LTS/DICE2014/slides.tex
r3467 r3478 21 21 ]{powerdot} 22 22 %\documentclass[mode=handout,nopagebreaks,paper=a4paper]{powerdot} 23 23 \usepackage{multirow} 24 24 %\usepackage[latin1]{inputenc} 25 25 \usepackage{pstricks,pstnode,psttext,psttree} … … 217 217 $\;$\\[9mm] 218 218 \begin{center} 219 \includegraphics[width= 7cm]{cerco.eps}219 \includegraphics[width=6cm]{cerco.eps} 220 220 \end{center} 221 221 This talk: … … 223 223 \begin{minipage}{12cm} 224 224 \begin{itemize} 225 \item There are some hidden assumption and limitations of labelling approach: {\red instructions with multiple predecessors} and {\redfunction calls}.226 \item We present a {\red revisitation of labelling approach} able to cope the above mentioned limitations.227 \item All the presented results have beenformalized in the {\red Matita proof assistant}.225 \item We revise the labelling approach to lift some restriction: {\red instructions having only one predecessor} and {\red absence of function calls}. 226 \item We replace simple status independent costs with arbitrary semantics domains used in {\red abstract interpretation} to analyze caches, pipelines,$\ldots$. 227 \item All the presented results are formalized in the {\red Matita proof assistant}. 228 228 \end{itemize} 229 229 \end{minipage} … … 279 279 \item No more label emission statements. 280 280 \end{itemize} 281 \begin{lstlisting}[language=Grafite] 282 record abstract_status : Type[2] ≝ 283 { as_status :> Type[0] 284 ; as_execute : ActionLabel → relation as_status 285 ; as_syntactical_succ : relation as_status 286 ; as_classify : as_status → status_class 287 ; as_initial : as_status → bool 288 ; as_final : as_status → bool 289 ; jump_emits : ∀s1,s2,l.as_classify ... s1 = cl_jump → 290 as_execute l s1 s2 → is_non_silent_cost_act l 291 }. 292 \end{lstlisting} 281 \begin{center} 282 \begin{tabular}{ll l} 283 \begin{lstlisting} 284 swith(E){ 285 case e1 : 286 Emit L1; 287 I1; 288 case e2 : 289 Emit L2; 290 I2; 291 } 292 \end{lstlisting} &$\qquad$& 293 \begin{lstlisting} 294 swith(E){ 295 case e1,L1 : 296 297 I1; 298 case L3,e2,L2 : //L3 emitted coming 299 // from case e1 300 I2; 301 } 302 \end{lstlisting} 303 \end{tabular} 304 \end{center} 305 % \begin{lstlisting}[language=Grafite] 306 % record abstract_status : Type[2] ≝ 307 % { as_status :> Type[0] 308 % ; as_execute : ActionLabel → relation as_status 309 % ; as_syntactical_succ : relation as_status 310 % ; as_classify : as_status → status_class 311 % ; as_initial : as_status → bool 312 % ; as_final : as_status → bool 313 % ; jump_emits : ∀s1,s2,l.as_classify ... s1 = cl_jump → 314 % as_execute l s1 s2 → is_non_silent_cost_act l 315 % }. 316 % \end{lstlisting} 293 317 \end{wideslide} 294 318 … … 338 362 \end{minipage} 339 363 }\\[3mm] 364 \onslide{2}{ 340 365 {\red Assumptions:} 341 366 \begin{itemize} 342 \item All the instruction in the (static) block are reached during computation. 343 \item The cost function should be commutative. 344 \end{itemize} 367 \item<2> All the instruction in the (static) block are reached during computation. 368 \item<2> The cost function should be commutative. 369 \end{itemize} 370 } 371 \onslide{3}{ 345 372 {\red Problems:} 346 373 \begin{itemize} 347 \item It does not work with {\blue noncommutative cost functions}. Because of stateful hardware components (cache, pipelines ...) this method does not scale to {\blue modern hardware}.
\item It does not work with {\blue compiler that do not respect the calling structure} of the source code because it is not possible to statically predict {\blue which instruction will be executed after a function return}.
\end{itemize}
\end{wideslide}

\begin{wideslide}[method=direct]{First solution: structured traces} Because of stateful hardware components (cache, pipelines ...) this method does not scale to {\blue modern hardware}.
\item<3> It does not work with {\blue compiler that do not respect the calling structure} of the source code because it is not possible to statically predict {\blue which instruction will be executed after a function return}.
\end{itemize}}
\end{wideslide}

\begin{wideslide}{First solution: structured traces}
\onslide*{1}{
\begin{itemize}
\item The usual notion of {\red flat execution trace} is inadequate for a simulation argument.
\item We introduce a notion of {\red structured trace} that is more suitable for a simulation argument.
\item Traces of called function are {\red nested}, invariants on position of costlabels are {\red enforced} and steps are grouped {\red according to costlabels}.
\end{itemize} st1 st2 → Prop ≝
 pm_empty : ∀st : S. as_classify … st ≠ cl_io → pre_measurable_trace … (t_base… st)
 pm_cons_cost_act : ∀st1,st2,st3 : S.∀l : ActionLabel.
∀prf : as_execute S l st1 st2.∀tl : raw_trace S st2 st3.
as_classify … st1 ≠ cl_io → is_cost_act l → pre_measurable_trace … tl →
pre_measurable_trace … (t_ind … prf … tl)
………
 pm_balanced_call : ∀st1,st2,st3,st4,st5.∀l1,l2.
∀prf : as_execute S l1 st1 st2.∀t1 : raw_trace S st2 st3.
∀t2 : raw_trace S st4 st5.∀prf' : as_execute S l2 st3 st4.
as_classify … st1 ≠ cl_io → as_classify … st3 ≠ cl_io
→ is_call_act l1 → ¬ is_call_post_label … st1 →
pre_measurable_trace … t1 → pre_measurable_trace … t2 →
as_syntactical_succ S st1 st4 →
is_unlabelled_ret_act l2 →
pre_measurable_trace … (t_ind … prf … (t1 @ (t_ind … prf' … t2))).
\end{lstlisting}
\end{wideslide}

\begin{wideslide}[method=direct]{Simulation statement} st1 st2 → Prop ≝
 pm_empty : ∀st : S. as_classify … st ≠ cl_io → pre_measurable_trace … (t_base… st)
 pm_cons_cost_act : ∀st1,st2,st3 : S.∀l : ActionLabel.
∀prf : as_execute S l st1 st2.∀tl : raw_trace S st2 st3.
as_classify … st1 ≠ cl_io → is_cost_act l → pre_measurable_trace … tl →
pre_measurable_trace … (t_ind … prf … tl)
………
 pm_balanced_call : ∀st1,st2,st3,st4,st5.∀l1,l2.
∀prf : as_execute S l1 st1 st2.∀t1 : raw_trace S st2 st3.
∀t2 : raw_trace S st4 st5.∀prf' : as_execute S l2 st3 st4.
as_classify … st1 ≠ cl_io → as_classify … st3 ≠ cl_io
→ is_call_act l1 → ¬ is_call_post_label … st1 →
pre_measurable_trace … t1 → pre_measurable_trace … t2 →
as_syntactical_succ S st1 st4 →
is_unlabelled_ret_act l2 →
pre_measurable_trace … (t_ind … prf … (t1 @ (t_ind … prf' … t2))).
\end{lstlisting}
\end{wideslide}

\begin{wideslide}[method=file]{Simulation statement} instr_m mT prog = return map1.
∀st1,st2 : vm_state p p'.
∀ter : terminated_trace (asm_operational_semantics p p' prog) st2.
∀t : raw_trace (asm_operational_semantics p p' prog) … st1 st2.
∀k.pre_measurable_trace…t →
block_cost p prog…instr_m (pc…st1) (S ((instructions…prog))) = return k →
∀a1.rel_galois…good st1 a1 →
let stop_state ≝ match R_post_step…ter with [None ⇒ st2  Some x ⇒ \snd x ] in
∀costs.costs = dependent_map CostLabel ? (get_costlabels_of_trace…t)
(λlbl,prf.(opt_safe…(get_map…map1 lbl) ?)) →
rel_galois…good stop_state (act_abs…abs_t (big_op…costs) (act_abs…abs_t k a1)).
\end{lstlisting}
\end{wideslide} L2;$}}\onslide*{3}{$\tt cost+=k_2$;} \\
$\vdots$ & & \onslide{2}{$\tt I_2;$} \\
$\tt I_n;$ & & \onslide{2}{$\vdots$} \\
& & \onslide{2}{$\tt I_n$}
\end{tabular}
\end{wideslide}


\begin{wideslide}{Return post label pass}
\begin{itemize}
\item<1> {\blue Benefits}: the user can reason with smaller blocks and simpler costs and the compiler do not need to care about extra invariant.
\item<1> {\red Drawbacks}: This pass is not always possible in case of non commutative costs.
\end{itemize}
To prove correctness it is necessary to define a state relation (being preserved during the translation) keeping track of the fresh labels created.\\[3mm]
\onslide*{2}{
\begin{center}
\psshadowbox{
\begin{minipage}{6cm}
{\red \centering About 3000 lines of Matita code!}
\end{minipage}
}
\end{center}
}
\end{wideslide}

\begin{wideslide}{Static analysis correctness}
\onslide*{1}{
\psshadowbox{
\begin{minipage}{12cm}
Static analysis of cost is {\red correct} when the actual cost of executing a block of instructions of the object code starting from a label (dynamic cost) is equal to the sum of the costs of each reached label of the trace computed by the static analyzer (static cost).
\end{minipage}
}}
\onslide*{2}{
\begin{tabular}{l l}
$\tt \onslide*{3}{\red} EMIT \; L1$ & \multirow{7}{*}{\xymatrix{\onslide*{1,2,3}{\bullet} \onslide*{4}{s_1} \onslide*{2}{\ar[r]^{{\tt L_1}}} \onslide*{3}{\ar@[red][r]^{{\tt \red L_1}}} & \onslide*{1,2,3}{\bullet} \onslide*{4}{s_2} \onslide*{2}{\ar[r]} \onslide*{3}{\ar@[red][r]^{{\tt \red I_1}}} & \onslide*{4}{s_3} \onslide*{1,2,3}{\bullet} \onslide*{2}{\ar[r]} \onslide*{3}{\ar@[red][r]^{{\tt \red I_2}}} & \onslide*{1,2,3}{\bullet} \onslide*{4}{s_4} \onslide*{2}{\ar[r]} \onslide*{3}{\ar@[red][r]^{{\tt \red COND}}} & \onslide*{1,2,3}{\bullet} \onslide*{4}{s_5} \onslide*{2}{\ar[r]^{{\tt L_2}}} \onslide*{3}{\ar@[blue][r]^{{\tt \blue L_2}}} & \onslide*{1,2,3}{\bullet} \onslide*{4}{s_6} \onslide*{2}{\ar[r]} \onslide*{3}{\ar@[blue][r]^{{\tt \blue I_3}}} & \onslide*{1,2,3}{\bullet} \onslide*{4}{s_7} \onslide*{2}{\ar[r]} \onslide*{3}{\ar@[blue][r]^{{\tt \blue I_4}}} & \onslide*{1,2,3}{\bullet} \onslide*{4}{s_8}}} \\
$\tt \onslide*{3}{\red} I_1$ & \\
$\tt \onslide*{3}{\red} I_2$ & \\
$\tt \onslide*{3}{\red} COND \; l1$ & \\
$\tt \onslide*{3}{\blue} EMIT \; L2$ & \\
$\tt \onslide*{3}{\blue} I_3$ & \\
$\tt \onslide*{3}{\blue} I_4$ &
\end{tabular}
}
$\;$\\[3mm]
\onslide*{3}{
$$\begin{array}{l l l}
cost_{trace} &=& {\red k(I_1) + k(I_2) + k(COND)}+ {\blue k(I_3) + k(I_4)} \\
&=& {\red(k(I_1) + k(I_2) + k(COND))} + {\blue (k(I_3) + k(I_4))} \\
&=& {\red cost(L_1)} + {\blue cost(L_2)}
\end{array} $$
}
\onslide*{4}{
Lifting to cost dependent from the state
\begin{itemize}
\item The cost is a function from states to states which can be composed (the cost is incorporated in the state).
\item To compute complexity, one is interested only on a part of the state
\end{itemize}
\begin{center}
{\red Galois connection} between an abstract transition system and a concrete one.
\end{center}
}
\onslide*{5}{
Under the hypothesis that $s_1$ is in connection with the abstract state $a_1$ and $\den{}$ is the function computing the cost of the instruction in the abstract state (i.e. an {\red action on the cost monoid}), we have
$$
\begin{array}{l l l}
cost_{trace} &=& cost\_of({\blue \den{{\tt I_4}} (\den{{\tt I_3}}} ({\red \den{{\tt COND}} (\den{{\tt I_2}} (\den{{\tt I_1}}} a_1))))) \\
&=& cost\_of(({\blue (\den{{\tt I_4}} \circ \den{{\tt I_3}})} \circ {\red (\den{{\tt COND}} \circ \den{{\tt I_2}} \circ \den{{\tt I_1}})}) a_1) \\
&=& cost\_of(({\blue cost(L_2)} \circ {\red cost(L_1)}) a_1)
\end{array}
$$
}
\end{wideslide}


\begin{wideslide}{Conclusion}
Improvement of the labelling approach.
\begin{itemize}
\item Function calls.
\item Instructions with multiple predecessors (e.g. switch, goto $\ldots$).
\item Costs for stateful hardware (e.g. cache, pipelines $\ldots$).
\item From lifting of costs ($\mathbb{N}$)
to lifting of abstract interpretation ($\mathcal{A} \to \mathcal{A}$).
\end{itemize}
Future works
\begin{itemize}
\item Abandoning SOS semantics.
\item We would like to extend our framework to compilation process that does not preserve basic block structure as in [Tranquilli13].
\end{itemize}
\end{wideslide}
