Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue in constraint generation enforcing reads-from #39

Open
reeselevine opened this issue Sep 5, 2024 · 3 comments
Open

Issue in constraint generation enforcing reads-from #39

reeselevine opened this issue Sep 5, 2024 · 3 comments

Comments

@reeselevine
Copy link

If I have the following simple test, which checks whether a load returns a previous store, the test fails (a satisfiable solution is found).

NEWWG
NEWSG
NEWTHREAD
st.sc0 c = 1
ld.sc0 c = 2
NOSOLUTION consistent[X] && #dr=0

Looking at the counterexample generated, the issue appears to be that Alloy happily puts a reads-from relation between the two instructions, despite 2 not being the value written previously. When putting ld.sc0 c = 0, the test passes, because a constraint of the form E1 in X.RFINIT is correctly generated. The issue exists for both atomic/non-atomic instructions.

I don't think the problem is with the model, it looks like adding a not in constraint to rf fixes the problem, which can be done in litmus.cpp by adding the following code to lines 534-547:

            } else if (instState.loadStore[i].var == instState.loadStore[j].var &&
                instState.isWrite(i) && instState.isRead(j) &&
                instState.getWriteValue(i) != instState.getReadValue(j)) {
                o << "    (E" << i << "->E" << j << ") not in X.rf\n";
@reeselevine
Copy link
Author

Although, adding this constraint causes many of the existing tests to fail, so need to look into this a little more.

@reeselevine
Copy link
Author

Ok, needed to add a couple checks to deal with cases where write/read values are unconstrained. The full condition now is:

            } else if (instState.loadStore[i].var == instState.loadStore[j].var &&
                instState.isWrite(i) && instState.isRead(j) &&
                instState.getWriteValue(i) != -1 &&
                instState.getReadValue(j) != -1 &&
                instState.getWriteValue(i) != instState.getReadValue(j)) {

All tests pass when generated using this condition.

@reeselevine
Copy link
Author

I'm running into one other potentially buggy test outcome. Given this test:

NEWWG
NEWSG
NEWTHREAD
st.sc0 a = 1
ld.sc0 b = 1
NOSOLUTION consistent[X] && #dr=0

A solution is found where b reads from the initial state. However, my understanding is that we assume the initial state of memory is 0, so this should not occur.

Adding another constraint when generating rf fixes this, and all other tests pass as well. The > 0 condition is needed to account for unconstrained reads which may read from the initial state.

            } else if (i == j && instState.isRead(j) && instState.getReadValue(j) > 0) {
                o << "    E" << j << " not in X.RFINIT\n";

@reeselevine reeselevine mentioned this issue Sep 11, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@reeselevine