EPA: A Precise and Scalable Object-Sensitive Points-to Analysis for Large Programs

EPA: A Precise and Scalable Object-Sensitive Points-to Analysis for Large Programs

Raghavendra Kagalavadi Ramesh, Behnaz Hassanshahi, Padmanabhan Krishnan, Bernhard Scholz, Yi Lu

20 June 2016

Points-to analysis is a fundamental static program analysis technique for tools including compilers and bug-checkers. There are several kinds of points-to analyses that trade-off precision with runtime. For object-oriented languages including Java, ``context-sensitivity'' is key to obtain sufficient precision. A context may be parameterizable, and may consider calls, objects, types for its construction. Although points-to analysis research has received a lot of attention in the past, scaling object-sensitive points-to analysis for large Java code bases still remains an open research challenge. In this paper, we develop an Eclectic Points-To Analysis (EPA) framework that computes an efficient, selective, object-sensitive points-to analysis that is client independent. This framework parameterizes context sensitivities for different allocation sites in the program. The level of required sensitivity is determined by a preanalysis. We have implemented our approach using Souffle (a Datalog compiler) and an extension of the DOOP framework. Our experiments on large programs including OpenJDKand Jython show that our technique is efficient and highly precise. For the OpenJDK, an instance of the EPA-based analysis reduces 27% of runtime for a slight loss of precision, while for Jython, the same analysis reduces 82% of runtime for almost no loss of precision.


Venue : 14th Asian Symposium on Programming Languages and Systems, 2016. Hanoi, Vietnam

File Name : main.pdf