Presentation is loading. Please wait.

Presentation is loading. Please wait.

Deriving Pre-Condition for ABCE1 Deriving Preconditions for Array Bound Check Elimination Dana N. XU Joint work with W.N. CHIN and S.C. KHOO Dept of Computer.

Published byRoland Martin Modified over 9 years ago

Similar presentations

Presentation on theme: "Deriving Pre-Condition for ABCE1 Deriving Preconditions for Array Bound Check Elimination Dana N. XU Joint work with W.N. CHIN and S.C. KHOO Dept of Computer."— Presentation transcript:

1 Deriving Pre-Condition for ABCE1 Deriving Preconditions for Array Bound Check Elimination Dana N. XU Joint work with W.N. CHIN and S.C. KHOO Dept of Computer Science School of Computing National University of Singapore

2 Deriving Pre-Condition for ABCE2 enen e n-1 e n-2 …e4e4 e3e3 e2e2 e1e1 0123n-3n-2n-1 sub arr i = if (0  i < n) then primeSub (arr, i); else error “out of bound” arr i = Array Bound Checks

3 Deriving Pre-Condition for ABCE3 enen e n-1 e n-2 …e4e4 e3e3 e2e2 e1e1 0123n-3n-2n-1 sub arr i = if (0  i < n) then primeSub(A, i); else error “out of bound” arr i = Array Bound Checks Elimination

4 Deriving Pre-Condition for ABCE4 Motivation Checks are expensive. Precise Exception + Unsafe Checks => Less Optimisation Main difficulties recursive procedures partial redundancy

5 Deriving Pre-Condition for ABCE5 Our Solutions Base on Sized Typing Presburger Constraint Solving Partial Redundancy via Pre-conditions Derivation Utilize Recursive Invariants

6 Deriving Pre-Condition for ABCE6 Outline of Talk Motivation Language, Sized Types & Presburger Solver Key Idea Bound Checks Elimination Procedure Context Synthesis Deriving Weakest Pre-Condition Converting Preconditions to Checks Bound Check Specialisation

7 Deriving Pre-Condition for ABCE7 Language

8 Deriving Pre-Condition for ABCE8 Sized Type and Presburger Arithmetic

9 Deriving Pre-Condition for ABCE9 Binary Search Example

10 Deriving Pre-Condition for ABCE10 Example: getmid(arr,lo,hi) = let m=(lo+hi)/2 in let x=L@H@sub(arr,m) in (m,x) Polymorphic type: getmid :: (Arr ,Int,Int)  (Int,  ) sub :: (Arr ,Int)  

11 Deriving Pre-Condition for ABCE11 Example: getmid(arr,lo,hi) = let m=(lo+hi)/2 in let x=L@H@sub(arr,m) in (m,x) Sized type sub :: (Arr a ,Int i )  (  ) Size Size getmid :: (Arr a ,Int l,Int h )  (Int m,  ) Size Size (a>=0)  (2m =l+h) (a>=0)

12 Deriving Pre-Condition for ABCE12 Key Idea f(v 1,..,v n ) = … L@e … ctx(L) chk(L) Weakest pre-condition that can ensure that chk is safe under given context ctx is: pre =  ctx  chk

13 Deriving Pre-Condition for ABCE13 f a x = if (x>=5) then a!x else 0 It is safe to remove lower bound check under the condition : (x>=5) Ç x ¸ 0 It is safe to remove higher bound check under the condition : (x>=5) Ç x<(length a -1) pre =  ctx  chk

14 Deriving Pre-Condition for ABCE14 Example: newsub :: (Arr a ,Int i,Int j )  Int r newsub(arr,i,j) = if (0<=i<=j) then L1@H1@sub(arr,i) else -1 We have: ctx(L1)= (a>=0)  (0<=i<=j) chk(L1)= (i>=0) pre(L1) =  ctx(L1)  chk(L1) =  (a>=0  0 =0) = True

15 Deriving Pre-Condition for ABCE15 Example: newsub :: (Arr a ,Int i,Int j )  Int r newsub(arr,i,j) = if (0<=i<=j) then L1@H1@sub(arr,i) else -1 We have: ctx(H1) = (a>=0  0<=i<=j) chk(H1)= (i<a) pre(H1) =  ctx(H1)  chk(H1) =  (a>=0  0<=i<=j)  (i<a) = (i<=-1)  (j<i  0<=i)  (i<a) check avoidance

16 Deriving Pre-Condition for ABCE16 Check Classification Totally redundant Unsafe/unknown Partially redundant pre(L) = True pre(L) = False pre(L)  ctx(L)  chk(L)

17 Deriving Pre-Condition for ABCE17 Example: getmid(arr,lo,hi) = let m=(lo+hi)/2 in let x=L@H@sub(arr,m) in (m,x) Sized type sub :: (Arr a ,Int i )   Size Size (a>=0) getmid :: (Arr a ,Int l,Int h )  (Int m,  ) Size Size (a>=0)  (2m =l+h) Req Req L : (i>=0), H : (i < a) (1) Required Checks ctx(L) = ctx(H) = (2m =l+h) (2) Context Synthesis Req Req pre(L) : (0<= l+h), pre(H) : (l+h < 2a) (3) Derived Precondition

18 Deriving Pre-Condition for ABCE18 Check Elimination : Steps 1.Context Synthesis 2.Pre-condition Derivation 3.From Pre-condition to Check 4.Bound Check Specialisation

19 Deriving Pre-Condition for ABCE19 Context Synthesis Algorithm

20 Deriving Pre-Condition for ABCE20 Check Elimination : Steps 1.Context Synthesis 2.Pre-condition Derivation 3.From Pre-condition to Check 4.Bound Check Specialisation

21 Deriving Pre-Condition for ABCE21 Precondition of Recursion Make use of size invariant Separate analyses for first recursive call other recursive calls

22 Deriving Pre-Condition for ABCE22 Sized Invariant look(arr,lo,hi,key) =if (lo<=hi) then let (m,x)=L4@H4@getmid(arr,lo,hi) in let t=cmp(key,x0) in if (t<0) then look(arr,lo,m-1,key) else if (t==0) then m else look(arr,m+1,hi,key) else -1 sized type: look :: (Arr a Int,Int l,Int h,Int)  Int r size size (a>=0)  ( (l h)  (r = -1)) ) inv (a* = a)  (l <= h,l*)  (h* <=h)  (2+2h+2h* <= l+3l*)  (l+2h* <= h+2l*)

23 Deriving Pre-Condition for ABCE23 Recursive Procedure Two Checks chkFst(L4) = 0<=l+h chkRec(L4) = 0<=l*+h* Two Contexts ctxFst(L4) = (l<=h) ctxRec(L4) = (l*<=h*)  (a*=a)  (l<=h,l*)  (h*<=h)  (2+2h+2h*<=l+3l*)  (l+2h*<=h+2l*) Combined Precondition Two Preconditions preFst(L4) =  ctxFst(L4)  chkFst(L4) = (h<l)  (0<=l+h) preRec(L4) =  ctxRec(L4)  chkRec(L4) = (h<=l)  (0<=l<h)  (l=-1  h=0) pre(L4) = preFst(L4)  preRec(L4) = (h<l)  (0<=l+h  0<=l)

24 Deriving Pre-Condition for ABCE24 Check Elimination : Steps 1.Context Synthesis 2.Pre-condition Derivation 3.From Pre-condition to Check 4.Bound Check Specialisation

25 Deriving Pre-Condition for ABCE25 Interprocedural propagation of safety pre-condition to become check. Conversion Formulae used: chk(C)=  X. pre(L)  subs(C) Converting Preconditions to Checks

26 Deriving Pre-Condition for ABCE26 Converting Preconditions to Checks chk(L5) =  l,h. pre(L4)  subs(L5) = (v<=0)  (1<=v) chk(H5) =  l,h. pre(H4)  subs(H5) = (v<=0)  (v<=a,2a) look(arr,lo,hi,k) =… L4@H4@getmid(arr,lo,hi)… pre(L4) = (h<l)  (0<=l+h  0<=l) pre(H4) = (h<=l)  (h<a  l+h<2a) bsearch(arr,key) = let v=length(arr) in L5@H5@look(arr,0,v-1,key) subs(L5) = subs(H5) = (l=0)  (h=v-1)

27 Deriving Pre-Condition for ABCE27 Interprocedural Propagation chk(L5) = (v<=0  1<=v) chk(H5) = (v<=0  v<=a,2a) bsearch(arr,key) = let v=length(arr) in L5@H5@look(arr,0,v-1,key) ctx(L5) = ctx(H5) = (a>=0  v=a) pre(L5) =  ctx(L5)  chk(L5) =  v  (a>=0  v=a)  (v<=0  1<=v) = True pre(H5) =  ctx(H5)  chk(H5) =  v  (a>=0  v=a)  (v<=0  v<=a,2a) = True

28 Deriving Pre-Condition for ABCE28 Check Elimination : Steps 1.Context Synthesis 2.Pre-condition Derivation 3.From Pre-condition to Check 4.Bound Check Specialisation

29 Deriving Pre-Condition for ABCE29 Bound Check Specialisation bsearch(arr,key) = let v=length(arr) in L5@H5@look(arr,0,v-1,key) pre(L5) = True pre(H5) = True Guided by each set of Satisfiable Pre-Conditions lookL4H4(arr,l,h,k) = look(arr,l,h,k) st pre(L4)  pre(H4) = … getmidLH(arr,lo,hi)… look(arr,lo,hi,k) =… L4@H4@getmid(arr,lo,hi)… getmidLH(arr,l,h) = getmid(arr,l,h) st pre(L)  pre(H) = … subLH(arr,m)… getmid(arr,l,h) = … L@H@sub(arr,m)…

30 Deriving Pre-Condition for ABCE30 Bound Check Specialization Space-Time Trade-Off Polyvariant (a version for each context of use) Monovariant (a common minimal version) Duovariant (a minimal and a maximal version)

31 Deriving Pre-Condition for ABCE31 Cost of Analysis (Constraint Solving)

32 Deriving Pre-Condition for ABCE32 Contributions Combined Analysis Forward Analysis for Context Backward Analysis for Pre-condition Recursive Procedures Partial Redundancy without Code Motion. Guided Bound Check Specialisation.

33 Deriving Pre-Condition for ABCE33 Future Work Higher-order and polymorphic extension Other Safety Checks. Component Analysis. Imperative Languages

34 Deriving Pre-Condition for ABCE34 Previous Approaches Dataflow Analysis fast but inaccurate Verification Method requires theorem proving or checker Abstract Interpretation focused on total redundancy

Download ppt "Deriving Pre-Condition for ABCE1 Deriving Preconditions for Array Bound Check Elimination Dana N. XU Joint work with W.N. CHIN and S.C. KHOO Dept of Computer."

Similar presentations

Program Verification using Probabilistic Techniques Sumit Gulwani Microsoft Research Invited Talk: VSTTE Workshop August 2006 Joint work with George Necula.

Program Verification using Probabilistic Techniques Sumit Gulwani Microsoft Research Invited Talk: VSTTE Workshop August 2006 Joint work with George Necula.
Logical Abstract Interpretation Sumit Gulwani Microsoft Research, Redmond.

Logical Abstract Interpretation Sumit Gulwani Microsoft Research, Redmond.
Joint work with Mike Barnett, Robert DeLine, Manuel Fahndrich, and Wolfram Schulte Verifying invariants in object-oriented programs K. Rustan M. Leino.

Joint work with Mike Barnett, Robert DeLine, Manuel Fahndrich, and Wolfram Schulte Verifying invariants in object-oriented programs K. Rustan M. Leino.
Technologies for finding errors in object-oriented software K. Rustan M. Leino Microsoft Research, Redmond, WA Lecture 0 Summer school on Formal Models.

Technologies for finding errors in object-oriented software K. Rustan M. Leino Microsoft Research, Redmond, WA Lecture 0 Summer school on Formal Models.
Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?
Synthesis, Analysis, and Verification Lecture 04c Lectures: Viktor Kuncak VC Generation for Programs with Data Structures “Beyond Integers”

Synthesis, Analysis, and Verification Lecture 04c Lectures: Viktor Kuncak VC Generation for Programs with Data Structures “Beyond Integers”
Greta YorshEran YahavMartin Vechev IBM Research. { ……………… …… …………………. ……………………. ………………………… } P1() Challenge: Correct and Efficient Synchronization { ……………………………

Greta YorshEran YahavMartin Vechev IBM Research. { ……………… …… …………………. ……………………. ………………………… } P1() Challenge: Correct and Efficient Synchronization { ……………………………
Satisfiability Modulo Theories (An introduction)

Satisfiability Modulo Theories (An introduction)
Extended Static Checking for Haskell (ESC/Haskell) Dana N. Xu University of Cambridge advised by Simon Peyton Jones Microsoft Research, Cambridge.

Extended Static Checking for Haskell (ESC/Haskell) Dana N. Xu University of Cambridge advised by Simon Peyton Jones Microsoft Research, Cambridge.
Certified Typechecking in Foundational Certified Code Systems Susmit Sarkar Carnegie Mellon University.

Certified Typechecking in Foundational Certified Code Systems Susmit Sarkar Carnegie Mellon University.
Dana Nau: Lecture slides for Automated Planning Licensed under the Creative Commons Attribution-NonCommercial-ShareAlike License:

Dana Nau: Lecture slides for Automated Planning Licensed under the Creative Commons Attribution-NonCommercial-ShareAlike License:
Reasoning About Code; Hoare Logic, continued

Reasoning About Code; Hoare Logic, continued
Inferring Disjunctive Postconditions Corneliu Popeea and Wei-Ngan Chin School of Computing National University of Singapore - ASIAN 2006 -

Inferring Disjunctive Postconditions Corneliu Popeea and Wei-Ngan Chin School of Computing National University of Singapore - ASIAN
Rigorous Software Development CSCI-GA 3033-011 Instructor: Thomas Wies Spring 2012 Lecture 11.

Rigorous Software Development CSCI-GA Instructor: Thomas Wies Spring 2012 Lecture 11.
1 Cover Algorithms and Their Combination Sumit Gulwani, Madan Musuvathi Microsoft Research, Redmond.

1 Cover Algorithms and Their Combination Sumit Gulwani, Madan Musuvathi Microsoft Research, Redmond.
ABCD: Eliminating Array-Bounds Checks on Demand Rastislav Bodík Rajiv Gupta Vivek Sarkar U of Wisconsin U of Arizona IBM TJ Watson recent experiments.

ABCD: Eliminating Array-Bounds Checks on Demand Rastislav Bodík Rajiv Gupta Vivek Sarkar U of Wisconsin U of Arizona IBM TJ Watson recent experiments.
An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.

An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.
Program Verification as Probabilistic Inference Sumit Gulwani Nebojsa Jojic Microsoft Research, Redmond.

Program Verification as Probabilistic Inference Sumit Gulwani Nebojsa Jojic Microsoft Research, Redmond.
Constraint Logic Programming Ryan Kinworthy. Overview Introduction Logic Programming LP as a constraint programming language Constraint Logic Programming.

Constraint Logic Programming Ryan Kinworthy. Overview Introduction Logic Programming LP as a constraint programming language Constraint Logic Programming.
Nikolaj Bjørner Microsoft Research Lecture 3. DayTopicsLab 1Overview of SMT and applications. SAT solving, Z3 Encoding combinatorial problems with Z3.

Nikolaj Bjørner Microsoft Research Lecture 3. DayTopicsLab 1Overview of SMT and applications. SAT solving, Z3 Encoding combinatorial problems with Z3.

Similar presentations

Ads by Google