automatically discovering abstractions for network
play

Automatically Discovering Abstractions for Network Verification - PowerPoint PPT Presentation

Mar 25, 2024 •132 likes •689 views

Automatically Discovering Abstractions for Network Verification Devon Loehr 1 Networks are buggy, and that doesnt surprise you 2 Networks are buggy, and that doesnt surprise you 3 Networks are buggy, and that doesnt surprise you 4

  1. Automatically Discovering Abstractions for Network Verification Devon Loehr 1

  2. Networks are buggy, and that doesn’t surprise you 2

  3. Networks are buggy, and that doesn’t surprise you 3

  4. Networks are buggy, and that doesn’t surprise you 4

  5. Networks are buggy, and that doesn’t surprise you 5

  6. Network Verification ● Sample data plane verification tools: ○ Anteater (SIGCOMM ‘11) ○ NetPlumber (NSDI ‘13) ● Sample control plane verification tools: ○ rcc (NSDI ’05) ○ Batfish (NSDI ‘15) ○ ARC (SIGGCOMM ‘16) ○ NV (PLDI ‘20) 6

  7. Outline 1. Overview of NV and its capabilities 2. Speeding up verification with Hiding 3. Wrap-up 7

  8. NV: A network verification language Topology 0n 1n 2n 8

  9. NV: A network verification language Attributes 0n 1n 2n (0, 0n) (99, 1n) (99, 2n) 9

  10. NV: A network verification language Passing messages 0n 1n 2n T T r a r a (0, 0n) (99, 1n) (99, 2n) n n s s (1, 0n) (100, 1n) 10

  11. NV: A network verification language Receiving messages 0n 1n 2n (0, 0n) (99, 1n) (99, 2n) (1, 0n) (100, 1n) 11

  12. NV: A network verification language Receiving messages 0n 1n 2n (0, 0n) (1, 0n) (99, 2n) (100, 1n) 12

  13. NV: A network verification language Receiving messages 0n 1n 2n (0, 0n) (1, 0n) (99, 2n) 13

  14. NV: A network verification language Receiving messages 0n 1n 2n T r a (0, 0n) (1, 0n) (99, 2n) n s (2, 0n) 14

  15. NV: A network verification language Steady state 0n 1n 2n (0, 0n) (1, 0n) (2, 0n) 15

  16. NV: A network verification language Verifying properties 0n 1n 2n (0, 0n) (1, 0n) (2, 0n) true true true 16

  17. Neighbors might send arbitrary messages (?, 3n) 3n 0n 1n 2n (0, 0n) (99, 1n) (99, 2n) 17

  18. Neighbors might send arbitrary messages Might hijack true traffic between (?, 3n) node 2 and node 0! 3n 0n 1n 2n (0, 0n) (1, 0n) (??, ??) true true ??? 18

  19. Solution: Use an SMT Solver ● Find a steady state for the network, where no node prefers any of its neighbors’ attributes to its own ● Simulator computes a steady state, but there may be multiple ● SMT solver checks if the assertion may be violated by any steady state ● Requires heavy simplification to translate NV into SMT constraints User spec Verified Transformation NV SMT Solver Pipeline Counter- example 19

  20. Transformation pipeline (for SMT) User Program Type Inference Record Unrolling Inlining Tuple Flattening Option Unboxing Edge Unboxing Map Unrolling Slicing (optional) Unit Unboxing SMT Encoding Z3 BLUE boxes are compositional NV-to-NV transformations Most blue boxes use a centralized mechanism for specifying transformations 20

  21. Transformation pipeline (for SMT) User Program Type Inference Record Unrolling Inlining Tuple Flattening Option Unboxing Edge Unboxing Map Unrolling Slicing (optional) Unit Unboxing SMT Encoding Z3 Map Unrolling has been particularly challenging 21

  22. Maps in NV ● Maps (or dictionaries) are commonly used in networking ● NV maps are total 22

  23. Encoding Map Operations ● Some dictionary operations require quantifiers to encode into SMT SMT Encoding 23

  24. Encoding Map Operations ● Some dictionary operations require quantifiers to encode into SMT ● In general, quantifiers in SMT are not complete SMT Encoding SMT Solver Unknown 24

  25. Static keys ● Observation: In real networks, map keys are usually known in advance ○ E.g. Routers originate a fixed, known set of destinations ○ We see expression like m[3] , never m[...complicated computation…]_ 25

  26. Static keys ● Observation: In real networks, map keys are usually known in advance ○ E.g. Routers originate a fixed, known set of destinations ○ We see expression like m[3] , never m[...complicated computation…]_ ● Hence we can figure out which keys will be relevant statically by simply scanning the program! Only keys used are 3, 4, 7! 26

  27. Map Unrolling ● Finitize maps by transforming them into tuples, with one element for each key that is used ● Require all map keys in NV programs to be literals ● Doesn’t hinder translation of configs in practice 27

  28. Overview of NV ● NV is a programming language in which programs are descriptions of networks ● Networks may be verified either with a simulator or an SMT solver ● We use a pipeline of compositional transformations to translate NV programs into SMT constraints ● We encode dictionaries as tuples using Map Unrolling 28

  29. Problem: SMT analysis doesn’t scale well 29

  30. Networks contain a lot of irrelevant information ● Observation: Network operators may not utilize every feature of every network protocol ● Observation: Not all features that are used may be relevant to the property we’re verifying ○ E.g. checking the existence of a path may not require any information about that path’s length ● Idea: Speed up verification by removing irrelevant information from the network 30

  31. Many SMT constraints may be irrelevant ● Observation: SMT solving is worst-case exponential in the number of variables (for us, this is roughly equal to the number of constraints) ● Observation: Most SMT constraints simply describe the stable state of the network, and are rarely UNSAT. Only a few represent the assertion. ● Idea: hide all the constraints except the assertion, and iteratively unhide them only when they become relevant (CEGAR-style). 31

  32. Hiding -- Initial Program 32

  33. Hiding -- Iteration 1 Full Program Hidden Program 33

  34. Hiding -- Iteration 1 Full Program Hidden Program SAT: y1 = true, y2 = false 34

  35. Hiding -- Iteration 1 Full Program Hidden Program SAT: y1 = true, y2 = false 35

  36. Hiding -- Iteration 1 Full Program Hidden Program SAT: y1 = true, y2 = false UNSAT (Need info on: y1, y2) 36

  37. Hiding -- Iteration 2 Full Program Hidden Program 37

  38. Hiding -- Iteration 2 Full Program Hidden Program SAT: y0 = true, y1 = true, y2 = false x0 = true, x1 = false 38

  39. Hiding -- Iteration 2 Full Program Hidden Program SAT: y0 = true, y1 = true, y2 = false x0 = true, x1 = false 39

  40. Hiding -- Iteration 2 Full Program Hidden Program SAT: y0 = true, y1 = true, y2 = false x0 = true, x1 = false UNSAT (Need info on: x0, x1) 40

  41. Hiding -- Iteration 3 Full Program Hidden Program 41

  42. Hiding -- Iteration 3 Full Program Hidden Program UNSAT 42

  43. Hiding -- Iteration 3 Full Program Hidden Program UNSAT Must also be UNSAT! 43

  44. Hiding - Algorithm Sketch 1. Create two copies of the SMT program -- one full, one with some constraints hidden 2. Check satisfiability for the hidden program a. If it’s UNSAT, then so is the full program, so return. b. If it’s SAT, test the model on the full program 3. If the model extends to the full program, then it is also SAT, so return the full model 4. Otherwise, refine the hidden program by unhiding some constraints a. Add constraints for all variables that appear in the UNSAT core 5. Go to step 2 44

  45. Hiding - Algorithm Sketch 1. Create two copies of the SMT program -- one full, one with some constraints hidden 2. Check satisfiability for the hidden program a. If it’s UNSAT, then so is the full program, so return. b. If it’s SAT, test the model on the full program 3. If the model extends to the full program, then it is also SAT, so return the full model 4. Otherwise, refine the hidden program by unhiding some constraints a. Add constraints for all variables that appear in the UNSAT core 5. Go to step 2 Guaranteed to terminate after a finite number of iterations, with the same result as the full program! 45

  46. Experimental Results 46

  47. Experimental Results 47

  48. Experimental Results 48

  49. Experimental Results 49

  50. Future Work ● Heuristics for unhiding variables ● DSL for specifying which variables should start hidden 50

  51. Related Work on Hiding ● Hiding-style techniques were first proposed by Robert Kurshnan in 1994 ○ Maintains relationships between variable using a variable dependency graph ○ It was also inspiration for the the original CEGAR paper in 2000 ● In 2007, Wang, Kim and Gupta proposed Hybrid CEGAR, which combines hiding with predicate abstraction ● The Corral verifier for Boogie (2011) practices a similar technique by only inlining a few functions, then adding more as needed. 51

Recommend

Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions

Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions

Transition Systems and Abstractions Automatically Deriving Abstraction Heuristics PDB Abstractions Explicit-State Abstractions Conclusion Malte Helmert Albert-Ludwigs-Universit at Freiburg, Germany STAIR 2008 About This Talk

870 views • 43 slides
Automatically Discovering, Reporting Kevin Moran , Mario Linares-Vsquez, and Reproducing

Automatically Discovering, Reporting Kevin Moran , Mario Linares-Vsquez, and Reproducing

& College of William & Mary - SEMERU - Department of Computer Science Automatically Discovering, Reporting Kevin Moran , Mario Linares-Vsquez, and Reproducing Android Carlos Bernal-Crdenas, Christopher Vendome, Application Crashes

930 views • 63 slides
ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services,

ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services,

ABSTRACTIONS OF THE DATA PLANE DIMACS Working Group on Abstractions for Network Services, Architecture, and Implementation Pamela Zave AT&T LaboratoriesResearch Florham Park, New Jersey, USA joint work with Jennifer Rexford, Princeton

347 views • 33 slides
Abstractions for Routing Abstractions for Network Routing Brighten Godfrey Brighten Godfrey

Abstractions for Routing Abstractions for Network Routing Brighten Godfrey Brighten Godfrey

Abstractions for Routing Abstractions for Network Routing Brighten Godfrey Brighten Godfrey DIMACS 23 May 2012 DIMACS 23 May 2012 Abstractions for Network Routing Impressions of Network Routing Neo-Dadaisms for Network Routing

635 views • 46 slides
Network Policy Mohammad Banikazemi Sumit Naiksatam Abstractions in Neutron Stephen Wong

Network Policy Mohammad Banikazemi Sumit Naiksatam Abstractions in Neutron Stephen Wong

May 2014 Network Policy Mohammad Banikazemi Sumit Naiksatam Abstractions in Neutron Stephen Wong Outline Introduction Neutron Abstractions Group Policy Extension PoC Implementation and Demo

422 views • 20 slides
Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas

Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas

Planning and Optimization D2. Abstractions: Additive Abstractions Gabriele R oger and Thomas Keller Universit at Basel October 29, 2018 Multiple Abstractions Additivity Outlook Summary Content of this Course Tasks Progression/

684 views • 31 slides
Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F.

Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F.

Unified L2 Abstractions for L3-Driven Fast Handover draft-irtf-mobopts-l2-abstractions-01 F. Teraoka, K. Gogo, K. Mitsuya, R. Shibui, K. Mitani Keio University 06.11.7 67th IETF MOBOPTS l2-abstractions 1 ToC Gap Analysis against IEEE

431 views • 25 slides
Abstractions for Network Update Cole Schlesinger Nate Foster Jennifer Rexford Mark Reitblatt

Abstractions for Network Update Cole Schlesinger Nate Foster Jennifer Rexford Mark Reitblatt

Abstractions for Network Update Cole Schlesinger Nate Foster Jennifer Rexford Mark Reitblatt David Walker At 12:47 AM PDT on April 21st, a network change was performed as part of our normal scaling activities... During the change, one of

435 views • 18 slides
The 3 rd Covenant Re-Discovering the Word of God within the words of the Bible Re-Discovering The

The 3 rd Covenant Re-Discovering the Word of God within the words of the Bible Re-Discovering The

The 3 rd Covenant Re-Discovering the Word of God within the words of the Bible Re-Discovering The Way within the Life of Jesus Christ A Spiritual Adventure of Re-Awakening You are Gods, Children of the Most High, all of you ~

690 views • 40 slides
PGA: Using Graphs to Express and Automatically Reconcile Network Policies Chaithan Prakash

PGA: Using Graphs to Express and Automatically Reconcile Network Policies Chaithan Prakash

PGA: Using Graphs to Express and Automatically Reconcile Network Policies Chaithan Prakash Jeongkeun Lee Yoshio Turner Joon-Myung Kang Aditya Akella Sujata Banerjee Charles Clark Yadi Ma Puneet Sharma Ying

618 views • 39 slides
MeetupNet Dublin: Discovering Communities in Dublins Meetup Network Arjun Pakrashi,

MeetupNet Dublin: Discovering Communities in Dublins Meetup Network Arjun Pakrashi,

MeetupNet Dublin: Discovering Communities in Dublins Meetup Network Arjun Pakrashi, Elham Alghamdi, Brian Mac Namee, Derek Greene University College Dublin AICS 2018 Introduction Meetup.com is a worldwide online platform to

612 views • 17 slides
FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions

FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions

FRONTEND AT SCALE Designing abstractions for big teams @joshduck What front-end abstractions have we built? And how did we do it? Server rendered desktop site Less memory, bandwidth, and latency Device constraints More products Multiple

898 views • 61 slides
SNAP: Stateful Network-Wide Abstractions for Packet Processing Mina Tahmasbi Arashloo 1 , Yaron

SNAP: Stateful Network-Wide Abstractions for Packet Processing Mina Tahmasbi Arashloo 1 , Yaron

SNAP: Stateful Network-Wide Abstractions for Packet Processing Mina Tahmasbi Arashloo 1 , Yaron Koral 1 , Michael Greenberg 2 , Jennifer Rexford 1 , and David Walker 1 1 Princeton University, 2 Pomona College Early SDN Switch Interfaces

711 views • 35 slides
Discovering Packet Structure through Lightweight Hierarchical Clustering Abdulrahman Hijazi

Discovering Packet Structure through Lightweight Hierarchical Clustering Abdulrahman Hijazi

Understanding Network Traffic Approach Network Traffic Clustering: ADHIC Evaluation Discovering Packet Structure through Lightweight Hierarchical Clustering Abdulrahman Hijazi Hajime Inoue Ashraf Matrawy P .C. van Oorschot Anil Somayaji

540 views • 29 slides
Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Gabriele R oger Universit at Basel November 6, 2017 Additivity Outlook Summary Content of this Course Tasks Progression/ Regression Planning

570 views • 30 slides
Assessing the Quality of Automatically Built Network Representations Lionel Eyraud-Dubois

Assessing the Quality of Automatically Built Network Representations Lionel Eyraud-Dubois

Assessing the Quality of Automatically Built Network Representations Lionel Eyraud-Dubois (ENS-Lyon, France) Martin Quinson (University of Nancy, France) May 16, 2007 Workshop on Programming Models for Grid Computing associated to CCGrid07

602 views • 32 slides
ONOS Update distributed platform, abstractions, applications ONOS Community distributed core

ONOS Update distributed platform, abstractions, applications ONOS Community distributed core

ONOS Update distributed platform, abstractions, applications ONOS Community distributed core provides high-availability, scalability and performance abstractions & models allow applications to configure and control the network without

750 views • 54 slides
Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller

Planning and Optimization D3. Abstractions: Additive Abstractions Malte Helmert and Thomas Keller Universit at Basel October 30, 2019 Additivity Outlook Summary Content of this Course Foundations Logic Classical Heuristics

432 views • 30 slides
APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops)

APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops)

APIs/abstractions Previously iously Abstractions for infrastructure to ease operations (Ops) Manage complexity in deploying software systems Examples covered VMs, containers Infrastructure as a Service Platform as a

1.08k views • 33 slides
Discovering Mammalian Endocytic Discovering Mammalian Endocytic Pathways with High- -Throughput

Discovering Mammalian Endocytic Discovering Mammalian Endocytic Pathways with High- -Throughput

Discovering Mammalian Endocytic Discovering Mammalian Endocytic Pathways with High- -Throughput Throughput Pathways with High Image- -Based siRNA Screens and Based siRNA Screens and Image Network Analysis Network Analysis Pauli Rm

552 views • 19 slides
L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend

L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend

L9: Frontend Abstractions Web Engineering 188.951 2VU SS20 Jrgen Cito L9: Frontend Abstractions Overview of abstractions that support building declarative and reactive frontend applications Case study demonstrating these

399 views • 22 slides
Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions

Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions

4/5/2017 Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions 2A. OS Services, Layers and Mechanisms processes, threads, virtual machines 2B. Service Interfcaes virtual address spaces, shared

100 views • 7 slides
First Steps Towards Automatically Building Network Representations Lionel Eyraud-Dubois

First Steps Towards Automatically Building Network Representations Lionel Eyraud-Dubois

First Steps Towards Automatically Building Network Representations Lionel Eyraud-Dubois ENS-Lyon, France. Arnaud Legrand CNRS, Grenoble, France. Martin Quinson Nancy University, France. Fr ed eric Vivien INRIA, Lyon, France.

578 views • 54 slides
Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions

Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions

4/1/2018 Resources, Services, and Interfaces Services: Hardware Abstractions CPU/Memory abstractions 2A. OS Services, Layers and Mechanisms processes, threads, virtual machines 2B. Service Interfaces virtual address spaces, shared

134 views • 10 slides

More recommend