Presentation is loading. Please wait.

Presentation is loading. Please wait.

An Effective Method to Control Interrupt Handler for Data Race Detection Makoto Higashi †, Tetsuo Yamamoto ‡, Yasuhiro Hayase †, Takashi Ishio † and Katsuro.

Published byPatience Sutton Modified over 8 years ago

Similar presentations

Presentation on theme: "An Effective Method to Control Interrupt Handler for Data Race Detection Makoto Higashi †, Tetsuo Yamamoto ‡, Yasuhiro Hayase †, Takashi Ishio † and Katsuro."— Presentation transcript:

1 An Effective Method to Control Interrupt Handler for Data Race Detection Makoto Higashi †, Tetsuo Yamamoto ‡, Yasuhiro Hayase †, Takashi Ishio † and Katsuro Inoue † † Osaka University ‡ Ritsumeikan University

2 Outline Motivation –Embedded software and data race conditions Approach –Control of an interrupt handler Case study –uClinux Summary and future work 2010/5/4 AST2010 2

3 2010/5/4 AST2010 3 Reliability of embedded software There are many safety-critical embedded software –Pacemaker: risk of losing human life –Mobile phone: risk of intercepting personal data Embedded system consists of external devices and control software –Embedded software becomes aware of inputs from external devices through interrupts or I/O memory

4 2010/5/4 4 Interrupt-driven software We focus on interrupt-driven software in embedded software, where processing is initiated when external devices signal the CPU –Interrupts add fine-grained concurrency to the software handler(void) op = 0 return Interrupt handler main(void) if (op == 1) … Main routine interrupt return interrupt

5 Particular fault to interrupt- driven software Main routine shares memory with interrupt handler There is a failure at the particular timing –Interrupt occurs at unexpected timing –Interrupt handler changes shared memory 2010/5/4 AST2010 5 It is important to detect data race conditions

6 2010/5/4 AST2010 6 Example of data race condition divide(void) no yes return x != 0 ret = 100 / x interrupt_handler(void) x = 0 return interrupt Interrupt handler Main routine variable x access Divide 100 by x in case of x != 0 Divide 100 by x in a state of x == 0 Detection of data race conditions through testing

7 2010/5/4 AST2010 7 Testing Process Testing process of non interrupt-driven software –Input values to module –Check return value from the module Testing process of interrupt-driven software –Combination Interrupt handler with other module –Consider a wide variety of Interrupt timing

8 Key ideas 1/2 Condition of data race condition 1.Main routine accesses a variable twice 1st access is reading or writing 2nd access is reading 2.Main routine assumes that the value of the variable is unchanged 3.Interrupt occurs between 1st and 2nd access 4.Interrupt handler changes the value of the variable 2010/5/4 AST2010 8 x = 3 ret = 100 / x x != 0 Assumes x != 0 no return interrupt ret = 100 / x interruput Assumes a == 3

9 Key ideas 2/2 Control of execution path of interrupt handler Embedded software uses memory- mapped I/O for communicating with external devices –Load instructions read the value of memory –Substitute user specified value for the value of memory 2010/5/4 AST2010 9

10 Our work Objective: Testing of interrupt-driven software Approach: Detection of faults related to interrupts (data race conditions) to cause interrupts automatically Result: Detection a fault not to cause interrupts manually 2010/5/4 AST2010 10

11 2010/5/4 AST2010 11 Mechanism to cause interrupts CPU emulator Mechanism to cause interrupts interpreter A user specifies the kind of interrupt Configuration file Machine language instruction Check read instruction or write instruction LDR ADDR ADD MOV ・ Interrupt handler: ・ RET interrupt

12 2010/5/4 AST2010 12 Prevention of infinite loop Compare current program counter with the saved counter If the saved counter is different from the current program counter, casuse an interrupt and save program counter Mechasin to cause interrupts Saved counter Current program counter interrupt LDR ADDR ADD MOV ・ Interrupt handler: ・ RET Result of comparison Current program counter Access memory Interrupt handler Prevent causing interrupts at the same location Saved counter

13 2010/5/4 AST2010 13 Mechanism to substitute values Memory access LDR ADDR ADD MOV ・ Return user specified value Return value Read instrunction CPU emulator Memory access memory check if the memory address is user specified address If yes, Substitute the value Memory access Return value 0100011 1010101 0111100 0101111 …..

14 2010/5/4 AST2010 14 Configuration file 1/2 Interrupt –The kind of interrupt –Support only one kind of interrupt in single file Memory address –An address which is mapped to external device –If you know memory address of global variable, the address can be specified

15 2010/5/4 AST2010 15 Configuration file 2/2 Function name –Substitute new value within only specified function Because it is very slow to substitute values within all functions New value –Constant –Global variables –Current value

16 Case study We have applied our method to software which contains data race condition –Aim Investigate the process to detect the data race condition –Target software uClinux 2010/5/4 AST2010 16

17 Data race condition on uClinux When sending characters of queue, the code accesses out of queue –After checking the count of queue, the routine sends characters –Just after the checking, interrupts occurs 2010/5/4 AST2010 17 ・ if (xmit_cnt <= 0 || ……) return; ・ xmit_cnt--; ・ if (xmit_cnt <= 0 || ……) return; ・ xmit_cnt--; Main routineInterrupt handler interrupt The count of queue is 1 The count of queue is 0 Access out of queue

18 2010/5/4 AST2010 18 Procedure to detect the data race condition Assign 5 to the count of queue –Because interrupts occurs 4 times before the count of queue is checked Call main routine ・ Static void rs_flush_chars(struct tty_struct *tty){ struct m68k_serial *info = ……; m68328_uart *uart = ……; ・ if (xmit_cnt <= 0 || ……) return; interrupt

19 2010/5/4 AST2010 19 Testing process 1.Doubt the possibility to cause a data race condition within a certain module A 2.Assume an interrupt handler B to cause the data race condition in cooperation with module A 3.Specify the kind of the interrupt handler to configuration file 4.Test module A

20 Cost CPU cycles –Our method:72,417,488 –Normal execution:4,836,078 About 15 times The total number of cycles took in the interrupt handler:69,952,632 2010/5/4 AST2010 20

21 2010/5/4 AST2010 21 Data race condition that our mechanisms cannot detect 1: unsigned int len = 0; 2: void str_cpy(char *buf, char *str); 3: { 4: len = strlen(str); 5: if((0 < len) && (len <= strlen(str))) 6: memcpy(buf,str,len+1); 7: } 8: 9: void interrupt_handler(void){ 10: len++; 11: } interrupt No data race condition data race condition

22 2010/5/4 AST2010 22 Summary and future work We have implemented 2 mechanisms to a CPU emulator to test for data race conditions in interrupt-driven software –Causes interrupts automatically –Substitute values of memory Future work –More appropriate timing of interrupts –Multiple kinds of interrupts

Download ppt "An Effective Method to Control Interrupt Handler for Data Race Detection Makoto Higashi †, Tetsuo Yamamoto ‡, Yasuhiro Hayase †, Takashi Ishio † and Katsuro."

Similar presentations

Computer Architecture

Computer Architecture
Chapter 3 Basic Input/Output

Chapter 3 Basic Input/Output
R4 Dynamically loading processes. Overview R4 is closely related to R3, much of what you have written for R3 applies to R4 In R3, we executed procedures.

R4 Dynamically loading processes. Overview R4 is closely related to R3, much of what you have written for R3 applies to R4 In R3, we executed procedures.
Input and Output CS 215 Lecture #20.

Input and Output CS 215 Lecture #20.
Interrupts Chapter 8 – pp 209-214 Chapter 10 – pp 258-264 Appendix A – pp 537 & 543-545.

Interrupts Chapter 8 – pp Chapter 10 – pp Appendix A – pp 537 &
1/1/ / faculty of Electrical Engineering eindhoven university of technology Introduction Part 3: Input/output and co-processors dr.ir. A.C. Verschueren.

1/1/ / faculty of Electrical Engineering eindhoven university of technology Introduction Part 3: Input/output and co-processors dr.ir. A.C. Verschueren.
FIU Chapter 7: Input/Output Jerome Crooks Panyawat Chiamprasert

FIU Chapter 7: Input/Output Jerome Crooks Panyawat Chiamprasert
Architectural Support for Operating Systems. Announcements Most office hours are finalized Assignments up every Wednesday, due next week CS 415 section.

Architectural Support for Operating Systems. Announcements Most office hours are finalized Assignments up every Wednesday, due next week CS 415 section.
1 Computer System Overview OS-1 Course AA 2000-2001.

1 Computer System Overview OS-1 Course AA
Computer System Overview

Computer System Overview
Chapter 1 and 2 Computer System and Operating System Overview

Chapter 1 and 2 Computer System and Operating System Overview
A. Frank - P. Weisberg Operating Systems Introduction to Cooperating Processes.

A. Frank - P. Weisberg Operating Systems Introduction to Cooperating Processes.
1 CSC 2405: Computer Systems II Spring 2012 Dr. Tom Way.

1 CSC 2405: Computer Systems II Spring 2012 Dr. Tom Way.
CSE 451: Operating Systems Autumn 2013 Module 6 Review of Processes, Kernel Threads, User-Level Threads Ed Lazowska 570 Allen.

CSE 451: Operating Systems Autumn 2013 Module 6 Review of Processes, Kernel Threads, User-Level Threads Ed Lazowska 570 Allen.
System Calls 1.

System Calls 1.
Chapter 10 The Stack. 10-2 Stack: An Abstract Data Type An important abstraction that you will encounter in many applications. We will describe two uses:

Chapter 10 The Stack Stack: An Abstract Data Type An important abstraction that you will encounter in many applications. We will describe two uses:
OPERATING SYSTEM OVERVIEW. Contents Basic hardware elements.

OPERATING SYSTEM OVERVIEW. Contents Basic hardware elements.
Computer Architecture

Computer Architecture
Input and Output Computer Organization and Assembly Language: Module 9.

Input and Output Computer Organization and Assembly Language: Module 9.
MICROPROCESSOR INPUT/OUTPUT

MICROPROCESSOR INPUT/OUTPUT

Similar presentations

Ads by Google