzmann, Bell Labs (Lucent) C-like language + concurrency dyamic.
3/12/2013Computer Engg, IIT(BHU)1 PARALLEL COMPUTERS- 2.
CS533 Concepts of Operating Systems Jonathan Walpole.
Cluster Computers. Introduction Cluster computing –Standard PCs or workstations connected by a fast network –Good price/performance ratio –Exploit existing.
Symbolic Model Checking of Software Nishant Sinha with Edmund Clarke, Flavio Lerda, Michael Theobald Carnegie Mellon University.
CSCI/CMPE 4334 Operating Systems Review: Exam 1 1.
1 Chapter 2: Operating-System Structures Services Interface provided to users & programmers –System calls (programmer access) –User level access to system.
Big Picture Lab 4 Operating Systems C Andras Moritz
Experiences with VI Communication for Database Storage Yuanyuan Zhou, Angelos Bilas, Suresh Jagannathan, Cezary Dubnicki, Jammes F. Philbin, Kai Li.
Memory Management What if pgm mem > main mem ?. Memory Management What if pgm mem > main mem ? Overlays – program controlled.
Introduction to Operating Systems Concepts
Verification of Data-Dependent Properties of MPI-Based Parallel Scientific Software Anastasia Mironova.
Kernel Design & Implementation
Advanced Operating Systems CIS 720
Alternative system models
Chapter 4: Threads.
Threads Chapter 4.
Chapter 13: I/O Systems.
CS 5204 Operating Systems Lecture 5
Presentation transcript:

ESP: A Language for Programmable Devices Sanjeev Kumar Princeton University Advisor : Kai Li

Sanjeev KumarESP: A Language for Programmable Devices2 Programmable Devices Network Card Bus CPU D Mem R Disk CPU D D D Mem R Main CPUMain Memory Move functionality from main CPUs to devices

Sanjeev KumarESP: A Language for Programmable Devices3 Programming Devices Challenging –Concurrent, low-overhead, and reliable Event-driven state machines (vs. Threads) –1 stack is shared by all state-machines –Fast context switches Only need to save and restore the Program Counter –Low overhead: memory & CPU –Less functionality provided

Sanjeev KumarESP: A Language for Programmable Devices4 Programming Devices in C WaitReq WaitNet WaitDMA State machines communicating using events A state machine event DmaFree execute event UserReq execute processUser() event KernelReq execute processKernel() event NetFree execute

Sanjeev KumarESP: A Language for Programmable Devices5 Programming Devices in C Cont’d Programming is hard –Sequential code split into handlers Difficult for C compiler to optimize –Explicitly save values in global variables Hand optimizations make it worse –Fast paths (violate modularity) –Embed ad-hoc scheduling decisions int i = 5; block(); j = i;

Sanjeev KumarESP: A Language for Programmable Devices6 Case Study: VMMC High-performance communication –Bypass OS for data transfers Used Myrinet network cards –Gigabit network –33 MHz CPU, 1 MB memory VMMC firmware –Event-driven state machines in C Data OS Network Card Application Network

Sanjeev KumarESP: A Language for Programmable Devices7 Our Experience with Programming VMMC Firmware Event-driven state machines in C –Hard to program VMMC: 15,600 lines of C code Add new functionality –Hard to debug Complicated race conditions (still encounter bugs) Trusted by the OS –Achieves good performance Requires hand optimization

Sanjeev KumarESP: A Language for Programmable Devices8 Outline Motivation ESP overview ESP language Verifying ESP programs Performance of ESP programs Conclusions

Sanjeev KumarESP: A Language for Programmable Devices9 ESP: Event-driven State-machines Programming Domain-specific language Goals –Easy to program Concise, modular programs –Allow extensive testing Use existing model-checking verifiers like Spin –Performance Low overhead Case study: VMMC firmware

Sanjeev KumarESP: A Language for Programmable Devices10 ESP Approach pgm1.spin pgmN.spin pgm.C ESP Compiler pgm.ESP help.C Generate Firmware Develop and Test using Verifier test1.spin testN.spin Spin Models Detailed Model Memory Safety Model Abstract Models

Sanjeev KumarESP: A Language for Programmable Devices11 Related Work Verification + Code generation –Esterel: Control of reactive systems –Teapot: Coherence protocols for shared memory –Promela++: Layered network protocols C extension for state machines Concurrent languages –CSP, Squeak, OCCAM, Java, CML, Devil Debugging Tools – Meta-level compilation, SLAM, Verisoft

Sanjeev KumarESP: A Language for Programmable Devices12 Outline Motivation ESP overview ESP language Verifying ESP programs Performance of ESP programs Conclusions

Sanjeev KumarESP: A Language for Programmable Devices13 The ESP Language Concurrent language Processes & Channels –in : Receive a message on a channel –out : Send a message on a channel –alt : Wait on multiple in/out operations Channels are synchronous or unbuffered Processes and channels are static

Sanjeev KumarESP: A Language for Programmable Devices14 A Process Encodes a State Machine channel chan1: int channel chan2: int process add5 { $v: int = 0; while( true) { in( chan1, v); out( chan2, v+5); } States are implicit Events are messages on channels Easy to read & optimize –Control flow is obvious Initial waitChan2 waitChan1

Sanjeev KumarESP: A Language for Programmable Devices15 Data Types and Control Constructs Data types –Simple types: int, bool –Complex data types: records, unions, arrays –No recursive data types Control constructs –if-then-else, while, etc. –No functions; Use processes instead

Sanjeev KumarESP: A Language for Programmable Devices16 Channels for Communication Processes communicate only using channels –Pure message passing communications To enforce this –No shared mutable data structure No global variables Only immutable objects on channels Immutable mutable objects

Sanjeev KumarESP: A Language for Programmable Devices17 Memory Management Explicit –malloc/free –Fast –Unsafe Automatic –Garbage collection –More CPU & memory –Safe Concurrent programSafe Limited CPU & memoryFast

Sanjeev KumarESP: A Language for Programmable Devices18 Memory Management Cont’d ESP supports explicit management Explicit management is difficult –Global property of program ESP makes this a local property –Objects are not shared by processes –Objects sent over channels are “copied” Use verifiers to check correctness –Check each process separately ESP supports safety through verification

Sanjeev KumarESP: A Language for Programmable Devices19 Support for Dispatch channel pktc: union of { ping: int, status: bool } process A {...; out( pktc, v);...} process B {...; in( pktc, { ping |> $node});...} process C {...; in( pktc, { status |> $flag});...} Pattern-matching supports dispatch

Sanjeev KumarESP: A Language for Programmable Devices20 External Interface C interface: volatile memory, device registers Spin interface: specify properties to be verified Traditional approach: function interface ESP uses channels –Some channels have external reader or writer –Unified mechanism (C and Spin) –Use in/out to block on external events

Sanjeev KumarESP: A Language for Programmable Devices21 Case Study: VMMC Firmware Implemented VMMC using ESP –8 processes, 19 channels –500 lines ESP lines C code Modular programs that are easy to maintain Order of magnitude less code

Sanjeev KumarESP: A Language for Programmable Devices22 Outline Motivation ESP overview ESP language Verifying ESP programs Performance of ESP programs Conclusions

Sanjeev KumarESP: A Language for Programmable Devices23 Using Model-Checking Verifiers State-space exploration –Try all possible scheduling options Advantages –Automatic –Produces counter example Disadvantages –Computationally expensive (exponential) ESP currently uses Spin model checker

Sanjeev KumarESP: A Language for Programmable Devices24 Spin Model-Checking Verifier Designed for software systems –Supports processes and synchronous channels Specify properties to be verified –Assertions, deadlocks, Linear Temporal Logic 3 levels of checking with varying coverage –Exhaustive –Partial –Simulation

Sanjeev KumarESP: A Language for Programmable Devices25 ESP Approach Models extracted automatically –Reduces programmer effort –Avoids mismatch Debugged using verifier Test files can be reused pgm1.spin pgmN.spin pgm.C ESP Compiler pgm.ESP help.C Generate Firmware Develop and Test using Verifier test1.spin testN.spin

Sanjeev KumarESP: A Language for Programmable Devices26 Extracting Spin Models Detailed models Memory-safety models –Detailed model + additional checks Abstract models –Necessary for larger subsystems –Drop unnecessary details Depending on the property being verified Abstraction specified by the programmer Compiler makes safe conservative approximation

Sanjeev KumarESP: A Language for Programmable Devices27 Conservative Approximations in Abstract Models $b2: boolean = true;... $b1: boolean = b2; type recT = #record of { int count; } $r1: recT = {0}; if (b) { r2 = r1; }... r1.count = 5; if :: b1 = true :: b1 = false fi if :: r2.count = 5 :: skip fi X X X X X

Sanjeev KumarESP: A Language for Programmable Devices28 Case Study: VMMC Firmware Develop and debug retransmission protocol –Easier to debug than on the network card –Took 2 days (10 days in earlier implementation) Check for memory safety and leaks –Found deliberately introduced bugs, an earlier bug Check for deadlocks –Hard-to-find bugs –Found 7 bugs using abstract models

Sanjeev KumarESP: A Language for Programmable Devices29 Case Study: VMMC Firmware Cont’d ProcessProperty Time (in seconds) Memory (in Mbytes) Complete search? remoteReplySafety Yes localReqSafety Yes reliableSendSafety Yes AllDeadlock No AllDeadlock No* * Using partial mode

Sanjeev KumarESP: A Language for Programmable Devices30 Outline Motivation ESP overview ESP language Verifying ESP programs Performance of ESP programs Conclusions

Sanjeev KumarESP: A Language for Programmable Devices31 ESP Code Generation Compiling for sequential execution –Combine them [Berry et al., Proebsting et al.] No context switching overhead Worst-case exponential increase in executable size –Low-overhead process management Small context switching overhead –Only the program counter needs to be saved Small executable

Sanjeev KumarESP: A Language for Programmable Devices32 ESP Code Generation Cont’d C as back-end language –Generates one large C function –Links with other functions provided by the programmer Compiler optimizations –Whole program analysis Avoid indirect jumps, unnecessary allocation –Per process Constant folding, copy propagation

Sanjeev KumarESP: A Language for Programmable Devices33 Case Study: VMMC Firmware Measure overhead of using ESP –Microbenchmarks –Applications Compare performance –Earlier implementation (vmmcOrig) –Earlier implementation without fast paths (vmmcOrigNoFastPaths) –New implementation using ESP (vmmcESP)

Sanjeev KumarESP: A Language for Programmable Devices34 Microbenchmarks Impact of fast paths –4 Bytes: 100% –4 Kbyte: 38% Impact of using ESP –64 Bytes: 35% –4 Kbytes: 0% Message size (in Bytes) ss Latency

Sanjeev KumarESP: A Language for Programmable Devices35 Applications SPLASH2 applications on a 16 (4 X 4) node cluster ESP: 3.5 % on average Speedup Fast paths: < 1% on average

Sanjeev KumarESP: A Language for Programmable Devices36 Performance Summary Significant difference in microbenchmarks –Most due to the brittle fast paths –Required the programmer to manually optimize Small impact on applications –Applications are less sensitive Microbenchmarks represent worst case New functionality can help a lot more –40% for SVM applications [ Bilas et al. ]

Sanjeev KumarESP: A Language for Programmable Devices37 Outline Motivation ESP overview ESP language Verifying ESP programs Performance of ESP programs Conclusions

Sanjeev KumarESP: A Language for Programmable Devices38 Conclusions ESP: Domain-specific language –Supports concise, modular programs Order of magnitude less code –Extensive testing with Spin Develop code Check for memory safety & absence of deadlocks Effective but has limitations –Low performance overhead 3.5% for applications Could use further optimizations

Sanjeev KumarESP: A Language for Programmable Devices39 Future Directions More experience with ESP –Other devices e.g. Intel IXP –Other protocols e.g. TCP/IP Compiler optimizations –Selective process inlining –Support for fast paths Using model checking more effectively –Partial searches

Sanjeev KumarESP: A Language for Programmable Devices40 Acknowledgements Kai Li Andrew Appel Edward Felten Randy Wang Larry Peterson Doug Clark Jaswinder Pal Singh Steve Dirk Rudro Patrick Yuanyuan Tammo George Angelos Stef Liviu Others Melissa and the rest of administrative staff Technical staff

Sanjeev KumarESP: A Language for Programmable Devices41 - The End -

Sanjeev KumarESP: A Language for Programmable Devices42 Esterel Synchronous programming language –Encode control of reactive systems Generate software or hardware Deterministic reaction But –Only encodes control flow –Constraints on the language –Harder to compile efficiently

Sanjeev KumarESP: A Language for Programmable Devices43 Teapot Domain-specific language –Implement coherence protocols Specify a state machine Use continuations to simplify programming But –Only encodes control flow –Uses handlers: Code fragmentation –Similar approach would be less modular

Sanjeev KumarESP: A Language for Programmable Devices44 Promela++ Language for Layered Network Protocol –Non-strict extension of promela Asynchronous communication But –Layered structure –Asynchronous: overhead, ordering –No support for memory management

Sanjeev KumarESP: A Language for Programmable Devices45 Bandwidth Microbenchmarks M B / s Message Size (in Bytes) Bidirectional Bandwidth M B / s Message Size (in Bytes) One-way Bandwidth

Sanjeev KumarESP: A Language for Programmable Devices46 Fast Paths Challenges –Identify fast paths in a concurrent program –Fast path extraction –Robust fast paths

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.