Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2006 Andrew R. BernatMarch 2006Generalized Code Relocation Generalized Code Relocation for Instrumentation and Efficiency Andrew R. Bernat University.

Published byTodd Lucas Modified over 9 years ago

Similar presentations

Presentation on theme: "© 2006 Andrew R. BernatMarch 2006Generalized Code Relocation Generalized Code Relocation for Instrumentation and Efficiency Andrew R. Bernat University."— Presentation transcript:

1 © 2006 Andrew R. BernatMarch 2006Generalized Code Relocation Generalized Code Relocation for Instrumentation and Efficiency Andrew R. Bernat University of Wisconsin bernat@cs.wisc.edu

2 – 2 –© 2006 Andrew R. Bernat Generalized Code Relocation Design Objectives  Whole-program instrumentation Instrument every instruction in the program … and all control flow edges as well  Efficient instrumentation No traps! Minimize extraneous jumps Restrict register save/restores  Flexible, extensible instrumentation system Laying the groundwork for binary rewriting

3 – 3 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramps  Whole-program instrumentation All instructions, including neighbors All control flow edges  One trampoline per basic block Reduces number of extra branches  Hierarchical code generation Extensible Allows for a variety of optimizations

4 – 4 –© 2006 Andrew R. Bernat Generalized Code Relocation Function Relocation  Efficient instrumentation Blocks too small for branch to instrumentation Instrumentation too far away No traps!  Shared functions Copy to remove sharing  Function rewriting Undo optimizations

5 – 5 –© 2006 Andrew R. Bernat Generalized Code Relocation Old Instrumentation Overview Application Program Function foo Base Trampoline Save Regs instr2 Mini Trampolines Instrumentation Code Instrumentation Code instr1 instr2 instr3 Restore Regs Save Regs Restore Regs

6 – 6 –© 2006 Andrew R. Bernat Generalized Code Relocation Old Instrumentation - Consecutive Application Program Function foo Multiple Base Trampolines Multiple Base Trampolines Mini Trampolines instr2 instr1 instr2 instr3 instr1

7 – 7 –© 2006 Andrew R. Bernat Generalized Code Relocation Old Instrumentation – Uninstrumentable Neighbors Application Program Function foo Base Trampoline Save Regs instr2 Mini Trampolines Instrumentation Code Instrumentation Code instr1 instr2 instr3 instr1 instr3 Restore Regs Save Regs Restore Regs

8 – 8 –© 2006 Andrew R. Bernat Generalized Code Relocation Edge instrumentation Application Program Function foo Base Trampolines branch ‘Edge’ Trampoline save/restore branch Instrument edges via another level of indirection (plus extra branches) pre-branch fallthrough jump taken

9 – 9 –© 2006 Andrew R. Bernat Generalized Code Relocation Limitations of Old Instrumentation  Incomplete instrumentation coverage Often could not instrument “near-by” instructions  Inefficient instrumentation Edges, consecutive instructions require extra branches  Platform specific implementation Inextensible and bug-prone

10 – 10 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramp Principles  Basic-block instrumentation One jump to/from per block Efficient instrumentation of neighbor instructions  Logical view: a control flow graph Relocated instructions + instrumentation Apply compiler techniques to dynamic instrumentation

11 – 11 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramps Application Program Function foo Multitramp Basic Block Base Tramp Instruction Base Tramp Branch Fallthrough Target

12 – 12 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramp Implementation  A multitramp is a tree of code objects  Code objects provide the following: Maximum space required (worst case) Generate, install, and link callbacks Map relocated to original address  Single mechanism for both instruction and edge instrumentation

13 – 13 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramp Example Base Tramp 1 Instruction Base Tramp 2 Branch Mini Tramp 4 Base Tramp 3 Mini Tramp 3 Mini Tramp 1 Mini Tramp 2 save ; BT 1 branch restore ; BT 1 branch save ; BT 2 branch restore ; BT 2 return save ; BT 3 branch restore ; BT 3 return

14 – 14 –© 2006 Andrew R. Bernat Generalized Code Relocation In-Line Instrumentation  Current out-of-line model is based on the requirements of Paradyn Frequent insertion/removal of instrumentation  Limited opportunity for optimization Particularly register saves and restores  What about long-lived instrumentation?

15 – 15 –© 2006 Andrew R. Bernat Generalized Code Relocation In-Line Instrumentation  In-line instrumentation into a single code sequence: Relocated instructions Save/restore code Instrumentation  Replace entire sequence when something changes! BPatch::setMergeTramp(true)

16 – 16 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramp Status  Extensible implementation Can add new code objects to multitramp CFG: –Raw binary sections. –Control flow-altering code  In-line instrumentation POWER, x86-64  Platform-independent design Encapsulated platform-dependent sections Included with all platforms in Dyninst 5.0

17 – 17 –© 2006 Andrew R. Bernat Generalized Code Relocation Multitramp Results Whole-program instrumentation Instrument every instruction in the program … and all control flow edges as well Efficient instrumentation No traps! Minimize extraneous jumps Restrict register save/restores Flexible, extensible instrumentation system Laying the groundwork for binary rewriting

18 – 18 –© 2006 Andrew R. Bernat Generalized Code Relocation Function Relocation  The basic block may be too small to contain a branch to instrumentation IA-32, x86-64  We may not have the available registers to construct a long branch POWER, SPARC  Solution: relocate on a function level Sufficient space to fit large branches Dead registers that can be used to branch

19 – 19 –© 2006 Andrew R. Bernat Generalized Code Relocation Old Approach  One-time relocation Preemptively expand possible instrumentation sites: –Function entry, exit, call sites; loop entry, exits –But what about everything else?  Linear scan of the function, ignoring control flow. Dangerous with in-lined data

20 – 20 –© 2006 Andrew R. Bernat Generalized Code Relocation Incremental Function Relocation  A function is a list of basic blocks  Accumulate modifications to each block Ex: block must be 5 bytes long  Generate relocated versions on-the-fly Only modify what is necessary  Add instrumentation to the new function

21 – 21 –© 2006 Andrew R. Bernat Generalized Code Relocation Function Relocation - Example Block 2 is too small to patch in a jump block 1 block 5 block 4 block 3 block 2 block 1 block 5 block 4 block 3 block 2 1.Copy the function 2.Enlarge block 2 3.Replace Add modification

22 – 22 –© 2006 Andrew R. Bernat Generalized Code Relocation Other Uses for Relocation  Overlapping functions Relocation disambiguates code Instrument unique per-function copy  Undo optimizations Rewrite the function during relocation Example: unwinding a tail call

23 – 23 –© 2006 Andrew R. Bernat Generalized Code Relocation Function Relocation Status  Platform-independent function relocation engine IA-32, x86-64, POWER, SPARC  Support for multiple relocated versions On-the-fly code relocation  Extensible modification interface Block must be 5 bytes long Modify the instructions in the block

24 – 24 –© 2006 Andrew R. Bernat Generalized Code Relocation Design Objectives Whole-program instrumentation Instrument every instruction in the program … and all control flow edges as well Efficient instrumentation No traps! Minimize extraneous jumps Restrict register save/restores Flexible, extensible instrumentation system Laying the groundwork for binary rewriting

25 – 25 –© 2006 Andrew R. Bernat Generalized Code Relocation Conclusion  Multitramps Whole-program instrumentation approach  Function relocation Instrument everywhere (without traps)  People Drew Bernat – Multitramps Nate Rosenblum – Function relocation Nick Rutar – Register optimizations

Download ppt "© 2006 Andrew R. BernatMarch 2006Generalized Code Relocation Generalized Code Relocation for Instrumentation and Efficiency Andrew R. Bernat University."

Similar presentations

School of EECS, Peking University “Advanced Compiler Techniques” (Fall 2011) SSA Guo, Yao.

School of EECS, Peking University “Advanced Compiler Techniques” (Fall 2011) SSA Guo, Yao.
Course Outline Traditional Static Program Analysis Software Testing

Course Outline Traditional Static Program Analysis Software Testing
Evaluating Indirect Branch Handling Mechanisms in Software Dynamic Translation Systems Jason D. Hiser, Daniel Williams, Wei Hu, Jack W. Davidson, Jason.

Evaluating Indirect Branch Handling Mechanisms in Software Dynamic Translation Systems Jason D. Hiser, Daniel Williams, Wei Hu, Jack W. Davidson, Jason.
Compiler-Based Register Name Adjustment for Low-Power Embedded Processors Discussion by Garo Bournoutian.

Compiler-Based Register Name Adjustment for Low-Power Embedded Processors Discussion by Garo Bournoutian.
Architecture-dependent optimizations Functional units, delay slots and dependency analysis.

Architecture-dependent optimizations Functional units, delay slots and dependency analysis.
ECE 454 Computer Systems Programming Compiler and Optimization (I) Ding Yuan ECE Dept., University of Toronto

ECE 454 Computer Systems Programming Compiler and Optimization (I) Ding Yuan ECE Dept., University of Toronto
University of Maryland Smarter Code Generation for Dyninst Nick Rutar.

University of Maryland Smarter Code Generation for Dyninst Nick Rutar.
Register Allocation CS 671 March 27, 2008. CS 671 – Spring 2008 1 Register Allocation - Motivation Consider adding two numbers together: Advantages: Fewer.

Register Allocation CS 671 March 27, CS 671 – Spring Register Allocation - Motivation Consider adding two numbers together: Advantages: Fewer.
Overview Motivations Basic static and dynamic optimization methods ADAPT Dynamo.

Overview Motivations Basic static and dynamic optimization methods ADAPT Dynamo.
Program Representations. Representing programs Goals.

Program Representations. Representing programs Goals.
Pin : Building Customized Program Analysis Tools with Dynamic Instrumentation Chi-Keung Luk, Robert Cohn, Robert Muth, Harish Patil, Artur Klauser, Geoff.

Pin : Building Customized Program Analysis Tools with Dynamic Instrumentation Chi-Keung Luk, Robert Cohn, Robert Muth, Harish Patil, Artur Klauser, Geoff.
Paradyn Project Paradyn / Dyninst Week College Park, Maryland March 26-28, 2012 Paradyn Project Upcoming Features in Dyninst and its Components Bill Williams.

Paradyn Project Paradyn / Dyninst Week College Park, Maryland March 26-28, 2012 Paradyn Project Upcoming Features in Dyninst and its Components Bill Williams.
Chapter 12 CPU Structure and Function. CPU Sequence Fetch instructions Interpret instructions Fetch data Process data Write data.

Chapter 12 CPU Structure and Function. CPU Sequence Fetch instructions Interpret instructions Fetch data Process data Write data.
Paradyn Project Paradyn / Dyninst Week Madison, Wisconsin May 2-3, 2011 Introduction to the PatchAPI Wenbin Fang, Drew Bernat.

Paradyn Project Paradyn / Dyninst Week Madison, Wisconsin May 2-3, 2011 Introduction to the PatchAPI Wenbin Fang, Drew Bernat.
© 2006 Barton P. MillerFebruary 2006Binary Code Analysis and Editing A Framework for Binary Code Analysis, and Static and Dynamic Patching Barton P. Miller.

© 2006 Barton P. MillerFebruary 2006Binary Code Analysis and Editing A Framework for Binary Code Analysis, and Static and Dynamic Patching Barton P. Miller.
From AST to Code Generation Professor Yihjia Tsai Tamkang University.

From AST to Code Generation Professor Yihjia Tsai Tamkang University.
Common Sub-expression Elim Want to compute when an expression is available in a var Domain:

Common Sub-expression Elim Want to compute when an expression is available in a var Domain:
VLIW Compilation Techniques in a Superscalar Environment Kemal Ebcioglu, Randy D. Groves, Ki- Chang Kim, Gabriel M. Silberman and Isaac Ziv PLDI 1994.

VLIW Compilation Techniques in a Superscalar Environment Kemal Ebcioglu, Randy D. Groves, Ki- Chang Kim, Gabriel M. Silberman and Isaac Ziv PLDI 1994.
Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.

Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.
Representing programs Goals. Representing programs Primary goals –analysis is easy and effective just a few cases to handle directly link related things.

Representing programs Goals. Representing programs Primary goals –analysis is easy and effective just a few cases to handle directly link related things.

Similar presentations

Ads by Google