on faults and faulty programs
play

On Faults and Faulty Programs Ali Jaoua, Marcelo Frias, Ali Mili - PowerPoint PPT Presentation

Jul 12, 2023 •350 likes •766 views

On Faults and Faulty Programs Ali Jaoua, Marcelo Frias, Ali Mili RAMICS 2014 Marienstatt im Westerwald, Apr/May 2014 Outline Whats Wrong with Faults Correctness and Relative Correctness Faults and Monotonic Fault Removal

  1. On Faults and Faulty Programs Ali Jaoua, Marcelo Frias, Ali Mili RAMICS 2014 Marienstatt im Westerwald, Apr/May 2014

  2. Outline • What’s Wrong with Faults • Correctness and Relative Correctness • Faults and Monotonic Fault Removal • Definite Faults • Beyond Nice Definitions: Applications • Conclusion 4/29/2014 2

  3. What’s Wrong with Faults 2004: Avizienis, Laprie, Randell, Landwehr • Terminology for dependability – Fault (attribute of a product that precludes its correct behavior). – Error (state of the program produced by sensitization of the fault). – Failure (violation of the system specification pursuant the sensitization of a fault). • Failure – Well defined property, with respect to a well defined specification 4/29/2014 3

  4. What’s Wrong with Faults Many issues with defining faults: • Characterization of a fault dependent on implicit design: – Has no official existence. – Is not documented/ validated/ vetted. – Gap between designer’s intent, tester’s understanding of the intent. – Contingent upon implicit assumptions about other parts of the product. 4/29/2014 4

  5. What’s Wrong with Faults The same failure may be blamed on many fault configurations: • Neither the location, • Nor the number, • Nor the nature of the fault is determined – Wrong operator, – Wrong operand, – Wrong condition, – Missing path. • What does it mean to remove the fault? – It certainly does not mean that now the program is correct, since it may still have other faults. – We are lucky if we did not make it worst. 4/29/2014 5

  6. What’s Wrong with Faults 𝒚, 𝒚 ′ 𝒚 ′ = 𝒚 𝟑 𝒏𝒑𝒆 𝟔}. Specification: 𝑺 = {read(x); x=x*2; x=x%5; write(x);} {read(x); x=x*2; x=x%5; write(x);} {read(x); x=x*2; x=((x/2)**2)%5; write(x);} {read(x); x=x*2; x=((x/2)**2); x=x%5; write(x);} {read(x); x=x*2; x=x*x; x=(x/4)%5; write(x);} 4/29/2014 6

  7. What’s Wrong with Faults This casts a shadow on such concepts as • Fault density, • Fault proneness, • Estimates of the number of faults. If the same failure can be remedied by changing one statement or two statements, • Does that count as one fault or two faults, If a missing path is remedied by adding a new path of 20 lines, • how many faults is that? 4/29/2014 7

  8. Outline • What’s Wrong with Faults • Correctness and Relative Correctness • Faults and Monotonic Fault Removal • Definite Faults • Beyond Nice Definitions: Applications • Conclusion 4/29/2014 8

  9. Correctness and Relative Correctness Program functions 4/29/2014 9

  10. Correctness and Relative Correctness Program functions Granularity determines precision of fault diagnosis. 4/29/2014 10

  11. Correctness and Relative Correctness Refinement, Correctness Program g is correct with respect to R iff G refines R. Program g is correct with respect to R iff 𝒆𝒑𝒏 𝑺 ∩ 𝑯 = 𝒆𝒑𝒏 𝑺 . 4/29/2014 11

  12. Correctness and Relative Correctness 4/29/2014 12

  13. Correctness and Relative Correctness Relative Correctness 4/29/2014 13

  14. Correctness and Relative Correctness Relative Correctness does not mean preserving correct behavior: 4/29/2014 14

  15. Correctness and Relative Correctness Relative Correctness and Reliability 4/29/2014 15

  16. Correctness and Relative Correctness A program may be more reliable w/o being more-correct. 𝑒𝑝𝑛(𝑆 ∩ 𝐻) 𝑒𝑝𝑛(𝑆 ∩ 𝐻′) 4/29/2014 16

  17. Correctness and Relative Correctness Quantifying Relative Correctness • ∀𝑯 ′ : 𝑺 ∩ 𝑯 𝑴  𝑺 ∩ 𝑯 ′ 𝑴. – • ∀𝑺: 𝑺 ∩ 𝑯 𝑴  𝑺 ∩ 𝑯 ′ 𝑴. – 4/29/2014 17

  18. Correctness and Relative Correctness Quantifying Relative Correctness • ∀𝑯 ′ : 𝑺 ∩ 𝑯 𝑴  𝑺 ∩ 𝑯 ′ 𝑴. – 𝑯 is correct with respect to 𝑺 . • ∀𝑺: 𝑺 ∩ 𝑯 𝑴  𝑺 ∩ 𝑯 ′ 𝑴. – 𝑯 refines 𝑯’ . 4/29/2014 18

  19. Outline • What’s Wrong with Faults • Correctness and Relative Correctness • Faults and Monotonic Fault Removal • Definite Faults • Beyond Nice Definitions: Applications • Conclusion 4/29/2014 19

  20. Faults and Monotonic Fault Removal Contingent fault : contingent upon the hypothesis that we are focusing the blame on Gi. We may have to broaden it to include any number of fault loci. 4/29/2014 20

  21. Faults and Monotonic Fault Removal To be a fault: Unary property. To be a monotonic fault removal: binary property (faulty statement and its replacement). 4/29/2014 21

  22. Faults and Monotonic Fault Removal In the same way that program construction proceeds, ideally, by stepwise refinement, 𝑺 𝟐 ≤ 𝑺 𝟑 ≤ 𝑺 𝟒 ≤ 𝑺 𝟓 ≤ … 𝒉. 𝑺 ≤ Program testing ought to proceed, ideally, by stepwise monotonic fault removal. 𝒉  𝒉 𝟐  𝒉 𝟑  𝒉 𝟒  𝒉 𝟓  … 𝒉. 4/29/2014 22

  23. Faults and Monotonic Fault Removal Illustration: 4/29/2014 23

  24. Faults and Monotonic Fault Removal Illustration: 4/29/2014 24

  25. Faults and Monotonic Fault Removal Does every fault removal have to be monotonic (produce a more-correct program?) • Yes. What about the transformation of g into g10? • We broaden the definition of fault to include more than one location (other reasons to do so, anyway) and we view the transition (g,g10,g11) as a single fault removal. 4/29/2014 25

  26. Outline • What’s Wrong with Faults • Correctness and Relative Correctness • Faults and Monotonic Fault Removal • Definite Faults • Beyond Nice Definitions: Applications • Conclusion 4/29/2014 26

  27. Definite Faults Not all faults are contingent. • Some faults are so damaging that no amount of mitigation can salvage them. • Examples: – Loss of injectivity in preprocessing. – Loss of surjectivity in postprocessing. 4/29/2014 27

  28. Definite Faults Loss of Injectivity. 4/29/2014 28

  29. Definite Faults Loss of Injectivity. Specification: • Sorting an array: – Preprocessing: destroy one cell. – Nothing that post-processing can do recover from the loss. 4/29/2014 29

  30. Definite Faults Loss of Surjectivity 4/29/2014 30

  31. Definite Faults Loss of Surjectivity • Specification: • Post processing: • No preprocessor can make up for this fault. 4/29/2014 31

  32. Outline • What’s Wrong with Faults • Correctness and Relative Correctness • Faults and Monotonic Fault Removal • Definite Faults • Beyond Nice Definitions: Applications • Conclusion 4/29/2014 32

  33. Beyond Nice Definitions: Applications We have lived happily for several decades without a definition of faults. • We can live happily everafter … • Why do we need a definition? Applications: • Streamline fault repair 4/29/2014 33

  34. Beyond Nice Definitions: Applications Mutation Testing for Fault Repair • Faults are within the range of mutation operators. • Fault bound to one location. • Realistic faults can be removed efficiently. • The structure of the program is not in question. • If a program passes the test, it is correct (fault removal confirmed). • If a program fails the test, it is incorrect (fault removal should be rolled back). 4/29/2014 34

  35. Beyond Nice Definitions: Applications All hypotheses highly questionable: • Faults are within the range of mutation operators. – Good luck. • Fault bound to one location. The structure of the program is not in question. – Limited scope. • Realistic faults can be removed efficiently. – Painful dilemmas: realistic faults vs efficient fault removal. • If a program passes the test, it is correct (fault removal confirmed). – May work on T but fail outside. • If a program fails the test, it is incorrect (fault removal should be rolled back). – Does not have to be correct; only more-correct than original; not the last fault. 4/29/2014 35

  36. Beyond Nice Definitions: Applications Specification 𝑺 , faulty program 𝒉 , candidate mutant 𝒉’ . • Is 𝒉’ a legitimate improvement over 𝒉 ? – Compare 𝒆𝒑𝒏(𝑺 ∩ 𝑯) and 𝒆𝒑𝒏 𝑺 ∩ 𝑯′ . • If modification buried inside a loop, it is difficult to compute 𝑯 and 𝑯’ . 4/29/2014 36

  37. Beyond Nice Definitions: Applications Possible approach: • Using invariant relations. • Invariant relation of while t {b}: – Reflexive transitive superset of (𝑼 ∩ 𝑪) • Can be used to prove – Correctness, – Incorrectness of while loop with respect to specification V. 4/29/2014 37

  38. Beyond Nice Definitions: Applications // input: specification V // output: correctness diagnosis; incompatible InvRel. cumulR=L; diagnosis=undecided; While (diagnosis=undecided && moreInvRel) {R = nextInvRel(); CumulR = CumulR  R. if subsume(CumulR, V) {diagnosis = correct;} else if incompatible(R, V) {diagnosis = incorrect; return R;} } // if (diagnosis=undecided) we ran out of invariant relations. 4/29/2014 38

  39. Beyond Nice Definitions: Applications Three outcomes • Diagnosis = correct: – No fault to remove. • Diagnosis = incorrect: – Invariant Relation culprit. Used to calculate monotonic correction (statements, variables, ). • Diagnosis = undecided: – Grow the database of Recognizers. 4/29/2014 39

Recommend

Ubiquitous faults T-79.4001 Seminar on Theoretical Computer Science Tero Pietilinen 4.4.2007

Ubiquitous faults T-79.4001 Seminar on Theoretical Computer Science Tero Pietilinen 4.4.2007

Nature of ubiquitous faults Communication Faults and Agreement Limits to Number of Ubiquitous Faults for Majority Unanimity in Spite of Ubiquitous Faults Ubiquitous faults T-79.4001 Seminar on Theoretical Computer Science Tero Pietilinen

685 views • 36 slides
W HAT A BOUT P AXOS ? Paxos tolerates a minority of processing failing by crashing . What

W HAT A BOUT P AXOS ? Paxos tolerates a minority of processing failing by crashing . What

B YZANTINE F AULT T OLERANCE Ellis Michael A H IERARCHY OF F AULT M ODELS No faults Crash faults Byzantine faults People who use tabs instead of spaces B YZANTINE F AULTS Also called "general" or "arbitrary" faults.

563 views • 31 slides
Facing Up to Faults Facing Up to Faults Facing Up to Faults (v.2.0.1) (v.2.0.1) (v.2.0.1)

Facing Up to Faults Facing Up to Faults Facing Up to Faults (v.2.0.1) (v.2.0.1) (v.2.0.1)

Facing Up to Faults Facing Up to Faults Facing Up to Faults (v.2.0.1) (v.2.0.1) (v.2.0.1) Brian Randell Brian Randell Brian Randell WADS-3, May 2004 1 The Menu The Menu The Menu On Dependability Concepts On Fault Assumptions

600 views • 20 slides
I m pact of I nterm ittent Faults on Nanocom puting Devices Cristian Constantinescu June 28th,

I m pact of I nterm ittent Faults on Nanocom puting Devices Cristian Constantinescu June 28th,

I m pact of I nterm ittent Faults on Nanocom puting Devices Cristian Constantinescu June 28th, 2007 Dependable Systems and Networks Outline Fault classes Permanent faults Transient faults Intermittent faults Field

709 views • 24 slides
DEBRA Members Weekend 2017 EB therapy research in Dundee: an update Knocking out the faulty

DEBRA Members Weekend 2017 EB therapy research in Dundee: an update Knocking out the faulty

DEBRA Members Weekend 2017 EB therapy research in Dundee: an update Knocking out the faulty gene & Skipping the faulty exon Peter van den Akker Premium sponsors: EB therapy research in Dundee: an update Knocking out the faulty gene

794 views • 43 slides
INTERACTING FAULTS By Tyler Lagasse Faults typically form as a network How do we best

INTERACTING FAULTS By Tyler Lagasse Faults typically form as a network How do we best

INTERACTING FAULTS By Tyler Lagasse Faults typically form as a network How do we best interpret interacting faults and tell between different types of fault interaction? INTRODUCTION HOW DOES A FAULT NETWORK FORM? Forms within single

549 views • 21 slides
Fault Diagnosis of Discrete-Event Systems Alejandro White, Doctoral Candidate Advisor: Dr.

Fault Diagnosis of Discrete-Event Systems Alejandro White, Doctoral Candidate Advisor: Dr.

Fault Diagnosis of Discrete-Event Systems Alejandro White, Doctoral Candidate Advisor: Dr. Karimoddini Motivation Faults are always u Faults are unwanted u Faults are arbitrary u Faults are costly u Faults are DEADLY u Our motivation

495 views • 24 slides
Optimal Learning of Joint Alignments with a Faulty Oracle Charalampos E. Tsourakakis

Optimal Learning of Joint Alignments with a Faulty Oracle Charalampos E. Tsourakakis

Optimal Learning of Joint Alignments with a Faulty Oracle Charalampos E. Tsourakakis ctsourak@bu.edu Boston University ISIT 2020 Optimal Learning of Joint Alignments with a Faulty Oracle 1 / 35 Joint work with: Kasper Green Larsen Michael

938 views • 35 slides
. Bruno Durand LIRMM CNRS Universit de Montpellier II November26 th 2011 . . . 1.

. Bruno Durand LIRMM CNRS Universit de Montpellier II November26 th 2011 . . . 1.

Faulty Universality . Bruno Durand LIRMM CNRS Universit de Montpellier II November26 th 2011 . . . 1. introduction . . . One can compute in a faulty medium One can compute in a faulty medium . An informal statement derived

793 views • 23 slides
Does tes'ng help to reduce the number of poten'ally faulty

Does tes'ng help to reduce the number of poten'ally faulty

Does tes'ng help to reduce the number of poten'ally faulty statements in debugging? Mihai Nica, Simona Nica, and Franz Wotawa Technische Universitt

639 views • 26 slides
Guillaume VINET 19th May 2019 1 stress WBC-based solutions, challenging practical realisation,

Guillaume VINET 19th May 2019 1 stress WBC-based solutions, challenging practical realisation,

Guillaume VINET 19th May 2019 1 stress WBC-based solutions, challenging practical realisation, to exploitable faulty computations, include: and able to affect large range of instructions multiple faults Binary analysis: dynamic fault

920 views • 71 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (10/16/06) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (10/16/06) I E S R C E O V

VLSI Design Verification and Test Faults I CMPE 646 Defects, Errors and Faults Models bridge the gap between physical reality and a mathematical abstraction and allow for development of analytical tools. Definitions: Defect : An untended

253 views • 21 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (10/3/07) I E S R C E O V U

UMBC A B M A L T F O U M B C I M Y O R T 1 (10/3/07) I E S R C E O V U

VLSI Design Verification and Test Faults I CMPE 646 Defects, Errors and Faults Models bridge the gap between physical reality and a mathematical abstraction and allow for development of analytical tools. Definitions: Defect : An untended

249 views • 21 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (12/13/06) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (12/13/06) I E S R C E O V

VLSI Design Verification and Test Delay Faults I CMPE 646 Delay Faults Delays along every path from PI to PO or between internal latches must be less than the operational system clock interval. We have already discussed a number of defects that

595 views • 20 slides
Random Variables # faulty pixels in monitor Independence # alpha particles in a second

Random Variables # faulty pixels in monitor Independence # alpha particles in a second

Random Variables Mathematics for Computer Science MIT 6.042J/18.062J Informally: an RV is a number produced by a random process: # hours to next system crash Random Variables # faulty pixels in monitor Independence # alpha

215 views • 5 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (10/11/06) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (10/11/06) I E S R C E O V

VLSI Design Verification and Test Faults II CMPE 646 Stuck-open and Stuck-on Faults Transistor level circuit representation is needed to understand how MOS cir- cuits can fail. Here, we can model the MOS transistor as an ideal switch. Defects

299 views • 14 slides
Detection of faulty Beam Position Monitors E. Fol, R. Tomas Garcia Machine Learning Applications

Detection of faulty Beam Position Monitors E. Fol, R. Tomas Garcia Machine Learning Applications

Detection of faulty Beam Position Monitors E. Fol, R. Tomas Garcia Machine Learning Applications for Particle Accelerators, Feb. 28 March 2, 2018, SLAC National Accelerator Laboratory Content Introduction to optics measurements at LHC 1.

445 views • 21 slides
Pointing in the Right Direction Securing Memory Accesses in a Faulty World Robert Schilling

Pointing in the Right Direction Securing Memory Accesses in a Faulty World Robert Schilling

www.iaik.tugraz.at S C I E N C E P A S S I O N T E C H N O L O G Y Pointing in the Right Direction Securing Memory Accesses in a Faulty World Robert Schilling 1,2 , Mario Werner 1 , Pascal

909 views • 31 slides
Design of Energy-Efficient LDPC Codes and Decoders Elsa Dupraz 16/04/2019 Section 1:

Design of Energy-Efficient LDPC Codes and Decoders Elsa Dupraz 16/04/2019 Section 1:

Design of Energy-Efficient LDPC Codes and Decoders Elsa Dupraz 16/04/2019 Section 1: Introduction 2 OUTLINE Introduction LDPC codes and decoders Perf. analysis of faulty decoders Effect of faults in the decoders Conclusion 1.

1.09k views • 51 slides
Intent Semantics in the ABI Sergey Bratus, Julian Bangert Outline From faulty classic

Intent Semantics in the ABI Sergey Bratus, Julian Bangert Outline From faulty classic

Intent Semantics in the ABI Sergey Bratus, Julian Bangert Outline From faulty classic policies to a new sweet spot ABI-level objects and security policy ABI-level policy examples Why this works on x86 Future directions

499 views • 26 slides
Utilize Partially Faulty Links in Networks-on-Chip Changlin Chen*, Ye Lu , Sorin D. Cotofana*

Utilize Partially Faulty Links in Networks-on-Chip Changlin Chen*, Ye Lu , Sorin D. Cotofana*

A Novel Flit Serialization Strategy to Utilize Partially Faulty Links in Networks-on-Chip Changlin Chen*, Ye Lu , Sorin D. Cotofana* ECIT, QUB *Computer engineering, TU Delft {c.chen-2, S.D.Cotofana}@tudelft.nl ylu10@qub.ac.uk NOCS 2012

468 views • 20 slides
Differential Analysis of Round-Reduced AES Faulty Ciphertexts Amir-Pasha Mirbaha Jean-Max

Differential Analysis of Round-Reduced AES Faulty Ciphertexts Amir-Pasha Mirbaha Jean-Max

DFT 2013 Differential Analysis of Round-Reduced AES Faulty Ciphertexts Amir-Pasha Mirbaha Jean-Max Dutertre Assia Tria Outline Introduction State-of-the-art of the Round Reduction Analysis Theory of our attacks and the realizations

591 views • 14 slides
Flow Modelling Across Faults SPE YP Technical Showcase Event 28 May 2013 Wahab Ahmed Agenda

Flow Modelling Across Faults SPE YP Technical Showcase Event 28 May 2013 Wahab Ahmed Agenda

Flow Modelling Across Faults SPE YP Technical Showcase Event 28 May 2013 Wahab Ahmed Agenda Faults-Introduction Fault Pattern Fault Zone Properties Fault Permeability, Fault Thickness Fault Transmissibility Multiplier

614 views • 28 slides
A Semi-Automatic Methodology for Repairing Faulty Web Sites M. Alpuente 1 , D. Ballis 2 , M.

A Semi-Automatic Methodology for Repairing Faulty Web Sites M. Alpuente 1 , D. Ballis 2 , M.

A Semi-Automatic Methodology for Repairing Faulty Web Sites M. Alpuente 1 , D. Ballis 2 , M. Falaschi 3 and J. Garca-Viv 1 1 DSIC, Universidad Politcnica de Valencia, Camino de Vera s/n, Apdo. 22012, 1 DSIC, Universidad Politcnica de

814 views • 38 slides

More recommend