The purpose of this document is to describe in details the steps required to assess the artifact associated with our paper.
The artifact (artifact.tar.gz) contains (1) the source code for the Anon tool -- a tool for safe message-passing programming in Rust and (2) all required scripts and examples needed to reproduce the results from the paper:
Fearless Asynchronous Communications with Timed Session Types in Rust.
The artifact is submitted as a docker image.
The artifact claims a functional,
reusable and available badge.
The artifact (after building the docker image) contains
- The directory
mpst_rust_github-- a directory containing the source code of the Anon toolmpst_rust_github/examples-- contains many examples implemented using Anon, including all examples reported in Figures 11 and 12 in the papermpst_rust_github/scripts-- the scripts for reproducing the resultsmpst_rust_github/benches-- the examples for runtime benchmarks in Figures 11 and 12
- The directory
nuscrthat contains theNuscrsource code for generating Rust types fromNuscrprotocols
-
Functionality: Anon tool can be used for safe communication programming in Rust. In particular, you should be able to verify three claims from the paper:
-
Use Anon to write and verify affine timed protocols using MPST and
Nuscras explained in Section 2 in the paper. Check the claim by: following Part II: Step 1.1 -
Observe detected errors due to incompatible types, as explained in Section 5.4 in the paper. Check the claim by: following Part II: Step 1.2
-
-
Functionality: Reproduce the benchmarks in Section 5 (i.e., Table 2 and Figure 9)
2.1 claim expressiveness (Section 5.2 in the paper): examples in Table 2 can be expressed using Anon.
Check the claim by: Table 2 can be reproduced following the instructions in Part II: Step 2
2.1. claims on compile-time performance:
- the more participants there are, the higher is the compilation time for MPST
2.2. claims on run-time performance:
-
Anon is faster than the BC implementation when there are numerous interactions and participants (full-mesh protocol)
-
the worst-case scenario for Anon is protocols with many participants but no causalities between them which results in a slowdown when compared with BC. (ring protocol)
-
AMPST has a negligible overhead in comparison to MPST
Check claims 2.1 and 2.2 by: Figure 9 can be reproduced following the instructions in Part II: Step 3
-
Reusability: The Anon tool can be used to verify your own communication protocols and programs, follow the instructions in Part III
-
Availability: We agree our artifact to be published under a Creative Commons licence on DARTS.
Note on performance: the benchmark data in the paper was generated using an i7-7700K @ 8 x 4.20 GHz workstation (the tool makes heavy use of multicore, when available) with 1 TB of SDD, 32 GB memory, OS: Manjaro 23.0.0 LTS (64-bit), Rustup: 1.26, Rust cargo compiler: 1.70. Depending on your test machine, the absolute values of the measurements produced in Part II: Step 2 will differ from the paper. Nevertheless, the claims stated in the paper should be preserved.
To run all benchmarks reported in the paper, the reviewers need:
- a minimum of 8 GB RAM and 50 GB of disk space. The library itself is lightweight but the examples and benchmarks pose that requirement.
- to enable localhost access (note that it should be enabled by default unless you disabled it beforehand)
For the artifact evaluation, please use the docker image provided:
-
Install Docker and open the terminal and configure docker setting. Important: By Default docker is limited to use all the available RAM on Linux-based systems, and only 2GB-4GB RAM on other platforms, open docker settings and increase the RAM usage to 16 GB. See instructions for MacOS and Windows
-
Download the artifact file (assume the filename is
artifact.tar.gz) -
Unzip the artifact file.
gunzip artifact.tar.gz
-
You should see the tar file
artifact.tarafter the previous operation. -
Load the docker image
docker load < artifact.tar -
You should see at the end of the output after previous operation:
Loaded image: anon:latest
-
Run the docker container:
docker run -it --rm anon:latest
Note: You may need to run the above command with sudo. You also may have
- The Docker image comes with an installation of
vimandneovimfor editing. If you wish to install additional software for editing or other purposes, you may obtain sudo access with the passwordadmin. - Thereafter, we assume that you are in the mpst_rust_github directory of the docker file.
- Run the tests to make sure Anon is installed and configured correctly
cargo test --tests --all-features --workspace # Test all testsThe above command may take up to 15 min.
- Run the examples from Table 2:
cargo test --examples --all-features --workspace # Test all examplesThe above command may take up to 15 min.
- Run the benchmarks from Figure 9:
cargo test --benches --all-features --workspace # Test all benchmarksThe above command may take up to 15 min.
If your command results in an error (error: could not compile mpstthree; signal: 9, SIGKILL: kill), this indicated that you do not have a sufficient amount of RAM. Make sure that your docker is configured correctly, i.e, open docker settings and increase the RAM usage to 16 GB.
See instructions for MacOS and Windows.
Note: The commands from steps 1-3 can be run altogether with:
cargo test --all-targets --all-features --workspace # Test everything in the library- execute the following command
./scripts/top_down.shNext,
we highlight how concurrency errors are ruled out by Anon
(i.e., the ultimate practical purpose of Anon).
After each modification,
compile and run the program with cargo run --example=servo_generated --features="baking_atmp" and observe the reported error(s).
- Open the file servo_generated.rs in the
examples/folder, containing the Servo program, with your favourite text editor.
Suggested modifications:
- swap lines 104 and 105 (this can lead to a deadlock)
- use another communication primitive, replace
let (video, s) = s.recv()?;on line 106 withlet s = s.send(0)?;-- compilation errors because type mismatch - keep the changes from the previous modification and in addition modify the types at line 17, corresponding to line 106, from
RecvtoSend-- mismatch because of duality
The purpose of these examples is to demonstrate how the tool works on existing examples from the literature.
The examples in this table are located in the folder examples/.
The data for these benchmarks can be re-generated using the following script:
./scripts/examples_affine_atmp_literature_extra.sh # Will take up to one hour, progress is displayed in the terminal
python scripts/create_graphs/examples_literature_affine_atmp_check_build_release.py
python scripts/create_graphs/examples_extra_affine_atmp_check_build_release.pyEach example is compiled 10 times and is run 10,000 times.
Results are outputted in pdf files named graphs_bench/examples/extra_build_0.pdf, graphs_bench/examples/literature_build_0.pdf, graphs_bench/examples/extra_run_0.pdf and graphs_bench/examples/literature_run_0.pdf.
To open the files,
copy them to a local directory on your machine.
For detailed instructions on how to copy a docker folder to a local folder check
here.
In short, open a terminal,
type docker ps to check the name of the running docker container for anon:latest.
The command should return the id of the container.
Let assume this id is c4a9485b3222,
then given that "Documents/Docker" is a local directory in your system, execute the command:
docker cp c4a9485b3222:"home/anon/mpst_rust_github/graphs_bench/" "Documents/Docker"
The above will copy the graphs_bench folder from the docker container to your directory Documents/Docker.
The purpose of this set of benchmarks is to demonstrate the scalability of the tool on large examples.
You can run a small set of the benchmarks since the full benchmark set can take about 24 hours.
We have prepared a lighter version that should complete in about three hours.
The difference is that mesh and ring protocols are up to four participants (and not eight).
Each benchmark has a significance of 0.05 and each protocol is compiled 10 times and run 10,000 times.
These modifications are enough to start observing the performance trends (refer to claims about functionality at the beginning of this document).
To run the lighter benchmark suit:
cat scripts/toml/light_cargo.toml > Cargo.toml # Set up
cargo bench --bench="ring_*" --all-features -- --verbose # Run the benchmarks for the ring protocols
cargo bench --bench="mesh_*" --all-features -- --verbose # Run the benchmarks for the mesh protocols
##
python scripts/create_graphs/mesh_bench.py # Create graph for the runtime benchmarks for the mesh protocols
python scripts/create_graphs/mesh_compile.py # Create graph for the compile benchmarks for the mesh protocols
python scripts/create_graphs/ring_bench.py # Create graph for the runtime benchmarks for the ring protocols
python scripts/create_graphs/ring_compile.py # Create graph for the compile benchmarks for the ring protocolsResults: After running the above scripts, the graphs are saved in the graphs/mesh/ and graphs/ring/ folders.
To open the pdf files, copy the graphs/ folder to a local directory on your machine.
The files named compile_time_[n].pdf display the mean of the compilation time
benchmarks for the related protocols,
and the files named runtime_[n].pdf display the mean of the runtime
benchmarks for the related protocols,
where [n] is an integer.
To run the same set of benchmarks as in the paper, i.e, ping-pong for up to 500 iterations and ring and mesh for 10 participants execute the following commands:
cat scripts/toml/full_cargo.toml > Cargo.toml # Set upThen you can run the script:
./scripts/full_benches_compile_running.sh # This will take more than 24 hoursEach benchmark has a significance of 0.05 and a sample size of 100000 in this configuration.
Note: we have executed this script on a workstation, and running the whole script took over 24 hours. Progress is shown while running each benchmark.
You can also run one of the following scripts to retrieve results for only one kind of protocol:
./scripts/benches_runtime_mesh_ring.sh # For runtime for mesh and ring protocols
./scripts/full_benches_compile_mesh_ring.sh # For compile time for mesh and ring protocols
##
python scripts/create_graphs/mesh_bench.py # Create graph for the runtime benchmarks for the mesh protocols
python scripts/create_graphs/mesh_compile.py # Create graph for the compile benchmarks for the mesh protocols
python scripts/create_graphs/ring_bench.py # Create graph for the runtime benchmarks for the ring protocols
python scripts/create_graphs/ring_compile.py # Create graph for the compile benchmarks for the ring protocolsYou can write your own examples using generated types
from Nuscr (top-down approach)
In the top-down approach, protocols written in the protocol description language Nuscr are
used for generating Anon types.
You can use our implementation of a simple recursive protocol
that forwards (adds) a number between three participants.
The protocol is provided in the Nuscr repository as a start.
The protocol is located in Nuscr-java/Nuscr-demos/scrib/fib/src/fib/Fib.scr
Follow the steps to implement a simple *adder* example with Nuscr and **Anon**
1️⃣ Generate Rust Types from Nuscr
./scripts/top_down_adder.shIn the above example,
we move into the Nuscr-java folder and
run the Nuscr API for Rust on the Adder protocol written with Nuscr.
This command outputs the file adder_generated.rs
at the root of the Nuscr-java directory.
Then it moves the file adder_generated.rs
from the Nuscr-java folder to the examples subfolder
of the mpst_rust_github folder
and auto-format the file with cargo fmt.
Now,
you can open the examples/adder_generated.rs file
using your preferred editor program before testing the protocol directly with Anon.
➡️ From this point, we assume that you will remain in the mpst_rust_github folder.
2️⃣ Compile the Rust types
cargo run --example adder_generated --features baking_atmpThis command contains four parts:
cargowhich calls theRustcompilerrunfor compiling and running one or moreRustfiles--example adder_generatedfor running the specific exampleadder_generated--features baking_atmpfor compiling only specific parts of Anon used for the example.
You will have an error and several warnings when running the previous command.
This is because the Nuscr API only generates Rust types,
not the functions,
and the Rust compiler needs at least a main function.
Hereafter, we provide the code for the processes that implement the generated types.
3️⃣ Implement the endpoint programs for role A, B and C
/////////////////////////
fn endpoint_a(s: EndpointA48, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
all_clocks.insert('a', Instant::now());
let (_, s) = s.recv()?;
offer_mpst!(s, all_clocks, {
Branches0AtoC::Add(s) => {
recurs_a(s, all_clocks)
},
Branches0AtoC::Bye(s) => {
let (_,s) = s.recv(all_clocks)?;
s.close()
},
})
}
fn recurs_a(s: EndpointA23, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
let (_, s) = s.recv(all_clocks)?;
offer_mpst!(s, all_clocks, {
Branches0AtoC::Add(s) => {
recurs_a(s, all_clocks)
},
Branches0AtoC::Bye(s) => {
let (_,s) = s.recv(all_clocks)?;
s.close()
},
})
}
/////////////////////////
fn endpoint_b(s: EndpointB50, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
all_clocks.insert('a', Instant::now());
offer_mpst!(s, {
Branches0BtoC::Add(s) => {
let (_,s) = s.recv(all_clocks)?;
let s = s.send(0, all_clocks)?;
endpoint_b(s, all_clocks)
},
Branches0BtoC::Bye(s) => {
let (_,s) = s.recv(all_clocks)?;
let s = s.send((), all_clocks)?;
s.close()
},
})
}
/////////////////////////
fn endpoint_c(s: EndpointC13, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
all_clocks.insert('a', Instant::now());
let s = s.send(0, all_clocks)?;
recurs_c(s, 5, all_clocks)
}
fn recurs_c(s: EndpointC10, loops: i32, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
if loops <= 0 {
let s: EndpointC7 = choose_mpst_c_to_all!(s, all_clocks, Branches0AtoC::Add, Branches0BtoC::Add);
let s = s.send(0, all_clocks)?;
recurs_c(s, loops - 1, all_clocks)
} else {
let s: EndpointC9 = choose_mpst_c_to_all!(s, all_clocks, Branches0AtoC::Bye, Branches0BtoC::Bye);
let s = s.send((), all_clocks)?;
s.close()
}
}
/////////////////////////
fn main() {
let (thread_a, thread_b, thread_c) = fork_mpst(endpoint_a, endpoint_b, endpoint_c);
thread_a.join().unwrap();
thread_b.join().unwrap();
thread_c.join().unwrap();
}There are four different parts:
the first three ones are for
representing the different roles, A, B and C involved
in the protocol,
and the last one (the main function) runs
all processes together.
In the first three parts, we are using the primitives described in Table 1 of the paper:
send(p, all_clocks)for sending a payloadpif the clock inall_clocksis within the time boundsrecv(all_clocks)for receiving a payload if the clock inall_clocksis within the time boundsoffer_mpst!for receiving a choice if the clock inall_clocksis within the time boundschoose_mpst_c_to_all!for sending a choice if the clock inall_clocksis within the time bounds
The main function uses fork_mpst to fork the different threads.
All those primitives are generated using
the macro baker!.
Now, if you run again the file, it should run correctly:
cargo run --example adder_generated --features bakingBenchmark setup in the paper
All set-up and benchmarks were performed on the following machine:- i7-7700K @ 8 x 4.20 GHz, 32 GB memory, 1 TB of SSD, OS: Manjaro 23.0.0 LTS (64-bit), Rustup: 1.26, Rust cargo compiler: 1.70
The original benchmarks were generated using:
- Compile and run:
cargo bench --all-targets --all-features --workspace
Generating documentation for **Anon**
The documentation of **Anon** can be generated with the command `cargo doc --all-features`. The generated documentation will be accessible in the file [target/doc/mpstthree/index.html](target/doc/mpstthree/index.html).The source code is included in the root directory.
Rust commands on build, test, compile
Here is a general description of all commands you can run to check, build and test.
cd mpst_rust_github # Move to anon's repository
cargo check --all-features --lib --workspace # Check only this package's library
cargo check --all-features --bins --workspace # Check all binaries
cargo check --all-features --examples --workspace # Check all examples
cargo check --all-features --tests --workspace # Check all tests
cargo check --all-features --benches --workspace # Check all benchmarks
##
cargo build --all-features --lib --workspace # Build only this package's library
cargo build --all-features --bins --workspace # Build all binaries
cargo build --all-features --examples --workspace # Build all examples
cargo build --all-features --tests --workspace # Build all tests
cargo build --all-features --benches --workspace # Build all benchmarks
##
cargo test --all-features --lib --workspace # Test only this package's library
cargo test --all-features --bins --workspace # Test all binaries
cargo test --all-features --examples --workspace # Test all examples
cargo test --all-features --tests --workspace # Test all tests
cargo test --all-features --benches --workspace # Test all benchmarks
Nuscr commands
Assuming you know how to write Nuscr protocols,
put your own in the folder ../Nuscr-java/Nuscr-demos/scrib/fib/
and use:
cd Nuscr-java/
./Nuscr-dist/target/Nuscrc.sh -ip Nuscr-demos/scrib/fib/src -d Nuscr-demos/scrib/fib/src Nuscr-demos/scrib/fib/src/fib/[input file without extension].scr -rustapi [name of the protocol] [output file without extension]
cd ..
mv Nuscr-java/[input file without extension].rs mpst_rust_github/examples/[output file without extension].rs
cd mpst_rust_github/Need help?: This example is implemented in examples/basic.rs,
hence you can use the file as a reference implementation.
1️⃣ First, import the necessary macros from the Anon library:
use mpstthree::binary::struct_trait::end::End; // The basic End types
use mpstthree::binary_atmp::struct_trait::{recv::RecvTimed, send::SendTimed}; // The basic timed types
use mpstthree::generate_atmp; // The macro for generating the roles and the MeshedChannels
use mpstthree::role::broadcast::RoleBroadcast; // Optional: used only for protocols with choice/offer
use mpstthree::role::end::RoleEnd; // The final type for the stacks and the names of the roles
use std::collections::HashMap; // Used for storing clocks
use std::error::Error; // Used for functions returning _affine_ types
use std::time::Instant; // Used for clocks2️⃣ Then create the roles and the MeshedChannels data structure:
generate_atmp!(MeshedChannels, A, B); // generates meshed channels for 3 rolesThe new generated types will be MeshedChannels
and NameX where X is the provided name in the macro inputs.
2️⃣ Write the MeshedChannels types
A good practice is to write the simplest types first,
and concatenate them into MeshedChannels.
That is why we will first write down the types
used for representing the roles:
// Payload types
struct Request;
struct Response;
struct Stop;Then we will write each binary type:
// Binary types for A
type StartA0 = RecvTimed<Request, 'a', 0, true, 10, true, ' ', SendTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>>; // RecvTimed a Request then SendTimed a choice
type OrderingA0 = RoleB<RoleBroadcast>; // Stack for recv then sending a choice
type LoopA0 = SendTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>; // SendTimed a choice
type OrderingLoopA0 = RoleBroadcast; // Stack for sending a choice
type MoreA1 = RecvTimed<Response, 'a', 0, true, 10, true, ' ', SendTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>>; // RecvTimed Response then send a choice
type OrderingMoreA1 = RoleB<RoleBroadcast>; // Stack for the previous binary type
type DoneA1 = RecvTimed<Stop, 'a', 0, true, 10, true, ' ', End>; // RecvTimed Stop
type OrderingDoneA1 = RoleB<RoleEnd>; // Stack for the previous binary type
// Binary types for B
type StartB0 = SendTimed<Request, 'a', 0, true, 10, true, ' ', RecvTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>>; // SendTimed a Request then RecvTimed a choice
type OrderingB0 = RoleA<RoleA<RoleEnd>>; // Stack for send then receiving a choice from A
type LoopB0 = RecvTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>; // RecvTimed a choice
type OrderingLoopB0 = RoleA<RoleEnd>; // Stack for recv a choice
type MoreB1 = SendTimed<Response, 'a', 0, true, 10, true, ' ', RecvTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>>; // RecvTimed Request then SendTimed Response then receive a choice
type OrderingMoreB1 = RoleA<RoleA<RoleEnd>>; // Stack for the previous binary type
type DoneB1 = SendTimed<Stop, 'a', 0, true, 10, true, ' ', End>; // SendTimed Stop
type OrderingDoneB1 = RoleA<RoleEnd>; // Stack for the previous binary type
enum Branching0fromAtoB {
// Sum type containing the different paths of the choice
More(MeshedChannels<MoreB1, OrderingMoreB1, NameB>),
Done(MeshedChannels<DoneB1, OrderingDoneB1, NameB>),
}This protocol is recursive as you may have noticed
with MoreB1 both inside the enum type Branching0fromAtoB
and containing RecvTimed<Branching0fromAtoB, 'a', 0, true, 10, true, ' ', End>.
The two paths are More and Done.
We are now going to concatenate the previous types
into MeshedChannels:
// Creating the endpoints
// A
type EndpointAMore = MeshedChannels<MoreA1, OrderingMoreA1, NameA>;
type EndpointADone = MeshedChannels<DoneA1, OrderingDoneA1, NameA>;
type EndpointALoop = MeshedChannels<LoopA0, OrderingLoopA0, NameA>;
type EndpointA = MeshedChannels<StartA0, OrderingA0, NameA>;
// B
type EndpointBLoop = MeshedChannels<LoopB0, OrderingLoopB0, NameB>;
type EndpointB = MeshedChannels<StartB0, OrderingB0, NameB>;3️⃣ Check that the types are correct with:
cargo check --example my_basic --features baking_atmpNo errors should be displayed, only warnings of unused types.
4️⃣ Implement the endpoint processes for A, B by removing the line fn main() {}
and appending the following code:
fn endpoint_a(s: EndpointA, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
all_clocks.insert('a', Instant::now());
let (_, s) = s.recv(all_clocks)?;
recurs_a(s, 5, all_clocks)
}
fn recurs_a(s: EndpointALoop, loops: i32, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
if loops > 0 {
let s: EndpointAMore = choose_mpst_a_to_all!(s, all_clocks, Branching0fromAtoB::More);
let (_, s) = s.recv(all_clocks)?;
recurs_a(s, loops - 1, all_clocks)
} else {
let s: EndpointADone = choose_mpst_a_to_all!(s, all_clocks, Branching0fromAtoB::Done);
let (_, s) = s.recv(all_clocks)?;
s.close()
}
}
fn endpoint_b(s: EndpointB, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
all_clocks.insert('a', Instant::now());
let s = s.send(Request {}, all_clocks)?;
recurs_b(s, all_clocks)
}
fn recurs_b(s: EndpointBLoop, all_clocks: &mut HashMap<char, Instant>) -> Result<(), Box<dyn Error>> {
offer_mpst!(s, all_clocks, {
Branching0fromAtoB::More(s) => {
let s = s.send(Response {}, all_clocks)?;
recurs_b(s, all_clocks)
},
Branching0fromAtoB::Done(s) => {
let s = s.send(Stop {}, all_clocks)?;
s.close()
},
})
}
fn main() {
let (thread_a, thread_b) = fork_mpst(endpoint_a, endpoint_b);
thread_a.join().unwrap();
thread_b.join().unwrap();
}5️⃣ Run the example again:
cargo run --example my_basic --features baking_atmpThe authors wish to thank Martin Vassor for their comments and testing the artifact, and the anonymous reviewers for their comments and suggestions.
Funding The work is partially supported by VeTSS, EPSRC EP/K011715/1, EP/K034413/1, EP/L00058X/1, EP/N027833/1, EP/N028201/1, EP/T006544/1 and EP/T014709/1.