Presentation is loading. Please wait.

Presentation is loading. Please wait.

Refining Abstract Locations Tachio Terauchi Jeff Foster Alex Aiken.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Refining Abstract Locations Tachio Terauchi Jeff Foster Alex Aiken."— Presentation transcript:

1 Refining Abstract Locations Tachio Terauchi Jeff Foster Alex Aiken

2 Using types to reason about state... spin_lock(f->lock);... spin_unlock(f->lock);... f->lock: unlocked spinlock_t f->lock: locked spinlock_t f->lock: unlocked spinlock_t

3 Handling aliases Solution – Abstract locations: set of concrete locations May alias analysis – Map states (types) to abstract locations. spin_lock(f->lock); spin_unlock(x); spin_unlock(f->lock);

4 Typing Judgement Abstract location –– Type –  := int |  | ref(  ) Store – C := C,    | ; C 1 ; Γ ` e :  ; C 2 – In environment Γ, e has type  and evaluating e changes the store from C 1 to C 2. C 1 ; Γ ` e : ref(  ) ; C 2 C 1 ; Γ ` spin_lock(e) : void; C 2 [   locked spinlock_t]

5 Problem: aliases Ideally – Single abstract location  single concrete location Reality – Single abstract location  many concrete locations typedef struct Foo { spinlock_t * lock; struct Foo * next; } * foo; void bar(foo f) { spin_lock(f->lock);... spin_unlock(f->next->lock)... spin_unlock(f->lock); }

6 Problem: aliases (continued) typedef struct Foo { spinlock_t * lock; struct Foo * next; } * foo; void bar(foo f) { spin_lock(f->lock)...... spin_unlock(f->lock) }

7 Ideas Obtain finer abstract locations with better alias analysis. – Subset-based alias analysis, one-level-flow alias analysis, cfl- reachability-based alias analysis, etc. – Work in progress… – But none of these will work on the list example. – More expensive analysis? This work: construct and study language features to allow programmers locally refine abstract locations.

8 The list example typedef struct Foo { spinlock_t * lock; struct Foo * next; } * foo; void bar(foo f) { spin_lock(f->lock)...... spin_unlock(f->lock) }

9 restrict restrict x = e 1 in e 2 – e 1 evaluates to a reference cell of the type ref(  ). – x has the type ref(  ’). –  must not be accessed in e 2. –  ’ must not be accessed outside of e 2. – Before and after the evaluation of e 2, the state of  ’ is equal to the state of . Intuition: separates the world of  ’ from the world of .

10 What can one do with restrict? Locally associate an abstract location with a single concrete location. void bar(spinlock_t * restrict lock) { spin_lock(lock);... spin_unlock(lock); }... bar(f->lock)...

11 What can one do with restrict? (2) Prevent local aliases from affecting the outside world. void bar(spinlock_t * restrict lock) { /* builds a local linked list of locks containing lock */ }... spinlock_t * newlock = new_lock(“a fresh lock”));... bar(newlock); spin_lock(newlock)...

12 Using restrict in existing programs Inferring restrict Extending restrict

13 Inferring restrict How often do programmers unknowingly declare “restrict” reference cells? Algorithm – Given a program annotated with standard reference cell types (e.g. ref int), – For each occurrence of “let x:ref  = e 1 in e 2 ”, check if it satisfies all of the restrict constraints. – If so, replace it with “restrict x:ref  = e 1 in e 2 ”.

14 Experience with inferring restrict C programs – Steensgaard’s alias analysis – Pointer declarations in function parameters. – Library functions Assume all abstract locations reachable from arguments and returns are accessed. – Mixed initial results 16 out of 60 in flex 40 out of 510 in sendmail 7 out of 387 in li

15 Limitation of restrict restrict needs a variable referring to the target location. – restrict x = e 1 in e 2

16 The list example typedef struct Foo { spinlock_t * lock; struct Foo * next; } * foo; void bar(foo f) { spin_lock(f->lock)...... spin_unlock(f->lock) }

17 Limitation of restrict restrict needs a variable referring to the target location. What to do when we want to “restrict” an arbitrary expression? –... spin_lock(f->lock)... –... spin_lock(xyz((abc+3)->d))...

18 Extending restrict restrict!! e 1 in e 2 – Outside of e 2, e 1 evaluates to a reference cell of the type ref(  ). – Within e 2, e 1 has the type ref(  ’). –  must not be accessed in e 2. –  ’ must not be accessed outside of e 2. – Before and after the evaluation of e 2, the state of  ’ is equal to the state of . – e 1 is referentially transparent in e 2.

19 Example typedef struct Foo { spinlock_t * lock; struct Foo * next; } * foo; void bar(foo f) { restrict!! f->lock in { spin_lock(f->lock)...... spin_unlock(f->lock) }

20 Further work More ways to locally refine abstract locations Relationship with other work on reasoning about states – Alias analysis, Existential Types, Dataflow analysis, model checking, Linear types, Monads

Download ppt "Refining Abstract Locations Tachio Terauchi Jeff Foster Alex Aiken."

Similar presentations

Type Checking, Inference, & Elaboration CS153: Compilers Greg Morrisett.

Type Checking, Inference, & Elaboration CS153: Compilers Greg Morrisett.
PLDI’2005Page 1June 2005 Example (C code) int double(int x) { return 2 * x; } void test_me(int x, int y) { int z = double(x); if (z==y) { if (y == x+10)

PLDI’2005Page 1June 2005 Example (C code) int double(int x) { return 2 * x; } void test_me(int x, int y) { int z = double(x); if (z==y) { if (y == x+10)
C Structures and Memory Allocation There is no class in C, but we may still want non- homogenous structures –So, we use the struct construct struct for.

C Structures and Memory Allocation There is no class in C, but we may still want non- homogenous structures –So, we use the struct construct struct for.
Context-Sensitive Interprocedural Points-to Analysis in the Presence of Function Pointers Presentation by Patrick Kaleem Justin.

Context-Sensitive Interprocedural Points-to Analysis in the Presence of Function Pointers Presentation by Patrick Kaleem Justin.
Programming Paradigms Introduction. 6/15/2005 Copyright 2005, by the authors of these slides, and Ateneo de Manila University. All rights reserved. L1:

Programming Paradigms Introduction. 6/15/2005 Copyright 2005, by the authors of these slides, and Ateneo de Manila University. All rights reserved. L1:
Structures Spring 2013Programming and Data Structure1.

Structures Spring 2013Programming and Data Structure1.
C++ Templates. What is a template? Templates are type-generic versions of functions and/or classes Template functions and template classes can be used.

C++ Templates. What is a template? Templates are type-generic versions of functions and/or classes Template functions and template classes can be used.
Demand-driven Alias Analysis Implementation Based on Open64 Xiaomi An

Demand-driven Alias Analysis Implementation Based on Open64 Xiaomi An
Flow-Insensitive Points-to Analysis with Term and Set Constraints Presentation by Kaleem Travis Patrick.

Flow-Insensitive Points-to Analysis with Term and Set Constraints Presentation by Kaleem Travis Patrick.
INF 212 ANALYSIS OF PROG. LANGS Type Systems Instructors: Crista Lopes Copyright © Instructors.

INF 212 ANALYSIS OF PROG. LANGS Type Systems Instructors: Crista Lopes Copyright © Instructors.
CS113 Introduction to C Instructor: Ioannis A. Vetsikas Lecture 7 : September 8.

CS113 Introduction to C Instructor: Ioannis A. Vetsikas Lecture 7 : September 8.
Compiler Construction

Compiler Construction
Checking and Inferring Local Non-Aliasing Alex AikenJeffrey S. Foster UC BerkeleyUMD College Park John KodumalTachio Terauchi UC Berkeley.

Checking and Inferring Local Non-Aliasing Alex AikenJeffrey S. Foster UC BerkeleyUMD College Park John KodumalTachio Terauchi UC Berkeley.
Aliases in a bug finding tool Benjamin Chelf Seth Hallem June 5 th, 2002.

Aliases in a bug finding tool Benjamin Chelf Seth Hallem June 5 th, 2002.
OOP in Java Nelson Padua-Perez Chau-Wen Tseng Department of Computer Science University of Maryland, College Park.

OOP in Java Nelson Padua-Perez Chau-Wen Tseng Department of Computer Science University of Maryland, College Park.
Catriel Beeri Pls/Winter 2004/5 type reconstruction 1 Type Reconstruction & Parametric Polymorphism  Introduction  Unification and type reconstruction.

Catriel Beeri Pls/Winter 2004/5 type reconstruction 1 Type Reconstruction & Parametric Polymorphism  Introduction  Unification and type reconstruction.
PSUCS322 HM 1 Languages and Compiler Design II Parameter Passing Material provided by Prof. Jingke Li Stolen with pride and modified by Herb Mayer PSU.

PSUCS322 HM 1 Languages and Compiler Design II Parameter Passing Material provided by Prof. Jingke Li Stolen with pride and modified by Herb Mayer PSU.
Catriel Beeri Pls/Winter 2004/5 environment 68  Some details of implementation As part of / extension of type-checking: Each declaration d(x) associated.

Catriel Beeri Pls/Winter 2004/5 environment 68  Some details of implementation As part of / extension of type-checking: Each declaration d(x) associated.
Copyright © 2008 Pearson Addison-Wesley. All rights reserved. Chapter 13 Pointers and Linked Lists.

Copyright © 2008 Pearson Addison-Wesley. All rights reserved. Chapter 13 Pointers and Linked Lists.
A Type-Checked Restrict Qualifier Jeff Foster OSQ Retreat May 9-10, 2001.

A Type-Checked Restrict Qualifier Jeff Foster OSQ Retreat May 9-10, 2001.

Similar presentations

Ads by Google