a case for static analyzers in the cloud
play

A Case for Static Analyzers in the Cloud Mehdi Bouaziz Ecole - PowerPoint PPT Presentation

Feb 28, 2024 •382 likes •646 views

A Case for Static Analyzers in the Cloud Mehdi Bouaziz Ecole normale sup erieure, Paris, France joint work with Michael Barnett, Manuel F ahndrich, and Francesco Logozzo Microsoft Research, Redmond, WA, USA Eighth Workshop on

  1. A Case for Static Analyzers in the Cloud Mehdi Bouaziz ´ Ecole normale sup´ erieure, Paris, France joint work with Michael Barnett, Manuel F¨ ahndrich, and Francesco Logozzo Microsoft Research, Redmond, WA, USA Eighth Workshop on Bytecode Semantics, Verification, Analysis, and Transformation March 23, 2013 – Rome, Italy

  2. This talk Why and how to bring a static analyzer to the cloud? Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 2/15 A Case for Static Analyzers in the Cloud

  3. This talk Why and how to bring a static analyzer to the cloud? Outline: ◮ Static analyzers today ◮ Why bringing them to the cloud ◮ Architecture of a cloud-based static analyzer ◮ Bonuses, issues Examplified with our ongoing work on moving Clousot, the .Net Code Contracts static checker, to the cloud. Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 2/15 A Case for Static Analyzers in the Cloud

  4. Code Contracts Contracts (preconditions, postconditions, object invariants) for .Net languages. Class PositiveArray { int[] arr; void ObjectInvariant() { Contract.Invariant(this.arr != null); Contract.Invariant(Contract.ForAll(this.arr, x => x > 0)); } int Max() { Contract.Requires(this.arr.Length > 0); Contract.Ensures(Contract.ForAll(this.arr, x => x <= Contract.Result<int>())); Contract.Ensures(Contract.Exists(this.arr, x => x == Contract.Result<int>())); ... } } ◮ Contracts can be dynamically checked at runtime ◮ or statically checked, with Clousot Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 3/15 A Case for Static Analyzers in the Cloud

  5. Clousot today Abstract interpretation-based static checker for Code Contracts. .Net assembly warnings Clousot bug fixes (bytecode) inferred contracts Clousot runs on a single core of the developer machine. The bottom-up analysis of methods is sequential. Analyses start from scratch each time, but analyses are expensive. Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 4/15 A Case for Static Analyzers in the Cloud

  6. How to share results between developers? Use a common database to share analysis results. .Net assembly warnings Clousot bug fixes (bytecode) inferred contracts Shared Database Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 5/15 A Case for Static Analyzers in the Cloud

  7. .Net assembly Clousot warnings bug fixes Client (bytecode) inferred contracts Clousot Database Server Analyses are still expensive Use more CPUs and more memory! Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 6/15 A Case for Static Analyzers in the Cloud

  8. Analyses are still expensive Use more CPUs and more memory, i.e., use a centralized server. .Net assembly Clousot warnings bug fixes Client (bytecode) inferred contracts Clousot Database Server Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 6/15 A Case for Static Analyzers in the Cloud

  9. .Net assembly Clousot warnings bug fixes Client (bytecode) inferred contracts Clousot in the Cloud A centralized server, does it scale up? Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 7/15 A Case for Static Analyzers in the Cloud

  10. .Net assembly Clousot warnings bug fixes Client (bytecode) inferred contracts Clousot in the Cloud A centralized server, does it scale up? ◮ No elasticity in resource allocation ◮ Hardware/software maintenance issues Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 7/15 A Case for Static Analyzers in the Cloud

  11. A centralized server, does it scale up? ◮ No elasticity in resource allocation ◮ Hardware/software maintenance issues Use the cloud! .Net assembly Clousot warnings bug fixes Client (bytecode) inferred contracts Clousot in the Cloud Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 7/15 A Case for Static Analyzers in the Cloud

  12. Static analyzer as a Cloud service ◮ Same as a centralized server but on a Cloud infrastructure ◮ Remote maintenance: one version for everybody ◮ Clients do not need to update the tool ◮ Faster deployment of bug fixes ◮ Results shared by everybody using the tool Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 8/15 A Case for Static Analyzers in the Cloud

  13. Static analyzer as a Cloud service ◮ Same as a centralized server but on a Cloud infrastructure ◮ Remote maintenance: one version for everybody ◮ Clients do not need to update the tool ◮ Faster deployment of bug fixes ◮ Results shared by everybody using the tool ◮ Faster, more precise analyses ◮ Data collections on the usage of the tool enable: ◮ Better understanding of how the tool is used ◮ Identify the weaknesses, refine or design new domains ◮ Reduction of false alarms ◮ Semantics-guided warning suppression ◮ Version-based metrics Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 8/15 A Case for Static Analyzers in the Cloud

  14. The client part ◮ very small (call the service, show the results) ◮ used anywhere: smartphone, tablet [TouchDevelop] Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 9/15 A Case for Static Analyzers in the Cloud

  15. The client part ◮ very small (call the service, show the results) ◮ used anywhere: smartphone, tablet [TouchDevelop] ◮ can issue parallel analyses on the same program, faster less precise results will come first, more precise ones later Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 9/15 A Case for Static Analyzers in the Cloud

  16. The client part ◮ very small (call the service, show the results) ◮ used anywhere: smartphone, tablet [TouchDevelop] ◮ can issue parallel analyses on the same program, faster less precise results will come first, more precise ones later Or a hybrid client: ◮ analyze “visible” code the developer machine for fast results ◮ analyze the rest on the Cloud and load results as the developer scrolls Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 9/15 A Case for Static Analyzers in the Cloud

  17. What is in the cloud? Dispatcher Scheduler Slicer Queue Unit analyzer Database Unit analyzer Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 10/15 A Case for Static Analyzers in the Cloud

  18. Parallelization ◮ Past experience: no gain in performance when parallelizing the analysis of a single method. Too much time lost in synchronization, . . . ◮ Atomic computation: analysis of a method Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 11/15 A Case for Static Analyzers in the Cloud

  19. Slicing ◮ Past experience: no gain in performance when parallelizing the analysis of a single method. Too much time lost in synchronization, . . . ◮ Atomic computation: analysis of a method ◮ Goal: do not ship a big dll file to analyze just a part of it ◮ Given a .Net assembly and a set of methods M, generate a minimal analyzable unit (MAU) containing: ◮ the methods M ◮ fake versions of types/methods/properties/fields visible from M ◮ their contracts, object invariants, contract classes ◮ debugging information (pdb file) Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 11/15 A Case for Static Analyzers in the Cloud

  20. Going further ◮ Goal: compute a global fixpoint over the analyses of all the methods ◮ Methods are not ordered anymore ◮ Method analyses are chaotic and asynchronous ◮ Asynchronous iterations [Cousot 77] converge to the greatest fixpoint with no synchronization! Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 12/15 A Case for Static Analyzers in the Cloud

  21. Going further ◮ Goal: compute a global fixpoint over the analyses of all the methods ◮ Methods are not ordered anymore ◮ Method analyses are chaotic and asynchronous ◮ Asynchronous iterations [Cousot 77] converge to the greatest fixpoint with no synchronization! ◮ In the case of monotone operators, only! ◮ We do not have monotonicity ◮ widenings, absence of best abstraction ◮ Problem can be remediated by forcing monotonicity Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 12/15 A Case for Static Analyzers in the Cloud

  22. Summary: from desktop to the cloud ◮ make it parallelizable on a single machine (get rid of static variables, etc.) ◮ make it a service, even if the interface is very simple, i.e., an everlasting process waiting for queries ◮ optionally, use a centralized database for results and caching ◮ build the cloud service machinery: service workers, waiting queues, job schedulers ◮ find an axis of parallelization, with a medium granularity, e.g., some kind of slicing, or independent analyses ◮ depending on the analysis, global iterations may be needed to compute fixpoints Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 13/15 A Case for Static Analyzers in the Cloud

  23. Issues? ◮ Trust Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 14/15 A Case for Static Analyzers in the Cloud

  24. Issues? ◮ Trust Not so important since we analyze bytecode Michael Barnett, Mehdi Bouaziz, Manuel F¨ ahndrich, Francesco Logozzo 14/15 A Case for Static Analyzers in the Cloud

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Program Code Analyzers Agenda The Problem Dynamic and Static Tools Examples of

Program Code Analyzers Agenda The Problem Dynamic and Static Tools Examples of

Generic Programming and Library Development The Problems Presentation on Program Code Analyzers Dynamic and Static Tools May 18 th 2007 Examples of Tools Program Code Analyzers Agenda The Problem Dynamic and Static Tools

388 views • 13 slides
In Increasing Soundness and Precision of Static Analyzers Anders Mller Aarhus University

In Increasing Soundness and Precision of Static Analyzers Anders Mller Aarhus University

Systematic Approaches for In Increasing Soundness and Precision of Static Analyzers Anders Mller Aarhus University Joint work with Esben Sparre Andreasen and Benjamin Barslev Nielsen C ENTER FOR A DVANCED S OFTWARE A NALYSIS

530 views • 17 slides
CS7038 - Malware Analysis - Wk05.1 Static Analyzers Coleman Kane kaneca@mail.uc.edu February 7,

CS7038 - Malware Analysis - Wk05.1 Static Analyzers Coleman Kane kaneca@mail.uc.edu February 7,

CS7038 - Malware Analysis - Wk05.1 Static Analyzers Coleman Kane kaneca@mail.uc.edu February 7, 2017 Signature-based Anti-Virus Systems By far, the most popular weapon against cyber attacks is signature-based antivirus software. When

709 views • 12 slides
Learning a Static Analyzer from Data by Pavol Bielik, Veselin Raychev, and Martin Vechev Daniel

Learning a Static Analyzer from Data by Pavol Bielik, Veselin Raychev, and Martin Vechev Daniel

Learning a Static Analyzer from Data by Pavol Bielik, Veselin Raychev, and Martin Vechev Daniel Perez The University of Tokyo January 29, 2018 Static analyzers Writing a static analyzer is hard JavaScript points-to sample global.length = 4;

299 views • 15 slides
New UPM analyzers &amp; smart kits Power analyzers for energy control in industrial environment

New UPM analyzers &amp; smart kits Power analyzers for energy control in industrial environment

New UPM analyzers &amp; smart kits Power analyzers for energy control in industrial environment for CTs (UPM209 UPM309) for DIRECT connection up to 80A (UPM209) for ROGOWSKI coils (UPM209RGW UPM309RGW) 1 NEW UPM ANALYZERS UPM209 UPM309

260 views • 10 slides
Ne*lix Case Study 2

Ne*lix Case Study 2

Cloud Computing ECPE 276 Ne*lix Case Study 2 h6ps://media.ne*lix.com/en/company-blog/compleBng-the-ne*lix-cloud-migraBon Cloud Compu2ng Spring

217 views • 17 slides
Migrating from Grid to Cloud: Migrating from Grid to Cloud: Migrating from Grid to Cloud:

Migrating from Grid to Cloud: Migrating from Grid to Cloud: Migrating from Grid to Cloud:

Migrating from Grid to Cloud: Migrating from Grid to Cloud: Migrating from Grid to Cloud: Migrating from Grid to Cloud: Case Study from GEO Grid Case Study from GEO Grid Kyoung-Sook Kim Data Science Research Group Information Technology

541 views • 18 slides
Cloud to the edge Just-Right Consistency Static analysis for minimal synchronisation Marc

Cloud to the edge Just-Right Consistency Static analysis for minimal synchronisation Marc

Cloud to the edge Just-Right Consistency Static analysis for minimal synchronisation Marc Shapiro Inria &amp; Sorbonne-Universits UPMC-LIP6 Social, web, e-commerce: shared mutable data Scalability replication consistency issues

223 views • 11 slides
Optimizing Cloud Use Case of Complete . . . under Resulting Formula for . . . Optimization:

Optimizing Cloud Use Case of Complete . . . under Resulting Formula for . . . Optimization:

Cloud Computing: . . . Financial Aspect of . . . Resulting Questions Why This Is Important . . . Optimizing Cloud Use Case of Complete . . . under Resulting Formula for . . . Optimization: General . . . Interval Uncertainty Case of

537 views • 14 slides
August 17, 2013 Cloud Manufacturing workshop @ IEEE CASE Focus How is

August 17, 2013 Cloud Manufacturing workshop @ IEEE CASE Focus How is

Progress in Algorithmic Motion Planning Related to Cloud Robotics, Automation and Manufacturing Kostas Bekris Department of Computer Science Rutgers University August 17, 2013 Cloud Manufacturing workshop @ IEEE CASE

266 views • 25 slides
smartAdvisor Jan Neerbek Alexandra Institute Agenda d60: A cloud/data mining case Cloud

smartAdvisor Jan Neerbek Alexandra Institute Agenda d60: A cloud/data mining case Cloud

Case study: d60 Raptor smartAdvisor Jan Neerbek Alexandra Institute Agenda d60: A cloud/data mining case Cloud Data Mining Market Basket Analysis Large data sets Our solution 2 Alexandra Institute The Alexandra Institute is

572 views • 42 slides
Static and Method Overloading static One per class, not per object static variables

Static and Method Overloading static One per class, not per object static variables

Static and Method Overloading static One per class, not per object static variables all instances of the class share the same static variable example: serial/VIN number for Car static methods invoked through class

324 views • 7 slides
1 Static Equilibrium From Static Eq. to Dynamic Eq. System of mass points Static

1 Static Equilibrium From Static Eq. to Dynamic Eq. System of mass points Static

Static/ Dynamic Deformation I ntroduction to Static deformation Dynamic deformation Static/ Dynamic Deformation with Mass-Spring Systems undeformed shape f internal + = f inertia = 0 f external Min Gyu Choi deformed

426 views • 4 slides
Cloud Spot Markets are Not Sustainable: The Case for Transient Guarantees Supreeth Subramanya,

Cloud Spot Markets are Not Sustainable: The Case for Transient Guarantees Supreeth Subramanya,

Cloud Spot Markets are Not Sustainable: The Case for Transient Guarantees Supreeth Subramanya, Amr Rizk, David Irwin g n i l Idle Cloud Capacity l e S Shared warehouse scale has its limitations machines tend to have 10-50% utilization

329 views • 15 slides
Static Analysis of Embedded Systems Xavier R IVAL rival@di.ens.fr Outline Case study

Static Analysis of Embedded Systems Xavier R IVAL rival@di.ens.fr Outline Case study

Static Analysis of Embedded Systems Xavier R IVAL rival@di.ens.fr Outline Case study Certification of embedded softwares Demo Static Analysisof Embedded Systems p.2/12 Ariane 5 Flight 501 Ariane 5: sattelite launcher

825 views • 12 slides
MS Mass Analyzers Mass analyzers are analogous to optical monochromator Two main

MS Mass Analyzers Mass analyzers are analogous to optical monochromator Two main

CEE 772 Lecture #27 12/10/2014 Updated: 10 December 2014 Print version CEE 772: Instrumental Methods in Environmental Analysis Lecture #21 Mass Spectrometry: Mass Filters &amp; Spectrometers (Skoog, Chapt. 20, pp.511 524 ) (Harris, Chapt.

522 views • 20 slides
Towards Unbounded Heap Support for Predicate Analysis Using SMT Arrays Stephan Lukasczyk

Towards Unbounded Heap Support for Predicate Analysis Using SMT Arrays Stephan Lukasczyk

Towards Unbounded Heap Support for Predicate Analysis Using SMT Arrays Stephan Lukasczyk 20160923 University of Passau, 94032 Passau, Germany Motivation (or (= mallocOffset4 array[p]) (= (*signed_int@2 mallocOffset4) (*signed_int@1

357 views • 18 slides
Data structures Exercise session Week 1 I. Introduction Two kinds of types in Java

Data structures Exercise session Week 1 I. Introduction Two kinds of types in Java

Data structures Exercise session Week 1 I. Introduction Two kinds of types in Java Primitive types int, char, boolean, fmoat, double, etc. Object types Integer, Character, String, etc. Java generics Before generics you had to

739 views • 20 slides
Josh Bloch Charlie Garrod 17-214 1 Administrivia Homework 6 available Due last night

Josh Bloch Charlie Garrod 17-214 1 Administrivia Homework 6 available Due last night

Principles of Software Construction: Objects, Design, and Concurrency Part 4: et cetera A puzzling finale: What you see is what you get? Josh Bloch Charlie Garrod 17-214 1 Administrivia Homework 6 available Due last night Final

974 views • 61 slides
Lists, Stacks and Queues The List ADT List ADT n A list is a dynamic ordered tuple of

Lists, Stacks and Queues The List ADT List ADT n A list is a dynamic ordered tuple of

Lists, Stacks and Queues The List ADT List ADT n A list is a dynamic ordered tuple of homogeneous elements A o , A 1 , A 2 , , A N-1 where A i is the i-th element of the list n The position of element A i is i; positions range from 0

437 views • 31 slides
Arrows and Reagents KC Sivaramakrishnan Advanced Functional Programming March 3rd, 2016

Arrows and Reagents KC Sivaramakrishnan Advanced Functional Programming March 3rd, 2016

Arrows and Reagents KC Sivaramakrishnan Advanced Functional Programming March 3rd, 2016 Slides were borrowed and modified from Aaron Turons PLDI 2012 talk: http://www.mpi-sws.org/~turon/pldi-2012-reagents.pdf Arrows module type Arrow

822 views • 78 slides
Stefan Heule, Manu Sridharan, Satish Chandra Stanford University, Samsung Research America

Stefan Heule, Manu Sridharan, Satish Chandra Stanford University, Samsung Research America

Stefan Heule, Manu Sridharan, Satish Chandra Stanford University, Samsung Research America September 4, 2015; FSE; Bergamo, Italy 1 Opaque code Code is executable Source not available, or hard to process Challenge: Program

459 views • 27 slides
Priority Queues Given x and y , is x less than, equal to, or greater than y Meaning of the

Priority Queues Given x and y , is x less than, equal to, or greater than y Meaning of the

1/31/2016 A new ADT: Priority Queue A priority queue holds compare-able data (totally ordered) Like dictionaries with ordered keys, we need to compare CSE373: Data Structures and Algorithms items Priority Queues Given x and y , is x

575 views • 8 slides
Arrays 1 An array is a collection of values of the same type stored consecutively in memory.

Arrays 1 An array is a collection of values of the same type stored consecutively in memory.

Arrays 1 An array is a collection of values of the same type stored consecutively in memory. int arr[] = new int[5]; This declaration has 2 parts: the stuff on the right of the assignment the stuff on the left Lets start with the

604 views • 11 slides

More recommend