Dynamic Repair of Applications with Runtime Snap-ins J. Peter Brady - - PowerPoint PPT Presentation

dynamic repair of applications with runtime snap ins
SMART_READER_LITE
LIVE PREVIEW

Dynamic Repair of Applications with Runtime Snap-ins J. Peter Brady - - PowerPoint PPT Presentation

Feb 15, 2024 358 likes •497 views

Dynamic Repair of Applications with Runtime Snap-ins J. Peter Brady Dartmouth College, Hanover NH jpb@cs.dartmouth.edu Advisors: Dr. Sean Smith, Dr. Sergey Bratus Funded by the U.S. Department of Energy and the U.S. Department of Homeland

slide-1
SLIDE 1

Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security | cred-c.org

Dynamic Repair of Applications with Runtime Snap-ins

  • J. Peter Brady

Dartmouth College, Hanover NH jpb@cs.dartmouth.edu Advisors: Dr. Sean Smith, Dr. Sergey Bratus

slide-2
SLIDE 2

cred-c.org | 2

The Challenge of Getting Things Right

“Politics is the art of looking for trouble, finding it everywhere, diagnosing it incorrectly and applying the wrong remedies.” – Groucho Marx

(You can say the same about software!)

Wikimedia Commons

slide-3
SLIDE 3

cred-c.org | 3

The Challenges

  • Current “best” practice:
  • Ignore, AKA “The Ostrich”
  • Corrective maintenance, AKA “The Patch”
  • Traditional patching doesn’t work in the real

world

  • Systems that can’t be reached
  • Satellites
  • Mars Rover
  • EDS OT
  • Systems that can’t be down
  • EDS OT systems in a 24x7 operation – what time is good?
  • Obsolete equipment
  • Vendor is out of business
  • So old that no one knows how to maintain it
  • Patching must not change mission-critical behavior

NASA vintagecomputer.net

i-scmp.com

slide-4
SLIDE 4

cred-c.org | 4

Runtime Snap-ins – Our Approach

  • Deliver application changes in real-time
  • Fault repair
  • Functionality updates
  • New features
  • Use system features and engineering

standards

  • Keep our code base small
  • Make maintenance/enhancements simpler
  • Our secret weapon: automated ways to

locate and modify code only at safe times during execution

fsm-media.com

slide-5
SLIDE 5

cred-c.org | 5

Repairing Applications with Runtime Snap-ins

  • Repaired code is stored in shared libraries
  • Code objects that can be shared among multiple executables
  • Bound to executables at run time
  • Run the Replacement Constructor Program (RCP)
  • Creates mapping data of repaired interfaces to apply to

existing programs

  • Runs only when a new library is added to system
  • The Snap-in Controller
  • A separate daemon
  • Searches out target applications
  • Applies the RCP mapping to running programs

lifecurrents.dw2.net

slide-6
SLIDE 6

cred-c.org | 6

Runtime Snap-in Example

  • Simple model of the user space

memory in a Linux application

  • Text – read-only executable code
  • Data – initialized data (read-only

and read-write)

  • BSS – uninitialized data
  • Heap – user allocated memory
  • Shared Libraries
  • Stack – allocated memory for local

variables and function parameters

slide-7
SLIDE 7

cred-c.org | 7

Runtime Snap-in Example

  • Application has an external

function call mtxAdd() which calls a shared library

  • mtxAdd() has a memory leak we

want to fix

slide-8
SLIDE 8

cred-c.org | 8

Runtime Snap-in Example – Install Library

  • The Snap-in Controller runs
  • The target application is paused by the

Controller with ptrace

  • A small set of dynamic loader

instructions are loaded into the heap

  • The Controller sets the targets

execution pointer to the new instructions and tells the target to run.

  • The snap-in library loads into the

shared library area. Any number of libraries could be loaded at this point.

  • The last instruction on the heap

returns to the Controller

slide-9
SLIDE 9

cred-c.org | 9

Runtime Snap-in Example – Use New Library

  • The Controller removes the

install code from the heap

  • It then rewrites the library

pointer to point to the new instance of mtxAdd() in the new library by changing offsets in the Global Offset Table

slide-10
SLIDE 10

cred-c.org | 10

Runtime Snap-in Example – Normal Execution Continues

  • The Controller restores the

execution pointer of the target, then releases control

  • Normal execution is restored on

the target application

  • Future calls to mtxAdd() go to

the new version in the snap-in library

slide-11
SLIDE 11

cred-c.org | 11

Conclusions and Next Steps

  • Runtime Snap-in
  • Simple concept allows for

powerful updates to running applications

  • Repairs or enhancements are

delivered in real-time

  • Future versions will allow more

automated search and repair

  • perations
  • Operational Timeline
  • Proof-of-Concept
  • Specific set of libraries installed into a specific

target application

  • Completed June 2017
  • In-process
  • Search selected applications for routines to

be replaced and create mapping to repaired libraries

  • Those system applications can have selected

libraries installed automatically

  • Complete in March 2018
  • Future
  • Search for potential failing code in system

applications

  • Find known failure signatures in an

application and auto-create mapping

  • Rollback one or more repairs
  • Repair code that’s part of the application

(i.e.: not in a shared library)

  • Multiple architectures
slide-12
SLIDE 12

http://cred-c.org @credcresearch facebook.com/credcresearch/

Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security

jpb@cs.dartmouth.edu