Mathematizing C++ concurrency

Authors:
Mark Batty;Scott Owens;Susmit Sarkar;Peter Sewell;Tjark Weber
Affiliations:
University of Cambridge, Cambridge, United Kingdom;University of Cambridge, Cambridge, United Kingdom;University of Cambridge, Cambridge, United Kingdom;University of Cambridge, Cambridge, United Kingdom;University of Cambridge, Cambridge, United Kingdom
Venue:
Proceedings of the 38th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Year:
2011

Citing 17
Cited 24

The SPARC architecture manual (version 9)

The SPARC architecture manual (version 9)
An open graph visualization system and its applications to software engineering

Software—Practice & Experience - Special issue on discrete algorithm engineering
CIL: Intermediate Language and Tools for Analysis and Transformation of C Programs

CC '02 Proceedings of the 11th International Conference on Compiler Construction
The Java memory model

Proceedings of the 32nd ACM SIGPLAN-SIGACT symposium on Principles of programming languages
How to Make a Multiprocessor Computer That Correctly Executes Multiprocess Programs

IEEE Transactions on Computers
Foundations of the C++ concurrency memory model

Proceedings of the 2008 ACM SIGPLAN conference on Programming language design and implementation
On Validity of Program Transformations in the Java Memory Model

ECOOP '08 Proceedings of the 22nd European conference on Object-Oriented Programming
The semantics of x86-CC multiprocessor machine code

Proceedings of the 36th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
A Better x86 Memory Model: x86-TSO

TPHOLs '09 Proceedings of the 22nd International Conference on Theorem Proving in Higher Order Logics
The java memory model: operationally, denotationally, axiomatically

ESOP'07 Proceedings of the 16th European conference on Programming
Kodkod: a relational model finder

TACAS'07 Proceedings of the 13th international conference on Tools and algorithms for the construction and analysis of systems
x86-TSO: a rigorous and usable programmer's model for x86 multiprocessors

Communications of the ACM
Memory models: a case for rethinking parallel languages and hardware

Communications of the ACM
MemSAT: checking axiomatic specifications of memory models

PLDI '10 Proceedings of the 2010 ACM SIGPLAN conference on Programming language design and implementation
Reasoning about the implementation of concurrency abstractions on x86-TSO

ECOOP'10 Proceedings of the 24th European conference on Object-oriented programming
Fences in weak memory models

CAV'10 Proceedings of the 22nd international conference on Computer Aided Verification
Nitpick: a counterexample generator for higher-order logic based on a relational model finder

ITP'10 Proceedings of the First international conference on Interactive Theorem Proving

Relaxed-memory concurrency and verified compilation

Proceedings of the 38th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Extended sequential reasoning for data-race-free programs

Proceedings of the 2011 ACM SIGPLAN Workshop on Memory Systems Performance and Correctness
Understanding POWER multiprocessors

Proceedings of the 32nd ACM SIGPLAN conference on Programming language design and implementation
A case for an SC-preserving compiler

Proceedings of the 32nd ACM SIGPLAN conference on Programming language design and implementation
Safe optimisations for shared-memory concurrent programs

Proceedings of the 32nd ACM SIGPLAN conference on Programming language design and implementation
Nitpicking c++ concurrency

Proceedings of the 13th international ACM SIGPLAN symposium on Principles and practices of declarative programming
Lem: a lightweight tool for heavyweight semantics

ITP'11 Proceedings of the Second international conference on Interactive theorem proving
Clarifying and compiling C/C++ concurrency: from C++11 to POWER

POPL '12 Proceedings of the 39th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Can seqlocks get along with programming language memory models?

Proceedings of the 2012 ACM SIGPLAN Workshop on Memory Systems Performance and Correctness
Synchronising C/C++ and POWER

Proceedings of the 33rd ACM SIGPLAN conference on Programming Language Design and Implementation
Concurrent library correctness on the TSO memory model

ESOP'12 Proceedings of the 21st European conference on Programming Languages and Systems
Java and the java memory model -- a unified, machine-checked formalisation

ESOP'12 Proceedings of the 21st European conference on Programming Languages and Systems
False concurrency and strange-but-true machines

CONCUR'12 Proceedings of the 23rd international conference on Concurrency Theory
Show no weakness: sequentially consistent specifications of TSO libraries

DISC'12 Proceedings of the 26th international conference on Distributed Computing
Library abstraction for C/C++ concurrency

POPL '13 Proceedings of the 40th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Quarantining weakness: compositional reasoning under relaxed memory models

ESOP'13 Proceedings of the 22nd European conference on Programming Languages and Systems
Fast RMWs for TSO: semantics and implementation

Proceedings of the 34th ACM SIGPLAN conference on Programming language design and implementation
CompCertTSO: A Verified Compiler for Relaxed-Memory Concurrency

Journal of the ACM (JACM)
Compiler testing via a theory of sound optimisations in the C11/C++11 memory model

Proceedings of the 34th ACM SIGPLAN conference on Programming language design and implementation
CDSchecker: checking concurrent data structures written with C/C++ atomics

Proceedings of the 2013 ACM SIGPLAN international conference on Object oriented programming systems languages & applications
Relaxed separation logic: a program logic for C11 concurrency

Proceedings of the 2013 ACM SIGPLAN international conference on Object oriented programming systems languages & applications
Making the java memory model safe

ACM Transactions on Programming Languages and Systems (TOPLAS)
Replicated data types: specification, verification, optimality

Proceedings of the 41st ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages
A trusted mechanised JavaScript specification

Proceedings of the 41st ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages

Quantified Score

Hi-index	0.00

Visualization

Abstract

Shared-memory concurrency in C and C++ is pervasive in systems programming, but has long been poorly defined. This motivated an ongoing shared effort by the standards committees to specify concurrent behaviour in the next versions of both languages. They aim to provide strong guarantees for race-free programs, together with new (but subtle) relaxed-memory atomic primitives for high-performance concurrent code. However, the current draft standards, while the result of careful deliberation, are not yet clear and rigorous definitions, and harbour substantial problems in their details. In this paper we establish a mathematical (yet readable) semantics for C++ concurrency. We aim to capture the intent of the current (`Final Committee') Draft as closely as possible, but discuss changes that fix many of its problems. We prove that a proposed x86 implementation of the concurrency primitives is correct with respect to the x86-TSO model, and describe our Cppmem tool for exploring the semantics of examples, using code generated from our Isabelle/HOL definitions. Having already motivated changes to the draft standard, this work will aid discussion of any further changes, provide a correctness condition for compilers, and give a much-needed basis for analysis and verification of concurrent C and C++ programs.