Error Propagation Analyses for Shared-Memory Systems

Slide Deck Availability

https://www.stefan-winter.net/presentations/shared-memory_EPA.html

Problem Magnitude

1. How many defects in external dependencies?

   • NASA: 0.1 defects/KLOC after deployment (Dvorak 2009)
   • For commodity software: ~1 defect/KLOC good

Fault Containment

// Your Program

void printSum(int a, int b) {
-  printf(“%d”, a – b);
+  printf(“%d”, a + b);
}

Error Propagation Analyses (EPA)

How do defects in one component affect other components?

Three Steps:

1. Inject defect into external component

2. Execute program

3. Detect behavioral deviations

Trace Comparison Example

Alignment of longest common sub-sequences (Hunt and Szymanski 1977)

Experimental Evaluation

User code: Developer tests

Results

Memory Corruptions Are Frequent

• 38.2% of all experiments
• 61.8% showed no effects
  • Not uncommon for fault injections
  • No activation
  • No propagation

Results

Memory Corruptions Are Large

Limitations

Scalability

• Trace size
• Dynamic binary instrumentation overheads

Scalability Improvement

Debugger-based introspection

• Break-points at library function call/return (call-site)
• Ad-hoc reachability graph construction
  • Entry: Determine root-set (parameters, return value)
  • Exit: Dump root-set-reachable data
• Comparison across clean/faulty runs

Applied EPA

Source: (Palix et al. 2011)

Shared-Memory EPA for Unknown User Code

• Unknown call-sites for driver code
• Memory visible everywhere
• No dynamic binary instrumentation
• kgdb, but where to set breakpoints

TrEKer (Coppik et al. 2017)

Summary