Presentation is loading. Please wait.

Presentation is loading. Please wait.

Technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Nuno Lopes Advisor: José Monteiro.

Published byRandolph Alexander Henderson Modified over 9 years ago

Similar presentations

Presentation on theme: "Technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Nuno Lopes Advisor: José Monteiro."— Presentation transcript:

1 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Nuno Lopes Advisor: José Monteiro

2 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Expectations for Compilers Improve performance Reduce code size Reduce energy consumption 2

3 technology from seed LLVM 3.2 introduced a Loop Vectorizer Performance improvement of 10-300% in benchmarks Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Compilers Do Deliver 3

4 technology from seed Yang, Chen, Eide, Regehr [PLDI’12]: –79 bugs in GCC (25 P1) –202 bugs in LLVM –2 wrong-code bugs in CompCert Le, Afshari, Su [PLDI’14]: –40 wrong-code bugs in GCC –42 wrong-code bugs in LLVM Last week: –395 open wrong-code bug reports in GCC –14 open wrong-code bug reports in LLVM Automatic Synthesis of Weakest Preconditions for Compiler Optimizations But Compilers are Full of Bugs 4

5 technology from seed +0.5M LoC added to LLVM last year 20k commits Over 4M LoC in LLVM Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Churn in Compiler’s code 5

6 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Compilers by Dragon’s Lenses FrontendOptimizersBackend 100101010 010001011 100110101 101010111 001010110 6

7 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Loop Unswitching while I < N do if B then S 1 else S 2 I := I + 1 if B then while I < N do S 1 I := I + 1 else while I < N do S 2 I := I + 1 → S 1, S 2 are template statements B is a template Boolean expression 7

8 technology from seed Transformation function Precondition Profitability heuristic Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Specifying Compiler Optimizations 8

9 technology from seed Automatic weakest precondition synthesis for compiler optimizations Automatic partial equivalence checking, applied to compiler optimization verification Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Contributions 9

10 technology from seed Deriving preconditions by hand is hard; WPs are often non-trivial WPs derived by hand are often wrong! Weaker preconditions expose more optimization opportunities Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Why WP Synthesis for Compiler Optimizations? 10

11 technology from seed // For a logical right shift, we can fold if the comparison is not // signed. We can also fold a signed comparison if the shifted mask // value and the shifted comparison value are not negative. // These constraints are not obvious, but we can prove that they are // correct using an SMT solver such as "Z3" : // http://rise4fun.com/Z3/Tslfh Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Verification to the Rescue: LLVM PR17827 if (ShiftOpcode == Instruction::AShr) { // There may be some constraints that make this possible, // but nothing simple has been discovered yet. CanFold = false; } lib/Transforms/InstCombine/InstCombineCompares.cpp 11

12 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Loop Unswitching while I < N do if B then S 1 else S 2 I := I + 1 if B then while I < N do S 1 I := I + 1 else while I < N do S 2 I := I + 1 → 12

13 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Loop Unswitching: Example Instantiation … while I < N do if N > 5 then A := A + N else A := A + 1 I := I + 1 … if N > 5 then while I < N do A := A + N I := I + 1 else while I < N do A := A + 1 I := I + 1 → while I < N do if B then S 1 else S 2 I := I + 1 13

14 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Loop Unswitching: Weakest Precondition while I < N do if B then S 1 else S 2 I := I + 1 if B then while I < N do S 1 I := I + 1 else while I < N do S 2 I := I + 1 → 14

15 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Language of Preconditions 15

16 technology from seed Books and developers already informally speak about read and write sets Similar to PEC’s Can be efficiently discharged using current compiler technology: –Memory dependence analysis –Alias/pointer analysis –Loop analysis –Range analysis –… Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Language of Preconditions: Suitability 16

17 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Synthesizing WP for Loop Unswitching while I < N do if B then S 1 else S 2 I := I + 1 if B then while I < N do S 1 I := I + 1 else while I < N do S 2 I := I + 1 → 17

18 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 1) Find counterexample while I < N do if B then S 1 else S 2 I := I + 1 if B then while I < N do S 1 I := I + 1 else while I < N do S 2 I := I + 1 → B I < N S 1 I := I + 1 I < N S 1 I := I + 1 I ≥ N Pre = true 18

19 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 2) Synthesize WP for counterexample: VC Gen 19

20 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 2) Synthesize WP for counterexample: Conditional Ackermannization B 0 and B 1 are equal if the values of the variables in R(B) are equal 20

21 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 2) Synthesize WP for counterexample: Final constraint S = Read/Write sets V = Vars from VCGen, Must-write vars B I < N S 1 I := I + 1 I < N S 1 I := I + 1 I ≥ N 21

22 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 2) Synthesize WP for counterexample: Disjunction of all models B I < N S 1 I := I + 1 I < N S 1 I := I + 1 I ≥ N 22

23 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 3) Iterate until no more counterexamples can be found while I < N do if B then S 1 else S 2 I := I + 1 if B then while I < N do S 1 I := I + 1 else while I < N do S 2 I := I + 1 → 23

24 technology from seed 1) Find counterexample 2) Generate WP that rules out the counterexample 3) Iterate until no more counterexamples can be found Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Algorithm 24

25 technology from seed Model generalization Exploit UNSAT cores Bias towards R/W and W/W intersections Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Optimizations 25

26 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations PSyCO: Results 26

27 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Example of Synthesized WP: Software Pipelining Precondition: (Weaker than PEC’s [PLDI’09]) 27

28 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Verifying Optimizations with CORK 28

29 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations CORK: Partial Equivalence Checking of UF+IA Programs 29

30 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations CORK: Polynomial Interpolation 30

31 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations CORK: Results 31

32 technology from seed Apply to production compilers Synthesize implementation of optimizations (pattern matching, VC Gen, code transformation) Explain reasons for optimization failure Preserve debug info automatically Preserve analysis data across optimizations Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Future Work 32

33 technology from seed There is significant on-going effort to improve compilers, which compromises correctness Presented the first algorithm for the automatic synthesis of WPs for compiler optimizations Presented the first algorithm for automatic partial equivalence checking of UF+IA programs –Applied to verification of compiler optimizations Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Conclusion 33

34 technology from seed

35 Automatic Synthesis of Weakest Preconditions for Compiler Optimizations CORK: UFs -> Polynomials 35

36 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations 2) Synthesize WP for counterexample: Must-write vs may-write If a variable is in the write set of a statement, it may or may not be written. 36

37 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Optimizers by Dragon’s Lenses Optimization nOptimization 1 Analysis 1Analysis n … 37

38 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations An Optimizer from the Future Pattern Matching VC Gen Code Transformer Analysis 1 Analysis n … 38

39 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations An Optimizer from the Future: Pattern Matching Pattern Matching VC Gen Code Transformer Analysis 1 Analysis n … … while I < N do if N > 5 then A := A + N else A := A + 1 I := I + 1 … if B then S 1 39

40 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations An Optimizer from the Future: Verification Pattern Matching VC Gen Code Transformer Analysis 1 Analysis n … + Precondition = φ Duality HSF Terminator … Range Analysis Alias Analysis Scalar Evolution … 40

41 technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations An Optimizer from the Future: Code Transformation Pattern MatchingVC Gen Code Transformer Analysis 1 Analysis n … if B then S 1 if B then skip A := A + 1 if N > 5 then skip 41

Download ppt "Technology from seed Automatic Synthesis of Weakest Preconditions for Compiler Optimizations Nuno Lopes Advisor: José Monteiro."

Similar presentations

A SAT characterization of boolean-program correctness K. Rustan M. Leino Microsoft Research, Redmond, WA 14 Nov 2002 IFIP WG 2.4 meeting, Schloβ Dagstuhl,

A SAT characterization of boolean-program correctness K. Rustan M. Leino Microsoft Research, Redmond, WA 14 Nov 2002 IFIP WG 2.4 meeting, Schloβ Dagstuhl,
Chapter 4: Control Structures I (Selection)

Chapter 4: Control Structures I (Selection)
Technologies for finding errors in object-oriented software K. Rustan M. Leino Microsoft Research, Redmond, WA Lecture 1 Summer school on Formal Models.

Technologies for finding errors in object-oriented software K. Rustan M. Leino Microsoft Research, Redmond, WA Lecture 1 Summer school on Formal Models.
Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?
Synthesis, Analysis, and Verification Lecture 04c Lectures: Viktor Kuncak VC Generation for Programs with Data Structures “Beyond Integers”

Synthesis, Analysis, and Verification Lecture 04c Lectures: Viktor Kuncak VC Generation for Programs with Data Structures “Beyond Integers”
Technology from seed Automatic Equivalence Checking of UF+IA Programs Nuno Lopes and José Monteiro.

Technology from seed Automatic Equivalence Checking of UF+IA Programs Nuno Lopes and José Monteiro.
Semantics Static semantics Dynamic semantics attribute grammars

Semantics Static semantics Dynamic semantics attribute grammars
Propositional and First Order Reasoning. Terminology Propositional variable: boolean variable (p) Literal: propositional variable or its negation p 

Propositional and First Order Reasoning. Terminology Propositional variable: boolean variable (p) Literal: propositional variable or its negation p 
Programming with Constraint Solvers CS294: Program Synthesis for Everyone Ras Bodik Emina Torlak Division of Computer Science University of California,

Programming with Constraint Solvers CS294: Program Synthesis for Everyone Ras Bodik Emina Torlak Division of Computer Science University of California,
Hoare’s Correctness Triplets Dijkstra’s Predicate Transformers

Hoare’s Correctness Triplets Dijkstra’s Predicate Transformers
David Evans CS655: Programming Languages University of Virginia Computer Science Lecture 19: Minding Ps & Qs: Axiomatic.

David Evans CS655: Programming Languages University of Virginia Computer Science Lecture 19: Minding Ps & Qs: Axiomatic.
Technology from seed Weakest Precondition Synthesis for Compiler Optimizations Nuno Lopes and José Monteiro.

Technology from seed Weakest Precondition Synthesis for Compiler Optimizations Nuno Lopes and José Monteiro.
Partial correctness © Marcelo d’Amorim 2010.

Partial correctness © Marcelo d’Amorim 2010.
ISBN 0-321-33025-0 Chapter 3 Describing Syntax and Semantics.

ISBN Chapter 3 Describing Syntax and Semantics.
Program Proving Notes Ellen L. Walker.

Program Proving Notes Ellen L. Walker.
1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.

1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.
1/22 Programs : Semantics and Verification Charngki PSWLAB Programs: Semantics and Verification Mordechai Ben-Ari Mathematical Logic for Computer.

1/22 Programs : Semantics and Verification Charngki PSWLAB Programs: Semantics and Verification Mordechai Ben-Ari Mathematical Logic for Computer.
Automated Soundness Proofs for Dataflow Analyses and Transformations via Local Rules Sorin Lerner* Todd Millstein** Erika Rice* Craig Chambers* * University.

Automated Soundness Proofs for Dataflow Analyses and Transformations via Local Rules Sorin Lerner* Todd Millstein** Erika Rice* Craig Chambers* * University.
An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.

An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.
The Software Model Checker BLAST by Dirk Beyer, Thomas A. Henzinger, Ranjit Jhala and Rupak Majumdar Presented by Yunho Kim Provable Software Lab, KAIST.

The Software Model Checker BLAST by Dirk Beyer, Thomas A. Henzinger, Ranjit Jhala and Rupak Majumdar Presented by Yunho Kim Provable Software Lab, KAIST.

Similar presentations

Ads by Google