rept reverse debugging of
play

REPT: Reverse Debugging of Failures in Deployed Software Weidong Cui - PowerPoint PPT Presentation

Sep 14, 2023 •376 likes •700 views

REPT: Reverse Debugging of Failures in Deployed Software Weidong Cui 1 , Xinyang Ge 1 , Baris Kasikci 2 , Ben Niu 1 , Upamanyu Sharma 2 , Ruoyu Wang 3 , and Insu Yun 4 Microsoft Research 1 University of Michigan 2 Arizona State University 3 Georgia

  1. REPT: Reverse Debugging of Failures in Deployed Software Weidong Cui 1 , Xinyang Ge 1 , Baris Kasikci 2 , Ben Niu 1 , Upamanyu Sharma 2 , Ruoyu Wang 3 , and Insu Yun 4 Microsoft Research 1 University of Michigan 2 Arizona State University 3 Georgia Institute of Technology 4 OSDI 2018, Carlsbad, CA

  2. What happened before the crash?

  6. REPT: Reverse Execution with Processor Trace

  7. REPT : Reverse Execution with Processor Trace • Online hardware tracing (e.g., Intel Processor Trace) • Log the control flow with timestamps • Low runtime overhead (1 – 5%) • No data! • Offline binary analysis • Recovers data flow from the control flow

  9. REPT Data Recovery • Single-threaded execution reconstruction • Multi-threaded execution reconstruction • Multi-threaded execution reconstruction

  10. Core Dump Instruction Sequence Execution History + = ? How to recover overwritten states

  11. lea rbx, [g] mov rax, 1 add rax, [rbx] mov [rbx], rax xor rbx, rbx

  12. rax=?, rbx=?, [g]=3 lea rbx, [g] rax=?, rbx=?, [g]=3 mov rax, 1 rax=?, rbx=?, [g]=3 rax=?, rbx=?, [g]=3 add rax, [rbx] rax=3, rbx=?, [g]=3 mov [rbx], rax rax=3, rbx=?, [g]=3 rax=3, rbx=?, [g]=3 xor rbx, rbx rax=3, rbx=0, [g]=3

  13. rax=?, rbx=?, [g]=3 lea rbx, [g] rax=?, rbx=g, [g]=3 rax=?, rbx=g, [g]=3 rax=?, rbx=?, [g]=3 mov rax, 1 rax=1, rbx=g, [g]=3 rax=?, rbx=?, [g]=3 rax=1, rbx=g, [g]=3 add rax, [rbx] 4? rax=3, rbx=?, [g]=3 rax=3, rbx=g, [g]=3 mov [rbx], rax rax=3, rbx=?, [g]=3 xor rbx, rbx rax=3, rbx=0, [g]=3

  14. rax=?, rbx=?, [g]=? rax=?, rbx=?, [g]=? lea rbx, [g] rax=?, rbx=g, [g]=? rax=?, rbx=g, [g]=? mov rax, 1 rax=1, rbx=g, [g]=? rax=1, rbx=g, [g]=? add rax, [rbx] rax=3, rbx=g, [g]=? rax=3, rbx=g, [g]=? mov [rbx], rax rax=3, rbx=?, [g]=3 rax=3, rbx=g, [g]=3 xor rbx, rbx rax=3, rbx=0, [g]=3

  15. rax=?, rbx=?, [g]=? rax=?, rbx=?, [g]=2 lea rbx, [g] rax=?, rbx=g, [g]=? rax=?, rbx=g, [g]=2 mov rax, 1 rax=1, rbx=g, [g]=? rax=1, rbx=g, [g]=2 rax=1, rbx=g, [g]=2 add rax, [rbx] rax=3, rbx=g, [g]=? mov [rbx], rax rax=3, rbx=g, [g]=3 xor rbx, rbx rax=3, rbx=0, [g]=3

  16. rax=?, rbx=?, [g]=2 lea rbx, [g] rax=?, rbx=g, [g]=2 mov rax, 1 rax=1, rbx=g, [g]=2 add rax, [rbx] rax=3, rbx=g, [g]=? rax=3, rbx=g, [g]=2 mov [rbx], rax rax=3, rbx=g, [g]=3 xor rbx, rbx rax=3, rbx=0, [g]=3

  17. rax=?, rbx=?, [g]=2 lea rbx, [g] rax=?, rbx=g, [g]=2 mov rax, 1 rax=1, rbx=g, [g]=2 add rax, [rbx] rax=3, rbx=g, [g]=2 mov [rbx], rax rax=3, rbx=g, [g]=3 xor rbx, rbx rax=3, rbx=0, [g]=3

  18. Key Techniques • Forward Execution • Recovers states before irreversible instructions • Error Correction • Handles errors introduced by “missing” memory writes

  19. REPT Data Recovery • Single-threaded execution reconstruction • Multi-threaded execution reconstruction

  20. Core Dump Execution History Instruction Sequence #1 Instruction Sequence #2 + = ? + How to determine the thread interleavings?

  21. Time A D E F B G C

  22. Time A A D D E E B B F F G G C C

  23. Time A A D D 10 E E B B F F G G C C

  24. Time A A D D 10 E E B B F 18 or 20 F G G C C

  25. Time A A D D 10 E E B B F 18 or 20 F G G C C

  26. Key Techniques • Hardware Timestamps • Constructs a partial order • Concurrent memory write detection • Constrains their usage to avoid propagating a wrong value

  27. With REPT, …

  28. I want history information! Hey, client, turn on tracing next time.

  29. Demo

  30. 1-5% overhead 16 bugs 14 bugs 92% accuracy

  31. Conclusion • Debugging production failures is important but hard • REPT is a practical reverse debugging solution for production failures • Online hardware tracing to log the control flow with timestamps • Offline binary analysis to recover the data flow with high accuracy • REPT has been deployed on Microsoft Windows

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Reverse Debugging of Kernel Failures in Deployed Systems Xinyang Ge, Ben Niu and Weidong Cui

Reverse Debugging of Kernel Failures in Deployed Systems Xinyang Ge, Ben Niu and Weidong Cui

Reverse Debugging of Kernel Failures in Deployed Systems Xinyang Ge, Ben Niu and Weidong Cui Microsoft Research USENIX Annual Technical Conference, 2020 What happened before the crash? REPT: Reverse Execution with Processor Trace REPT:

593 views • 21 slides
Assembly Instruction Level Reverse Execution for Debugging PhD Dissertation Defense by Tankut

Assembly Instruction Level Reverse Execution for Debugging PhD Dissertation Defense by Tankut

Assembly Instruction Level Reverse Execution for Debugging PhD Dissertation Defense by Tankut Akgul Advisor: Vincent J. Mooney School of Electrical and Computer Engineering Georgia Institute of Technology March 2004 Outline Background

885 views • 60 slides
Instruction-level Reverse Execution for Debugging Tankut Akgul and Vincent J. Mooney School of

Instruction-level Reverse Execution for Debugging Tankut Akgul and Vincent J. Mooney School of

Instruction-level Reverse Execution for Debugging Tankut Akgul and Vincent J. Mooney School of Electrical and Computer Engineering Georgia Institute of Technology November 2002 Background Detect an Determine error the bug location(s) Run

263 views • 23 slides
using Reverse Domination Bao Le, Hratch Mangassarian, Brian Keng, Andreas Veneris University of

using Reverse Domination Bao Le, Hratch Mangassarian, Brian Keng, Andreas Veneris University of

Propelling SAT-based Debugging using Reverse Domination Bao Le, Hratch Mangassarian, Brian Keng, Andreas Veneris University of Toronto Outline SAT-based Design Debugging Introduction Motivation and Previous Work Dominators and

1.94k views • 33 slides
Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and

Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and

Chapter 15 Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and set values in memory Execute portions of program Stop execution when (and where) desired Want debugging tools to operate on

274 views • 9 slides
Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production

Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production

Welcome to Advanced .NET Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production Challenges in debugging Production issues Production Environment Debugging Timeline Tools for .NET Debugging Review 3

622 views • 47 slides
Visual Debugging Software What is Debugging Visualization Visualizing

Visual Debugging Software What is Debugging Visualization Visualizing

Visual Debugging Software What is Debugging Visualization Visualizing Program State Incremental interactive unfolding (DDD) Visual Memory Abstract representations (traversal-based) Debugging Focusing: memory

433 views • 5 slides
Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination.

Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination.

Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination. Will also talk about the ddd gui for gdb (lots of value added to gdb). First, debugging in the abstract: Program state is a snapshot

475 views • 20 slides
1 Crashes, interrupts, and backtrace Watchpoints GDB will automatically stop if the program

1 Crashes, interrupts, and backtrace Watchpoints GDB will automatically stop if the program

Debugging and debuggers Debugging in the development cycle You have probably already had the experience of making Edit a mistake in a program Speaking roughly, debugging is the process: After you know that your code is wrong

911 views • 3 slides
Coroutines Update Seva Tolstopyatov @qwwdfsad October 13, 2020 Coroutines debugging Coroutines

Coroutines Update Seva Tolstopyatov @qwwdfsad October 13, 2020 Coroutines debugging Coroutines

Kotlin 1.4 Online Event Coroutines Update Seva Tolstopyatov @qwwdfsad October 13, 2020 Coroutines debugging Coroutines debugging Coroutines debugging Coroutines debugging Coroutines debugging IDEA 2020.1 Coroutines debugging Debugging

737 views • 41 slides
Scalable Post-Mortem Debugging Abel Mathew CEO - Backtrace amathew@backtrace.io @nullisnt0

Scalable Post-Mortem Debugging Abel Mathew CEO - Backtrace amathew@backtrace.io @nullisnt0

Scalable Post-Mortem Debugging Abel Mathew CEO - Backtrace amathew@backtrace.io @nullisnt0 Debugging or Sleeping? Debugging Debugging: examining (program state, design, code, output) to identify and remove errors from software.

464 views • 31 slides
Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse

Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse

Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse Logistics Xochitl Aquiahuatl March 2007 Outline Outline Closed-loop Supply Chain Reverse Logistics Recovery Options Product

388 views • 22 slides
Advanced Production Debugging About Me Co-founder Takipi, JVM Production Debugging. Director,

Advanced Production Debugging About Me Co-founder Takipi, JVM Production Debugging. Director,

Advanced Production Debugging About Me Co-founder Takipi, JVM Production Debugging. Director, AutoCAD Web & Mobile. Software Architect at IAI Aerospace. Coding for the past 16 years - C++, Delphi, .NET, Java. Focus on real-time,

460 views • 35 slides
Embedded Software TI2726-B 8. Debugging techniques Koen Langendoen Embedded Software Group

Embedded Software TI2726-B 8. Debugging techniques Koen Langendoen Embedded Software Group

Embedded Software TI2726-B 8. Debugging techniques Koen Langendoen Embedded Software Group Grace Hopper 1947 2 Overview Debugging techniques Debugging a distributed system Preparation for the exam Debugging Write good code!

733 views • 45 slides
Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging Step in Kernel Development Post-Mortem Crash Analysis Live Inspection Performance Analysis Userland Debugging Wait, Userland

216 views • 10 slides
Multithreading in Qt Doing it wrong, debugging it, doing it right David Faure

Multithreading in Qt Doing it wrong, debugging it, doing it right David Faure

Multithreading in Qt Doing it wrong, debugging it, doing it right David Faure <david.faure@kdab.com> Outline QThread Debugging race conditions Debugging deadlocks Unit-testing for thread-safety How to use QThread A busy

167 views • 16 slides
Getting Started Using JUnit Advanced Topics Writing Test Cases Debugging Meme Credit: Reddit

Getting Started Using JUnit Advanced Topics Writing Test Cases Debugging Meme Credit: Reddit

Getting Started Using JUnit Advanced Topics Writing Test Cases Debugging Meme Credit: Reddit user u/sachintripathi007 CS 2112 Lab: JUnit & Debugging Getting Started Using JUnit Advanced Topics Writing Test Cases Debugging CS 2112

589 views • 24 slides
EXCEPTIONS, ASSERTIONS (download slides and .py files and follow along!) 6.0001 LECTURE 7 1

EXCEPTIONS, ASSERTIONS (download slides and .py files and follow along!) 6.0001 LECTURE 7 1

TESTING, DEBUGGING, EXCEPTIONS, ASSERTIONS (download slides and .py files and follow along!) 6.0001 LECTURE 7 1 6.0001 LECTURE 7 WE AIM FOR HIGH QUALITY AN ANALOGY WITH SOUP You are making soup but bugs keep falling in from the ceiling.

465 views • 35 slides
EARNINGS CALL May 24, 2017 Disclosures regarding Forward Looking Statements & Non-GAAP

EARNINGS CALL May 24, 2017 Disclosures regarding Forward Looking Statements & Non-GAAP

Q1 2017 EARNINGS CALL FIRST QUARTER 2017 EARNINGS CALL May 24, 2017 Disclosures regarding Forward Looking Statements & Non-GAAP Financial Measures (pages 12-21) Q1 2017 EARNINGS CALL FIRST QUARTER HIGHLIGHTS Comp Sales +1.9% -64 bps 1

368 views • 23 slides
Lack of debt restructuring and lenders credibility (A theory of nonperforming loans) Keiichiro

Lack of debt restructuring and lenders credibility (A theory of nonperforming loans) Keiichiro

Lack of debt restructuring and lenders credibility (A theory of nonperforming loans) Keiichiro Kobayashi 1 Tomoyuki Nakajima 2 Shuhei Takahashi 3 1 Keio University 2 University of Tokyo 3 Kyoto University Keio-Waseda Workshop, September 21,

749 views • 32 slides
FSU Depa rtment of Computer Science DEPARTMENT OF COMPUTER SCIENCE Flo rida State

FSU Depa rtment of Computer Science DEPARTMENT OF COMPUTER SCIENCE Flo rida State

On Debugging Real-Time Applications F rank Mueller and David Whalley FSU Depa rtment of Computer Science DEPARTMENT OF COMPUTER SCIENCE Flo rida State Universit y T allahassee, FL 32304-4019 e-mail: mueller@cs.fsu.edu

342 views • 13 slides
Cool Cisco IOS Commands: debug interface debug interface When you are performing debugs you have

Cool Cisco IOS Commands: debug interface debug interface When you are performing debugs you have

Cool Cisco IOS Commands: debug interface debug interface When you are performing debugs you have at least two concerns: 1) making sure the that debug does not clobber the CPU of your device, and 2) filtering the debug output to get to the

460 views • 9 slides
Figure out what problem you are solving. Test individual methods before

Figure out what problem you are solving. Test individual methods before

Engineering Methodology Requirements Program Debugging Algorithm (Special Topic) TOPICS Example Engineering Methodology Coding Requirements, Algorithm, Example, Coding Testing and Debugging Testing methodologies Test

47 views • 3 slides
Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda mulix@mulix.org IBM Haifa Research Lab Kernel Debugging, Haifux 2003 p.1/19 Kernel Debugging - Why? Why would we want to debug the kernel? after

308 views • 19 slides

More recommend