| //@compile-flags: -Zmiri-ignore-leaks -Zmiri-disable-stacked-borrows -Zmiri-disable-validation |
| // This test's runtime explodes if the GC interval is set to 1 (which we do in CI), so we |
| // override it internally back to the default frequency. |
| //@compile-flags: -Zmiri-provenance-gc=10000 |
| |
| // The following tests check whether our weak memory emulation produces |
| // any inconsistent execution outcomes |
| // |
| // Due to the random nature of choosing valid stores, it is always |
| // possible that our tests spuriously succeeds: even though our weak |
| // memory emulation code has incorrectly identified a store in |
| // modification order as being valid, it may be never chosen by |
| // the RNG and never observed in our tests. |
| // |
| // To mitigate this, each test is ran enough times such that the chance |
| // of spurious success is very low. These tests never spuriously fail. |
| |
| use std::sync::atomic::Ordering::*; |
| use std::sync::atomic::{AtomicBool, AtomicI32, Ordering, fence}; |
| use std::thread::spawn; |
| |
| #[derive(Copy, Clone)] |
| struct EvilSend<T>(pub T); |
| |
| unsafe impl<T> Send for EvilSend<T> {} |
| unsafe impl<T> Sync for EvilSend<T> {} |
| |
| // We can't create static items because we need to run each test |
| // multiple times |
| fn static_atomic(val: i32) -> &'static AtomicI32 { |
| Box::leak(Box::new(AtomicI32::new(val))) |
| } |
| fn static_atomic_bool(val: bool) -> &'static AtomicBool { |
| Box::leak(Box::new(AtomicBool::new(val))) |
| } |
| |
| /// Spins until it acquires a pre-determined value. |
| fn spin_until_i32(loc: &AtomicI32, ord: Ordering, val: i32) -> i32 { |
| while loc.load(ord) != val { |
| std::hint::spin_loop(); |
| } |
| val |
| } |
| |
| /// Spins until it acquires a pre-determined boolean. |
| fn spin_until_bool(loc: &AtomicBool, ord: Ordering, val: bool) -> bool { |
| while loc.load(ord) != val { |
| std::hint::spin_loop(); |
| } |
| val |
| } |
| |
| /// Test matching https://www.doc.ic.ac.uk/~afd/homepages/papers/pdfs/2017/POPL.pdf, Figure 7. |
| /// (The Figure 8 test is in `weak.rs`.) |
| fn test_corr() { |
| let x = static_atomic(0); |
| let y = static_atomic(0); |
| |
| let j1 = spawn(move || { |
| x.store(1, Relaxed); |
| x.store(2, Relaxed); |
| }); |
| |
| #[rustfmt::skip] |
| let j2 = spawn(move || { |
| let r2 = x.load(Relaxed); // -------------------------------------+ |
| y.store(1, Release); // ---------------------+ | |
| r2 // | | |
| }); // | | |
| #[rustfmt::skip] // |synchronizes-with |happens-before |
| let j3 = spawn(move || { // | | |
| spin_until_i32(&y, Acquire, 1); // <---------+ | |
| x.load(Relaxed) // <----------------------------------------------+ |
| }); |
| |
| j1.join().unwrap(); |
| let r2 = j2.join().unwrap(); |
| let r3 = j3.join().unwrap(); |
| // The two reads on x are ordered by hb, so they cannot observe values |
| // differently from the modification order. If the first read observed |
| // 2, then the second read must observe 2 as well. |
| if r2 == 2 { |
| assert_eq!(r3, 2); |
| } |
| } |
| |
| /// This test case is from: |
| /// http://svr-pes20-cppmem.cl.cam.ac.uk/cppmem/, "WRC" |
| /// Based on |
| /// M. Batty, S. Owens, S. Sarkar, P. Sewell and T. Weber, |
| /// "Mathematizing C++ concurrency", ACM SIGPLAN Notices, vol. 46, no. 1, pp. 55-66, 2011. |
| /// Available: https://www.cl.cam.ac.uk/~pes20/cpp/popl085ap-sewell.pdf. |
| fn test_wrc() { |
| let x = static_atomic(0); |
| let y = static_atomic(0); |
| |
| #[rustfmt::skip] |
| let j1 = spawn(move || { |
| x.store(1, Release); // ---------------------+---------------------+ |
| }); // | | |
| #[rustfmt::skip] // |synchronizes-with | |
| let j2 = spawn(move || { // | | |
| spin_until_i32(&x, Acquire, 1); // <---------+ | |
| y.store(1, Release); // ---------------------+ |happens-before |
| }); // | | |
| #[rustfmt::skip] // |synchronizes-with | |
| let j3 = spawn(move || { // | | |
| spin_until_i32(&y, Acquire, 1); // <---------+ | |
| x.load(Relaxed) // <-----------------------------------------------+ |
| }); |
| |
| j1.join().unwrap(); |
| j2.join().unwrap(); |
| let r3 = j3.join().unwrap(); |
| |
| assert_eq!(r3, 1); |
| } |
| |
| /// Another test from http://svr-pes20-cppmem.cl.cam.ac.uk/cppmem/: |
| /// MP (na_rel+acq_na) |
| fn test_message_passing() { |
| let mut var = 0u32; |
| let ptr = &mut var as *mut u32; |
| let x = EvilSend(ptr); |
| let y = static_atomic(0); |
| |
| #[rustfmt::skip] |
| let j1 = spawn(move || { |
| let x = x; // avoid field capturing |
| unsafe { *x.0 = 1 }; // -----------------------------------------+ |
| y.store(1, Release); // ---------------------+ | |
| }); // | | |
| #[rustfmt::skip] // |synchronizes-with | happens-before |
| let j2 = spawn(move || { // | | |
| let x = x; // avoid field capturing | | |
| spin_until_i32(&y, Acquire, 1); // <---------+ | |
| unsafe { *x.0 } // <---------------------------------------------+ |
| }); |
| |
| j1.join().unwrap(); |
| let r2 = j2.join().unwrap(); |
| |
| assert_eq!(r2, 1); |
| } |
| |
| /// Another test from http://svr-pes20-cppmem.cl.cam.ac.uk/cppmem/: |
| /// LB+acq_rel+acq_rel |
| fn test_load_buffering_acq_rel() { |
| let x = static_atomic(0); |
| let y = static_atomic(0); |
| let j1 = spawn(move || { |
| let r1 = x.load(Acquire); |
| y.store(1, Release); |
| r1 |
| }); |
| |
| let j2 = spawn(move || { |
| let r2 = y.load(Acquire); |
| x.store(1, Release); |
| r2 |
| }); |
| |
| let r1 = j1.join().unwrap(); |
| let r2 = j2.join().unwrap(); |
| |
| // 3 consistent outcomes: (0,0), (0,1), (1,0) |
| assert_ne!((r1, r2), (1, 1)); |
| } |
| |
| fn test_mixed_access() { |
| /* |
| int main() { |
| atomic_int x = 0; |
| {{{ |
| x.store(1, mo_relaxed); |
| }}} |
| |
| x.store(2, mo_relaxed); |
| |
| {{{ |
| r1 = x.load(mo_relaxed); |
| }}} |
| |
| return 0; |
| } |
| */ |
| let x = static_atomic(0); |
| |
| spawn(move || { |
| x.store(1, Relaxed); |
| }) |
| .join() |
| .unwrap(); |
| |
| x.store(2, Relaxed); |
| |
| let r2 = spawn(move || x.load(Relaxed)).join().unwrap(); |
| |
| assert_eq!(r2, 2); |
| } |
| |
| fn test_single_thread() { |
| let x = AtomicI32::new(42); |
| |
| assert_eq!(x.load(Relaxed), 42); |
| |
| x.store(43, Relaxed); |
| |
| assert_eq!(x.load(Relaxed), 43); |
| } |
| |
| fn test_sync_through_rmw_and_fences() { |
| // Example from https://github.com/llvm/llvm-project/issues/56450#issuecomment-1183695905 |
| #[no_mangle] |
| fn rdmw(storing: &AtomicI32, sync: &AtomicI32, loading: &AtomicI32) -> i32 { |
| storing.store(1, Relaxed); |
| fence(Release); |
| sync.fetch_add(0, Relaxed); |
| fence(Acquire); |
| loading.load(Relaxed) |
| } |
| |
| let x = static_atomic(0); |
| let y = static_atomic(0); |
| let z = static_atomic(0); |
| |
| // Since each thread is so short, we need to make sure that they truely run at the same time |
| // Otherwise t1 will finish before t2 even starts |
| let go = static_atomic_bool(false); |
| |
| let t1 = spawn(move || { |
| spin_until_bool(go, Relaxed, true); |
| rdmw(y, x, z) |
| }); |
| |
| let t2 = spawn(move || { |
| spin_until_bool(go, Relaxed, true); |
| rdmw(z, x, y) |
| }); |
| |
| go.store(true, Relaxed); |
| |
| let a = t1.join().unwrap(); |
| let b = t2.join().unwrap(); |
| assert_ne!((a, b), (0, 0)); |
| } |
| |
| fn main() { |
| for _ in 0..50 { |
| test_single_thread(); |
| test_mixed_access(); |
| test_load_buffering_acq_rel(); |
| test_message_passing(); |
| test_wrc(); |
| test_corr(); |
| test_sync_through_rmw_and_fences(); |
| } |
| } |
