Project Stage 2.B

-

Project Stage 2 – Part B: Comparing GIMPLE of Cloned Functions

In the previous post, I wrote about how I detected cloned functions in the compiled program. I used naming conventions (like .constprop, .variant, and .resolver) to group clones by their original function name.

Now that I’ve found these cloned functions, it’s time to look inside them—into their GIMPLE representation—and figure out if they’re actually doing the same thing. This blog is all about how I accessed, compared, and analyzed the internal structure of these functions.

Wait, What Is GIMPLE Again?

GIMPLE is a simplified version of C/C++ code that GCC uses for optimization. It’s kind of like a low-level, easy-to-analyze form of your code, broken down into really basic steps (like x = y + 1).

Each function is made up of:

  • Basic Blocks: These are sequences of instructions with no jumps except at the end.

  • GIMPLE Statements: Individual operations or assignments.

In this part, I extracted GIMPLE from each clone and its base function to compare:

  • Number of basic blocks

  • Number of GIMPLE statements

  • (Later on) Whether those statements are similar

How I Got GIMPLE from Functions

First, I looped through every function—same as in Part A. But this time, for each function, I stored their basic block and GIMPLE counts in a std::map using the function name as the key.

Here’s the structure I used:

struct FunctionInfo {

    int basic_block_count;

    int gimple_statement_count;

};


std::map<std::string, FunctionInfo> function_data;


Then, while visiting each function:

FunctionInfo info = {0, 0};


FOR_EACH_BB_FN(bb, fun) {

    info.basic_block_count++;


    for (gimple_stmt_iterator gsi = gsi_start_bb(bb); !gsi_end_p(gsi); gsi_next(&gsi)) {

        info.gimple_statement_count++;

    }

}


function_data[full_name] = info;


This stored the structure of every function I saw. So now, I could finally compare each clone with its original!

Comparing Clones to Their Originals

Once I had data for all the functions, I looped through them again and compared each clone to its base function (from Part A, we saved base names by stripping off suffixes like .constprop.0, etc).

Here’s how I did the comparison:

if (is_clone) {

    std::string clone_name(full_name);

    std::string base_name(base_name_str);


    if (function_data.count(base_name)) {

        FunctionInfo clone_info = function_data[clone_name];

        FunctionInfo base_info = function_data[base_name];


        bool same_bb_count = (clone_info.basic_block_count == base_info.basic_block_count);

        bool same_stmt_count = (clone_info.gimple_statement_count == base_info.gimple_statement_count);


        if (same_bb_count && same_stmt_count) {

            fprintf(stderr, "CLONE MATCH: %s is similar to base %s\n", full_name, base_name_str);

        } else {

            fprintf(stderr, "CLONE DIFFERENT: %s differs from base %s\n", full_name, base_name_str);

        }

    }

}


So in short:

  • If the clone has the same number of basic blocks and GIMPLE statements as the base → mark it as similar.

  • Otherwise → it might have meaningful differences, so flag it as different.

This isn’t a deep semantic comparison (yet!), but it’s a good first filter before deciding whether to prune.

Reflection: GIMPLE Ain’t So Scary After All

Honestly, when I first saw the term “GIMPLE,” it felt super low-level and intimidating. But once I started working with it, I realized you don’t need to understand every detail of the IR to start making useful analyses. Just counting basic blocks and statements gives you a surprisingly good signal.

One tricky part was dealing with architecture-specific clones. On x86_64, you might not get the same suffixes or the same number of clones as on aarch64. I had to run my pass on both and compare outputs to make sure it was behaving consistently.

The best part? Watching the logs show:

CLONE MATCH: scale_samples.constprop.0 is similar to base scale_samples


It meant my analysis was working, my pass was finding similarities all on its own.

What’s Next?

In the final part (Part C), I’ll use this comparison data to make pruning recommendations. That means:

  • If two functions are “substantially the same,” I’ll suggest keeping one and pruning the rest.

  • I’ll also log these decisions clearly so other passes or users can act on them.

Stay tuned for the last part of the Clone-Pruning journey!

Comments

Post a Comment

Popular posts from this blog

Project Stage 2.A

-
Project Stage 2 – Part A: Finding Cloned Functions For Stage 2 of my SPO600 project, I’m taking the basic GCC analysis pass I built in Stage 1 and evolving it into something a bit more interesting—analyzing cloned functions. The end goal? Build a Clone-Pruning Analysis Pass that checks if functions in a compiled program are just duplicates and, if they are, recommends pruning them to save space and avoid redundancy. But before we can make any pruning decisions, we first need to find these clones. That’s what this blog is all about: detecting cloned functions in the compiled code. What Is a Cloned Function? When GCC optimizes code, it often makes slightly modified copies of functions—these are called clones . You’ll see them with names like: scale_samples.constprop.0 scale_samples.Mrng scale_samples.resolver These cloned functions usually come from optimizations like constant propagation , inlining , or architecture-specific tuning . For example, if the compiler notices that a functio...
Read more

Project Stage 3

-
  Project Stage 3: Tidy & Wrap – Clone-Prune Analysis at Scale Welcome to the final part of my SPO600 project! In the previous stage, I built a GCC pass that could compare a cloned function to its original version by checking the number of basic blocks and the GIMPLE statements inside them. The pass would then decide whether the cloned function was identical and could be safely pruned. That version worked well when there was only one cloned function to analyze. But in this stage I wanted to scale things up. What’s New in Stage 3? The goal for Stage 3 was to make the Clone-Prune Analysis Pass more complete and scalable . Here's what I aimed to do: Handle multiple cloned functions , not just one. Automatically skip resolver functions , which are internal compiler helpers we don’t want to compare. Make the output more clear and architecture-independent (i.e., it works the same on both x86_64 and aarch64). Improve diagnostic logging to make testing and verification easier. This m...
Read more

Project Stage 2.C

-
  Project Stage 2 – Part C: Clone-Pruning in Action This is it the final part of my Clone-Pruning Analysis Pass series! So far, I’ve: Found cloned functions using name patterns and suffixes (Part A) Extracted and compared their GIMPLE to check for similarity (Part B) Now, in this post, I’ll show the analysis in action—specifically how my pass performs on two test cases provided in the course: clone-test-prune and clone-test-noprune . This is where all the logic from earlier pays off! Clone-Prune Test Files These test files contain three functions: scale_samples.default scale_samples.Mrng scale_samples.resolver My goal here: identify whether scale_samples.Mrng is identical to scale_samples.default —and if so, recommend pruning . Let’s look at them. scale_samples.default // Simplified view of instructions... vscale = 2; for (...) {     result[i] = input[i] * vscale; } scale_samples.Mrng // Basically the same logic, just cloned for target Mrng vscale = 2; for ...
Read more

Welcome to My SPO600 Journey

-
Welcome to My SPO600 Journey Hello and welcome to my first blog post! This space will document my journey through SPO600: Software Portability and Optimization ,  a course  taught by Chris Tyler   focused on understanding how software can be optimized for different hardware architectures. Throughout the course, I will be exploring low-level programming concepts, performance analysis techniques, and optimization strategies, starting with the 6502 microprocessor and advancing towards modern architectures like x86_64 and AArch64. About Me Hi everyone! My name is Haroon bajwa and I am currently studying Computer Programming and Analysis at Seneca College Newnham Campus, with a keen interest in system-level programming and performance optimization. This course presents an exciting opportunity to dive deep into assembly language and understand how code interacts with hardware. Through this blog, I aim to track my learning, share insights, and explore different optimization tech...
Read more

Lab1 6502 Assembly Language

-
  Optimizing Assembly: Insights from Lab 1 Introduction Lab 1 introduced me to the fundamentals of 6502 Assembly programming. It was my first real experience diving into low-level code, and honestly, it was a mix of confusion and excitement. The goal of the lab was to analyze an existing assembly program, understand how it works, and then try making changes to improve or modify what it does. This blog post walks through my personal journey with the lab—from running the original code to experimenting with new instructions—and what I learned along the way. Running the Bitmap Code We kicked things off with a basic assembly program designed to fill the emulator’s display with a single solid color. The code sets a pointer in memory to start writing pixel data and loops through, placing the same color on each pixel. Here’s a quick breakdown of what happens: The program sets up a pointer to location $0200 (the start of the bitmap). It sets the color to yellow with LDA #$07 . Then it uses...
Read more

Stage 1 Completed

-
Project Stage 1 Completed! For the first stage of my SPO600 project, I created a custom GCC pass that prints out the name of each function being compiled, along with the number of basic blocks and GIMPLE statements in that function. This gave me a deeper look into how the compiler breaks down high-level code during the compilation process. Setting Up My Environment I used the recommended three-directory setup: ~/git/gcc/         # GCC source directory ~/gcc-build-001/   # Build directory ~/gcc-test-001/    # Install/test directory I followed the official GCC documentation to configure the build: ../git/gcc/configure --prefix=$HOME/gcc-test-001 --enable-languages=c --disable-bootstrap --disable-multilib time make -j$(nproc) |& tee build.log The build process took a while at first, but using make for incremental rebuilds really saved time later. I made sure to always build inside a screen session so I wouldn't lose progress if my SSH connection dro...
Read more

Lab 4 Building GCC on My Linux VM

-
  Lab 4 Building GCC on My Linux VM (ft. My M2 MacBook Air) For this lab, I took a dive into the world of large software builds, specifically building the GCC compiler from source. The goal was to get hands-on experience using tools like make and autotools , since we’ll be working with GCC during our course project. Instead of using the SPO600 servers (x86-001 and aarch64-002), I decided to try something a little different and ran everything inside a Linux VM on my M2 MacBook Air (which is arm64 under the hood). Spoiler alert: it actually worked out great! Step 1: Cloning the Source Code First things first, I needed the latest development version of GCC. I SSH’d into my Linux VM and cloned the official GCC Git repo: git clone git://gcc.gnu.org/git/gcc.git gcc-source This gave me a folder full of source code, ready to be built. Step 2: Configuring the Build I’ve learned it's a bad idea to build inside the source directory, so I created a separate directory for building: mkdir gcc-b...
Read more

Lab 2 Adventures in 6502 Assembly

-
  Bouncing Pixels and Going Solo: Lab 2 Adventures in 6502 Assembly Introduction Lab 2 was originally meant to be a mob programming session, think pair programming, but with a full group, all sharing one screen and collaborating on every line of code. Unfortunately, I couldn’t make it to the in-class session, so I ended up taking on the lab solo. While I missed out on the live collaboration part, I still got a chance to dive deep into the code, experiment with the animation logic, and get creative with bouncing a graphic around the screen using 6502 Assembly. This post walks through my solo journey with Lab 2: animating a graphic diagonally, making it bounce off the edges of the screen, and exploring some fun optional challenges along the way. Setting Up the Animation We were given a base program that moves a 5×5 pixel graphic diagonally across the emulator screen. The starting point was a neat little subroutine called DRAW , which takes an image, its position, and then places it o...
Read more

Project Stage 1 Diving In!

-
  Project Stage 1 – Understanding GCC Passes and Setting things UP Alright, time to dive into the SPO600 course project! In Stage 1, our goal is to create a basic GCC pass that can analyze a program during compilation and print out some useful info. This is my first time working this closely with the GCC compiler, and let me just say, it’s a deep rabbit hole. But it’s also been really interesting figuring things out. In this post, I’ll talk about: What the project is about How I approached it Some of the issues I ran into and how I fixed them What’s This Project About? GCC processes code in multiple steps called passes . These passes can analyze and transform code at various intermediate stages before turning it into machine code. For this project, I had to: Iterate through each function being compiled Print the name of each function Count how many basic blocks are in each function Count how many GIMPLE statements are in each function These details come from GCC's internal repre...
Read more