jsat java safety analysis tool
play

JSAT (Java Safety Analysis Tool) Team: THEORACTICE Sangjin Han - PDF document

Mar 04, 2024 •35 likes •245 views

JSAT (Java Safety Analysis Tool) Team: THEORACTICE Sangjin Han Kangwoon Hong Hyungchoul Kim Andrew O. Mellinger Project Presentation 17-654: Analysis of Software Artifacts

  1. JSAT (Java Safety Analysis Tool) Team: THEORACTICE Sangjin Han Kangwoon Hong Hyungchoul Kim Andrew O. Mellinger Project Presentation 17-654: Analysis of Software Artifacts �������������������������������� � ����������� Agenda • Introduction • Background • Benefits • Specification Syntax • Experiment & Result • Why JSAT? • Future Works �������������������������������� � ����������� 1

  2. Introduction to JSAT • Built on Crystal2 framework • Analyze Java source code statically • Check temporal safety property (i.e. check specification conformance of method implementation) • Modifiable and re-distributable (royalty-free… ) �������������������������������� � ����������� The JSAT System Parser + Safety Checker Parser + Safety Checker Syntax Analyzer (JSAT) Syntax Analyzer (JSAT) Specification Specification (*.sm files) (*.sm files) True or False True or False Java Source Code Java Source Code (*.java files) (*.java files) �������������������������������� � ����������� 2

  3. Theoretical Background • Dataflow analysis • Finite state machine • Modular reasoning �������������������������������� � ����������� Benefits • Easier to code than writing own analysis. • Specification can be kept in separate file (i.e. don't need access to source code.) • Can track any number of variables or functions easily. • Light-weight and easy to write specifications (terms are based on UML statechart diagram) �������������������������������� � ����������� 3

  4. Core Specification Syntax (1) :: = StateVariable a | , a StateVariable :: , Event = Pattern Guard | , Pattern Action | , , Pattern Guard Action :: = Pattern MethodInvocation :: Guard = Predicate | & & Predicate Guard �������������������������������� � ����������� Core Specification Syntax (2) :: = == Predicate a e | ! a = e | < a e | a > e | <= a e | >= a e :: Action = Assignment | , Assignment Action :: Assignment = a = e :: = e a | c variable a value c �������������������������������� � ����������� 4

  5. Experiment & Result public class Device { global int lockStatus = 0; int nPackets; event { public void doWork() { pattern { smInit(); } smInit(); action { lockStatus = 0; } } if (nPackets >= 1) { event { smLock(); pattern { smLock(); } guard { lockStatus == 0 } smWritePacket(); action { lockStatus = 1; } } smUnlock(); } event { } pattern { smUnlock(); } guard { lockStatus == 1 } public Device(int i) { action { lockStatus = 0; } nPackets = i; } } LockUnlock.sm (Specification) Device.java (Java Source Code) TRUE �������������������������������� � ����������� Why JSAT ? ESC/JAVA Fluid PREfix Metal ESC/JAVA Can#Analyze#Java# [YES] Fugue Fluid Source#Code#? Daikon JSAT Echelon Blast JSAT Is# Annotation# ESC/JAVA [YES] Can#Analyze# Separate# Fluid Statically#? From#Source# JSAT Code [YES] JSAT �������������������������������� �� ����������� 5

  6. Future Works • Extend pattern type • Accept more complex predicates • Allow symbolic state �������������������������������� �� ����������� �������������������������������� �� ����������� 6

  7. Application of Eclat Serendipity Majid AlMeshari Lucia de Lascurain Steven Lawrance Ricardo Vazquez Hyunwoo Kim Project Presentation 17-654: Analysis of Software Artifacts �������������������������������� �� ����������� Agenda • Motivation • How does Eclat work? • Our Studio project • Our experiments • Analysis of experimental data • Lessons learned • Next steps • Questions �������������������������������� �� ����������� 7

  8. Motivation • Writing test cases manually • Is time consuming • Requires deep understanding of the system’s invariants • Eclat generates test cases automatically by discovering system’s invariants �������������������������������� �� ����������� How does Eclat work? (1) �������������������������������� �� ����������� 8

  9. How does Eclat work? (2) �������������������������������� �� ����������� Our Studio project • Objective: calculate security sensor positions in a 3D blueprint to maximize coverage and follow security rules. • To design our architecture, we developed experiments that calculate the coverage of sensors. • We used this code to analyze Eclat, as it is representative of our project. �������������������������������� �� ����������� 9

  10. Our Experiments • Inject five defects into our code • Incorrect variable assignment • Incorrect guard, e.g. if ( y < z_size ) • Protocol violation • Incorrect parameter assignment • Off-by-one problem • Experiments • Run Eclat with partial test cases • Run Eclat with full test cases • Code review �������������������������������� �� ����������� Sample: Off-by-one problem (1) • Fault injected source code vox = (Voxel)enu.nextElement(); while (enu.hasMoreElements()) { if (vox.getRed()==red && vox.getGreen()==green && vox.getBlue()==blue && vox.getAlpha()==alpha) volume++; vox = (Voxel)enu.nextElement(); } �������������������������������� �� ����������� 10

  11. Sample: Off-by-one problem (2) • Input test case (r,g,b,a) color (x,y,z) coordinate • VoxelSpace voxelSpace = new VoxelSpace(2, 2, 2, 2.2); • voxelSpace.color(248, 40, 241, 128, 0, 0, 0); • voxelSpace.color(248, 40, 241, 128, 0, 0, 1); • voxelSpace.color(248, 40, 241, 128, 1, 0, 0); • voxelSpace.color(248, 40, 241, 128, 1, 0, 1); • voxelSpace.color(248, 40, 241, 128, 0, 1, 0); • … // nothing that affects (248, 40, 241, 128)’s coordinates • voxelSpace.color(248, 40, 240, 128, 0, 1, 0); • assertTrue(voxelSpace.getVolume(248, 40, 241, 128) == 4); • Assertion Failure �������������������������������� �� ����������� Sample: Off-by-one problem (3) • Eclat-generated test case • cmu.voxeltoy.VoxelSpace var180 = new cmu.voxeltoy.VoxelSpace(2, 2, 1, (double)-5.0); • … // nothing that sets a voxel’s color • int var422 = var180.getVolume(0, 0, 0, 0); • NoSuchElementException �������������������������������� �� ����������� 11

  12. Sample: Off-by-one problem (4) • Manually-constructed test case • Found the case where the returned volume is off by one due to failure to include the last voxel • Eclat-generated test case • Found the case where an empty voxel space throws an exception instead of returning zero • Eclat found a test case that a seemingly- comprehensive test suite missed �������������������������������� �� ����������� Analysis of Experimental Data Eclat: Partial Eclat: full test Code review test cases cases Input test cases 2 10 N/A Generated test 29 85 N/A cases False positives 0 1 0 False negatives 2 0 2 Unexpected 4 4 0 errors found �������������������������������� �� ����������� 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

MAJOR: An Efficient and Extensible Tool for Mutation Analysis in a Java Compiler e Just 1 , Franz

MAJOR: An Efficient and Extensible Tool for Mutation Analysis in a Java Compiler e Just 1 , Franz

MAJOR: An Efficient and Extensible Tool for Mutation Analysis in a Java Compiler e Just 1 , Franz Schweiggert 1 , and Gregory M. Kapfhammer 2 Ren 1 Ulm University, Germany 2 Allegheny College, USA 26th International Conference on Automated

743 views • 32 slides
FaultTracer: A Change Impact and Regression Fault Analysis Tool for Evolving Java Programs

FaultTracer: A Change Impact and Regression Fault Analysis Tool for Evolving Java Programs

FaultTracer: A Change Impact and Regression Fault Analysis Tool for Evolving Java Programs Lingming Zhang , Miryung Kim, Sarfraz Khurshid University of Texas at Austin zhanglm@utexas.edu FSE Formal Research Demo Track Nov 14, 2012 1 Scenario

381 views • 20 slides
The need for a formal model of Java Safety guarantees of Java definedness type safety

The need for a formal model of Java Safety guarantees of Java definedness type safety

Making the Java Memory Model Safe Andreas Lochbihler Institute for Information Security ETH Zurich supported by DFG Sn11/10-1,2 The need for a formal model of Java Safety guarantees of Java definedness type safety security

595 views • 44 slides
Safety Analysis Tool for Six-Lane and One-Way Urban Streets Mike Pratt Dominique Lord

Safety Analysis Tool for Six-Lane and One-Way Urban Streets Mike Pratt Dominique Lord

Safety Analysis Tool for Six-Lane and One-Way Urban Streets Mike Pratt Dominique Lord Transportation Engineering and Safety Conference December 7, 2017 Background NCHRP Project 17-58 Safety Prediction Models for Six-Lane and

316 views • 18 slides
The VeriFast Tool DD2460 Software Safety and Security VeriFast is a modular, sound program

The VeriFast Tool DD2460 Software Safety and Security VeriFast is a modular, sound program

The VeriFast Tool DD2460 Software Safety and Security VeriFast is a modular, sound program verifier for sequential and concurrent C and Java programs If VeriFast reports that a program is correct: Introduction to VeriFast for Java 1.

219 views • 3 slides
DFTCalc: A tool for Advanced Reliablity, Availability, Maintenance and Safety analysis. Enno

DFTCalc: A tool for Advanced Reliablity, Availability, Maintenance and Safety analysis. Enno

DFTCalc: A tool for Advanced Reliablity, Availability, Maintenance and Safety analysis. Enno Ruijters, University of Twente Supervisor: Marielle Stoelinga 28/01/16 1 Reliability of critical systems System failures can be catastrophic

504 views • 38 slides
Job Safety Analysis February 2013 Safety Meeting PPT-SM-JSA V.A.0.0 Job Safety Analysis A

Job Safety Analysis February 2013 Safety Meeting PPT-SM-JSA V.A.0.0 Job Safety Analysis A

Job Safety Analysis February 2013 Safety Meeting PPT-SM-JSA V.A.0.0 Job Safety Analysis A job safety analysis, JSA, is a process of systematically identifying workplace hazards by breaking down a particular job into a series of relatively

617 views • 23 slides
NTT DATA Figtree Systems Workplace Safety Incident and Hazard Reporting Tool Tool Overview

NTT DATA Figtree Systems Workplace Safety Incident and Hazard Reporting Tool Tool Overview

NTT DATA Figtree Systems Workplace Safety Incident and Hazard Reporting Tool Tool Overview Online application combining claims management, safety management, early intervention and rehabilitation into one user- friendly tool.

453 views • 14 slides
JAVA Java vs. Java Java Language Specification

JAVA Java vs. Java Java Language Specification

BR 10/05 JAVA Java vs. Java Java Language Specification http://java.sun.com/docs/books/jls/second_edition/html/j.title.doc.html Java programming language is compiled into java byte code Java Virtual Machine Specification

1.07k views • 44 slides
Technology Evolution &amp; JSATs Recent Activities Yo Ikeno, Chief Representative, Jakarta

Technology Evolution &amp; JSATs Recent Activities Yo Ikeno, Chief Representative, Jakarta

Technology Evolution &amp; JSATs Recent Activities Yo Ikeno, Chief Representative, Jakarta Rep. Office SKY PERFECT JSAT CORPORATION 1 JSAT Satellite Fleet Fleet of 16 satellites + 4 new satellites by 2016 JCSAT-6 Horizons-1 Superbird-8

466 views • 7 slides
Problems Implementing a points-to analysis to handle the details of Java is a lot of work. is

Problems Implementing a points-to analysis to handle the details of Java is a lot of work. is

Scaling Java Points-To Analysis Using S PARK (Soot Pointer Analysis Research Kit) Ond rej Lhot ak and Laurie Hendren Sable Research Group McGill University April 8th, 2003 p. 1/53 Problems Implementing a points-to analysis to

610 views • 59 slides
Java Performance Analysis on Linux with Flame Graphs Brendan Gregg Senior Performance Architect

Java Performance Analysis on Linux with Flame Graphs Brendan Gregg Senior Performance Architect

Sep 2016 Java Performance Analysis on Linux with Flame Graphs Brendan Gregg Senior Performance Architect Complete Visibility Java Mixed-Mode Flame Graph via Linux perf_events Java C C++ (User) (JVM) Java C (Inlined) (Kernel) Cloud

1.13k views • 71 slides
LCT: An Open Source Concolic Testing Tool for Java Programs Kari Khknen, Tuomas Launiainen,

LCT: An Open Source Concolic Testing Tool for Java Programs Kari Khknen, Tuomas Launiainen,

LCT: An Open Source Concolic Testing Tool for Java Programs Kari Khknen, Tuomas Launiainen, Olli Saarikivi, Janne Kauttio, Keijo Heljanko and Ilkka Niemel BYTECODE 2011 Overview Concolic Testing Tool Overview Experiments

395 views • 13 slides
Plagiarism detection for Java: a tool comparison Jurriaan Hage e-mail: jur@cs.uu.nl homepage:

Plagiarism detection for Java: a tool comparison Jurriaan Hage e-mail: jur@cs.uu.nl homepage:

[ Faculty of Science Information and Computing Sciences] Plagiarism detection for Java: a tool comparison Jurriaan Hage e-mail: jur@cs.uu.nl homepage: http://www.cs.uu.nl/people/jur/ Joint work with Peter Rademaker and Nik` e van Vugt.

1.33k views • 46 slides
A Tool for Urban Air A Tool for Urban Air Pollution Analysis Pollution Analysis Eri Saikawa

A Tool for Urban Air A Tool for Urban Air Pollution Analysis Pollution Analysis Eri Saikawa

Interactive nteractive Database for atabase for Emission mission Analysis nalysis - IDEA IDEA - A Tool for Urban Air A Tool for Urban Air Pollution Analysis Pollution Analysis Eri Saikawa Eri Saikawa East Asia Region East Asia Region

631 views • 16 slides
Java Path Finder (JPF) Christian Bergum Bergersen June 1, 2015 What is Java Path Finder?

Java Path Finder (JPF) Christian Bergum Bergersen June 1, 2015 What is Java Path Finder?

Java Path Finder (JPF) Christian Bergum Bergersen June 1, 2015 What is Java Path Finder? Java Path Finder is an open-source analysis system that automatically verifies/model check Java programs. Initially developed by NASA. The Java

615 views • 16 slides
Web Personalisation and Recommender Systems Shlomo Berkovsky and Jill Freyne DIGITAL

Web Personalisation and Recommender Systems Shlomo Berkovsky and Jill Freyne DIGITAL

Web Personalisation and Recommender Systems Shlomo Berkovsky and Jill Freyne DIGITAL PRODUCTIVITY FLAGSHIP Outline Part 1: Information Overload and User Modelling Part 2: Web Personalisation and Recommender Systems Part 1: Information

1.2k views • 84 slides
Online Replanning Section 11.3.3 Sec. 11.3.3 p.1/18 Outline Contingency planning vs.

Online Replanning Section 11.3.3 Sec. 11.3.3 p.1/18 Outline Contingency planning vs.

Online Replanning Section 11.3.3 Sec. 11.3.3 p.1/18 Outline Contingency planning vs. replanning Replanning agent algorithm Execution monitoring Continuous planning (Multiagent planning) Sec. 11.3.3 p.2/18 Contingency planning vs.

344 views • 18 slides
Large Scale Search, Discovery and Analytics with Solr, Mahout and Hadoop Grant Ingersoll Chief

Large Scale Search, Discovery and Analytics with Solr, Mahout and Hadoop Grant Ingersoll Chief

Search Discover Analyze Large Scale Search, Discovery and Analytics with Solr, Mahout and Hadoop Grant Ingersoll Chief Scientist Lucid Imagination | | 1 1 Search is Dead, Long Live Search User Interaction User Interaction

452 views • 17 slides
Automatic Annotation Suggestions for Audiovisual Archives: Evaluation Aspects L.Gazendam,

Automatic Annotation Suggestions for Audiovisual Archives: Evaluation Aspects L.Gazendam,

Automatic Annotation Suggestions for Audiovisual Archives: Evaluation Aspects L.Gazendam, V.Malaise,A.Jong,C.Wartena,H.Brugman, G.Schreiber Evi Kiagia NLP/Text Mining for historical documents Framework of the Project Initiative forwarded

589 views • 27 slides
Networking Mary Jean Harrold ADVANCE Professor of Computing College of Computing Georgia

Networking Mary Jean Harrold ADVANCE Professor of Computing College of Computing Georgia

Networking Mary Jean Harrold ADVANCE Professor of Computing College of Computing Georgia Institute of Technology Outline What is networking? Why is networking important? How do you perform different types of networking?

452 views • 26 slides
ACADEMIC RECOMMENDER SYSTEM DESIGN 1 WHATS ACADEMIC RECOMMENDER SYSTEM Similar

ACADEMIC RECOMMENDER SYSTEM DESIGN 1 WHATS ACADEMIC RECOMMENDER SYSTEM Similar

ACADEMIC RECOMMENDER SYSTEM DESIGN 1 WHATS ACADEMIC RECOMMENDER SYSTEM Similar paper to paper Relevant paper to author Reading suggestion to user Recommendation is based on feature of paper. Title, Abstract, Keyword, Reference

617 views • 24 slides
Exploring the X-ray Transient and variable Sky Andrea De Luca

Exploring the X-ray Transient and variable Sky Andrea De Luca

Exploring the X-ray Transient and variable Sky Andrea De Luca INAF/IASF Milano on behalf of the EXTraS collaboration EXTraS: the rationale ESA/DROXO 1. Variability 2.

385 views • 19 slides
INCORPORATING TECHNOLOGY AND JAZZ IN GLOBALLY NETWORKED LEARNING ENVIRONMENTS NORTH CAROLINA

INCORPORATING TECHNOLOGY AND JAZZ IN GLOBALLY NETWORKED LEARNING ENVIRONMENTS NORTH CAROLINA

INCORPORATING TECHNOLOGY AND JAZZ IN GLOBALLY NETWORKED LEARNING ENVIRONMENTS NORTH CAROLINA CENTRAL UNIVERSITY DURHAM, NC 2015 NAFSA CONFERENCE, BOSTON, MA Lenora Helm Hammonds, Chair &amp; Presenter, Emmanuel Oritsejafor, PhD, Presenter,

493 views • 34 slides

More recommend