Many-core compiler fuzzing

Lidbury, Christopher; Lascu, Andrei; Chong, Nathan; Donaldson, Alastair F.

doi:10.1145/2813885.2737986

Cited by 77 publications

(71 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We see several avenues for future investigation: (a) the design of GPU weak memory-aware formal program analysis techniques (to enable verification of our empirically proposed fixes); (b) architectural investigation of the critical patches revealed by our micro-benchmarks, building on the insights into Nvidia GPUs provided by GPGPU-Sim [1]; (c) applying and evaluating our methods to CPU architectures and applications; (d) combining our techniques with recent methods for GPU compiler testing [29] in order to check the correctness of compilation in the presence of fine-grained concurrency; (e) combining our techniques with race detectors to help pinpoint communication idioms in applications and developing targeted testing around these locations.…”

Section: Discussionmentioning

confidence: 99%

Exposing errors related to weak memory in GPU applications

Sorensen

Donaldson

2016

SIGPLAN Not.

Self Cite

View full text Add to dashboard Cite

We present the systematic design of a testing environment that uses stressing and fuzzing to reveal errors in GPU applications that arise due to weak memory effects. We evaluate our approach on seven GPUs spanning three Nvidia architectures, across ten CUDA applications that use fine-grained concurrency. Our results show that applications that rarely or never exhibit errors related to weak memory when executed natively can readily exhibit these errors when executed in our testing environment. Our testing environment also provides a means to help identify the root causes of such errors, and automatically suggests how to insert fences that harden an application against weak memory bugs. To understand the cost of GPU fences, we benchmark applications with fences provided by the hardening strategy as well as a more conservative, sound fencing strategy.

show abstract

Section: Discussionmentioning

confidence: 99%

Exposing errors related to weak memory in GPU applications

Sorensen

Donaldson

2016

SIGPLAN Not.

Self Cite

View full text Add to dashboard Cite

show abstract

“…Our approach takes advantage of the recent work on testing compilers [22], [23], [34], especially the work of Regehr et al on program generation [34] and reduction [27]. Combined with our technique for generating program variants in three different modes and a set of appropriate oracles, we show that these techniques are effective at finding bugs in symbolic execution engines.…”

Section: Related Workmentioning

confidence: 94%

Automatic testing of symbolic execution engines via program generation and differential testing

Kapus

Cadar

2017

2017 32nd IEEE/ACM International Conference on Automated Software Engineering (ASE)

View full text Add to dashboard Cite

Abstract-Symbolic execution has attracted significant attention in recent years, with applications in software testing, security, networking and more. Symbolic execution tools, like CREST, KLEE, FuzzBALL, and Symbolic PathFinder, have enabled researchers and practitioners to experiment with new ideas, scale the technique to larger applications and apply it to new application domains. Therefore, the correctness of these tools is of critical importance.In this paper, we present our experience extending compiler testing techniques to find errors in both the concrete and symbolic execution components of symbolic execution engines. The approach used relies on a novel way to create program versions, in three different testing modes-concrete, single-path and multi-path-each exercising different features of symbolic execution engines. When combined with existing program generation techniques and appropriate oracles, this approach enables differential testing within a single symbolic execution engine.We have applied our approach to the KLEE, CREST and FuzzBALL symbolic execution engines, where it has discovered 20 different bugs exposing a variety of important errors having to do with the handling of structures, division, modulo, casting, vector instructions and more, as well as issues related to constraint solving, compiler optimisations and test input replay.

show abstract

“…Because it will not be executed, arbitrary syntactically valid code can be injected, including code that would invoke undefined behaviour. In [5] we experimented with injecting code generated by a fuzzer. In our GLSL testing framework we instead consider transplanting code fragments from one real-world shader program into another (see Section 3).…”

Section: Metamorphic Compiler Testing Via Opaque Value Injectionmentioning

confidence: 99%

“…[4,5,6,7,8]). A notable method for testing compilers is random differential testing, popularised by the Csmith tool [8], whereby a program is randomly generated (a process known as fuzzing) and then compiled by different compilers at multiple optimisation levels.…”

Section: Introductionmentioning

confidence: 99%

“…A metamorphic approach has also been used to test compilers by generating input programs that are equivalent by construction [7]. In recent work on testing compilers for the OpenCL manycore programming language, we experimented with a variation of EMI testing where instead of identifying existing Idead code, we injected I-dead code into programs [5]. This works by introducing a new program input variable, v say, and injecting conditional code of the form:…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation