Automatic runtime error repair and containment via recovery shepherding

Long, Fan; Sidiroglou-Douskos, Stelios; Rinard, Martin

doi:10.1145/2594291.2594337

Cited by 51 publications

(30 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…No type checking is carried out on the synthesised monitors in either of these works. Runtime Adaptation through monitoring are also explored in [23,19] for C programs to attain "failure-oblivious computing" that can adapt to errors such as null-dereferencing through a technique called reverse shepherding. Again, no static analysis is performed on the monitors themselves.…”

Section: Resultsmentioning

confidence: 99%

Runtime Adaptation for Actor Systems

Cassar

Francalanza

2015

Runtime Verification

View full text Add to dashboard Cite

Abstract. We study the problem of extending RV techniques in the context of (asynchronous) actor systems, so as to be able to carry out a degree of system adaptation at runtime. We propose extensions to specification logics that provide handles for programming both monitor synchronisations (with individual actors), as well as the administration of the resp. adaptations once the triggering behaviour is observed. Since this added functionality allows the specifier to introduce erroneous adaptation procedures, we also develop static analysis techniques based on substructural type systems to assist the construction of correct adaptation scripts.

show abstract

Section: Resultsmentioning

confidence: 99%

Runtime Adaptation for Actor Systems

Cassar

Francalanza

2015

Runtime Verification

View full text Add to dashboard Cite

show abstract

“…(plen == 0))) { exit(-1); } Empirically, returning zero as the result of divide by zero errors often enables the application to continue to execute productively [40]. We therefore implemented an alternate strategy that returns 0 if the check fires rather than exiting.…”

Section: Wiresharkmentioning

confidence: 99%

“…It recompiles the application to discard out of bounds writes, manufacture values for out of bounds reads, and enable applications to continue along their normal execution paths. RCV [40] enables applications to dynamically recover from divide-by-zero and null-dereference errors. When such an error occurs, RCV attaches the application, applies a fix strategy that typically ignores the offending instruction, forces the application to continue along the normal execution path, contains the error repair effect, and detaches from the application once the repair succeeds.…”

Section: Related Workmentioning

confidence: 99%

Automatic error elimination by horizontal code transfer across multiple applications

Sidiroglou-DouskosStelios

LahtinenEric

LongFan

et al. 2015

SIGPLAN Not.

Self Cite

View full text Add to dashboard Cite

We present Code Phage (CP), a system for automatically transferring correct code from donor applications into recipient applications that process the same inputs to successfully eliminate errors in the recipient. Experimental results using seven donor applications to eliminate ten errors in seven recipient applications highlight the ability of CP to transfer code across applications to eliminate out of bounds access, integer overflow, and divide by zero errors. Because CP works with binary donors with no need for source code or symbolic information, it supports a wide range of use cases. To the best of our knowledge, CP is the first system to automatically transfer code across multiple applications.

show abstract

“…Given a the ability to automatically expose errors via tools such as DIODE and the ability to automatically repair these errors via tools such as CodePhage [37] (as well as the ability to automatically generate repairs using techniques such as ClearView [27], Error Virtualization [35,36], FailureOblivious Computing [29], and RCV [23]), the next step is to build continuous automatic improvement systems that automatically search for errors and generate patches that repair the encountered errors. ClearView's automatic patch generation capability provides continuous improvement driven by responses to attacks and errors that users encounter in production use [27].…”

Section: Continuous Automatic Improvementmentioning

confidence: 99%

“…The first two checks occur in png_get_uint_31 (line 37), which checks that the PNG height and width values are less than 0x7fffffffL. The third and fourth sanity checks occur in png_check_IHDR (lines [21][22][23][24][25][26][27][28][29][30][31][32][33][34][35][36], which check that the PNG height and width values are less than one million. The fifth and final sanity check occurs at line 72, immediately before the target memory allocation site at line 87.…”

Section: Contributionsmentioning

confidence: 99%

Targeted Automatic Integer Overflow Discovery Using Goal-Directed Conditional Branch Enforcement

Sidiroglou-DouskosStelios¹,

LahtinenEric²,

RittenhouseNathan³

et al. 2015

SIGARCH Comput. Archit. News

Self Cite

View full text Add to dashboard Cite

We present a new technique and system, DIODE, for automatically generating inputs that trigger overflows at memory allocation sites. DIODE is designed to identify relevant sanity checks that inputs must satisfy to trigger overflows at target memory allocation sites, then generate inputs that satisfy these sanity checks to successfully trigger the overflow.DIODE works with off-the-shelf, production x86 binaries. Our results show that, for our benchmark set of applications, and for every target memory allocation site exercised by our seed inputs (which the applications process correctly with no overflows), either 1) DIODE is able to generate an input that triggers an overflow at that site or 2) there is no input that would trigger an overflow for the observed target expression at that site.

show abstract

Automatic runtime error repair and containment via recovery shepherding

Cited by 51 publications

References 29 publications

Runtime Adaptation for Actor Systems

Runtime Adaptation for Actor Systems

Automatic error elimination by horizontal code transfer across multiple applications

Targeted Automatic Integer Overflow Discovery Using Goal-Directed Conditional Branch Enforcement

Contact Info

Product

Resources

About