article

A Framework For Efficient Modular Heap Analysis

Authors:

Ravichandhran Madhavan,

Kapil VaswaniAuthors Info & Claims

Foundations and Trends in Programming Languages, Volume 1, Issue 4

Pages 269 - 381

https://doi.org/10.1561/2500000020

Published: 19 January 2015 Publication History

Abstract

Modular heap analysis techniques analyze a program by computing summaries for every procedure in the program that describes its effects on an input heap, using pre-computed summaries for the called procedures. In this article, we focus on a family of modular heap analyses that summarize a procedure's heap effects using a context-independent, shape-graph-like summary that is agnostic to the aliasing in the input heap. The analyses proposed by Whaley, Salcianu and Rinard, Buss et al., Lattner et al. and Cheng et al. belong to this family. These analyses are very efficient. But their complexity and the absence of a theoretical formalization and correctness proofs makes it hard to produce correct extensions and modifications of these algorithms whether to improve precision or scalability or to compute more information. We present a modular heap analysis framework that generalizes these four analyses. We formalize our framework as an abstract interpretation and establish the correctness and termination guarantees. We formalize the four analyses as instances of the framework. The formalization explains the basic principle behind such modular analyses and simplifies the task of producing extensions and variations of such analyses. We empirically evaluate our framework using several real-world C# applications, under six different configurations for the parameters, and using three client analyses. The results show that the framework offers a wide range of analyses having different precision and scalability.

References

[1]

Martin Bravenboer and Yannis Smaragdakis. Strictly declarative specification of sophisticated points-to analyses. In OOPSLA, pages 243-262, 2009.

Digital Library

[2]

Marcio Buss, Daniel Brand, Vugranam C. Sreedhar, and Stephen A. Edwards. Flexible pointer analysis using assign-fetch graphs. In SAC, pages 234-239, 2008.

Digital Library

[3]

Marcio Buss, Daniel Brand, Vugranam C. Sreedhar, and Stephen A. Edwards. A novel analysis space for pointer analysis and its application for bug finding. Sci. Comput. Program., 75(11):921-942, 2010.

Digital Library

[4]

Cristiano Calcagno, Dino Distefano, Peter W. O'Hearn, and Hongseok Yang. Compositional shape analysis by means of bi-abduction. In POPL, pages 289-300, 2009.

Digital Library

[5]

Ramkrishna Chatterjee, Barbara G. Ryder, and William A. Landi. Relevant context inference. In POPL, pages 133-146, 1999.

Digital Library

[6]

Ben-Chung Cheng and Wen-Mei W. Hwu. Modular interprocedural pointer analysis using access paths: design, implementation, and evaluation. In PLDI, pages 57-69, 2000.

[7]

Patrick Cousot and Radhia Cousot. Abstract interpretation frameworks. J. Log. Comput., 2(4):511-547, 1992.

[8]

Patrick Cousot and Radhia Cousot. Modular static program analysis. In CC, pages 159-178, 2002.

Digital Library

[9]

Manuvir Das. Unification-based pointer analysis with directional assignments. In PLDI, pages 35-46, 2000.

[10]

Arnab De and Deepak D'Souza. Scalable flow-sensitive pointer analysis for java with strong updates. In ECOOP, pages 665-687, 2012.

Digital Library

[11]

Isil Dillig, Thomas Dillig, Alex Aiken, and Mooly Sagiv. Precise and compact modular procedure summaries for heap manipulating programs. In PLDI, pages 567-577, 2011.

Digital Library

[12]

Bhargav S. Gulavani, Supratik Chakraborty, Ganesan Ramalingam, and Aditya V. Nori. Bottom-up shape analysis. In SAS, pages 188-204, 2009.

Digital Library

[13]

Ben Hardekopf and Calvin Lin. Flow-sensitive pointer analysis for millions of lines of code. In CGO, pages 289-298, 2011.

[14]

Bertrand Jeannet, Alexey Loginov, Thomas Reps, and Mooly Sagiv. A relational approach to interprocedural shape analysis. ACM Trans. Program. Lang. Syst., 32:5:1-5:52, 2010.

Digital Library

[15]

Etienne Kneuss, Viktor Kuncak, and Philippe Suter. Effect analysis for programs with callbacks. In VSTTE, pages 48-67, 2013.

[16]

Jens Knoop and Bernhard Steffen. The interprocedural coincidence theorem. In CC, pages 125-140, 1992.

[17]

Chris Lattner and Vikram Adve. Macroscopic Data Structure Analysis and Operations. PhD thesis, University of Illinois at Urbana-Champaign, 2005a.

[18]

Chris Lattner and Vikram S. Adve. Automatic pool allocation: improving performance by controlling data structure layout in the heap. In PLDI, pages 129-142, 2005b.

Digital Library

[19]

Chris Lattner, Andrew Lenharth, and Vikram S. Adve. Making context-sensitive points-to analysis with heap cloning practical for the real world. In PLDI, pages 278-289, 2007.

Digital Library

[20]

Ondrej Lhoták. Program Analysis Using Binary Decision Diagrams. PhD thesis, 2006.

[21]

Ondrej Lhoták and Kwok-Chiang Andrew Chung. Points-to analysis with efficient strong updates. In POPL, pages 3-16, 2011.

Digital Library

[22]

Donglin Liang and Mary Jean Harrold. Efficient computation of parameterized pointer information for interprocedural analyses. In SAS, pages 279-298, 2001.

[23]

Percy Liang and Mayur Naik. Scaling abstraction refinement via pruning. In PLDI, pages 590-601, 2011.

Digital Library

[24]

Ravichandhran Madhavan, Ganesan Ramalingam, and Kapil Vaswani. Purity analysis: An abstract interpretation formulation. In SAS, pages 7-24, 2011.

[25]

Ravichandhran Madhavan, G. Ramalingam, and Kapil Vaswani. Modular heap analysis for higher-order programs. In SAS, pages 370-387, 2012.

Digital Library

[26]

Ravi Mangal, Mayur Naik, and Hongseok Yang. A correspondence between two approaches to interprocedural analysis in the presence of join. In ESOP, pages 513-533, 2014.

Digital Library

[27]

Mark Marron, Ondrej Lhoták, and Anindya Banerjee. Programming paradigm driven heap analysis. In CC, pages 41-60, 2012.

Digital Library

[28]

Erik M. Nystrom, Hong-Seok Kim, and Wen mei W. Hwu. Bottom-up and top-down context-sensitive summary-based pointer analysis. In SAS, pages 165-180, 2004.

[29]

Prakash Prabhu, Ganesan Ramalingam, and Kapil Vaswani. Safe programmable speculative parallelism. In PLDI, pages 50-61, 2010.

Digital Library

[30]

Noam Rinetzky, Mooly Sagiv, and Eran Yahav. Interprocedural shape analysis for cutpoint-free programs. In SAS, pages 284-302, 2005.

Digital Library

[31]

Shmuel Sagiv, Thomas W. Reps, and Reinhard Wilhelm. Parametric shape analysis via 3-valued logic. In POPL, pages 105-118, 1999.

Digital Library

[32]

Alexandru D. Salcianu. Pointer analysis and its applications for java programs. Master's thesis, Massachusetts institute of technology, 2001.

[33]

Alexandru D. Salcianu and Martin C. Rinard. Purity and side effect analysis for java programs. In VMCAI, pages 199-215, 2005.

[34]

Micha Sharir and Amir Pnueli. Two approaches to interprocedural data flow analysis. In Program Flow Analysis: Theory and Applications, pages 189- 234, 1981.

[35]

Yannis Smaragdakis and Martin Bravenboer. Using datalog for fast and easy program analysis. In Datalog, pages 245-251, 2010.

[36]

Yannis Smaragdakis, Martin Bravenboer, and Ondrej Lhoták. Pick your contexts well: understanding object-sensitivity. In POPL, pages 17-30, 2011.

Digital Library

[37]

Yannis Smaragdakis, George Kastrinis, and George Balatsouras. Introspective analysis: context-sensitivity, across the board. In PLDI, page 50, 2014.

[38]

Bjarne Steensgaard. Points-to analysis in almost linear time. In POPL, pages 32-41, 1996.

[39]

WALA. T. J. Watson libraries for program analysis. URL https://github. com/wala/WALA.

[40]

John Whaley and Martin C. Rinard. Compositional pointer and escape analysis for java programs. In OOPSLA, pages 187-206, 1999.

Digital Library

[41]

Xin Zhang, Ravi Mangal, Radu Grigore, Mayur Naik, and Hongseok Yang. On abstraction refinement for program analyses in datalog. In PLDI, page 27, 2014.

Cited By

Halalingaiah SSundaresan VMaier DNandivada V(2024)The ART of Sharing Points-to Analysis: Reusing Points-to Analysis Results Safely and EfficientlyProceedings of the ACM on Programming Languages10.1145/36898038:OOPSLA2(2606-2632)Online publication date: 8-Oct-2024
https://dl.acm.org/doi/10.1145/3689803
Stein BChang BSridharan M(2024)Interactive Abstract Interpretation with Demanded SummarizationACM Transactions on Programming Languages and Systems10.1145/364844146:1(1-40)Online publication date: 15-Feb-2024
https://dl.acm.org/doi/10.1145/3648441
Banerjee SCui SEmmi MFilieri AHadarean LLi PLuo LPiskachev GRosner NSengupta ATripp OWang JChandra SBlincoe KTonella P(2023)Compositional Taint Analysis for Enforcing Security Policies at ScaleProceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering10.1145/3611643.3613889(1985-1996)Online publication date: 30-Nov-2023
https://dl.acm.org/doi/10.1145/3611643.3613889
Show More Cited By

A Framework For Efficient Modular Heap Analysis
1. Software and its engineering
  1. Software creation and management
2. Theory of computation
  1. Semantics and reasoning
    1. Program reasoning

Recommendations

Interprocedural pointer alias analysis

We present practical approximation methods for computing and representing interprocedural aliases for a program written in a language that includes pointers, reference parameters, and recursion. We present the following contributions: (1) a framework ...
A Framework For Efficient Modular Heap Analysis
PMAF: an algebraic framework for static analysis of probabilistic programs
PLDI '18

Automatically establishing that a probabilistic program satisfies some property ϕ is a challenging problem. While a sampling-based approach—which involves running the program repeatedly—can suggest that ϕ holds, to establish that the program satisfies ϕ,...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image Foundations and Trends in Programming Languages

Foundations and Trends in Programming Languages Volume 1, Issue 4

January 2015

116 pages

ISSN:2325-1107

EISSN:2325-1131

Issue’s Table of Contents

Publisher

Now Publishers Inc.

Hanover, MA, United States

Publication History

Published: 19 January 2015

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

5
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 16 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Halalingaiah SSundaresan VMaier DNandivada V(2024)The ART of Sharing Points-to Analysis: Reusing Points-to Analysis Results Safely and EfficientlyProceedings of the ACM on Programming Languages10.1145/36898038:OOPSLA2(2606-2632)Online publication date: 8-Oct-2024
https://dl.acm.org/doi/10.1145/3689803
Stein BChang BSridharan M(2024)Interactive Abstract Interpretation with Demanded SummarizationACM Transactions on Programming Languages and Systems10.1145/364844146:1(1-40)Online publication date: 15-Feb-2024
https://dl.acm.org/doi/10.1145/3648441
Banerjee SCui SEmmi MFilieri AHadarean LLi PLuo LPiskachev GRosner NSengupta ATripp OWang JChandra SBlincoe KTonella P(2023)Compositional Taint Analysis for Enforcing Security Policies at ScaleProceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering10.1145/3611643.3613889(1985-1996)Online publication date: 30-Nov-2023
https://dl.acm.org/doi/10.1145/3611643.3613889
Thakur MNandivada V(2019)PYEACM Transactions on Programming Languages and Systems10.1145/333779441:3(1-37)Online publication date: 2-Jul-2019
https://dl.acm.org/doi/10.1145/3337794
Kastrinis GBalatsouras GFerles KProkopaki-Kostopoulou NSmaragdakis YDubach CXue J(2018)An efficient data structure for must-alias analysisProceedings of the 27th International Conference on Compiler Construction10.1145/3178372.3179519(48-58)Online publication date: 24-Feb-2018
https://dl.acm.org/doi/10.1145/3178372.3179519

View Options

View options

Figures

Tables

Media

View Issue’s Table of Contents