BMC for Weak Memory Models: Relation Analysis for Compact SMT Encodings

We present DARTAGNAN, a bounded model checker (BMC) for concurrent programs under weak memory models. Its distinguishing feature is that the memory model is not implemented inside the tool but taken as part of the input. DARTAGNAN reads CAT, the standard language for memory models, which allows to define x86/TSO, ARMv7, ARMv8, POWER, C/C++, and LINUX kernel concurrency primitives. BMC with memory models as inputs is challenging. One has to encode into SMT not only the program but also its semantics as defined by the memory model. What makes DARTAGNAN scale is its relation analysis, a novel static analysis that significantly reduces the size of the encoding. DARTAGNAN matches or even exceeds the performance of the model-specific verification tools NIDHUGG and CBMC, as well as the performance of HERD, a CAT-compatible litmus testing tool. Compared to the unoptimized encoding, the speed-up is often more than two orders of magnitude.