dynamic repair of applications with runtime snap ins
play

Dynamic Repair of Applications with Runtime Snap-ins J. Peter Brady - PowerPoint PPT Presentation

Feb 15, 2024 •358 likes •496 views

Dynamic Repair of Applications with Runtime Snap-ins J. Peter Brady Dartmouth College, Hanover NH jpb@cs.dartmouth.edu Advisors: Dr. Sean Smith, Dr. Sergey Bratus Funded by the U.S. Department of Energy and the U.S. Department of Homeland

  1. Dynamic Repair of Applications with Runtime Snap-ins J. Peter Brady Dartmouth College, Hanover NH jpb@cs.dartmouth.edu Advisors: Dr. Sean Smith, Dr. Sergey Bratus Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security | cred-c.org

  2. The Challenge of Getting Things Right “Politics is the art of looking for trouble, finding it everywhere, diagnosing it incorrectly and applying the wrong remedies.” – Groucho Marx (You can say the same about software!) Wikimedia Commons cred-c.org | 2

  3. The Challenges • Current “best” practice: • Ignore, AKA “The Ostrich” • Corrective maintenance, AKA “The Patch” • Traditional patching doesn’t work in the real world NASA • Systems that can’t be reached • Satellites • Mars Rover • EDS OT • Systems that can’t be down • EDS OT systems in a 24x7 operation – what time is good? i-scmp.com • Obsolete equipment • Vendor is out of business • So old that no one knows how to maintain it • Patching must not change mission-critical behavior cred-c.org | 3 vintagecomputer.net

  4. Runtime Snap-ins – Our Approach • Deliver application changes in real-time • Fault repair • Functionality updates • New features • Use system features and engineering standards • Keep our code base small • Make maintenance/enhancements simpler • Our secret weapon : automated ways to locate and modify code only at safe times during execution fsm-media.com cred-c.org | 4

  5. Repairing Applications with Runtime Snap-ins • Repaired code is stored in shared libraries • Code objects that can be shared among multiple executables • Bound to executables at run time • Run the Replacement Constructor Program (RCP) • Creates mapping data of repaired interfaces to apply to existing programs • Runs only when a new library is added to system • The Snap-in Controller • A separate daemon • Searches out target applications • Applies the RCP mapping to running programs lifecurrents.dw2.net cred-c.org | 5

  6. Runtime Snap-in Example • Simple model of the user space memory in a Linux application • Text – read-only executable code • Data – initialized data (read-only and read-write) • BSS – uninitialized data • Heap – user allocated memory • Shared Libraries • Stack – allocated memory for local variables and function parameters cred-c.org | 6

  7. Runtime Snap-in Example • Application has an external function call mtxAdd() which calls a shared library • mtxAdd() has a memory leak we want to fix cred-c.org | 7

  8. Runtime Snap-in Example – Install Library • The Snap-in Controller runs • The target application is paused by the Controller with ptrace • A small set of dynamic loader instructions are loaded into the heap • The Controller sets the targets execution pointer to the new instructions and tells the target to run. • The snap-in library loads into the shared library area. Any number of libraries could be loaded at this point. • The last instruction on the heap returns to the Controller cred-c.org | 8

  9. Runtime Snap-in Example – Use New Library • The Controller removes the install code from the heap • It then rewrites the library pointer to point to the new instance of mtxAdd() in the new library by changing offsets in the Global Offset Table cred-c.org | 9

  10. Runtime Snap-in Example – Normal Execution Continues • The Controller restores the execution pointer of the target, then releases control • Normal execution is restored on the target application • Future calls to mtxAdd() go to the new version in the snap-in library cred-c.org | 10

  11. Conclusions and Next Steps • Operational Timeline • Runtime Snap-in • Proof-of-Concept • Simple concept allows for • Specific set of libraries installed into a specific target application powerful updates to running • Completed June 2017 applications • In-process • Search selected applications for routines to • Repairs or enhancements are be replaced and create mapping to repaired libraries delivered in real-time • Those system applications can have selected libraries installed automatically • Future versions will allow more • Complete in March 2018 automated search and repair • Future operations • Search for potential failing code in system applications Find known failure signatures in an • application and auto-create mapping • Rollback one or more repairs • Repair code that’s part of the application (i.e.: not in a shared library) • Multiple architectures cred-c.org | 11

  12. jpb@cs.dartmouth.edu http://cred-c.org @credcresearch facebook.com/credcresearch/ Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security

Recommend

FY21 SNAP Employment and Training Request For Applications Information Session July 7, 2020

FY21 SNAP Employment and Training Request For Applications Information Session July 7, 2020

FY21 SNAP Employment and Training Request For Applications Information Session July 7, 2020 DEPARTMENT of HUMAN SERVICES Topics What is SNAP Employment & Training (E&T)? DC SNAP E&T Program Overview Current SNAP E&T

364 views • 23 slides
Runtime GUI Adaptation in Dynamic Software Product Lines Dean Kramer deankramer@acm.org

Runtime GUI Adaptation in Dynamic Software Product Lines Dean Kramer deankramer@acm.org

Introduction & Recap Runtime Adaptation Implementation & Tests Conclusions Runtime GUI Adaptation in Dynamic Software Product Lines Dean Kramer deankramer@acm.org University of West London/Middlesex University FOSD 2014

529 views • 24 slides
http://snap.stanford.edu/snappy CS224W, Fall 2019 Introduction to SNAP Snap.py for Python

http://snap.stanford.edu/snappy CS224W, Fall 2019 Introduction to SNAP Snap.py for Python

http://snap.stanford.edu/snappy CS224W, Fall 2019 Introduction to SNAP Snap.py for Python Network analytics CS224W, Fall 2019 S tanford N etwork A nalysis P latform (SNAP) is a general purpose, high-performance system for analysis

622 views • 46 slides
Coding in Snap! Session Introduction to Snap! Presented by Daniel Hickmott Presentation Contents

Coding in Snap! Session Introduction to Snap! Presented by Daniel Hickmott Presentation Contents

Coding in Snap! Session Introduction to Snap! Presented by Daniel Hickmott Presentation Contents Snap! BYOB Website The Snap Manual Palettes and Panes Stage Menus Turtle Geometry Snap! BYOB BYOB = Build

318 views • 16 slides
Runtime Specialization Java has never been so dynamic before Stephan Herrmann Simply Retail.

Runtime Specialization Java has never been so dynamic before Stephan Herrmann Simply Retail.

Runtime Specialization Java has never been so dynamic before Stephan Herrmann Simply Retail. Two Camps Strict Rules No Ceremony compiler detects errors Freedom Modularity Flexibility separate maintenance self modifying code Enforced

304 views • 17 slides
Iron* - An Introduction to Getting Dynamic on .NET //kristiankristensen.dk

Iron* - An Introduction to Getting Dynamic on .NET //kristiankristensen.dk

Iron* - An Introduction to Getting Dynamic on .NET //kristiankristensen.dk twitter.com/kkristensen mail@kristiankristensen.dk Question Agenda Dynamic Languages Dynamic Demo! Language Runtime 45 min 15 min Why Dynamic Languages

689 views • 33 slides
Type Systems: Big Idea Static vs. Dynamic Typing Expressiveness (+ Dynamic) Dont have

Type Systems: Big Idea Static vs. Dynamic Typing Expressiveness (+ Dynamic) Dont have

Type Systems: Big Idea Static vs. Dynamic Typing Expressiveness (+ Dynamic) Dont have to worry about types (+ Dynamic) Dependent on input (- Dynamic) Runtime overhead (- Dynamic) Serve as documentation (+ Static)

572 views • 24 slides
Binary Rewriting at Runtime for Efficient Dynamic Domain Map Implementations 3 rd CHIUW Workshop,

Binary Rewriting at Runtime for Efficient Dynamic Domain Map Implementations 3 rd CHIUW Workshop,

Technische Universitt Mnchen Binary Rewriting at Runtime for Efficient Dynamic Domain Map Implementations 3 rd CHIUW Workshop, Chicago, May 27, 2016 Josef Weidendorfer, Jens Breitbart Chair for Computer Architecture Department of

258 views • 8 slides
Bundling KDE 1 / 24 Who am I? 2 / 24 Motivation 3 / 24 Users on supported software 4 / 24

Bundling KDE 1 / 24 Who am I? 2 / 24 Motivation 3 / 24 Users on supported software 4 / 24

Bundling KDE 1 / 24 Who am I? 2 / 24 Motivation 3 / 24 Users on supported software 4 / 24 What? 5 / 24 Installing KDE Applications 6 / 24 Snap sudo snap install kde-frameworks-5 sudo snap install kblocks Harald's Blog 7 / 24

775 views • 24 slides
Runtime Monitoring and Dynamic Reconfiguration for Intrusion Detection Systems Martin Rehak 1,2 ,

Runtime Monitoring and Dynamic Reconfiguration for Intrusion Detection Systems Martin Rehak 1,2 ,

Runtime Monitoring and Dynamic Reconfiguration for Intrusion Detection Systems Martin Rehak 1,2 , Eugen Staab 3 , Volker Fusenig 3 , Michal Pechoucek 1,2 , Martin Grill 1 , Jan Stiborek 1 , and Karel Bartos 1 ( 1 ) Czech Technical University in

419 views • 24 slides
A Mixture of Experts Approach for Runtime Mapping in Dynamic Environments Murali Emani School of

A Mixture of Experts Approach for Runtime Mapping in Dynamic Environments Murali Emani School of

A Mixture of Experts Approach for Runtime Mapping in Dynamic Environments Murali Emani School of Informatics University of Edinburgh Modern computing hardware Diverse Stochastjc Evolving 2 Parallelism Mapping Program Computatjon Steps

759 views • 51 slides
Streamlining GPU Applications On the Fly Thread Divergence Elimination through Runtime

Streamlining GPU Applications On the Fly Thread Divergence Elimination through Runtime

Streamlining GPU Applications On the Fly Thread Divergence Elimination through Runtime Thread-Data Remapping Eddy Z. Zhang , Yunlian Jiang, Ziyu Guo, Xipeng Shen Department of Computer Science, College of William and Mary eddy@cs cs.wm.

471 views • 33 slides
1. SNAP!: WARMUP ACTIVITY to elicit ideas on Open Data (13:45 to 14:00) Snap! is a

1. SNAP!: WARMUP ACTIVITY to elicit ideas on Open Data (13:45 to 14:00) Snap! is a

1. SNAP!: WARMUP ACTIVITY to elicit ideas on Open Data (13:45 to 14:00) Snap! is a quick game with three aims: - Energize participants: activate peoples brainpower (crucial for sessions after lunch) - Create a sense of shared

287 views • 4 slides
Using AOP for Detailed Runtime Monitoring Instrumentation Jonathan E Cook, joncook@nmsu.edu

Using AOP for Detailed Runtime Monitoring Instrumentation Jonathan E Cook, joncook@nmsu.edu

Using AOP for Detailed Runtime Monitoring Instrumentation Jonathan E Cook, joncook@nmsu.edu Amjad Nusayr, anusayr@cs.nmsu.edu The 2009 Workshop on Dynamic Analysis New Mexico State University Runtime Monitoring The act of observing an

590 views • 23 slides
The Relationship Between SNAP and Work Among Low- Income Households Implementing the SNAP Pilot

The Relationship Between SNAP and Work Among Low- Income Households Implementing the SNAP Pilot

The Relationship Between SNAP and Work Among Low- Income Households Implementing the SNAP Pilot Projects to Reduce Dependency and Increase Work Levels April 10, 2013 Center on Budget and Policy Priorities What we looked at and our methodology

152 views • 14 slides
What We Think About the Companys Value Has the world gone crazy? Lets Talk About Snap!

What We Think About the Companys Value Has the world gone crazy? Lets Talk About Snap!

Is Snap Overv rvalued? What We Think About the Companys Value Has the world gone crazy? Lets Talk About Snap! Snap (The company behind Snapchat) went public recently, and everyone wants to talk about it one question,

701 views • 14 slides
Harvesting Runtime Values in Android Applications That Feature Anti-Analysis Techniques

Harvesting Runtime Values in Android Applications That Feature Anti-Analysis Techniques

Harvesting Runtime Values in Android Applications That Feature Anti-Analysis Techniques Siegfried Rasthofer, Steven Arzt, Marc Miltenberger, Eric Bodden SECURE SOFTWARE ENGINEERING GROUP 2 This we would still hope for @Override

589 views • 20 slides
A Runtime Environment for Online Processing of Operating System Kernel Events Michael Schbel,

A Runtime Environment for Online Processing of Operating System Kernel Events Michael Schbel,

A Runtime Environment for Online Processing of Operating System Kernel Events Michael Schbel, Andreas Polze 7th Intl. Workshop on Dynamic Analysis (WODA) 20. July 2009 Chicago, IL OS Kernel Event Tracing 2 Dynamic Analysis Usage

889 views • 20 slides
Dynamic Web Applications Authoring, Deploying And Consuming Mixed-Namespace XML T. V. Raman IBM

Dynamic Web Applications Authoring, Deploying And Consuming Mixed-Namespace XML T. V. Raman IBM

Dynamic Web Applications Authoring, Deploying And Consuming Mixed-Namespace XML T. V. Raman IBM Research Dynamic Web Applications p. 1 Outline Characteristics of a Web application. Building on what we have. Whats left to solve.

487 views • 22 slides
PYTHON VS. JAVA: DYNAMIC VS. STATIC In Python, typing is determined dynamically, at runtime In

PYTHON VS. JAVA: DYNAMIC VS. STATIC In Python, typing is determined dynamically, at runtime In

PYTHON VS. JAVA: DYNAMIC VS. STATIC In Python, typing is determined dynamically, at runtime In Java, typing is determined statically, at compile-time: This means every variable must be rst declared with a particular type, and you're not

197 views • 6 slides
2012 NCSFPA SNAP Survey The Interaction Between CSFP and SNAP Benefits for Senior CSFP Box

2012 NCSFPA SNAP Survey The Interaction Between CSFP and SNAP Benefits for Senior CSFP Box

2012 NCSFPA SNAP Survey The Interaction Between CSFP and SNAP Benefits for Senior CSFP Box Recipients Nationwide Good Afternoon! Jennifer Wright Philabundance Government Relations and External Affairs AmeriCorps VISTA Philadelphia, PA (215)

242 views • 22 slides
CS 225 Data Structures Ma March 9 AV AVL Applications G G Carl Evans AV AVL Runtime

CS 225 Data Structures Ma March 9 AV AVL Applications G G Carl Evans AV AVL Runtime

CS 225 Data Structures Ma March 9 AV AVL Applications G G Carl Evans AV AVL Runtime Proof On Friday, we proved an upper-bound on the height of an AVL tree is 2 lg(n) or O( lg(n) ) : N(h) := Minimum # of nodes in an AVL tree of height

893 views • 33 slides
DYNAMIC STRUCTURE DISCOVERY AND REPAIR FOR 3D CELL ASSEMBLAGES GIORDANO FERREIRA 1 , MAX SMILEY

DYNAMIC STRUCTURE DISCOVERY AND REPAIR FOR 3D CELL ASSEMBLAGES GIORDANO FERREIRA 1 , MAX SMILEY

DYNAMIC STRUCTURE DISCOVERY AND REPAIR FOR 3D CELL ASSEMBLAGES GIORDANO FERREIRA 1 , MAX SMILEY 3 , MATTHIAS SCHEUTZ 1 , MIKE LEVIN 2 GIORDANO.FERREIRA@TUFTS.EDU 1 DEPARTMENT OF COMPUTER SCIENCE, TUFTS UNIVERSITY 2 DEPARTMENT OF BIOLOGY, TUFTS

499 views • 24 slides
Layout Dynamic layout Layout design pattern Layout strategies 2 Dynamic Layout Applications

Layout Dynamic layout Layout design pattern Layout strategies 2 Dynamic Layout Applications

Layout Dynamic layout Layout design pattern Layout strategies 2 Dynamic Layout Applications need to be able to adjust the presentation of our interfaces. We need to dynamically reposition and resize our content in response to: Change in

594 views • 26 slides

More recommend