deltapath precise and scalable calling context encoding
play

DELTAPATH: PRECISE AND SCALABLE CALLING CONTEXT ENCODING Qiang - PowerPoint PPT Presentation

Mar 28, 2023 •106 likes •317 views

DELTAPATH: PRECISE AND SCALABLE CALLING CONTEXT ENCODING Qiang Zeng*, Junghwan Rhee , Hui Zhang, Nipun Arora, Guofei Jiang, Peng Liu* NEC Laboratories America *Penn State University www.nec-labs.com Calling Context Calling Context is a

  1. DELTAPATH: PRECISE AND SCALABLE CALLING CONTEXT ENCODING Qiang Zeng*, Junghwan Rhee , Hui Zhang, Nipun Arora, Guofei Jiang, Peng Liu* NEC Laboratories America *Penn State University www.nec-labs.com

  2. Calling Context • Calling Context is a sequence of active function/method invocations that lead to a program location (i.e., call stack status). • Wide range of applications • Debugging, event logging, error reporting, testing, anomaly detection, performance optimization, profiling, security. DeltaPath: Precise and Scalable Calling Context Encoding 2

  3. How to Collect Calling Contexts? • Stack Walking • Probabilistic Calling Context [OOPSLA’07] • Precise Calling Context Encoding [ICSE’10] DeltaPath: Precise and Scalable Calling Context Encoding 3

  4. Stack Walking • Walk stack and collect context • Stack walking collects a set of return addresses from the stack. • Commonly used in debuggers (e.g., gdb) and error reporting 1 A() { 2 B(); Stack Call Context 3 } Scan 4 B() { D at 12 <- 5 C(); C C at 9 <- 6 D(); B B at 5 <- 7 } A at 2 8 C() { A 9 D(); 10 } 11 D() { Advantage: simple 12 // Context? Disadvantage: performance overhead 13 } DeltaPath: Precise and Scalable Calling Context Encoding 4

  5. Probabilistic Calling Context [OOPSLA ‘07] • Compute probabilistic calling context at runtime f (V, cs) := 3 X V + cs 1 A() { V = 0 2 B(); ( cs1 ) 3 } 4 B() { V = 3 X V + cs1 5 C(); ( cs2 ) 6 D(); 7 } 8 C() { V = 3 X V + cs2 9 D(); ( cs3 ) 10 } 11 D() { V = 3 X V + cs3 12 // Context? 13 } Advantage: simple & fast encoding scheme Disadvantage: decoding is not guaranteed. DeltaPath: Precise and Scalable Calling Context Encoding 5

  6. Precise Calling Context Encoding [ICSE’10] • Use unique numbering to represent a path in a CFG 1 A() { ID = 0 ID = 0 2 B(); (cs1) A 3 } 4 B() { 5 C(); (cs2) B ID += 1 6 D(); ID -= 1 7 } ID += 1 C 8 C() { 9 D(); (cs3) D 10 } 11 D() { ID = 0 ID = 1 12 // Context? ID ? 13 } Advantage: Precise call context encoding and decoding DeltaPath: Precise and Scalable Calling Context Encoding 6

  7. Precise Calling Context Encoding class Shape { void draw() {}; } class Rectangle extends Shape { Dynamic dispatch void draw() {} a call site can call either } Rectangle.draw() or class Triangle extends Shape { Triangle.draw() void draw() {} } ID = p class D { D.main static void main() { ID += k ID += k Shape a; if (input) a = new Rectangle() Rectangle Triangle. ID+=k else a = new Triangle(); .draw draw a.draw(); ID-=k ID = p+k ID = p+k } } Disadvantage 1: dynamic dispatch in object-oriented programs DeltaPath: Precise and Scalable Calling Context Encoding 7

  8. Precise Calling Context Encoding • PCCE maps each unique context into an integer. • The integer space is insufficient for large programs. • Object oriented programs tend to have many small functions leading to a large context space. Calling context in the integer space Calling context outside the integer space Disadvantage 2: PCCE addresses this problem using profiling and identifying hot and cold edges. DeltaPath: Precise and Scalable Calling Context Encoding 8

  9. DeltaPath Features • New precise and scalable calling context encoding algorithm for both procedural and object oriented programs • Overcome dynamic dispatch • Address encoding space pressure systematically • Practical Issues • Dynamic class loading is handled. • Flexible encoding scope DeltaPath: Precise and Scalable Calling Context Encoding 9

  10. Technique – Inflated Calling Context • Basic properties of Precise Calling Context Encoding • Ensure the invariant that for a given node, its encoding space is divided into disjoint sub-ranges for unique numbering. • AV : addition value, CC : calling context count 3 2 5 CC[P2] CC[P1] CC[Pm] Invariants: P1 P2 Pm AV[Pi] = CC[Pi-1]+AV[Pi-1] for i = 2, …, m + + CC[n] >= CC[Pm] + AV[Pm] AV[P2] = AV[Pm] = AV[P1] = CC[P1]+AV[P1] CC[Pm-1]+AV[Pm-1] 0 n Encoding ID space Context 0 1 2 3 4 5 6 7 8 9 AV AV AV is partitioned using Encoding ID [P1] [P2] [Pm] AV and CC CC[P1] CC[P2] CC[Pm] DeltaPath: Precise and Scalable Calling Context Encoding 10

  11. Technique – Inflated Calling Context • Idea: Inflated Calling Context • While PCCE processes the nodes one by one, DeltaPath needs to take into account the current addition value for another node so that all nodes involved in dynamic dispatch can agree on the common addition value. This is achieved by the inflation of calling context . 2. A = Max ( 1. AV for a call AV[Rectangle.draw()], from D.main to AV[Triangle.draw()]) Rectangle.draw D.main() Virtual function +A call site +A 2 3 3 2 Rectangle.draw() Triangle.draw() 3. AV[Rectangle.draw()] and AV[Triangle.draw()] are inflated as CC[D.main()] + A. DeltaPath: Precise and Scalable Calling Context Encoding 11

  12. Technique – Resolving Context Explosion • Encoding for large-scale object-oriented programs • Systematically divides the CFG into territories whose contexts fit the limit of integer space. • On the detection of overflow, the node is added into the set of anchor nodes and static analysis is restarted (iterative approach). • At runtime an anchor flushes current context onto stack and the context variable is reset. Context integer space 1 Context integer Anchor: space 2 (root of a territory) Context integer Context integer space 3 space 4 Challenges: Overlapped territories and cross-territory calls . DeltaPath: Precise and Scalable Calling Context Encoding 12

  13. Technique – Resolving Context Explosion • Multiplexing the contexts of multiple territories • The common addition value is used for all multiplexed territories. Thus the context variable should afford the context of all multiplexed territories. • Use two dimensional states in the algorithm to track contexts from multiple overlapped territories. • Use inflation to meet the invariants for multiple territories simultaneously. ICC[ node ][ anchor ] Anchor nodes CAV[ node ][ anchor ] D C = inflated calling A = Max ( context count and +A CAV[E][ D ], addition value E F CAV[F][ D ], at the node relative to CAV[F][ C ]) the anchor G DeltaPath: Precise and Scalable Calling Context Encoding 13

  14. Practical Issues • Dynamic Class Loading • Java loads and combines code at runtime. Such code cannot be pre- A Expect C analyzed causing unexpected call paths (UCPs) . D B • Solution: Calling Context Tracking • We adopted control flow integrity (CFI) G technique to detect UCPs. • For each call site, finds out the C E dispatch target nodes. Merge the sets that contain any overlap and assign Expect C Expect C unique set identifiers (SID). ≠ = • Expected SIDs are stored at callers C executes E executes and checked at callees. DeltaPath: Precise and Scalable Calling Context Encoding 14

  15. Practical Issues Application code • Do we need to track all code? fully covered • Java has large library code base which may be little of interest for debugging etc. • PCC encodes application only calling context. • Also including all code inevitably will slow down execution. UCPs on • Solution: Flexible Encoding B/C -> G • Leveraging call path tracking we can skip encoding components of little interest the same way we handle dynamically loaded classes. • Call paths through skipped nodes are detected as UCPs. No overhead in numerous libraries DeltaPath: Precise and Scalable Calling Context Encoding 15

  16. Implementation and Evaluation • Static Analysis • WALA (T.J. Watson Libraries for Analysis) • Analysis: Context Insensitive Control Flow Analysis (0-CFA) • Input: Binary only, No source code • Runtime Module and Dynamic Instrumentation • A Java agent based on Javassist • Support Sun JVM (Version >= JDK 5.0) • Evaluation • SPECjvm2008 Benchmark Suite • Intel Core i7 CPU, 8GB RAM • Ubuntu Linux 10.04 • Sun JDK 1.6.0.24 DeltaPath: Precise and Scalable Calling Context Encoding 16

  17. Evaluation • Static Program Characteristics • Encoding all setting • 13 out of 15 need encoding space larger than a million • Two benchmarks have overflow of the 64bit integer (1.8 X 10^19). • Overflow is resolved by introducing 6~7 anchor nodes. DeltaPath: Precise and Scalable Calling Context Encoding 17

  18. Evaluation • Performance Comparison • DeltaPath without Call Path Tracking : 32.51% (geometric mean) • Call Path Tracking adds extra 6.79% slow down. • Comparable with PCC (0.5% slower) DeltaPath: Precise and Scalable Calling Context Encoding 18

  19. Evaluation • Dynamic Program Characteristics (Application only) • Average stack depth is 1~4.4 (5.1~21.8 call stack depth) • PCC collects less unique contexts due to hash collision. • DeltaPath offers precise decoding compared to PCC. DeltaPath: Precise and Scalable Calling Context Encoding 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Dynamic and Adaptive Calling Context Encoding Jianjun Li , Zhenjiang Wang, Chenggang Wu State Key

Dynamic and Adaptive Calling Context Encoding Jianjun Li , Zhenjiang Wang, Chenggang Wu State Key

Dynamic and Adaptive Calling Context Encoding Jianjun Li , Zhenjiang Wang, Chenggang Wu State Key Laboratory of Computer Architecture Institute of Computing Technology, CAS Wei-Chung Hsu Di Xu Department of Computer Sciences, IBM Research -

581 views • 46 slides
Scalable and Precise Taint Analysis for Android Wei Huang 12 , Yao Dong 1 , Ana Milanova 1 ,

Scalable and Precise Taint Analysis for Android Wei Huang 12 , Yao Dong 1 , Ana Milanova 1 ,

Scalable and Precise Taint Analysis for Android Wei Huang 12 , Yao Dong 1 , Ana Milanova 1 , Julian Dolby 3 1 Rensselaer Polytechnic Institute 2 Google 3 IBM Research 1 Taint Analysis for Android Tracks flow of private data Controlled at

629 views • 35 slides
Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels Meng Xu , Chenxiong Qian,

Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels Meng Xu , Chenxiong Qian,

Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels Meng Xu , Chenxiong Qian, Kangjie Lu + , Michael Backes*, Taesoo Kim Georgia Tech | University of Minnesota + | CISPA, Germany* 1 What is Double-Fetch? Address Space

1.21k views • 67 slides
HeapTherapy+: Efficient Handling of (Almost) All Heap Vulnerabilities Using Targeted

HeapTherapy+: Efficient Handling of (Almost) All Heap Vulnerabilities Using Targeted

HeapTherapy+: Efficient Handling of (Almost) All Heap Vulnerabilities Using Targeted Calling-Context Encoding Qiang Zeng , Golam Kayas, Emil Mohammed, Lannan Luo, Xiaojiang Du, and Junghwan Rhee DSN 2019 2 Trend of Memory Vulnerability

661 views • 30 slides
Optimal Prices in the Towards a Precise . . . Towards a Precise . . . Presence of Discounts:

Optimal Prices in the Towards a Precise . . . Towards a Precise . . . Presence of Discounts:

Practical Situation: . . . How to Describe . . . Formulation of the . . . Optimal Prices in the Towards a Precise . . . Towards a Precise . . . Presence of Discounts: Precise Optimization . . . A New Economic Main result Proof: Part I

449 views • 12 slides
Caliper: Pu,ng Performance Data in Context 9 th Scalable

Caliper: Pu,ng Performance Data in Context 9 th Scalable

Caliper: Pu,ng Performance Data in Context 9 th Scalable Tools Workshop David Boehme Todd Gamblin Mar;n Schulz August 3, 2015 LLNL-PRES-675459 This work was performed

459 views • 20 slides
Precise Performance LTD Jake Yarranton jake@precise-performance.co.uk 07468 465754 Precise

Precise Performance LTD Jake Yarranton jake@precise-performance.co.uk 07468 465754 Precise

Precise Performance LTD Jake Yarranton jake@precise-performance.co.uk 07468 465754 Precise Performance LTD Independent Bike fitting and coaching specialists Our main focus is to help cyclists of every ability improve Experts in

388 views • 15 slides
Jorge Jimnez Variant calling jjimeneza@cipf.es Index 1. Variant calling pipeline 2.

Jorge Jimnez Variant calling jjimeneza@cipf.es Index 1. Variant calling pipeline 2.

Jorge Jimnez Variant calling jjimeneza@cipf.es Index 1. Variant calling pipeline 2. Alignment processing 3. SNP calling 4. Short indel calling 5. VCF format 6. Structural Variation Jorge Jimnez Variant calling jjimeneza@cipf.es

1.12k views • 40 slides
Entity Linking via Joint Encoding of Types, Descriptions, and Context Author: Nitish Gupta,

Entity Linking via Joint Encoding of Types, Descriptions, and Context Author: Nitish Gupta,

Entity Linking via Joint Encoding of Types, Descriptions, and Context Author: Nitish Gupta, Sameer Singh, Dan Roth Source: EMNLP17 Speaker: Ya-Wen Yu Date: 2018/7/31 1 Outline Introduction Method Experiment Conclusion

3.39k views • 23 slides
Next Generation Ministry Identifying factors that cultivate calling and confirm calling among

Next Generation Ministry Identifying factors that cultivate calling and confirm calling among

Next Generation Ministry Identifying factors that cultivate calling and confirm calling among millennial leaders 1 Table introductions Spend 15 minutes around tables sharing: Your name &amp; where you serve Stories of coming to

388 views • 35 slides
ORF Calling ORF Calling Why? Need to know protein sequence Protein sequence is usually

ORF Calling ORF Calling Why? Need to know protein sequence Protein sequence is usually

ORF Calling ORF Calling Why? Need to know protein sequence Protein sequence is usually what does the work Functional studies Crystallography Proteomics Similarity studies Proteins are better for remote

1.04k views • 54 slides
Context Encoding for Semantic Segmentation CVPR 2018, Salt Lake City Hang Zhang 1,2 , Kristin

Context Encoding for Semantic Segmentation CVPR 2018, Salt Lake City Hang Zhang 1,2 , Kristin

Context Encoding for Semantic Segmentation CVPR 2018, Salt Lake City Hang Zhang 1,2 , Kristin Dana 1 , Jianping Shi 3 , Zhongyue Zhang 2 , Xiaogang Wang 4 , Ambrish Tyagi 2 , and Amit Agrawal 2 1 Rutgers University, 2 Amzon Inc, 3 Sensetime, 4

660 views • 33 slides
The Craft of XML Text Encoding in historical and humanistic context Wendell Piez JADH 2015

The Craft of XML Text Encoding in historical and humanistic context Wendell Piez JADH 2015

The Craft of XML Text Encoding in historical and humanistic context Wendell Piez JADH 2015 University of Kyoto Kyoto, Japan September 2 2015 An Ukiyo-e woodblock print depicting a woodblock printing shop. (Is the scene realistic, or

500 views • 14 slides
Machining Expert Precise In Dimensions Precise In Deliveries Flexible In Business

Machining Expert Precise In Dimensions Precise In Deliveries Flexible In Business

Machining Expert Precise In Dimensions Precise In Deliveries Flexible In Business Volume Customer Oriented In Costs 2 We Are Proud Of Our History 1978 Mr. M. Ergun Alanyal established Mapar 1980 First Supply To Automotive

348 views • 20 slides
The Dark Side of Operational Wi-Fi Calling Services Tian Xie 1 , Guan-Hua Tu 1 , Chi-Yu Li 2 ,

The Dark Side of Operational Wi-Fi Calling Services Tian Xie 1 , Guan-Hua Tu 1 , Chi-Yu Li 2 ,

The Dark Side of Operational Wi-Fi Calling Services Tian Xie 1 , Guan-Hua Tu 1 , Chi-Yu Li 2 , Chunyi Peng, Mi Zhang 1 1 Michigan State University 2 National Chiao Tung University 3 Purdue University Wi-Fi Calling Services Wi-Fi Calling

621 views • 31 slides
TreeJuxtaposer: Scalable Tree Comparison using Focus+Context with Guaranteed Visibility Tamara

TreeJuxtaposer: Scalable Tree Comparison using Focus+Context with Guaranteed Visibility Tamara

TreeJuxtaposer: Scalable Tree Comparison using Focus+Context with Guaranteed Visibility Tamara Munzner Franois Guimbretire Univ. British Columbia Univ. Maryland College Park Serdar Ta iran Li Zhang, Yunhong Zhou Ko University

742 views • 53 slides
VER ND NDN N USI MMUNI NICATION OVE SING NG S ERV CE E DGE GE R OUTE RVICE UTERS Sy Syed

VER ND NDN N USI MMUNI NICATION OVE SING NG S ERV CE E DGE GE R OUTE RVICE UTERS Sy Syed

S CALABLE BLE R EAL - TIME ME C OLLABO BORA RATIVE C OMM VER ND NDN N USI MMUNI NICATION OVE SING NG S ERV CE E DGE GE R OUTE RVICE UTERS Sy Syed d Obai baid d Amin, Hai Haitao tao Zh Zhang* g*, Asit C Chakrab akraborti ti, A

459 views • 14 slides
The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision

The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision

The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision Group. UIB. SPAIN Julin Proenza. UIB. Oct 2008 The aim of this presentation Introduce the basic concepts of model checking from a practical

804 views • 68 slides
Network and Load-Aware Resource Manager for MPI Programs Ashish Kumar Naman Jain Preeti Malakar

Network and Load-Aware Resource Manager for MPI Programs Ashish Kumar Naman Jain Preeti Malakar

Network and Load-Aware Resource Manager for MPI Programs Ashish Kumar Naman Jain Preeti Malakar Indian Institite of Technology, Kanpur SRMPDS, International Conference on Parallel Processing 2020 Ashish Kumar, Naman Jain, Preeti Malakar

613 views • 57 slides
Perioperative Management of Patients with Cardiac Implantable Electronic Devices Rachel Heise,

Perioperative Management of Patients with Cardiac Implantable Electronic Devices Rachel Heise,

Perioperative Management of Patients with Cardiac Implantable Electronic Devices Rachel Heise, BSN, RN, CCRN, SRNA Melissa Maxwell, BSN, RN, SRNA Rosalind Franklin University We have no conflicts of interest to declare and will not be

535 views • 34 slides
Supraventricular Arrhythmias Bread And Butter Or Toast And Jam Derek V Exner , MD, MPH, FRCPC,

Supraventricular Arrhythmias Bread And Butter Or Toast And Jam Derek V Exner , MD, MPH, FRCPC,

Supraventricular Arrhythmias Bread And Butter Or Toast And Jam Derek V Exner , MD, MPH, FRCPC, FACC, FHRS Professor, Libin Cardiovascular Institute of Alberta ACC Rockies 2012 Overview Back to the basics Unraveling the lexicon Bread and

513 views • 34 slides
Arithmetic Circuits of the Noisy-Or Models Jirka Vomlel and Petr Savick y Academy of Sciences

Arithmetic Circuits of the Noisy-Or Models Jirka Vomlel and Petr Savick y Academy of Sciences

Arithmetic Circuits of the Noisy-Or Models Jirka Vomlel and Petr Savick y Academy of Sciences of the Czech Republic PGM08, Hirtshals, Denmark y (AV J. Vomlel and P. Savick CR) ACs of BN2O PGM08, Hirtshals, Denmark 1 / 21

1.21k views • 65 slides
Implications of Precise Nancy Moureau is an Speaker Bureau educator, legal consultant and

Implications of Precise Nancy Moureau is an Speaker Bureau educator, legal consultant and

Nancy Moureau, BSN, RN, CRNI, CPUI, 4/29/2012 VA-BC About the Speaker Implications of Precise Nancy Moureau is an Speaker Bureau educator, legal consultant and for: clinician with 30 years of PICC Tip Location: The New 3m

298 views • 5 slides
Monitoring For Attacks (Slides mostly stolen from Dave Wagner) 1 The Security Triad...

Monitoring For Attacks (Slides mostly stolen from Dave Wagner) 1 The Security Triad...

Computer Science 161 Fall 2016 Popa and Weaver Monitoring For Attacks (Slides mostly stolen from Dave Wagner) 1 The Security Triad... Computer Science 161 Fall 2016 Popa and Weaver Stolen from: Daniel Schatz @virturity 2 The Next

876 views • 51 slides

More recommend