Loop Bound Analysis based on a Combination of Program Slicing, Abstract Interpretation, and Invariant Analysis
نویسندگان
چکیده
Static Worst-Case Execution Time (WCET) analysis is a technique to derive upper bounds for the execution times of programs. Such bounds are crucial when designing and verifying real-time systems. A key component for static derivation of precise WCET estimates is upper bounds on the number of times different loops can be iterated. In this paper we present an approach for deriving upper loop bounds based on a combination of standard program analysis techniques. The idea is to bound the number of different states in the loop which can influence the exit conditions. Given that the loop terminates, this number provides an upper loop bound. An algorithm based on the approach has been implemented in our WCET analysis tool SWEET. We evaluate the algorithm on a number of standard WCET benchmarks, giving evidence that it is capable to derive valid bounds for many types of loops.
منابع مشابه
Property Driven Program Slicing Refinement
A slice is usually computed by analyzing how the effects of a computation are propagated through the code, i.e., by inferring dependencies. The aim of this paper is to further refine the traditional slicing technique by combining it with a static analysis in Abstract Interpretation based framework. This results into a deeper insight on the strong relation between slicing and property based depe...
متن کاملQuantitative analysis for symbolic heap bounds of CPS software
One important quantitative property of CPS (Cyber-Physical Systems) software is its heap bound for which a precise analysis result needs to combine shape analysis and numeric reasoning. In this paper, we present a framework for statically finding symbolic heap bounds of CPS software. The basic idea is to separate numeric reasoning from shape analysis by first constructing an ASTG (Abstract Stat...
متن کاملExtending C Global Surveyor
This paper describes an extension of C Global Surveyor (CGS), a static program analysis tool developed at the NASA Ames Research Center. CGS is used to analyse mission-critical flight software of NASA Mars missions. In order to enhance CGS and support the analysis of very large systems, the abstract interpretation techniques on which CGS is based need to be augmented by complimentary program an...
متن کاملStatic Analysis to Identify Vectorizable Numerical Domain in Logic Programs for Efficient Execution of Scientific Expert Systems
Interpretation is a global data flow analysis technique to derive the properties of logic programs. It is based upon mapping the logic program into an abstract domain and traversing an AND-OR tree in the abstract domain to derive the related properties. For the abstract domain of type expression, abstract interpretation derives the mode information in terms of type expressions [1, 2, 3]. In an ...
متن کاملA logic for information flow analysis with an application to forward slicing of simple imperative programs
We specify an information flow analysis for a simple imperative language, using a Hoare-like logic. The logic facilitates static checking of a larger class of programs than can be checked by extant type-based approaches in which a program is deemed insecure when it contains an insecure subprogram. The logic is based on an abstract interpretation of program traces that makes independence between...
متن کامل