alice a framework to improve affine loop invariant
play

ALICe: A Framework to Improve Affine Loop Invariant Computation - PowerPoint PPT Presentation

Nov 30, 2022 •220 likes •592 views

ALICe: A Framework to Improve Affine Loop Invariant Computation Vivien Maisonneuve Olivier Hermant Franois Irigoin 5th International Workshop on Invariant Generation (WING) July 23, 2014 Introduction Need of abstract domains to represent

  1. ALICe: A Framework to Improve Affine Loop Invariant Computation Vivien Maisonneuve Olivier Hermant François Irigoin 5th International Workshop on Invariant Generation (WING) July 23, 2014

  2. Introduction Need of abstract domains to represent complex program behaviors. x y Program analysis ⇒ computation of invariants (e.g. model checking). Here: affine invariants = systems of linear (in)equations. 2 / 23

  3. • Branches • Loops Linear Relation Analysis if (b) x += 2; lots of research, programs convex hull Sources of approximation: } else x += 1, y += 1; b = rand(); Predicate propagation: forward / backward. while (x <= 100) { x = 0; y = 0; x y // 0 Loops? Widening Branches: convex union of invariants. 3 / 23

  4. • Branches • Loops Linear Relation Analysis if (b) x += 2; lots of research, programs convex hull Sources of approximation: } else x += 1, y += 1; b = rand(); Predicate propagation: forward / backward. while (x <= 100) { x = 0; y = 0; x y // 0 Loops? Widening Branches: convex union of invariants. // x = y = 0 3 / 23

  5. • Branches • Loops Predicate propagation: forward / backward. convex hull Sources of approximation: } else x += 1, y += 1; if (b) x += 2; b = rand(); Linear Relation Analysis lots of research, programs x = 0; y = 0; x y // 0 Loops? Widening Branches: convex union of invariants. while (x <= 100) { // x = y = 0 // x = y = 0 3 / 23

  6. • Branches • Loops Linear Relation Analysis Predicate propagation: forward / backward. lots of research, programs convex hull Sources of approximation: } else x += 1, y += 1; if (b) x += 2; b = rand(); while (x <= 100) { x = 0; y = 0; x y // 0 Loops? Widening Branches: convex union of invariants. // x = y = 0 // x = y = 0 // x = 2 , y = 0 // x = 1 , y = 1 3 / 23

  7. • Branches • Loops Linear Relation Analysis b = rand(); lots of research, programs convex hull Sources of approximation: } else x += 1, y += 1; Predicate propagation: forward / backward. if (b) x += 2; x = 0; y = 0; while (x <= 100) { x y // 0 Loops? Widening Branches: convex union of invariants. // x = y = 0 // x = y = 0 // x = 2 , y = 0 // x = 1 , y = 1 // 1 ≤ x ≤ 2 , x + y = 2 3 / 23

  8. • Branches • Loops if (b) x += 2; Sources of approximation: } lots of research, programs else x += 1, y += 1; Predicate propagation: forward / backward. Linear Relation Analysis convex hull while (x <= 100) { x = 0; y = 0; Branches: convex union of invariants. b = rand(); Loops? Widening ⇒ // 0 ≤ y ≤ x // x = y = 0 // x = y = 0 // x = 2 , y = 0 // x = 1 , y = 1 // 1 ≤ x ≤ 2 , x + y = 2 3 / 23

  9. Linear Relation Analysis b = rand(); Sources of approximation: } else x += 1, y += 1; Predicate propagation: forward / backward. if (b) x += 2; while (x <= 100) { x = 0; y = 0; Branches: convex union of invariants. Loops? Widening ⇒ // 0 ≤ y ≤ x // x = y = 0 // x = y = 0 // x = 2 , y = 0 // x = 1 , y = 1 // 1 ≤ x ≤ 2 , x + y = 2 • Branches ⇒ convex hull • Loops ⇒ lots of research, programs 3 / 23

  10. ALICe Framework to compare several techniques & programs to compute affine loop invariants. Motivations: 1 Compare tools on a common set of previously published examples. 2 Study effects of input model restructurations. 3 Improve invariant computation in PIPS. 4 / 23

  11. Contents 1 The Test Suite Test Cases Supported Tools Test Chain Results 2 Model Restructurations State Splitting Heuristic Using a Unique State Comparative Results 3 Improving Results in PIPS Transformer Lists Iterative Analysis Multiple Precision Arithmetic Results 5 / 23

  12. Test Cases Transition systems with a finite number of vertices (“control states”), of integer variables. k Goal: E is unreachable. • Initial condition I on control states & variables. • Transitions t 1 , . . . , t n with guards and updates. • Error condition E on control states & variables. t 1 : x ≤ 0 ? x ++ I : x ≥ 0 ? E : x < 0 t 2 : x ≥ 1 ? x -- 6 / 23

  13. Test Cases number of transitions 20 15 10 5 30 25 20 15 10 5 0 25 102 previously published test cases: from L. Gonnord, S. Gulwani, 20 15 10 5 10 5 0 number of control states Mostly: loop invariants, loop bounds, protocols. Small test cases: 1-10 control states, 2-15 transitions. N. Halbwachs, B. Jeannet et al. 7 / 23

  14. Input Format update := x' = x + 1; Easy, existing base of models, c2fsm. } Region bad := {x < 0}; Region init := {x >= 0}; strategy S { } } ... transition t2 { } guard := x <= 0; Test cases are written in fsm format (Aspic format, introduced by FAST). to := k; from := k; transition t1 { states k; var x; model M { k t 1 : x ≤ 0 ? x ++ I : x ≥ 0 ? t 2 : x ≥ 1 ? x -- E : x < 0 8 / 23

  15. Tools A 2 x 2 x 2 d 1 d 2 z e A 1 x 1 Bs Supported tools: Dz c more expressive than affine constraints ( Presburger). Models as relations. Sophisticated computation of transitive closure. x 1 R s c S s : affine invariant generator. Developed by L. Gonnord. Forward LRA + accelerations . : the Integer Set Library. Developed by S. Verdoolaege. A library for manipulating sets and relations of integer tuples bounded by affine Dz constraints: x d z e Ax Bs • Aspic • isl • PIPS 9 / 23

  16. Tools x 1 Sophisticated computation of transitive closure. Models as relations. Presburger). more expressive than affine constraints ( c Dz Bs A 2 x 2 A 1 x 1 e z d 2 d 1 x 2 R s Supported tools: x Forward LRA + accelerations . : the Integer Set Library. Developed by S. Verdoolaege. A library for manipulating sets and relations of integer tuples bounded by affine constraints: c S s d z e Ax Bs Dz • Aspic : affine invariant generator. Developed by L. Gonnord. • isl • PIPS 9 / 23

  17. Tools Models as relations. Forward LRA + accelerations . for manipulating sets and relations of integer tuples bounded by affine constraints: Sophisticated computation of transitive closure. Supported tools: • Aspic : affine invariant generator. Developed by L. Gonnord. • isl : the Integer Set Library. Developed by S. Verdoolaege. A library � ∃ z ∈ Z e : Ax + Bs + Dz ≥ c x ∈ Z d � � � S ( s ) = � ∃ z ∈ Z e : A 1 x 1 + A 2 x 2 + Bs + Dz ≥ c x 1 → x 2 ∈ Z d 1 × Z d 2 � � � R ( s ) = more expressive than affine constraints ( ∼ Presburger). • PIPS 9 / 23

  18. PIPS Interprocedural source-to-source compiler framework for C and Fortran. x x 0 P // // x += 2; x x x x T // while (rand()) 42 x x 0 P // 2 Then, invariants Bottom-up procedure. represents the transfer function. 1 Program is abstracted: each program command instruction Code analysis: 2-step approach Initially developed at MINES ParisTech. (elementary or compound) is associated to an affine transformer that T = { ( x , x ′ ) | x ′ = x + 2 } Notation: x before, x ′ after. 10 / 23

  19. PIPS x x x 0 P // // x += 2; // while (rand()) Interprocedural source-to-source compiler framework for C and Fortran. 42 x 0 P // 2 Then, invariants Bottom-up procedure. represents the transfer function. 1 Program is abstracted: each program command instruction Code analysis: 2-step approach Initially developed at MINES ParisTech. (elementary or compound) is associated to an affine transformer that T ∗ = { ( x , x ′ ) | x ′ ≥ x } T = { ( x , x ′ ) | x ′ = x + 2 } Notation: x before, x ′ after. 10 / 23

  20. PIPS Interprocedural source-to-source compiler framework for C and Fortran. x x 0 P // // x += 2; // while (rand()) // 2 Then, invariants Bottom-up procedure. represents the transfer function. 1 Program is abstracted: each program command instruction Code analysis: 2-step approach Initially developed at MINES ParisTech. (elementary or compound) is associated to an affine transformer that P = { x | 0 ≤ x ≤ 42 } T ∗ = { ( x , x ′ ) | x ′ ≥ x } T = { ( x , x ′ ) | x ′ = x + 2 } Notation: x before, x ′ after. 10 / 23

  21. PIPS // Initially developed at MINES ParisTech. Code analysis: 2-step approach 1 Program is abstracted: each program command instruction represents the transfer function. Bottom-up procedure. 2 Then, invariants are propagated along transformers. // Interprocedural source-to-source compiler framework for C and Fortran. while (rand()) // // x += 2; (elementary or compound) is associated to an affine transformer that P = { x | 0 ≤ x ≤ 42 } T ∗ = { ( x , x ′ ) | x ′ ≥ x } T = { ( x , x ′ ) | x ′ = x + 2 } P ′ = { x | 0 ≤ x } Notation: x before, x ′ after. 10 / 23

  22. Test Chain out.isl Mostly written in OCaml, wrappers in Python. To challenge a tool T on a test case: isl isl isl in.fsm out.isl out.c out.isl out.asp PIPS isl Aspic in.c in.isl • convert test case into T ’s input language. • run T , get the resulting invariant in T ’s output language; • convert invariant in isl format; • check with isl that the invariant does not reach the error region. ⇒ Several wrappers and format conversion tools involved. 11 / 23

  23. Comparative Results Out of 102 test cases: Slower, poor results with concurrent loops. Very fast on small cases, slower on bigger ones. Remarks: (Quad-core AMD Opteron Processor 2380 at 2.4 GHz, 16 GB RAM) 46.2 35.5 10.9 Time (s.) 43 63 75 Successes PIPS isl Aspic • Best results with Aspic (native format, ad-hoc tool). • isl very good with loops, not at ease with multiple states. • Average results with PIPS (default options). 12 / 23

Recommend

ALICe: A Benchmark to Improve Affine Loop Invariant Computation Vivien Maisonneuve Seventh

ALICe: A Benchmark to Improve Affine Loop Invariant Computation Vivien Maisonneuve Seventh

ALICe: A Benchmark to Improve Affine Loop Invariant Computation Vivien Maisonneuve Seventh meeting of the French community of compilation Dammarie-les-Lys, December 2013 Introduction Need of abstract domains to represent complex program

381 views • 37 slides
Loop Invariants: Part 2 7 January 2019 OSU CSE 1 Maintaining the Loop Invariant A claimed

Loop Invariants: Part 2 7 January 2019 OSU CSE 1 Maintaining the Loop Invariant A claimed

Loop Invariants: Part 2 7 January 2019 OSU CSE 1 Maintaining the Loop Invariant A claimed loop invariant is valid only if the loop body actually maintains the property, i.e., the loop invariant remains true at the end of each execution of

386 views • 20 slides
1 Algorithm for Identifying Loop Invariant Code Algorithm for Identifying Loop Invariant Code

1 Algorithm for Identifying Loop Invariant Code Algorithm for Identifying Loop Invariant Code

Loop Invariant Code Motion Loop Invariant Code Motion Background: ud- and du-chains Last Time ud-Chains Control flow analysis A ud-chain connects a use of a variable to all defs of a variable that might reach it (a sparse representation

355 views • 6 slides
1 Unroll and Jam Unroll and Jam Example (cont) Unroll the Outer Loop Idea do j = 1,2*n by 2

1 Unroll and Jam Unroll and Jam Example (cont) Unroll the Outer Loop Idea do j = 1,2*n by 2

Tiling: A Data Locality Optimizing Algorithm Loop Unrolling Motivation Previously Reduces loop overhead Kelly &amp; Pugh transformation framework Improves effectiveness of other transformations Affine space partitions for

45 views • 4 slides
Dimensions of invariant measures for affine iterated function systems De-Jun Feng The Chinese

Dimensions of invariant measures for affine iterated function systems De-Jun Feng The Chinese

Dimensions of invariant measures for affine iterated function systems De-Jun Feng The Chinese University of Hong Kong Workshop on GMT, University of Warwick July 13, 2017 De-Jun Feng Dimensions of invariant measures for affine IFSs Affine

523 views • 41 slides
Loop-invariant code motion Example Two steps: analysis &amp; transformation x := 3 Step 1: find

Loop-invariant code motion Example Two steps: analysis &amp; transformation x := 3 Step 1: find

Loop-invariant code motion Example Two steps: analysis &amp; transformation x := 3 Step 1: find invariant computations in loop y := 4 y := 5 invariant: computes same result each time evaluated z := x * y Step 2: move them outside loop

355 views • 4 slides
1 Scale invariant feature selection Affine transforms why? Harris-Laplace (HL) detector:

1 Scale invariant feature selection Affine transforms why? Harris-Laplace (HL) detector:

Why Local Features? Scale and Affine Invariant Interest Point Robust to noise, occlusion and clutter. Detectors Distinctive and repeatable. No explicit segmentation required represent Krystian Mikolajczyk and Cordelia Schm id

213 views • 6 slides
SECTION 2: What is a loop invariant? Loop Reasoning An assertion that always holds at

SECTION 2: What is a loop invariant? Loop Reasoning An assertion that always holds at

Review: Reasoning about loops SECTION 2: What is a loop invariant? Loop Reasoning An assertion that always holds at the top of a loop &amp; HW3 Setup Why do we need invariants? Most code is not straight line Most

451 views • 14 slides
c } false loop body P (postcondition) Loop Invariant Defn : A boolean condition that

c } false loop body P (postcondition) Loop Invariant Defn : A boolean condition that

while (c) { loop body true c } false loop body P (postcondition) Loop Invariant Defn : A boolean condition that is checked immediately before every evaluation of the loop guard . while (c) I //@loop_invariant I; true c { loop

362 views • 8 slides
Last time 6.891 Computer Vision and Applications Interesting points, correspondence, affine

Last time 6.891 Computer Vision and Applications Interesting points, correspondence, affine

Last time 6.891 Computer Vision and Applications Interesting points, correspondence, affine patch tracking Prof. Trevor. Darrell Scale and rotation invariant descriptors [Lowe] Lecture 7: Features and Geometry Affine invariant features

151 views • 12 slides
1 Checking Legality in Kelly &amp; Pugh Framework Loop Fusion Example (cont) For each dependence,

1 Checking Legality in Kelly &amp; Pugh Framework Loop Fusion Example (cont) For each dependence,

Loop Transformations for Parallelism &amp; Locality Loop Fusion Example Last time What are the dependences? Unimodular transformation framework do i = 1,n What are the dependences? Loop permutation s 1 A(i) = B(i) + 1 Loop

201 views • 3 slides
An Optimal Affine Invariant Smooth Minimization Algorithm. Alexandre dAspremont , CNRS &amp;

An Optimal Affine Invariant Smooth Minimization Algorithm. Alexandre dAspremont , CNRS &amp;

An Optimal Affine Invariant Smooth Minimization Algorithm. Alexandre dAspremont , CNRS &amp; ENS . Joint work with Cristobal Guzman &amp; Martin Jaggi. Support from ERC SIPA. Alex dAspremont ADGO, Santiago, Feb. 2016. 1/22 A Basic Convex

908 views • 23 slides
Loop Optimizations Important because lots of execution Loop Optimizations Loop Optimizations

Loop Optimizations Important because lots of execution Loop Optimizations Loop Optimizations

Loop Optimizations Important because lots of execution Loop Optimizations Loop Optimizations time occurs in loops First, we will identify loops We will study three optimizations Loop-invariant code motion This lecture is

249 views • 5 slides
A Characterization of Locally Testable Affine-Invariant Properties via Decomposition Theorems

A Characterization of Locally Testable Affine-Invariant Properties via Decomposition Theorems

A Characterization of Locally Testable Affine-Invariant Properties via Decomposition Theorems Yuichi Yoshida National Institute of Informatics and Preferred Infrastructure, Inc November 29, 2013 Yuichi Yoshida (NII and PFI) Characterizing

732 views • 40 slides
Affine Invariant LCCs and LTCs Sivakanth Gopi Joint work with Arnab Bhattacharya (Indian

Affine Invariant LCCs and LTCs Sivakanth Gopi Joint work with Arnab Bhattacharya (Indian

Affine Invariant LCCs and LTCs Sivakanth Gopi Joint work with Arnab Bhattacharya (Indian Institute of Science) Error Correcting Code : finite alphabet, : set of coordinates of size $ : set of all functions from

393 views • 18 slides
A Characterization of Locally Testable Affine-Invariant Properties via Decomposition Theorems

A Characterization of Locally Testable Affine-Invariant Properties via Decomposition Theorems

A Characterization of Locally Testable Affine-Invariant Properties via Decomposition Theorems Yuichi Yoshida National Institute of Informatics and Preferred Infrastructure, Inc June 1, 2014 Yuichi Yoshida (NII and PFI) Characterizing Locally

501 views • 29 slides
Loop Fusion and Fission and Presburger Trans Framework ! Last time ! Unimodular transformation

Loop Fusion and Fission and Presburger Trans Framework ! Last time ! Unimodular transformation

Loop Fusion and Fission and Presburger Trans Framework ! Last time ! Unimodular transformation framework ! Loop permutation, Loop reversal, Loop skewing ! Fourier Motzkin ! Frameworks ! Unimodular ! Polyhedral ! Presburger

483 views • 12 slides
ALICE Crisis Response Framework Student Training Presentation Learning Targets To assess

ALICE Crisis Response Framework Student Training Presentation Learning Targets To assess

ALICE Crisis Response Framework Student Training Presentation Learning Targets To assess what we already know about school emergency procedures To understand the central concepts of the ALICE framework To practice ALICE strategies

461 views • 25 slides
Simplifying Loop Invariant Generation Using Splitter Predicates R. Sharma, I. Dillig, T. Dillig,

Simplifying Loop Invariant Generation Using Splitter Predicates R. Sharma, I. Dillig, T. Dillig,

Simplifying Loop Invariant Generation Using Splitter Predicates R. Sharma, I. Dillig, T. Dillig, A. Aiken Presented by Raphael Fuchs Background Context: (Automatic) Program Verification Floyd-Hoare logic {P} S {Q} Often no

429 views • 13 slides
Loop Invariant Code Motion Last Time Uses of SSA: reaching constants, dead-code elimination,

Loop Invariant Code Motion Last Time Uses of SSA: reaching constants, dead-code elimination,

Loop Invariant Code Motion Last Time Uses of SSA: reaching constants, dead-code elimination, induction variable identification Today Finish up induction variable identification Loop invariant code motion Next Time Reuse

778 views • 10 slides
affine flexes, steven gortler joint with bob connelly. and louis theran. given a graph G

affine flexes, steven gortler joint with bob connelly. and louis theran. given a graph G

affine flexes, steven gortler joint with bob connelly. and louis theran. given a graph G with n vertices and m edges. given a framework ( G, p ) in E d with full span. def: the framework admits an affine flex if there is a d-

563 views • 17 slides
Efficient Runtime Invariant Checking: A Framework and Case S tudy Michael Gorbovitski Y. Annie

Efficient Runtime Invariant Checking: A Framework and Case S tudy Michael Gorbovitski Y. Annie

Efficient Runtime Invariant Checking: A Framework and Case S tudy Michael Gorbovitski Y. Annie Liu Tom Rothamel Scott D. Stoller Computer Science Department State University of New York at Stony Brook Invariants An invariant is a predicate

532 views • 17 slides
Loop Transformations for Parallelism &amp; Locality Previously Loop transformations,

Loop Transformations for Parallelism &amp; Locality Previously Loop transformations,

Loop Transformations for Parallelism &amp; Locality Previously Loop transformations, unimodular transformation framework Loop interchange/permutation Loop reversal Checking transformation legality Today

211 views • 9 slides
= = = f f BOB BOB not does like not like = Alice Bob Alice Bob not Bob Coecke

= = = f f BOB BOB not does like not like = Alice Bob Alice Bob not Bob Coecke

picture logic for info-flow in language and physics (incl. the Lambek vs. Lambek battle) That flowin phyling October 2010 ALICE ALICE f f f f = = = f f BOB BOB not does like not like = Alice Bob Alice Bob not Bob

1.06k views • 94 slides

More recommend