DOCSLIB.ORG

Towards Source-Level Timing Analysis of Embedded Software Using Functional Verification Methods

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Towards Source-Level Timing Analysis of Embedded Software Using Functional Verification Methods Fakultat¨ fur¨ Elektrotechnik und Informationstechnik Technische Universitat¨ Munchen¨ Towards Source-Level Timing Analysis of Embedded Software Using Functional Verification Methods Martin Becker, M.Sc. Vollst¨andigerAbdruck der von der Fakult¨at f¨urElektrotechnik und Informationstechnik der Technischen Universit¨atM¨unchenzur Erlangung des akademischen Grades eines Doktor-Ingenieurs (Dr.-Ing.) genehmigten Dissertation. Vorsitzender: Prof. Dr. sc. techn. Andreas Herkersdorf Pr¨ufendeder Dissertation: 1. Prof. Dr. sc. Samarjit Chakraborty 2. Prof. Dr. Marco Caccamo 3. Prof. Dr. Daniel M¨uller-Gritschneder Die Dissertation wurde am 13.06.2019 bei der Technischen Universit¨atM¨uncheneingereicht und durch die Fakult¨atf¨urElektrotechnik und Informationstechnik am 21.04.2020 angenommen. Abstract *** Formal functional verification of source code has become more prevalent in recent years, thanks to the increasing number of mature and efficient analysis tools becoming available. Developers regularly make use of them for bug-hunting, and produce software with fewer de- fects in less time. On the other hand, the temporal behavior of software is equally important, yet rarely analyzed formally, but typically determined through profiling and dynamic testing. Although methods for formal timing analysis exist, they are separated from functional veri- fication, and difficult to use. Since the timing of a program is a product of the source code and the hardware it is running on – e.g., influenced by processor speed, caches and branch predictors – established methods of timing analysis take place at instruction level, where enough details are available for the analysis. During this process, users often have to provide instruction-level hints about the program, which is a tedious and error-prone process, and perhaps the reason why timing analysis is not as widely performed as functional verification. This thesis investigates whether and how timing analysis can be performed at source code level, by leveraging mature analysis methods from general software engineering, and thus departs from the traditional instruction-level approach. Specifically, we focus on computing the worst-case execution time (WCET) of a program, which is required to prove and certify the timeliness of software in real-time systems, and used to prove its adherence to deadlines under all conditions. Not only would a source-level timing analysis be more accessible for users, but it promises other advantages, as well. As opposed to traditional instruction-level analysis, where semantic information is obfuscated or removed by the compiler, the source code carries all that information, making it easier to automatically track control and data flows. As a result, a source-level timing analysis should be able to infer more properties on the program with less user inputs, and to provide more precise timing estimates. The obvious challenge towards source-level WCET analysis is that the temporal behavior of a program is only defined by the machine code of the program and the microarchitecture of the target. The source code, however, is only specifying functional behavior, lacking all of this information. Many aspects, e.g., the specific instructions being used, are only decided during compilation from source to binary, and can have a dramatic impact on the timing. As a consequence, we have to annotate the source with a timing model computed from the binary and target properties, which requires establishing a mapping from instructions to source code. Another challenge is posed by performance-enhancing features in processors, such as instruction caches or branch predictors. Such features should be supported soundly and with reasonable precision; it is however not obvious whether and how they can be modeled in the source code, since its control flow structure can deviate significantly from the control flow of the machine instructions. Our approach to source-level WCET analysis is structured as follows. We start by evaluat- ing current methods and tools for formal functional verification of source code, to identify their shortcomings and select a viable analysis method. Based on the findings, we have chosen Bounded Model Checking as primary analysis method, which enables maximally precise timing estimates with a high degree of automatism, alleviating the need for user iii Abstract inputs. To address the back-annotation problem, we introduce an automated, compiler- and target-independent method for instruction-to-source mapping and back-annotation, which can tolerate compiler optimization. It is based on a careful combination of hierarchical flow partitioning to subdivide the mapping problem into smaller problems, and a dominator homomorphism and control dependency analysis to construct the mapping from incomplete debugging information. To address the known complexity issues of Model Checking, we propose source code transformations that are based on program slicing, loop acceleration and program abstraction, which keep the complexity of the models low. We further introduce a novel process of “timing debugging”, that is, a debugger-based reconstruction and replay of the WCET path, which sets critical variables identified during static analysis to steer into the execution into the worst-case path. Last but not least, we propose a precise source-level model for instruction caches. To guarantee its soundness, flow differences between binary and source are reconsolidated with an implicit path enumeration technique, exploiting the support for non-determinism in the analyzers. The increased program complexity caused by these microarchitectural models is controlled by computing microarchitectural invariants at either source or binary level, which effectively prevent a complexity explosion. Our source-level timing analysis has been verified against both cycle-accurate simulations and existing binary-level analyzers, for two different microarchitectures. In both cases our source-level analysis produced comparable and often better results than traditional binary- level analysis, especially under compiler optimization and in the presence of caches, and with less user input. For a simple microcontroller, we obtained WCET estimates which were 17% tighter than binary-level analysis, and on a processor with caches this number improved to even 56% tighter estimates. As a downside, the scalability of the proposed source-level approach is inferior to traditional approaches. Typical analysis times range between seconds and minutes in our experiments, lagging behind the faster traditional methods, which consistently terminate within seconds. However, we found several ways how this could be improved. Furthermore, we have only considered mono-processors with single-level instruction caches. Modeling more advanced processors is feasible and has been sketched, but is also left for future work. Overall, the results demonstrate that source-level timing analysis is a promising research direction with certain benefits, but also that traditional binary-level analysis cannot be entirely replaced. Instead, future research should focus on hybrid approaches, leveraging the best of both source-level and binary-level worlds. In summary, the main contributions of this thesis are as follows. (1) We introduce an overall workflow for WCET analysis at source code level using Model Checking, which addresses the known scalability issues with source code transformations. (2) We propose a generic, compiler- and target-independent method to establish a sound and precise mapping between machine instructions and source code, which is used to back-annotate the instruction timing to the source code, and serves as link between source-level analysis and microarchitectural analysis. (3) We propose a novel source-level model for set-associative instruction caches and address its complexity issues by computing invariants. We further sketch models for data caches, branch predictors and other performance-enhancing features, and discuss their impact on the analysis. (4) We present a novel process for “timing debugging” which allows the user to examine the program’s timing behavior in a debugger, while we automatically steer it into the WCET case. This method can be applied to counterexample reconstruction in general functional verification without any changes. (5) Lastly, and opposing a commonly held view, the experiments in this thesis demonstrate that Model Checking can indeed be applied for the WCET problem and scale well, albeit only when used intelligently. iv Zusammenfassung (German Abstract) *** Formale funktionale Verifikation von Software kommt zunehmend haufiger¨ zur Anwendung, dank der wachsenden Zahl von ausgereiften und effizienten Analysewerkzeugen. Entwickler nutzen diese regelmaßig¨ zur Fehlersuche, und produzieren robustere Software in kurzerer¨ Zeit. Andererseits ist das zeitliche Verhalten von Software ebenso wichtig, wird jedoch selten formal analysiert, sondern typischerweise durch Profiling und dynamische Tests bewertet. Obwohl Methoden zur formalen Zeitanalyse existieren, werden sie getrennt von funktionaler Verifikation angewandt, und sind schwierig zu bedienen. Da das Zeitverhalten eines Pro- gramms ein Resultat von Quelltext und der ausfuhrenden¨ Hardware ist – z.B. beeinflusst durch Prozessorgeschwindigkeit, Caches und Sprungvorhersagen – arbeiten etablierte Me- thoden der Zeitanalyse auf Instruktionsebene, wo genugend¨ Details fur¨ die Analyse bereit stehen. Wahrend¨ dieses Prozesses muss der Benutzer oftmals Hinweise auf Instruktionsebene
Load more

Recommended publications
  • Dominator Tree Certification and Independent Spanning Trees
    Dominator Tree Certification and Independent Spanning Trees∗ Loukas Georgiadis1 Robert E. Tarjan2 October 29, 2018 Abstract How does one verify that the output of a complicated program is correct? One can formally prove that the program is correct, but this may be beyond the power of existing methods. Alternatively one can check that the output produced for a particular input satisfies the desired input-output relation, by running a checker on the input-output pair. Then one only needs to prove the correctness of the checker. But for some problems even such a checker may be too complicated to formally verify. There is a third alternative: augment the original program to produce not only an output but also a correctness certificate, with the property that a very simple program (whose correctness is easy to prove) can use the certificate to verify that the input-output pair satisfies the desired input-output relation. We consider the following important instance of this general question: How does one verify that the dominator tree of a flow graph is correct? Existing fast algorithms for finding dominators are complicated, and even verifying the correctness of a dominator tree in the absence of additional information seems complicated. We define a correctness certificate for a dominator tree, show how to use it to easily verify the correctness of the tree, and show how to augment fast dominator-finding algorithms so that they produce a correctness certificate. We also relate the dominator certificate problem to the problem of finding independent spanning trees in a flow graph, and we develop algorithms to find such trees.
    [Show full text]
  • Maker-Breaker Total Domination Game Valentin Gledel, Michael A
    Maker-Breaker total domination game Valentin Gledel, Michael A. Henning, Vesna Iršič, Sandi Klavžar To cite this version: Valentin Gledel, Michael A. Henning, Vesna Iršič, Sandi Klavžar. Maker-Breaker total domination game. 2019. hal-02021678 HAL Id: hal-02021678 https://hal.archives-ouvertes.fr/hal-02021678 Preprint submitted on 16 Feb 2019 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Maker-Breaker total domination game Valentin Gledel a Michael A. Henning b Vesna Irˇsiˇc c;d Sandi Klavˇzar c;d;e January 31, 2019 a Univ Lyon, Universit´eLyon 1, LIRIS UMR CNRS 5205, F-69621, Lyon, France [email protected] b Department of Pure and Applied Mathematics, University of Johannesburg, Auckland Park 2006, South Africa [email protected] c Faculty of Mathematics and Physics, University of Ljubljana, Slovenia [email protected] [email protected] d Institute of Mathematics, Physics and Mechanics, Ljubljana, Slovenia e Faculty of Natural Sciences and Mathematics, University of Maribor, Slovenia Abstract Maker-Breaker total domination game in graphs is introduced as a natu- ral counterpart to the Maker-Breaker domination game recently studied by Duch^ene,Gledel, Parreau, and Renault.
    [Show full text]
  • 2- Dominator Coloring for Various Graphs in Graph Theory
    International Journal of Science and Research (IJSR) ISSN (Online): 2319-7064 Index Copernicus Value (2013): 6.14 | Impact Factor (2015): 6.391 2- Dominator Coloring for Various Graphs in Graph Theory A. Sangeetha Devi1, M. M. Shanmugapriya2 1Research Scholar, Department of Mathematics, Karpagam University, Coimbatore-21, India . 2Assistant Professor, Department of Mathematics, Karpagam University, Coimbatore-21, India Abstract: Given a graph G, the dominator coloring problem seeks a proper coloring of G with the additional property that every vertex in the graphG dominates at least 2-color class. In this paper, as an extension of Dominator coloring such that various graph using 2- dominator coloring has been discussed. Keywords: 2-Dominator Coloring, Barbell Graph, Star Graph, Banana Tree, Wheel Graph 1. Introduction of all the pendent vertices of G by „n‟ different colors. Introduce two new colors „퐶푖 „, „퐶푗 ‟alternatively to the In graph theory, coloring and dominating are two important subdividing vertices of G, C0 will dominates „퐶푖 „, „퐶푗 ‟. Also areas which have been extensively studied. The fundamental all the pendent verticies of G dominates at least two color parameter in the theory of graph coloring is the chromatic class. i.e, 1+n+2 ≤ 푛 + 3. Therefore χ푑,2 {C [ 푆1,푛 ] }≤ 푛 + number χ (G) of a graph G which is defined to be the 3 , n≥ 3. minimum number of colors required to color the vertices of G in such a way that no two adjacent vertices receive the Theorem 2.2 same color. If χ (G) = k, we say that G is k-chromatic. Let 푆 be a star graph, then χ (푆 ) =2, n 1,푛 푑,2 1,푛 .2 A dominating set S is a subset of the vertices in a graph such that every vertex in the graph either belongs to S or has a Proof: neighbor in S.
    [Show full text]
  • An Experimental Study of Dynamic Dominators∗
    An Experimental Study of Dynamic Dominators∗ Loukas Georgiadis1 Giuseppe F. Italiano2 Luigi Laura3 Federico Santaroni2 April 12, 2016 Abstract Motivated by recent applications of dominator computations, we consider the problem of dynamically maintaining the dominators of flow graphs through a sequence of insertions and deletions of edges. Our main theoretical contribution is a simple incremental algorithm that maintains the dominator tree of a flow graph with n vertices through a sequence of k edge in- sertions in O(m minfn; kg + kn) time, where m is the total number of edges after all insertions. Moreover, we can test in constant time if a vertex u dominates a vertex v, for any pair of query vertices u and v. Next, we present a new decremental algorithm to update a dominator tree through a sequence of edge deletions. Although our new decremental algorithm is not asymp- totically faster than repeated applications of a static algorithm, i.e., it runs in O(mk) time for k edge deletions, it performs well in practice. By combining our new incremental and decremen- tal algorithms we obtain a fully dynamic algorithm that maintains the dominator tree through intermixed sequence of insertions and deletions of edges. Finally, we present efficient imple- mentations of our new algorithms as well as of existing algorithms, and conduct an extensive experimental study on real-world graphs taken from a variety of application areas. 1 Introduction A flow graph G = (V; E; s) is a directed graph with a distinguished start vertex s 2 V . A vertex v is reachable in G if there is a path from s to v; v is unreachable if no such path exists.
    [Show full text]
  • Improving the Compilation Process Using Program Annotations
    POLITECNICO DI MILANO Corso di Laurea Magistrale in Ingegneria Informatica Dipartimento di Elettronica, Informazione e Bioingegneria Improving the Compilation process using Program Annotations Relatore: Prof. Giovanni Agosta Correlatore: Prof. Lenore Zuck Tesi di Laurea di: Niko Zarzani, matricola 783452 Anno Accademico 2012-2013 Alla mia famiglia Alla mia ragazza Ai miei amici Ringraziamenti Ringrazio in primis i miei relatori, Prof. Giovanni Agosta e Prof. Lenore Zuck, per la loro disponibilità, i loro preziosi consigli e il loro sostegno. Grazie per avermi seguito sia nel corso della tesi che della mia carriera universitaria. Ringrazio poi tutti coloro con cui ho avuto modo di confrontarmi durante la mia ricerca, Dr. Venkat N. Venkatakrishnan, Dr. Rigel Gjomemo, Dr. Phu H. H. Phung e Giacomo Tagliabure, che mi sono stati accanto sin dall’inizio del mio percorso di tesi. Voglio ringraziare con tutto il cuore la mia famiglia per il prezioso sup- porto in questi anni di studi e Camilla per tutto l’amore che mi ha dato anche nei momenti più critici di questo percorso. Non avrei potuto su- perare questa avventura senza voi al mio fianco. Ringrazio le mie amiche e i miei amici più cari Ilaria, Carolina, Elisa, Riccardo e Marco per la nostra speciale amicizia a distanza e tutte le risate fatte assieme. Infine tutti i miei conquilini, dai più ai meno nerd, per i bei momenti pas- sati assieme. Ricorderò per sempre questi ultimi anni come un’esperienza stupenda che avete reso memorabile. Mi mancherete tutti. Contents 1 Introduction 1 2 Background 3 2.1 Annotated Code . .3 2.2 Sources of annotated code .
    [Show full text]
  • Static Analysis for Bsplib Programs Filip Jakobsson
    Static Analysis for BSPlib Programs Filip Jakobsson To cite this version: Filip Jakobsson. Static Analysis for BSPlib Programs. Distributed, Parallel, and Cluster Computing [cs.DC]. Université d’Orléans, 2019. English. NNT : 2019ORLE2005. tel-02920363 HAL Id: tel-02920363 https://tel.archives-ouvertes.fr/tel-02920363 Submitted on 24 Aug 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. UNIVERSITÉ D’ORLÉANS ÉCOLE DOCTORALE MATHÉMATIQUES, INFORMATIQUE, PHYSIQUE THÉORIQUE ET INGÉNIERIE DES SYSTÈMES LABORATOIRE D’INFORMATIQUE FONDAMENTALE D’ORLÉANS HUAWEI PARIS RESEARCH CENTER THÈSE présentée par : Filip Arvid JAKOBSSON soutenue le : 28 juin 2019 pour obtenir le grade de : Docteur de l’université d’Orléans Discipline : Informatique Static Analysis for BSPlib Programs THÈSE DIRIGÉE PAR : Frédéric LOULERGUE Professeur, University Northern Arizona et Université d’Orléans RAPPORTEURS : Denis BARTHOU Professeur, Bordeaux INP Herbert KUCHEN Professeur, WWU Münster JURY : Emmanuel CHAILLOUX Professeur, Sorbonne Université, Président Gaétan HAINS Ingénieur-Chercheur, Huawei Technologies, Encadrant Wijnand SUIJLEN Ingénieur-Chercheur, Huawei Technologies, Encadrant Wadoud BOUSDIRA Maître de conference, Université d’Orléans, Encadrante Frédéric DABROWSKI Maître de conference, Université d’Orléans, Encadrant Acknowledgments Firstly, I am grateful to the reviewers for taking the time to read this doc- ument, and their insightful and helpful remarks that have greatly helped its quality.
    [Show full text]
  • Embedded Linux Primer: a Practical Real-World Approach
    Embedded Linux Primer: A Practical, Real-World Approach By Christopher Hallinan ............................................... Publisher: Prentice Hall Pub Date: September 18, 2006 Print ISBN-10: 0-13-167984-8 Print ISBN-13: 978-0-13-167984-9 Pages: 576 Table of Contents | Index Comprehensive Real-World Guidance for Every Embedded Developer and Engineer This book brings together indispensable knowledge for building efficient, high-value, Linux-based embedded products: information that has never been assembled in one place before. Drawing on years of experience as an embedded Linux consultant and field application engineer, Christopher Hallinan offers solutions for the specific technical issues you're most likely to face, demonstrates how to build an effective embedded Linux environment, and shows how to use it as productively as possible. Hallinan begins by touring a typical Linux-based embedded system, introducing key concepts and components, and calling attention to differences between Linux and traditional embedded environments. Writing from the embedded developer's viewpoint, he thoroughly addresses issues ranging from kernel building and initialization to bootloaders, device drivers to file systems. Hallinan thoroughly covers the increasingly popular BusyBox utilities; presents a step-by-step walkthrough of porting Linux to custom boards; and introduces real-time configuration via CONFIG_RT--one of today's most exciting developments in embedded Linux. You'll find especially detailed coverage of using development tools to analyze
    [Show full text]
  • Durham E-Theses
    Durham E-Theses Hypergraph Partitioning in the Cloud LOTFIFAR, FOAD How to cite: LOTFIFAR, FOAD (2016) Hypergraph Partitioning in the Cloud, Durham theses, Durham University. Available at Durham E-Theses Online: http://etheses.dur.ac.uk/11529/ Use policy The full-text may be used and/or reproduced, and given to third parties in any format or medium, without prior permission or charge, for personal research or study, educational, or not-for-prot purposes provided that: • a full bibliographic reference is made to the original source • a link is made to the metadata record in Durham E-Theses • the full-text is not changed in any way The full-text must not be sold in any format or medium without the formal permission of the copyright holders. Please consult the full Durham E-Theses policy for further details. Academic Support Oce, Durham University, University Oce, Old Elvet, Durham DH1 3HP e-mail: [email protected] Tel: +44 0191 334 6107 http://etheses.dur.ac.uk Hypergraph Partitioning in the Cloud Foad Lotfifar Abstract The thesis investigates the partitioning and load balancing problem which has many applications in High Performance Computing (HPC). The application to be partitioned is described with a graph or hypergraph. The latter is of greater interest as hypergraphs, compared to graphs, have a more general structure and can be used to model more complex relationships between groups of objects such as non- symmetric dependencies. Optimal graph and hypergraph partitioning is known to be NP-Hard but good polynomial time heuristic algorithms have been proposed.
    [Show full text]
  • Organization Control-Flow Graphs Dominators
    10/14/2019 Organization • Dominator relation of CFGs Dominators, – postdominator relation control-dependence • Dominator tree and SSA form • Computing dominator relation and tree – Dataflow algorithm – Lengauer and Tarjan algorithm • Control-dependence relation • SSA form 12 Control-flow graphs Dominators START • CFG is a directed graph START • Unique node START from which • In a CFG G, node a is all nodes in CFG are reachable a said to dominate node a • Unique node END reachable from b b all nodes b if every path from • Dummy edge to simplify c c discussion START END START to b contains • Path in CFG: sequence of nodes, de de possibly empty, such that a. successive nodes in sequence are connected in CFG by edge f • Dominance relation: f – If x is first node in sequence and y is last node, we will write the path g relation on nodes g as x * y – If path is non-empty (has at least – We will write a dom b one edge) we will write x + y END if a dominates b END 34 1 10/14/2019 Example Computing dominance relation • Dataflow problem: START START A B C D E F G END A START x xxxxxxx x Domain: powerset of nodes in CFG A x x x x xxx B B x x x xxx N C C Dom(N) = {N} U ∩ Dom(M) D x M ε pred(N) DE E x F xx F G x Find greatest solution. END x G Work through example on previous slide to check this. Question: what do you get if you compute least solution? END 56 Properties of dominance Example of proof • Dominance is • Let us prove that dominance is transitive.
    [Show full text]
  • Gnu Assembler
    Using as The gnu Assembler (Sourcery G++ Lite 2010q1-188) Version 2.19.51 The Free Software Foundation Inc. thanks The Nice Computer Company of Australia for loaning Dean Elsner to write the first (Vax) version of as for Project gnu. The proprietors, management and staff of TNCCA thank FSF for distracting the boss while they gotsome work done. Dean Elsner, Jay Fenlason & friends Using as Edited by Cygnus Support Copyright c 1991, 92, 93, 94, 95, 96, 97, 98, 99, 2000, 2001, 2002, 2006, 2007, 2008, 2009 Free Software Foundation, Inc. Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, with no Front-Cover Texts, and with no Back-Cover Texts. A copy of the license is included in the section entitled \GNU Free Documentation License". i Table of Contents 1 Overview :::::::::::::::::::::::::::::::::::::::: 1 1.1 Structure of this Manual :::::::::::::::::::::::::::::::::::::: 14 1.2 The GNU Assembler :::::::::::::::::::::::::::::::::::::::::: 15 1.3 Object File Formats::::::::::::::::::::::::::::::::::::::::::: 15 1.4 Command Line ::::::::::::::::::::::::::::::::::::::::::::::: 15 1.5 Input Files :::::::::::::::::::::::::::::::::::::::::::::::::::: 16 1.6 Output (Object) File:::::::::::::::::::::::::::::::::::::::::: 16 1.7 Error and Warning Messages :::::::::::::::::::::::::::::::::: 16 2 Command-Line Options::::::::::::::::::::::: 19 2.1 Enable Listings: `-a[cdghlns]'
    [Show full text]
  • Control-Flow Analysis
    Control‐Flow Analysis Chapter 8, Section 8.4 Chapter 9, Section 9.6 URL from the course web page [copyrighted material, please do not link to it or distribute it] Control‐Flow Graphs • Control‐flow graph (CFG) for a procedure/method – A node is a basic block: a single‐entry‐single‐exit sequence of three‐address instructions – An edge represents the potential flow of control from one basic block to another • Uses of a control‐flow graph – Inside a basic block: local code optimizations; done as part of the code generation phase – Across basic blocks: global code optimizations; done as part of the code optimization phase – Aspects of code generation: e.g., global register allocation 2 Control‐Flow Analysis • Part 1: Constructing a CFG • Part 2: Finding dominators and post‐dominators • Part 3: Finding loops in a CFG – What exactly is a loop?We cannot simply say “whatever CFG subgraph is generated by while, do‐while, and for statements” – need a general graph‐theoretic definition • Part 4: Static single assignment form (SSA) • Part 5: Finding control dependences – Necessary as part of constructing the program dependence graph (PDG), a popular IR for software tools for slicing, refactoring, testing, and debugging 3 Part 1: Constructing a CFG • Basic block: maximal sequence of consecutive three‐address instructions such that – The flow of control can enter only through the first instruction (i.e., no jumps into the middle of the block) – The flow of control can exit only at the last instruction • Given: the entire sequence of instructions • First, find the leaders (starting instructions of all basic blocks) – The first instruction – The target of any conditional/unconditional jump – Any instruction that immediately follows a conditional 4 or unconditional jump Constructing a CFG • Next, find the basic blocks: for each leader, its basic block contains itself and all instructions up to (but not including) the next leader 1.
    [Show full text]
  • On Dominator Colorings in Graphs
    CORE Metadata, citation and similar papers at core.ac.uk Provided by Calhoun, Institutional Archive of the Naval Postgraduate School Calhoun: The NPS Institutional Archive Faculty and Researcher Publications Faculty and Researcher Publications 2007 On dominator colorings in graphs Gera, Ralucca Graph Theory Notes N. Y. / Volume 52, 25-30 http://hdl.handle.net/10945/25542 On Dominator Colorings in Graphs Ralucca Michelle Gera Department of Applied Mathematics Naval Postgraduate School Monterey, CA 93943, USA ABSTRACT Given a graph G, the dominator coloring problem seeks a proper coloring of G with the additional property that every vertex in the graph dom- inates an entire color class. We seek to minimize the number of color classes. We study this problem on several classes of graphs, as well as finding general bounds and characterizations. We also show the relation between dominator chromatic number, chromatic number, and domina- tion number. Key Words: coloring, domination, dominator coloring. AMS Subject Classification: 05C15, 05C69. 1 Introduction and motivation A dominating set S is a subset of the vertices in a graph such that every vertex in the graph either belongs to S or has a neighbor in S. The domination number is the order of a minimum dominating set. The topic has long been of interest to researchers [1, 2]. The associated decision problem, dominating set, has been studied in the computational complexity literature [3], and so has the associated optimization problem, which is to find a dominating set of minimum cardinality. Numerous variants of this problem have been studied [1, 2, 4, 5], and here we study one more that was introduced in [6].
    [Show full text]