dependence and data flow models
play

Dependence and Data Flow Models (c) 2007 Mauro Pezz & Michal - PowerPoint PPT Presentation

Jul 14, 2023 •45 likes •375 views

Dependence and Data Flow Models (c) 2007 Mauro Pezz & Michal Young Ch 6, slide 1 Why Data Flow Models? Why Data Flow Models? Models from Chapter 5 emphasized control Models from Chapter 5 emphasized control Control flow

  1. Dependence and Data Flow Models (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 1

  2. Why Data Flow Models? Why Data Flow Models? • Models from Chapter 5 emphasized control • Models from Chapter 5 emphasized control • Control flow graph, call graph, finite state machines • We also need to reason about dependence • We also need to reason about dependence • Where does this value of x come from? • What would be affected by changing this? • What would be affected by changing this? • ... • Many program analyses and test design Many program analyses and test design techniques use data flow information – Often in combination with control flow Often in combination with control flow • Example: “Taint” analysis to prevent SQL injection attacks • Example: Dataflow test criteria (Ch.13) (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 2

  3. Learning objectives Learning objectives • Understand basics of data-flow models and the • Understand basics of data flow models and the related concepts (def-use pairs, dominators…) • Understand some analyses that can be • Understand some analyses that can be performed with the data-flow model of a program p g – The data flow analyses to build models – Analyses that use the data flow models y • Understand basic trade-offs in modeling data flow – variations and limitations of data-flow models and analyses, differing in precision and cost (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 3

  4. Def-Use Pairs (1) Def-Use Pairs (1) • A def-use (du) pair associates a point in a program • A def-use (du) pair associates a point in a program where a value is produced with a point where it is used • Definition : where a variable gets a value Definition : where a variable gets a value – Variable declaration (often the special value “uninitialized”) – Variable initialization – Assignment – Values received by a parameter • Use : extraction of a value from a variable i f l f i bl U – Expressions – Conditional statements Conditional statements – Parameter passing – Returns (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 4

  5. Def-Use Pairs Def Use Pairs ... ... if (...) { if (...) { if (...) { Definition: x = ... ; x gets a value ... x = ... } } y = ... + x + ... ; ... Use: the value Use: the value of x is Def-Use extracted path y = y ... + x + ... + x + ... (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 5

  6. Def-Use Pairs (3) Def Use Pairs (3) /** Euclid's algorithm */ public class GCD { public int gcd(int x, int y) { int tmp; // A: def x, y, tmp while (y != 0) { // B: use y tmp = x % y; // C: def tmp; use x, y x = y; // D: def x; use y // D d f y = tmp; // E: def y; use tmp } return x; // F: use x return x; // F: use x } Figure 6.2, page 79 (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 6

  7. Def-Use Pairs (3) Def-Use Pairs (3) • A definition clear path is a path along the CFG • A definition-clear path is a path along the CFG from a definition to a use of the same variable without* another definition of the variable without another definition of the variable between – If, instead, another definition is present on the If instead another definition is present on the path, then the latter definition kills the former • A def use pair is formed if and only if there is a • A def-use pair is formed if and only if there is a definition-clear path between the definition and the use and the use *There is an over-simplification p here, which we will repair later. (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 7

  8. Definition-Clear or Killing Definition-Clear or Killing x = ... // A: def x // A d f ... q = ... Definition: x x = y; // B: kill x, def x A gets a value gets a value x = ... x = z = ... z y = f(x); // C: use x ... Definition: x gets Definition: x gets Path A..C is a new value, old B x = y not definition-clear value is killed ... Path B..C is Use: the value definition-clear C C of x is of x is y = f(x) f( ) extracted (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 8

  9. (Direct) Data Dependence Graph (Direct) Data Dependence Graph • A direct data dependence graph is: – Nodes: as in the control flow graph (CFG) – Edges: def-use (du) pairs, labelled with the variable name D Dependence d edges show this x value could be the unchanged the unchanged parameter or could be set at line D line D (Fi (Figure 6.3, page 80) 6 3 80) (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 9

  10. Control dependence (1) Control dependence (1) • Data dependence: Where did these values come from? • Control dependence: Which statement controls whether C l d d Whi h l h h this statement executes? – Nodes: as in the CFG Nodes: as in the CFG – Edges: unlabelled, from entry/branching points to controlled blocks (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 10

  11. Dominators Dominators • Pre-dominators in a rooted, directed graph can be used to make this intuitive notion of “controlling used to make this intuitive notion of “controlling decision” precise. • Node M dominates node N if every path from the root Node M dominates node N if every path from the root to N passes through M. – A node will typically have many dominators, but except for the root, there is a unique immediate dominator of node N which root there is a unique immediate dominator of node N which is closest to N on any path from the root, and which is in turn dominated by all the other dominators of N. – Because each node (except the root) has a unique immediate Because each node (except the root) has a unique immediate dominator, the immediate dominator relation forms a tree. • Post-dominators : Calculated in the reverse of the control flow graph, using a special “exit” node as the root. (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 11

  12. Dominators (example) Dominators (example) • A pre-dominates all • A pre dominates all A nodes; G post-dominates all nodes B B • F and G post-dominate E • G is the immediate post- p C E dominator of B – C does not post-dominate B D F • B is the immediate pre- dominator of G G – F does not pre-dominate G F d d i t G t (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 12

  13. Control dependence (2) Control dependence (2) • We can use post-dominators to give a more precise • We can use post dominators to give a more precise definition of control dependence: – Consider again a node N that is reached on some but not all g execution paths. – There must be some node C with the following property: • C has at least two successors in the control flow graph (i.e., it C has at least two successors in the control flow graph (i e it represents a control flow decision); • C is not post-dominated by N • there is a successor of C in the control flow graph that is post- dominated by N. – When these conditions are true, we say node N is control- , y dependent on node C. • Intuitively: C was the last decision that controlled whether N executed executed (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 13

  14. Control Dependence Control Dependence A Execution of F is not inevitable at B B B Execution of F is C E inevitable at E inevitable at E D F G F is control-dependent on B, the last point at which its execution was not inevitable (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 14

  15. Data Flow Analysis Computing data flow information p g (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 15

  16. Calculating def-use pairs Calculating def-use pairs • Definition-use pairs can be defined in terms of paths in the Definition use pairs can be defined in terms of paths in the program control flow graph: – There is an association (d,u) between a definition of variable v at d and a use of variable v at u iff and a use of variable v at u iff • there is at least one control flow path from d to u • with no intervening definition of v. – v d reaches u (v d is a reaching definition at u). ( i t ) h hi d fi iti – If a control flow path passes through another definition e of the same variable v, v e kills v d at that point. • Even if we consider only loop-free paths, the number of paths in a graph can be exponentially larger than the number of nodes and edges. edges. • Practical algorithms therefore do not search every individual path. Instead, they summarize the reaching definitions at a node over all the paths reaching that node the paths reaching that node. (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 16

  17. Exponential paths (even without loops) A B C D E F G V 2 paths from A to B Tracing each path is not efficient, and we 4 from A to C can do much better can do much better. 8 from A to D 16 from A to E ... 128 paths from A to V (c) 2007 Mauro Pezzè & Michal Young Ch 6, slide 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Why Data Flow Models? Models from Chapter 5 emphasized control Control flow graph, call

Why Data Flow Models? Models from Chapter 5 emphasized control Control flow graph, call

Why Data Flow Models? Models from Chapter 5 emphasized control Control flow graph, call graph, finite state machines We also need to reason about dependence Dependence and Data Flow Models Where does this value of x come from?

369 views • 9 slides
1 UD Chains Role of Alternate Program Representations Definition Advantage ud chains link

1 UD Chains Role of Alternate Program Representations Definition Advantage ud chains link

Data Dependence Example Definition Data dependences are constraints on the order in which statements may be executed s 1 a = b; We say statement s 2 depends on s 1 flow Flow (true) dependence : s 1 writes memory that s 2 later reads

260 views • 5 slides
1 What Is Control-Flow Analysis? Loop Concepts Control-flow analysis discovers the flow of

1 What Is Control-Flow Analysis? Loop Concepts Control-flow analysis discovers the flow of

Control-Flow Analysis and Loop Detection Context Last time Data-flow Speeding up data-flow analysis Flow of data values from defs to uses Could alternatively be represented as a data dependence Today Control-flow analysis

516 views • 5 slides
More refined representations Control dependence graph Problem: control-flow edges in CFG

More refined representations Control dependence graph Problem: control-flow edges in CFG

More refined representations Control dependence graph Problem: control-flow edges in CFG overspecify evaluation Program dependence graph (PDG): order data dependence graph + control dependence graph (CDG) [Ferrante, Ottenstein, & Warren,

260 views • 5 slides
HW/SW Codesign w/ FPGAs Data Flow Modeling I ECE 522 Data Flow Models As we discussed, hardware

HW/SW Codesign w/ FPGAs Data Flow Modeling I ECE 522 Data Flow Models As we discussed, hardware

HW/SW Codesign w/ FPGAs Data Flow Modeling I ECE 522 Data Flow Models As we discussed, hardware is parallel while software is sequential We need concurrent high-level models to allow designers to describe systems that are independent of

574 views • 12 slides
Models for Structured Data Linear Chains If we take a persons BP every five minutes over

Models for Structured Data Linear Chains If we take a persons BP every five minutes over

1 Models for Structured Data Linear Chains If we take a persons BP every five minutes over a 24 hour period then there is some significant dependence between successive values How to model this dependence? Occurs in protein

733 views • 14 slides
Chapter 3 Structural breaks for models with path dependence 2 Chapter 3 Path dependence (p.

Chapter 3 Structural breaks for models with path dependence 2 Chapter 3 Path dependence (p.

Chapter 3 Structural breaks for models with path dependence 2 Chapter 3 Path dependence (p. 3) Change-point models (p. 16) Markov-switching and Change-point models (p. 26) PMCMC algorithm IHMM-GARCH References (p. 43) 3

611 views • 45 slides
Hadronisation: Models vs. Data Klaus Hamacher, Bergische Univ. Wuppertal, DELPHI

Hadronisation: Models vs. Data Klaus Hamacher, Bergische Univ. Wuppertal, DELPHI

Hadronisation: Models vs. Data Klaus Hamacher, Bergische Univ. Wuppertal, DELPHI Introduction Remarks on Tuning Models compared to Data (shapes, incl. & ident. hadrons., rates, E-dependence, heavy qs, resonances, baryons, soft

885 views • 40 slides
Outline Part 3: Models of Computation FSMs Discrete Event Systems CFSMs Data

Outline Part 3: Models of Computation FSMs Discrete Event Systems CFSMs Data

Outline Part 3: Models of Computation FSMs Discrete Event Systems CFSMs Data Flow Models Petri Nets The Tagged Signal Model 1 EE249Fall07 Data-flow networks A bit of history A bit of history Syntax and

434 views • 24 slides
From Data to Effects Dependence Graphs: Source-to-Source Transformations for C CPC 2015 Nelson

From Data to Effects Dependence Graphs: Source-to-Source Transformations for C CPC 2015 Nelson

Motivation Limitations of the Data Dependence Graph Effects Dependence Graph Impact on Existing Code Transformations Conclusion From Data to Effects Dependence Graphs: Source-to-Source Transformations for C CPC 2015 Nelson Lossing 1 Pierre

662 views • 26 slides
HBT , Flow, Fluctuations etc.: Confronting Models with BES Data Hannah Elfner 28.03.19, EMMI

HBT , Flow, Fluctuations etc.: Confronting Models with BES Data Hannah Elfner 28.03.19, EMMI

HBT , Flow, Fluctuations etc.: Confronting Models with BES Data Hannah Elfner 28.03.19, EMMI Workshop, GSI, Darmstadt Introduction Dynamical Description of Heavy Ion Collisions Two regimes with well-established approaches FAIR Hannah

804 views • 49 slides
Algebraic models for multilinear dependence Jason Morton Stanford University February 21, 2009

Algebraic models for multilinear dependence Jason Morton Stanford University February 21, 2009

Algebraic models for multilinear dependence Jason Morton Stanford University February 21, 2009 NSF Tensor Workshop Joint work with Lek-Heng Lim of U.C. Berkeley J. Morton (Stanford) Algebraic models for multilinear dependence 2/21/09 NSF

504 views • 37 slides
Traffic Flow Models CIVL 4162/6162 (Traffic Engineering) Lesson Objective Demonstrate

Traffic Flow Models CIVL 4162/6162 (Traffic Engineering) Lesson Objective Demonstrate

Traffic Flow Models CIVL 4162/6162 (Traffic Engineering) Lesson Objective Demonstrate traffic flow characteristics using observed data Describe traffic flow models Single regime Multiple regime Develop and calibrate traffic

343 views • 30 slides
Control-dependence Analysis 2 Control-dependence Analysis 1. Introduction (motivation, overview)

Control-dependence Analysis 2 Control-dependence Analysis 1. Introduction (motivation, overview)

Class 4 Basic Analyses (4) Assign (see Schedule for links) Readings Control/program-dependence analysis Static single assignment and control dependence Problem Set 2: due 9/1/09 1 Control-dependence Analysis 2

254 views • 12 slides
1 Ways to improve data-flow analysis efficiency Example (liveness) 1st 2nd 3rd

1 Ways to improve data-flow analysis efficiency Example (liveness) 1st 2nd 3rd

Speeding Up Data-Flow Analysis Solving the Data-flow Equations Last time Algorithm Various optimizations that use data-flow analysis for each node n in CFG initialize solutions in[n] = ; out[n] = Today repeat Speeding up

418 views • 4 slides
Network Flow CS31005: Algorithms-II Autumn 2020 IIT Kharagpur Network Flow Models the flow

Network Flow CS31005: Algorithms-II Autumn 2020 IIT Kharagpur Network Flow Models the flow

Network Flow CS31005: Algorithms-II Autumn 2020 IIT Kharagpur Network Flow Models the flow of items through a network Example Transporting goods through the road/rail/air network Flow of fluids (oil, water,..) through pumping

949 views • 84 slides
Behavior-Based Detection The old way match syntactic signatures: One-to- one < 50%

Behavior-Based Detection The old way match syntactic signatures: One-to- one < 50%

Behavior-Based Detection The old way match syntactic signatures: One-to- one < 50% detection The new way examine underlying behavior: One-to- many 1 Specifying Behaviors NtOpenKey \CurrentVersion\Run NtDeleteValueKey

1.58k views • 102 slides
Abstraction via the OS Device Drivers Jonathan Misurda jmisurda@cs.pitt.edu Software Layers

Abstraction via the OS Device Drivers Jonathan Misurda jmisurda@cs.pitt.edu Software Layers

Abstraction via the OS Device Drivers Jonathan Misurda jmisurda@cs.pitt.edu Software Layers Device Drivers User User space program User User level I/O software & libraries Kernel space Device independent OS software Operating

765 views • 5 slides
Discover vulnerabilities with CodeQL Boik Su Security Researcher @ CyCraft CHROOTs member

Discover vulnerabilities with CodeQL Boik Su Security Researcher @ CyCraft CHROOTs member

Discover vulnerabilities with CodeQL Boik Su Security Researcher @ CyCraft CHROOTs member Programming lover qazbnm456 @boik_su Agenda Brief introduction to CodeQL CodeQLs Tricks Replicate CVEs to find you CVEs More

2.1k views • 63 slides
THEM : Kat Gupta REPRESENTATIONS OF University of Nottingham SUFFRAGISTS, @mixosaurus

THEM : Kat Gupta REPRESENTATIONS OF University of Nottingham SUFFRAGISTS, @mixosaurus

THE TAINT OF MILITANCY IS NOT UPON THEM : Kat Gupta REPRESENTATIONS OF University of Nottingham SUFFRAGISTS, @mixosaurus SUFFRAGETTES AND DIRECT ACTION IN THE TIMES , 1908-1914 WHY THE SUFFRAGE MOVEMENT? How a political movement was

844 views • 45 slides
Lua Code: Security Overview and Practical Approaches to Static Analysis Andrei Costin

Lua Code: Security Overview and Practical Approaches to Static Analysis Andrei Costin

IEEE SPW: LangSec'17 (San Jose, CA) Lua Code: Security Overview and Practical Approaches to Static Analysis Andrei Costin ancostin@jyu.fi, andrei@firmware.re University of Jyvaskyla, Finland Agenda Introduction Contributions

374 views • 23 slides
Project TALC Interviews with Developers of Evidence-Based Programs for Teen Pregnancy Prevention

Project TALC Interviews with Developers of Evidence-Based Programs for Teen Pregnancy Prevention

A WORD FROM THE EXPERTS Project TALC Interviews with Developers of Evidence-Based Programs for Teen Pregnancy Prevention 1 This webinar was developed by Child Trends under contract #GS-10F-0030R for the Office of Adolescent Health; US

306 views • 15 slides
TALx86: A Realistic Typed Assembly Language TALx86: A Realistic Typed Assembly Language Dan

TALx86: A Realistic Typed Assembly Language TALx86: A Realistic Typed Assembly Language Dan

TALx86: A Realistic Typed Assembly Language TALx86: A Realistic Typed Assembly Language Dan Grossman, Fred Smith Cornell University Joint work with: Greg Morrisett, Karl Crary (CMU), Neal Glew, Richard Samuels, Dave Walker, Stephanie Weirich,

447 views • 20 slides
ITS INCORPORATION INTO SPARSE UNMIXING FOR MINERAL IDENTIFICATION Thanh Bui 1,2 , Beate Orberger

ITS INCORPORATION INTO SPARSE UNMIXING FOR MINERAL IDENTIFICATION Thanh Bui 1,2 , Beate Orberger

BUILDING A HYPERSPECTRAL LIBRARY AND ITS INCORPORATION INTO SPARSE UNMIXING FOR MINERAL IDENTIFICATION Thanh Bui 1,2 , Beate Orberger 3,4 , Simon B. Blancher 1 , Ali Mohammad- Djafari 4 , Henry Pilliere 5 , Anne Salaun 1 , Xavier Bourrat 6 ,

659 views • 30 slides

More recommend