debugging the data plane with anteater
play

Debugging the Data Plane with Anteater Haohui Mai, Ahmed Khurshid - PowerPoint PPT Presentation

Jun 15, 2023 •425 likes •929 views

Debugging the Data Plane with Anteater Haohui Mai, Ahmed Khurshid Rachit Agarwal, Matthew Caesar P. Brighten Godfrey, Samuel T. King University of Illinois at Urbana-Champaign Network debugging is challenging Production networks are

  1. Debugging the Data Plane with Anteater Haohui Mai, Ahmed Khurshid Rachit Agarwal, Matthew Caesar P. Brighten Godfrey, Samuel T. King University of Illinois at Urbana-Champaign

  2. Network debugging is challenging • Production networks are complex – Security policies – Traffic engineering – Legacy devices – Protocol inter-dependencies – … • Even well-managed networks can go down • Even SIGCOMM’s network can go down • Few good tools to ensure all networking components working together correctly

  3. A real example from UIUC network • Previously, an intrusion dorm detection and prevention IDP (IDP) device inspected all traffic to/from dorms … Backbone

  4. A real example from UIUC network • Previously, an intrusion dorm detection and prevention IDP (IDP) device inspected all traffic to/from dorms • IDP couldn’t handle load; added bypass … – IDP only inspected traffic bypass between dorm and campus Backbone – Seemingly simple changes

  5. A real example from UIUC network • Previously, an intrusion dorm detection and prevention IDP (IDP) device inspected all traffic to/from dorms • IDP couldn’t handle load; added bypass … – IDP only inspected traffic bypass between dorm and campus Backbone – Seemingly simple changes

  6. A real example from UIUC network • Previously, an intrusion dorm detection and prevention IDP (IDP) device inspected all traffic to/from dorms • IDP couldn’t handle load; added bypass … – IDP only inspected traffic bypass between dorm and campus Backbone – Seemingly simple changes

  7. Problem: Did it work correctly? • Ping and traceroute provide limited testing of exponentially large space – 2 32 destination IPs * 2 16 destination ports * … • Bugs not triggered during testing might plague the system in production runs

  8. Previous approach: Configuration analysis + Test before deployment Configuration Input - Prediction is difficult Control plane – Various configuration languages – Dynamic distributed Data plane Predicted protocols state Network - Prediction misses behavior implementation bugs in control plane

  9. Our approach: Debugging the data plane diagnose problems as close as possible to actual network behavior + Less prediction Configuration + Data plane is a “narrower waist” than configuration Control plane + Unified analysis for multiple control plane protocols Data plane Input state + Can catch implementation bugs in control plane Network Predicted behavior - Checks one snapshot

  10. • Introduction • Design of Anteater – Data plane as boolean functions – Express invariants as boolean satisfiability problem (SAT) – Handling packet transformation • Experiences with UIUC network • Conclusion

  11. Anteater from 30,000 feet Operator

  12. Anteater from 30,000 feet Operator Router VPN Firewalls Data plane state Invariants

  13. Anteater from 30,000 feet Operator Router VPN Firewalls Data plane ∃ Loops? state ∃ Security policy Invariants violation? …

  14. Anteater from 30,000 feet Operator Anteater Router VPN Firewalls Data plane ∃ Loops? state ∃ Security policy Invariants violation? …

  15. Anteater from 30,000 feet Operator Anteater Data plane SAT state formulas Invariants

  16. Anteater from 30,000 feet Operator Anteater Data plane SAT state formulas Invariants Results of SAT solving

  17. Anteater from 30,000 feet Operator Anteater Data plane SAT state formulas Invariants Diagnosis Results of report SAT solving

  18. Challenges for Anteater • Operators shouldn’t have to code SAT manually Solution: – Built-in invariants and scripting APIs • Checking invariants is non-trivial – Tunneling, MPLS label swapping, OpenFlow , … – e.g., reachability is NP-Complete with packet filters Solution: – Express data plane and invariants as SAT – Check with external SAT solver

  19. • Introduction • Design of Anteater – Data plane as boolean functions – Express invariants as boolean satisfiability problem (SAT) – Handling packet transformation • Experiences with UIUC network • Conclusion

  20. Data plane as boolean functions • Define P(u, v) as the Destination Iface policy function for 10.1.1.0/24 v packets traveling from u to v u v – A packet can flow over (u, v) if and only P(u, v) = dst_ip ∈ 10.1.1.0/24 if it satisfies P(u, v)

  21. Simpler example Destination Iface 0.0.0.0/0 v u v P(u, v) = true Default routing

  22. Some more examples Destination Iface Destination Iface 10.1.1.0/24 v 10.1.1.0/24 v Drop port 80 to v 10.1.1.128/25 v’ 10.1.2.0/24 v u v u v P(u, v) = dst_ip ∈ 10.1.1.0/24 P(u, v) = (dst_ip ∈ 10.1.1.0/24 ∧ dst_port ≠ 80 ∧ dst_ip ∉ 10.1.1.128/25) ∨ dst_ip ∈ 10.1.2.0/24 Packet filtering Longest prefix matching

  23. • Introduction • Design of Anteater – Data plane as boolean functions – Express invariants as boolean satisfiability problem (SAT) – Handling packet transformation • Experiences with UIUC network • Conclusion

  24. Reachability as SAT solving • Goal: reachability from u to w u v w C = (P(u, v) ∧ P(v,w)) is satisfiable ⇔∃ A packet that makes P(u,v) ∧ P(v,w) true ⇔∃ A packet that can flow over (u, v) and (v,w) ⇔ u can reach w • SAT solver determines the satisfiability of C • Problem: exponentially many paths - Solution: Dynamic programming algorithm

  25. Invariants • Loop-free forwarding : Is u … w there a forwarding loop in the network? lost • Packet loss . Are there any black holes in the network? u … w • Consistency . Do two replicated routers share the u same forwarding behavior including access control … w policies? u’ • See the paper for details

  26. • Introduction • Design of Anteater – Data plane as boolean functions – Express invariants as boolean satisfiability problem (SAT) – Handling packet transformation • Experiences with UIUC network • Conclusion

  27. Packet transformation • Essential to model MPLS, QoS, NAT, etc. u v w

  28. Packet transformation • Essential to model MPLS, QoS, NAT, etc. u v w

  29. Packet transformation • Essential to model label = 5? MPLS, QoS, NAT, etc. u v w

  30. Packet transformation • Essential to model label = 5? MPLS, QoS, NAT, etc. u v w • Model the history of packets • Packet transformation ⇒ boolean constraints over adjacent packet versions

  31. Packet transformation (cont.) • Goal: determine reachability from u to w u v w

  32. Packet transformation (cont.) • Goal: determine reachability from u to w u v w s 0 s 1

  33. Packet transformation (cont.) • Goal: determine reachability from u to w u v w s 0 s 1 P(u,v) P(v,w)

  34. Packet transformation (cont.) • Goal: determine reachability from u to w u v w s 0 s 1 P(u,v) P(v,w) T(u,v) T(u,v) = (s 0 .other = s 1 .other ∧ s 1 .label = )

  35. Packet transformation (cont.) • Goal: determine reachability from u to w u v w s 0 s 1 P(u,v) P(v,w) T(u,v) T(u,v) = (s 0 .other = s 1 .other ∧ s 1 .label = ) C u-v-w = P(u,v) (s 0 ) ∧ T(u,v) ∧ P(v,w) (s 1 )

  36. Packet transformation (cont.) • Goal: determine reachability from u to w u v w s 0 s 1 P(u,v) P(v,w) T(u,v) T(u,v) = (s 0 .other = s 1 .other ∧ s 1 .label = ) C u-v-w = P(u,v) (s 0 ) ∧ T(u,v) ∧ P(v,w) (s 1 ) • Possible challenge: scalability

  37. Implementation • 3,500 lines of C++ and Ruby, 300 lines of awk/sed/python scripts • Collect data plane state via SNMP • Represent boolean functions and constraints as LLVM IR • Translate LLVM IR to SAT formulas – Use Boolector to resolve SAT queries – make – j16 to parallelize the checking

  38. • Introduction • Design – Network reachability => boolean satisfiability problem (SAT) – Handling packet transformation • Experiences with UIUC network • Conclusion

  39. Experiences with UIUC network • Evaluated Anteater with UIUC campus network – ~ 178 routers – Predominantly OSPF, also uses BGP and static routing – 1,627 FIB entries per router (mean) • Revealed 23 bugs with 3 invariants in 2 hours Loop Packet loss Consistency Being fixed 9 0 0 Stale config. 0 13 1 False pos. 0 4 1 Total alerts 9 17 2

  40. Forwarding loops • 9 loops between router dorm dorm and bypass • Existed for more than a month • Anteater gives one concrete bypass example of forwarding loop – Given this example, relatively easy for operators to fix $ anteater Loop: 128.163.250.30@bypass

  41. Forwarding loops (cont.) • Previously, dorm dorm connected to IDP IDP directly • IDP inspected all traffic to/from dorms … Backbone

  42. Forwarding loops (cont.) • IDP was overloaded, dorm operator introduced IDP bypass – IDP only inspected traffic for campus … Backbone

  43. Forwarding loops (cont.) • IDP was overloaded, dorm operator introduced IDP bypass – IDP only inspected traffic for campus • bypass routed campus traffic to … bypass IDP through static routes Backbone

  44. Forwarding loops (cont.) • IDP was overloaded, dorm operator introduced IDP bypass – IDP only inspected traffic for campus • bypass routed campus traffic to … bypass IDP through static routes Backbone • Introduced loops

Recommend

Data Plane Verification and Anteater Brighten Godfrey University of Illinois Work with Haohui

Data Plane Verification and Anteater Brighten Godfrey University of Illinois Work with Haohui

Data Plane Verification and Anteater Brighten Godfrey University of Illinois Work with Haohui Mai, Ahmed Khurshid, Rachit Agarwal, Matthew Caesar, and Sam King Summer School on Formal Methods and Networks Cornell University, June 11, 2013

482 views • 36 slides
Control Plane Compression Ryan Becke* Aar- Gupta Ratul Mahajan David Walker 3 Good news!

Control Plane Compression Ryan Becke* Aar- Gupta Ratul Mahajan David Walker 3 Good news!

1 Control Plane Compression Ryan Becke* Aar- Gupta Ratul Mahajan David Walker 3 Good news! Some Solu/ons 5 Data Plane Verification Anteater [Mai 2011] HSA [Kazemian 2012] [Kurshid 2013] Veriflow NoD [Lopes 2015] Symmetries

389 views • 38 slides
Network Data Plane Network Data Plane Network Data Plane (S. S. Lam) 3/23/2017 1 Network layer

Network Data Plane Network Data Plane Network Data Plane (S. S. Lam) 3/23/2017 1 Network layer

Network Data Plane Network Data Plane Network Data Plane (S. S. Lam) 3/23/2017 1 Network layer d li delivers segments from s s ts f sending to receiving host application transport network sender encapsulates segments p g

912 views • 44 slides
An Assertion Language for Debugging SDN Applications Ryan Beckett with X. Kelvin Zou,

An Assertion Language for Debugging SDN Applications Ryan Beckett with X. Kelvin Zou,

An Assertion Language for Debugging SDN Applications Ryan Beckett with X. Kelvin Zou, Shuyuan Zhang, Sharad Malik, Jennifer Rexford, David Walker Princeton University 1 Data Plane Verification Controller Find

579 views • 37 slides
1 Background | Problems | Challenges | Design | Evaluation | Summary Control Plane Applications

1 Background | Problems | Challenges | Design | Evaluation | Summary Control Plane Applications

SPEED Resource-Ef+icient and High-Performance Deployment for Data Plane Programs Xiang Chen , Hongyan Liu, Qun Huang, Peiqiao Wang, Dong Zhang, Haifeng Zhou, Chunming Wu Control Plane Applications Monitor Security Routing Data Plane

826 views • 45 slides
Internet Control Plane Security Yongdae Kim KAIST Two Planes Data Plane: Actual data

Internet Control Plane Security Yongdae Kim KAIST Two Planes Data Plane: Actual data

Internet Control Plane Security Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control Plane To support data delivery (efficiently, reliably, and etc.) Routing information exchange In some sense, every protocol

396 views • 39 slides
15-388/688 - Practical Data Science: Debugging data science J. Zico Kolter School of Computer

15-388/688 - Practical Data Science: Debugging data science J. Zico Kolter School of Computer

15-388/688 - Practical Data Science: Debugging data science J. Zico Kolter School of Computer Science Fall 2019 1 Outline Data science debugging vs. traditional debugging Step 1: determine if your problem is impossible Step 2a: What to do

325 views • 28 slides
Data Plane Programmability in SDN H. Farhady, H. Lee, A.

Data Plane Programmability in SDN H. Farhady, H. Lee, A.

Data Plane Programmability in SDN H. Farhady, H. Lee, A. Nakao The University of Tokyo CoolSDN14 Contents Current SDN The Gap: Data plane

382 views • 12 slides
Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and

Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and

Chapter 15 Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and set values in memory Execute portions of program Stop execution when (and where) desired Want debugging tools to operate on

274 views • 9 slides
Data Plane Broker Integration, Configuration & Implementation. Paul McCherry Data Plane

Data Plane Broker Integration, Configuration & Implementation. Paul McCherry Data Plane

Data Plane Broker Integration, Configuration & Implementation. Paul McCherry Data Plane Broker Integration OSM Creation: Connection Points, Bandwidth Deletion: Service_Id DPB WIM Connector Modify: In development, Service_Id

241 views • 20 slides
Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production

Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production

Welcome to Advanced .NET Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production Challenges in debugging Production issues Production Environment Debugging Timeline Tools for .NET Debugging Review 3

622 views • 47 slides
SCION: Data Plane Overview Adrian Perrig Network Security Group, ETH Zrich SCION Data Plane

SCION: Data Plane Overview Adrian Perrig Network Security Group, ETH Zrich SCION Data Plane

SCION: Data Plane Overview Adrian Perrig Network Security Group, ETH Zrich SCION Data Plane Overview Data plane: How to send packets [Chapter 2.2, Chapter 8] Path lookup Path combination Path encoding in packet 2 Path

387 views • 18 slides
Network Attacks I Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control

Network Attacks I Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control

Network Attacks I Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control Plane To support data delivery (efficiently, reliably, and etc.) Routing information exchange In some sense, every protocol except data

751 views • 51 slides
kb -Anonymity: A Model for Anonymized kb Behavior-Preserving Test and Debugging Data Where is

kb -Anonymity: A Model for Anonymized kb Behavior-Preserving Test and Debugging Data Where is

kb -Anonymity: A Model for Anonymized kb Behavior-Preserving Test and Debugging Data Where is the Privacy best place to Preservation Aditya Budi, David Lo, Lingxiao Jiang, Lucia stay? Behavior Preservation Software Testing & Debugging

450 views • 30 slides
Extending SDN to the Data Plane Anirudh Sivaraman, Keith Winstein, Suvinay Subramanian, Hari

Extending SDN to the Data Plane Anirudh Sivaraman, Keith Winstein, Suvinay Subramanian, Hari

Extending SDN to the Data Plane Anirudh Sivaraman, Keith Winstein, Suvinay Subramanian, Hari Balakrishnan M.I.T. http://web.mit.edu/anirudh/www/sdn-data-plane.html Switch Data Planes today Two key decisions on a per-packet basis:

682 views • 34 slides
Seer: Leveraging Big Data to Navigate The Complexity of Cloud Debugging Yu Gan, Meghna Pancholi,

Seer: Leveraging Big Data to Navigate The Complexity of Cloud Debugging Yu Gan, Meghna Pancholi,

Seer: Leveraging Big Data to Navigate The Complexity of Cloud Debugging Yu Gan, Meghna Pancholi, Dailun Cheng, Siyuan Hu, Yuan He, Christina Delimitrou A proactive performance debugging systems using machine learning to improve performance

281 views • 14 slides
Virtualization for NFV/Data Plane SDN Bob Lantz Open Networking Laboratory ONS 2016 Talk

Virtualization for NFV/Data Plane SDN Bob Lantz Open Networking Laboratory ONS 2016 Talk

Virtualization for NFV/Data Plane SDN Bob Lantz Open Networking Laboratory ONS 2016 Talk Outline - What is NFV? - One Way to Do It - A Better Way - Control Plane NFV/SDN - Data Plane SDN - VM Configuration - Container Configuration -

363 views • 17 slides
Automated Debugging In Data Intensive Scalable Computing Systems Muhammad Ali Gulzar 1 Siman Wang

Automated Debugging In Data Intensive Scalable Computing Systems Muhammad Ali Gulzar 1 Siman Wang

Automated Debugging In Data Intensive Scalable Computing Systems Muhammad Ali Gulzar 1 Siman Wang 1,2 Miryung Kim 1 1 University of California, Los Angeles 2 Hunan University 1 Big Data Debugging in the Dark Develop locally Hope it works Run

392 views • 22 slides
Visual Debugging Software What is Debugging Visualization Visualizing

Visual Debugging Software What is Debugging Visualization Visualizing

Visual Debugging Software What is Debugging Visualization Visualizing Program State Incremental interactive unfolding (DDD) Visual Memory Abstract representations (traversal-based) Debugging Focusing: memory

433 views • 5 slides
DEBUGGING DSLS WITH XTEXTS NEW TRACING API 1 Debugging of Generated Code Whats needed?

DEBUGGING DSLS WITH XTEXTS NEW TRACING API 1 Debugging of Generated Code Whats needed?

Christian Schneider, Miro Spnemann TypeFox.io DEBUGGING DSLS WITH XTEXTS NEW TRACING API 1 Debugging of Generated Code Whats needed? Mapping of code regions in source to code regions in target Data structures

406 views • 23 slides
Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination.

Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination.

Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination. Will also talk about the ddd gui for gdb (lots of value added to gdb). First, debugging in the abstract: Program state is a snapshot

475 views • 20 slides
4. Coordinate geometry A special kind of geometry where the position of points on the plane is

4. Coordinate geometry A special kind of geometry where the position of points on the plane is

D AY 107 A RECTANGLE AND A SQUARE ON THE X - Y PLANE I NTRODUCTION A plane figure in the x-y plane can resemble one of the common quadrilaterals we have come across, but that is not enough to show that the figure meets all the basic

1.45k views • 24 slides
If a plane cuts through a cone such that the plane is not parallel to the sliding side of the cone

If a plane cuts through a cone such that the plane is not parallel to the sliding side of the cone

D AY 138 E QUATION OF ELLIPSE I NTRODUCTION A plane cutting through a circular cone produces different shapes depending on the angle the plane makes with the circular cone. If the plane cuts across the cone such that it is not

811 views • 20 slides
BigDebug: Debugging Primitives for Interactive Big Data Processing

BigDebug: Debugging Primitives for Interactive Big Data Processing

BigDebug: Debugging Primitives for Interactive Big Data Processing in Spark Muhammad Ali Gulzar, Matteo Interlandi, Seunghyun Yoo, Sai Deep Tetali, Tyson Condie,

562 views • 38 slides

More recommend