SlideShare ist ein Scribd-Unternehmen logo

Parsing and Type checking all 2^10000 configurations of the Linux kernel

‱
‱
C
chk49

In many projects, lexical preprocessors are used to manage different configurations of the project with conditional compilation. Unfortunately, while being a simple way to implement variability, conditional compilation and lexical preprocessor macros hinder automatic analysis, even though such analysis is urgently needed to combat variability-induced complexity. To analyze code with its variability, we need to parse it without preprocessing it. However, current parsing solutions use unsound heuristics, support only a subset of the language, or suffer from exponential explosion. We introduce a novel variability-aware parser that can parse unpreprocessed code without heuristics. On top of parsing, which detects syntax errors in all configurations, we have constructed a variability-aware type system and module system that additionally detect other compiler-time errors. With this infrastructure, we are in the process of checking the entire Linux kernel with 10000 compile-time configuration options and, hence, up to 2^10000 configurations for syntax and type errors.

Technologie
1 von 68
Downloaden Sie, um offline zu lesen
Parsing and Type checking all 210000 configurations of the Linux kernel 10,000 features, 6 million lines of C code Christian KĂ€stner
Feature-Oriented Product Lines
Database Engine
Printer Firmware
Linux Kernel
7
Software Product Lines Boeing Bosch Group in Industry Cummins, Inc. Ericsson General Dynamics General Motors Hewlett Packard Lockheed Martin Lucent NASA Nokia Philips Siemens 

Variability ~ Complexity
33 features optional, independent a unique configuration for every person on this planet
320 features optional, independent more configurations than estimated atoms in the universe
Correctness?
Product-Line Implementation
static int _rep_queue_filedone( Excerpt from DB_ENV *dbenv, Oracle’s Berkeley DB REP *rep, __rep_fileinfo_args *rfp) { #ifdef NO_QUEUE COMPQUIET(rep, NULL); COMPQUIET(rfp, NULL); return (__db_no_queue_am(dbenv)); #else db_pgno_t first, last; u_int32_t flags; int empty, ret, t_ret; #ifdef DIAGNOSTIC DB_MSGBUF mb; #endif // over 100 lines of add. code } #endif Conditional Compilation
static int _rep_queue_filedone( Excerpt from DB_ENV *dbenv, Oracle’s Berkeley DB REP *rep, __rep_fileinfo_args *rfp) { #ifdef NO_QUEUE COMPQUIET(rep, NULL); COMPQUIET(rfp, NULL); return (__db_no_queue_am(dbenv)); #else db_pgno_t first, last; u_int32_t flags; int empty, ret, t_ret; #ifdef X #ifdef DIAGNOSTIC DB_MSGBUF mb;void foo(); #endif #endif // over 100 lines of add. code } void bar() { #endif foo(); } Conditional Compilation
Objections / Criticism Designed in the 70th and hardly evolved since “#ifdef considered harmful” “#ifdef hell” “maintenance becomes a ‘hit or miss’ process” “is difficult to determine if the code being viewed is actually compiled into the system” “incomprehensible source texts” “programming errors are easy “CPP makes maintenance difficult” to make and difficult to detect” “source code rapidly “preprocessor diagnostics are poor” becomes a maze”
[ICSE’08,ASE’08,Tools‘09,GPCE’09,EASE‘11,..] Views Visual representation Disciplined mapping Consistency checking Refactorings 
 open source, fosd.net/cide Virtual Separation of Concerns
10,000 features, 6 million lines of C code
[ICSE’10, AOSD‘11] 40 Open-Source C Projects apache, berkely db, cherokee, clamav, dia, emacs, freebsd, gcc, Number of features ghostscript, gimp, glibc, gnumeric, gnuplot, irssi, libxml, lighttpd, linux, lynx, minix, mplayer, mpsolve, openldap, opensolaris, openvpn, parrot, php, pidgin, postgresql, privoxy, python, sendmail, sqlite, subversion, sylpheed, tcl, vim, xfig, xine-lib, xorg-server, xterm Lines of code
Correctness?
Printer Firmware
Checking Products 2000 Features 100 Printers 30 New Printers per Year Printer Firmware
Checking Products 10000 Features 210000 Configurations Linux Kernel
Checking Product Line Implementation with 10000 Features + Generator Linux Kernel
Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

Product Generation Variability-Aware Conventional Analysis Analysis
We aim for a sound and complete approach
Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

References Conflicts
Presence Conditions WORLD BYE true true
Reachability: pc(caller) -> pc(target) Conflicts: ¬(pc(def1) ˄ pc(def2)) ¬ (WORLD ˄ BYE) true -> (WORLD v BYE) true -> true
Reachability: pc(caller) -> pc(target) Conflicts: ¬(pc(def1) ˄ pc(def2)) ¬ (WORLD ˄ BYE) Found 2 type errors: - [WORLD & BYE] file hello.c:8:8v BYE) true -> (WORLD redefinition of msg true [!WORLD & !BYE] file hello.c:11:8 - -> true msg undeclared
P Variability Model: WORLD BYE VM ->¬ (WORLD ˄ BYE) VM -> (true -> (WORLD v BYE)) VM -> (true -> true)
AST with Variability Information true -> true greet.c 
 printf VWORLD VBYE main msg Δ msg Δ printf ÂŹ (WORLD ˄ BYE) true -> (WORLD v BYE) msg WORLD BYE 35 Extended Lookup Mechanism
[ASE’08, TOSEM‘11] Formalization: CFJ Theorem (Product Generation Preserves Typing): All products that are generated for valid feature selections from a well-typed product line are well typed.
Product Generation Variability-Aware Conventional Analysis Analysis
Surface Complexity Inherent Complexity SAT Problem
[TOSEM‘11] Product Line LOC Features Products Time per Time f. Product entire (sec) Product Line (sec) MobileMedia 5700 14 2784 0.3 2 Mobile RSS 20 000 14 2048 1 8 Reader Lampiro 45 000 11 2048 2 19 Berkeley DB 70 000 42 3.6 billion 3 21
[ICSE’10, AOSD‘11] 40 Open-Source C Projects apache, berkely db, cherokee, clamav, dia, variable code in C files (in %) emacs, freebsd, gcc, ghostscript, gimp, glibc, gnumeric, gnuplot, irssi, libxml, lighttpd, linux, lynx, minix, mplayer, mpsolve, openldap, opensolaris, openvpn, parrot, php, pidgin, postgresql, privoxy, python, sendmail, sqlite, subversion, sylpheed, tcl, vim, xfig, xine-lib, xorg-server, xterm Lines of code
Parse Type Check greet. c 
 VWORL printf VBYE main .c D msg Δ msg Δ printf Linker checks msg greet. c 
 VWORL printf VBYE main .c D msg Δ msg Δ printf msg greet. c 
 VWORL printf VBYE main D .c msg Δ msg Δ printf msg
Challenges Real-world C code C preprocessor Huge size Module system / linker checks
Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

[OOPSLA‘11] greet.c 
 printf VWORLD VBYE main msg Δ msg Δ printf msg AST with Variability Information
Parsing C without Preprocessing
Macro expansion Undisciplined needed for parsing annotations Alternative macros ? ? ? greet.c + printf VWORLD VBYE + main + msg Δ + msg Δ printf msg
Previous Solutions Disciplined Subset Requires Code Preparation Heuristics and Partial Analysis Inaccurate, False Positives Brute Force Infeasible Effort
TypeChef ( + 2 Variability-Aware * Variability-Aware 3 * VA Lexer ) + Parser 4A 5ÂŹA 2 3 4 5 Variability-Aware Analysis https://github.com/ckaestne/TypeChef
[OOPSLA‘11] 4A (¬A 4¬A˄B +¬A˄B 6¬A )¬A true ( 3 + ) 4¬A˄B +¬A˄B 6¬A 4A (¬A )¬A + 4¬A˄B +¬A˄B 6¬A 3 VA 4 VB Library of + 6 Variability-Aware Parser Combinators 4 6 in Scala
7665 C files (x86) 0 353 included header files per C file 0 8590 distinct macros per C file 0 72 % conditional 0 30 seconds per file (median) 0 2.6.33.3 X86 0 syntax errors
Type Checking 20 seconds per file 2.6.33.3 X86
511 files 260.000 lines of C code 811 features 51 minutes parsing 6 minutes type checking 4 seconds linker checking Type Checking BusyBox
//
 skipped 260 lines struct globals { double cur_time; //
 skipped 11 lines #if ENABLE_FEATURE_NTPD_SERVER int listen_fd; #endif unsigned verbose; //
 skipped 73 lines }; //
 skipped 1761 lines int ntpd_main(int argc UNUSED_PARAM, char **argv) { #undef G struct globals G; //
 skipped 81 lines if (i > (ENABLE_FEATURE_NTPD_SERVER && G.listen_fd != -1)) { 
 ntpd.c: 2128 } 
 } [CONFIG_NTPD && !CONFIG_FEATURE_NTPD_SERVER] field listen_fd unknown in struct globals
FUTURE DIRECTIONS
Correctness?
Product Generation Variability-Aware Conventional Analysis Analysis
Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

Product-Line Evolution 615 trillion config. 553 quintillion config.
[GPCE’09; Grant Prop.] Reengineering Variability #ifdef plug-ins parameters feature modules branches in VCS aspects clones disciplined annotations domain knowledge runtime variability Disciplined Legacy System refactoring Variability Implementation
Compositional Approaches [ICSE’09, J.ASE’10, SCP’10, TSE’12] Base / Platform class Stack { void push(Object o) { elementData[size++] = o; } ... } class Stack { void push(Object o) { Lock l = lock(o); Feature: Queue elementData[size++] = o; refines class Stack { Composition } l.unlock(); ... void push(Object o) { Lock l = lock(o); } Super.push(o); l.unlock(); } ... } Module Components Feature: Diagnostic Frameworks, Plug-ins aspect Diagnostics { ... Feature-Modules / Mixin Layers / 
 } Aspects / Subjects, Hyper/J, Deltas
Predicting [SPLC’11, SQJ’11, ICSE’12] Nonfunctional Properties
[AOSD’11 ESEM’11, EASE’11] Empirical methods & human factors
Domain- Specific Languages: SugarJ [GPCE’11, OOPSLA’11] Runtime Updates for Java [APSEC’08, J. SP&E’11]
Parsing and Type Checking all 210000 Configurations of the Linux Kernel greet.c 4 ( 4ÂŹA˄B +ÂŹA˄B 6ÂŹA )ÂŹA true 
 ( 3 + ) printf VWORLD VBYE main 4ÂŹA˄B +ÂŹA˄B 6ÂŹA 4 ( )ÂŹA 4ÂŹA˄B +ÂŹA˄B 6ÂŹA msg Δ msg Δ printf msg https://github.com/ckaestne/TypeChef
TypeChef (Analyzing Real-World C Code) Virtual Separation of Concerns (Tool Support for Annotation-Based Variability Implementation) Aspect-Oriented Decomposition of Berkeley DB AOP Compiler Extensions M.Sc. Ph.D. Thesis Post Doc Thesis 1982
 2006 2007 2008 2009 2010 2011 2012 Austin, Texas Magdeburg, Germany Marburg, Germany

Empfohlen

XS Boston 2008 Paravirt Ops in Linux IA64
XS Boston 2008 Paravirt Ops in Linux IA64XS Boston 2008 Paravirt Ops in Linux IA64
XS Boston 2008 Paravirt Ops in Linux IA64
The Linux Foundation
 
Implement Checkpointing for Android
Implement Checkpointing for AndroidImplement Checkpointing for Android
Implement Checkpointing for Android
National Cheng Kung University
 
Implement Checkpointing for Android (ELCE2012)
Implement Checkpointing for Android (ELCE2012)Implement Checkpointing for Android (ELCE2012)
Implement Checkpointing for Android (ELCE2012)
National Cheng Kung University
 
Reconstructing Gapz: Position-Independent Code Analysis Problem
Reconstructing Gapz: Position-Independent Code Analysis ProblemReconstructing Gapz: Position-Independent Code Analysis Problem
Reconstructing Gapz: Position-Independent Code Analysis Problem
Alex Matrosov
 
PVS-Studio
PVS-Studio PVS-Studio
PVS-Studio
PVS-Studio
 
Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)
Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)
Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)
Tao Xie
 
Operating Systems Meet Fault Tolerance
Operating Systems Meet Fault ToleranceOperating Systems Meet Fault Tolerance
Operating Systems Meet Fault Tolerance
Vasily Sartakov
 
SeqinR - biological data handling
SeqinR - biological data handlingSeqinR - biological data handling
SeqinR - biological data handling
pau_corral
 

Empfohlen

XS Boston 2008 Paravirt Ops in Linux IA64
XS Boston 2008 Paravirt Ops in Linux IA64XS Boston 2008 Paravirt Ops in Linux IA64
XS Boston 2008 Paravirt Ops in Linux IA64
The Linux Foundation
 
Implement Checkpointing for Android
Implement Checkpointing for AndroidImplement Checkpointing for Android
Implement Checkpointing for Android
National Cheng Kung University
 
Implement Checkpointing for Android (ELCE2012)
Implement Checkpointing for Android (ELCE2012)Implement Checkpointing for Android (ELCE2012)
Implement Checkpointing for Android (ELCE2012)
National Cheng Kung University
 
Reconstructing Gapz: Position-Independent Code Analysis Problem
Reconstructing Gapz: Position-Independent Code Analysis ProblemReconstructing Gapz: Position-Independent Code Analysis Problem
Reconstructing Gapz: Position-Independent Code Analysis Problem
Alex Matrosov
 
PVS-Studio
PVS-Studio PVS-Studio
PVS-Studio
PVS-Studio
 
Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)
Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)
Making Exceptions on Exception Handling (WEH 2012 Keynote Speech)
Tao Xie
 
Operating Systems Meet Fault Tolerance
Operating Systems Meet Fault ToleranceOperating Systems Meet Fault Tolerance
Operating Systems Meet Fault Tolerance
Vasily Sartakov
 
SeqinR - biological data handling
SeqinR - biological data handlingSeqinR - biological data handling
SeqinR - biological data handling
pau_corral
 
ADB(Android Debug Bridge): How it works?
ADB(Android Debug Bridge): How it works?ADB(Android Debug Bridge): How it works?
ADB(Android Debug Bridge): How it works?
Tetsuyuki Kobayashi
 
Checkpoint/Restore: are we there yet?
Checkpoint/Restore: are we there yet?Checkpoint/Restore: are we there yet?
Checkpoint/Restore: are we there yet?
Kirill Kolyshkin
 
Supercharging Cassandra - GOTO Amsterdam
Supercharging Cassandra - GOTO AmsterdamSupercharging Cassandra - GOTO Amsterdam
Supercharging Cassandra - GOTO Amsterdam
Acunu
 
Java se7 features
Java se7 featuresJava se7 features
Java se7 features
Kumaraswamy M
 
Me3D: A Model-driven Methodology Expediting Embedded Device Driver Development
Me3D: A Model-driven Methodology Expediting Embedded Device Driver DevelopmentMe3D: A Model-driven Methodology Expediting Embedded Device Driver Development
Me3D: A Model-driven Methodology Expediting Embedded Device Driver Development
huichenphd
 
Mv unmasked.w.code.march.2013
Mv unmasked.w.code.march.2013Mv unmasked.w.code.march.2013
Mv unmasked.w.code.march.2013
EDB
 
What is new and cool j2se & java
What is new and cool j2se & javaWhat is new and cool j2se & java
What is new and cool j2se & java
Eugene Bogaart
 
Variability-Aware Parsing -- OOPSLA Talk
Variability-Aware Parsing -- OOPSLA TalkVariability-Aware Parsing -- OOPSLA Talk
Variability-Aware Parsing -- OOPSLA Talk
chk49
 
Virtual Separation of Concerns (2011 Update)
Virtual Separation of Concerns (2011 Update)Virtual Separation of Concerns (2011 Update)
Virtual Separation of Concerns (2011 Update)
chk49
 
Semseo socialamedier-hr
Semseo socialamedier-hrSemseo socialamedier-hr
Semseo socialamedier-hr
Peter Tilling
 
Virtual Separation of Concerns
Virtual Separation of ConcernsVirtual Separation of Concerns
Virtual Separation of Concerns
chk49
 
Seeing Software
Seeing SoftwareSeeing Software
Seeing Software
Michele Lanza
 
Variability-Aware Analysis (FOSD Dagstuhl 2011)
Variability-Aware Analysis (FOSD Dagstuhl 2011)Variability-Aware Analysis (FOSD Dagstuhl 2011)
Variability-Aware Analysis (FOSD Dagstuhl 2011)
chk49
 
Hype vs. Reality: The AI Explainer
Hype vs. Reality: The AI ExplainerHype vs. Reality: The AI Explainer
Hype vs. Reality: The AI Explainer
Luminary Labs
 
Genode Compositions
Genode CompositionsGenode Compositions
Genode Compositions
Vasily Sartakov
 
Direct Code Execution - LinuxCon Japan 2014
Direct Code Execution - LinuxCon Japan 2014Direct Code Execution - LinuxCon Japan 2014
Direct Code Execution - LinuxCon Japan 2014
Hajime Tazaki
 
PVS-Studio, a solution for resource intensive applications development
PVS-Studio, a solution for resource intensive applications developmentPVS-Studio, a solution for resource intensive applications development
PVS-Studio, a solution for resource intensive applications development
OOO "Program Verification Systems"
 
Android RenderScript on LLVM
Android RenderScript on LLVMAndroid RenderScript on LLVM
Android RenderScript on LLVM
John Lee
 
Anton Moldovan "Building an efficient replication system for thousands of ter...
Anton Moldovan "Building an efficient replication system for thousands of ter...Anton Moldovan "Building an efficient replication system for thousands of ter...
Anton Moldovan "Building an efficient replication system for thousands of ter...
Fwdays
 
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Anne Nicolas
 
How to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsHow to Test Enterprise Java Applications
How to Test Enterprise Java Applications
Alex Soto
 
Challenges in Debugging Bootstraps of Reflective Kernels
Challenges in Debugging Bootstraps of Reflective KernelsChallenges in Debugging Bootstraps of Reflective Kernels
Challenges in Debugging Bootstraps of Reflective Kernels
ESUG
 

Weitere Àhnliche Inhalte

Was ist angesagt?

ADB(Android Debug Bridge): How it works?
ADB(Android Debug Bridge): How it works?ADB(Android Debug Bridge): How it works?
ADB(Android Debug Bridge): How it works?
Tetsuyuki Kobayashi
 
Supercharging Cassandra - GOTO Amsterdam
Supercharging Cassandra - GOTO AmsterdamSupercharging Cassandra - GOTO Amsterdam
Supercharging Cassandra - GOTO Amsterdam
Acunu
 
Me3D: A Model-driven Methodology Expediting Embedded Device Driver Development
Me3D: A Model-driven Methodology Expediting Embedded Device Driver DevelopmentMe3D: A Model-driven Methodology Expediting Embedded Device Driver Development
Me3D: A Model-driven Methodology Expediting Embedded Device Driver Development
huichenphd
 
Mv unmasked.w.code.march.2013
Mv unmasked.w.code.march.2013Mv unmasked.w.code.march.2013
Mv unmasked.w.code.march.2013
EDB
 
What is new and cool j2se & java
What is new and cool j2se & javaWhat is new and cool j2se & java
What is new and cool j2se & java
Eugene Bogaart
 

Was ist angesagt? (7)

ADB(Android Debug Bridge): How it works?
ADB(Android Debug Bridge): How it works?ADB(Android Debug Bridge): How it works?
ADB(Android Debug Bridge): How it works?
 
Checkpoint/Restore: are we there yet?
Checkpoint/Restore: are we there yet?Checkpoint/Restore: are we there yet?
Checkpoint/Restore: are we there yet?
 
Supercharging Cassandra - GOTO Amsterdam
Supercharging Cassandra - GOTO AmsterdamSupercharging Cassandra - GOTO Amsterdam
Supercharging Cassandra - GOTO Amsterdam
 
Java se7 features
Java se7 featuresJava se7 features
Java se7 features
 
Me3D: A Model-driven Methodology Expediting Embedded Device Driver Development
Me3D: A Model-driven Methodology Expediting Embedded Device Driver DevelopmentMe3D: A Model-driven Methodology Expediting Embedded Device Driver Development
Me3D: A Model-driven Methodology Expediting Embedded Device Driver Development
 
Mv unmasked.w.code.march.2013
Mv unmasked.w.code.march.2013Mv unmasked.w.code.march.2013
Mv unmasked.w.code.march.2013
 
What is new and cool j2se & java
What is new and cool j2se & javaWhat is new and cool j2se & java
What is new and cool j2se & java
 

Andere mochten auch

Andere mochten auch (7)

Variability-Aware Parsing -- OOPSLA Talk
Variability-Aware Parsing -- OOPSLA TalkVariability-Aware Parsing -- OOPSLA Talk
Variability-Aware Parsing -- OOPSLA Talk
 
Virtual Separation of Concerns (2011 Update)
Virtual Separation of Concerns (2011 Update)Virtual Separation of Concerns (2011 Update)
Virtual Separation of Concerns (2011 Update)
 
Semseo socialamedier-hr
Semseo socialamedier-hrSemseo socialamedier-hr
Semseo socialamedier-hr
 
Virtual Separation of Concerns
Virtual Separation of ConcernsVirtual Separation of Concerns
Virtual Separation of Concerns
 
Seeing Software
Seeing SoftwareSeeing Software
Seeing Software
 
Variability-Aware Analysis (FOSD Dagstuhl 2011)
Variability-Aware Analysis (FOSD Dagstuhl 2011)Variability-Aware Analysis (FOSD Dagstuhl 2011)
Variability-Aware Analysis (FOSD Dagstuhl 2011)
 
Hype vs. Reality: The AI Explainer
Hype vs. Reality: The AI ExplainerHype vs. Reality: The AI Explainer
Hype vs. Reality: The AI Explainer
 

Ähnlich wie Parsing and Type checking all 2^10000 configurations of the Linux kernel

Direct Code Execution - LinuxCon Japan 2014
Direct Code Execution - LinuxCon Japan 2014Direct Code Execution - LinuxCon Japan 2014
Direct Code Execution - LinuxCon Japan 2014
Hajime Tazaki
 
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Anne Nicolas
 
Using Smalltalk for controlling robotics systems
Using Smalltalk for controlling robotics systemsUsing Smalltalk for controlling robotics systems
Using Smalltalk for controlling robotics systems
Serge Stinckwich
 
Build Programming Language Runtime with LLVM
Build Programming Language Runtime with LLVMBuild Programming Language Runtime with LLVM
Build Programming Language Runtime with LLVM
National Cheng Kung University
 
æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“
æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“ æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“
æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“
National Cheng Kung University
 
PIL - A Platform Independent Language
PIL - A Platform Independent LanguagePIL - A Platform Independent Language
PIL - A Platform Independent Language
zefhemel
 
SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1
SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1
SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1
Benton "Ben" Bovée
 

Ähnlich wie Parsing and Type checking all 2^10000 configurations of the Linux kernel (20)

Genode Compositions
Genode CompositionsGenode Compositions
Genode Compositions
 
Direct Code Execution - LinuxCon Japan 2014
Direct Code Execution - LinuxCon Japan 2014Direct Code Execution - LinuxCon Japan 2014
Direct Code Execution - LinuxCon Japan 2014
 
PVS-Studio, a solution for resource intensive applications development
PVS-Studio, a solution for resource intensive applications developmentPVS-Studio, a solution for resource intensive applications development
PVS-Studio, a solution for resource intensive applications development
 
Android RenderScript on LLVM
Android RenderScript on LLVMAndroid RenderScript on LLVM
Android RenderScript on LLVM
 
Anton Moldovan "Building an efficient replication system for thousands of ter...
Anton Moldovan "Building an efficient replication system for thousands of ter...Anton Moldovan "Building an efficient replication system for thousands of ter...
Anton Moldovan "Building an efficient replication system for thousands of ter...
 
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
Kernel Recipes 2018 - 10 years of automated evolution in the Linux kernel - J...
 
How to Test Enterprise Java Applications
How to Test Enterprise Java ApplicationsHow to Test Enterprise Java Applications
How to Test Enterprise Java Applications
 
Challenges in Debugging Bootstraps of Reflective Kernels
Challenges in Debugging Bootstraps of Reflective KernelsChallenges in Debugging Bootstraps of Reflective Kernels
Challenges in Debugging Bootstraps of Reflective Kernels
 
Squeak DBX
Squeak DBXSqueak DBX
Squeak DBX
 
Using Smalltalk for controlling robotics systems
Using Smalltalk for controlling robotics systemsUsing Smalltalk for controlling robotics systems
Using Smalltalk for controlling robotics systems
 
Introduction to .NET
Introduction to .NETIntroduction to .NET
Introduction to .NET
 
Build Programming Language Runtime with LLVM
Build Programming Language Runtime with LLVMBuild Programming Language Runtime with LLVM
Build Programming Language Runtime with LLVM
 
æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“
æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“ æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“
æ·șè«‡æŽąçŽą Linux çł»ç”±èš­èšˆäč‹é“
 
PIL - A Platform Independent Language
PIL - A Platform Independent LanguagePIL - A Platform Independent Language
PIL - A Platform Independent Language
 
Linux kernel bug hunting
Linux kernel bug huntingLinux kernel bug hunting
Linux kernel bug hunting
 
App container rkt
App container rktApp container rkt
App container rkt
 
Azure Day Rome Reloaded 2019 - Deconstructing Kubernetes using AKS
Azure Day Rome Reloaded 2019 - Deconstructing Kubernetes using AKSAzure Day Rome Reloaded 2019 - Deconstructing Kubernetes using AKS
Azure Day Rome Reloaded 2019 - Deconstructing Kubernetes using AKS
 
olibc: Another C Library optimized for Embedded Linux
olibc: Another C Library optimized for Embedded Linuxolibc: Another C Library optimized for Embedded Linux
olibc: Another C Library optimized for Embedded Linux
 
SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1
SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1
SSTC-2012 BenKBovée 2933a_Backup Slides 26-Apr 1130-1300 Track1
 
Harmonia open iris_basic_v0.1
Harmonia open iris_basic_v0.1Harmonia open iris_basic_v0.1
Harmonia open iris_basic_v0.1
 

KĂŒrzlich hochgeladen

Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 

KĂŒrzlich hochgeladen (20)

Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
Top 10 Most Downloaded Games on Play Store in 2024
Top 10 Most Downloaded Games on Play Store in 2024Top 10 Most Downloaded Games on Play Store in 2024
Top 10 Most Downloaded Games on Play Store in 2024
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 

Parsing and Type checking all 2^10000 configurations of the Linux kernel

  • 1. Parsing and Type checking all 210000 configurations of the Linux kernel 10,000 features, 6 million lines of C code Christian KĂ€stner
  • 2.
  • 7. 7
  • 8. Software Product Lines Boeing Bosch Group in Industry Cummins, Inc. Ericsson General Dynamics General Motors Hewlett Packard Lockheed Martin Lucent NASA Nokia Philips Siemens 

  • 10. 33 features optional, independent a unique configuration for every person on this planet
  • 11. 320 features optional, independent more configurations than estimated atoms in the universe
  • 14. static int _rep_queue_filedone( Excerpt from DB_ENV *dbenv, Oracle’s Berkeley DB REP *rep, __rep_fileinfo_args *rfp) { #ifdef NO_QUEUE COMPQUIET(rep, NULL); COMPQUIET(rfp, NULL); return (__db_no_queue_am(dbenv)); #else db_pgno_t first, last; u_int32_t flags; int empty, ret, t_ret; #ifdef DIAGNOSTIC DB_MSGBUF mb; #endif // over 100 lines of add. code } #endif Conditional Compilation
  • 15. static int _rep_queue_filedone( Excerpt from DB_ENV *dbenv, Oracle’s Berkeley DB REP *rep, __rep_fileinfo_args *rfp) { #ifdef NO_QUEUE COMPQUIET(rep, NULL); COMPQUIET(rfp, NULL); return (__db_no_queue_am(dbenv)); #else db_pgno_t first, last; u_int32_t flags; int empty, ret, t_ret; #ifdef X #ifdef DIAGNOSTIC DB_MSGBUF mb;void foo(); #endif #endif // over 100 lines of add. code } void bar() { #endif foo(); } Conditional Compilation
  • 16. Objections / Criticism Designed in the 70th and hardly evolved since “#ifdef considered harmful” “#ifdef hell” “maintenance becomes a ‘hit or miss’ process” “is difficult to determine if the code being viewed is actually compiled into the system” “incomprehensible source texts” “programming errors are easy “CPP makes maintenance difficult” to make and difficult to detect” “source code rapidly “preprocessor diagnostics are poor” becomes a maze”
  • 17. [ICSE’08,ASE’08,Tools‘09,GPCE’09,EASE‘11,..] Views Visual representation Disciplined mapping Consistency checking Refactorings 
 open source, fosd.net/cide Virtual Separation of Concerns
  • 18. 10,000 features, 6 million lines of C code
  • 19. [ICSE’10, AOSD‘11] 40 Open-Source C Projects apache, berkely db, cherokee, clamav, dia, emacs, freebsd, gcc, Number of features ghostscript, gimp, glibc, gnumeric, gnuplot, irssi, libxml, lighttpd, linux, lynx, minix, mplayer, mpsolve, openldap, opensolaris, openvpn, parrot, php, pidgin, postgresql, privoxy, python, sendmail, sqlite, subversion, sylpheed, tcl, vim, xfig, xine-lib, xorg-server, xterm Lines of code
  • 22. Checking Products 2000 Features 100 Printers 30 New Printers per Year Printer Firmware
  • 23. Checking Products 10000 Features 210000 Configurations Linux Kernel
  • 24. Checking Product Line Implementation with 10000 Features + Generator Linux Kernel
  • 25. Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

  • 26. Product Generation Variability-Aware Conventional Analysis Analysis
  • 27. We aim for a sound and complete approach
  • 28. Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

  • 29.
  • 30. References Conflicts
  • 31. Presence Conditions WORLD BYE true true
  • 32. Reachability: pc(caller) -> pc(target) Conflicts: ÂŹ(pc(def1) ˄ pc(def2)) ÂŹ (WORLD ˄ BYE) true -> (WORLD v BYE) true -> true
  • 33. Reachability: pc(caller) -> pc(target) Conflicts: ÂŹ(pc(def1) ˄ pc(def2)) ÂŹ (WORLD ˄ BYE) Found 2 type errors: - [WORLD & BYE] file hello.c:8:8v BYE) true -> (WORLD redefinition of msg true [!WORLD & !BYE] file hello.c:11:8 - -> true msg undeclared
  • 34. P Variability Model: WORLD BYE VM ->ÂŹ (WORLD ˄ BYE) VM -> (true -> (WORLD v BYE)) VM -> (true -> true)
  • 35. AST with Variability Information true -> true greet.c 
 printf VWORLD VBYE main msg Δ msg Δ printf ÂŹ (WORLD ˄ BYE) true -> (WORLD v BYE) msg WORLD BYE 35 Extended Lookup Mechanism
  • 36. [ASE’08, TOSEM‘11] Formalization: CFJ Theorem (Product Generation Preserves Typing): All products that are generated for valid feature selections from a well-typed product line are well typed.
  • 37. Product Generation Variability-Aware Conventional Analysis Analysis
  • 38. Surface Complexity Inherent Complexity SAT Problem
  • 39. [TOSEM‘11] Product Line LOC Features Products Time per Time f. Product entire (sec) Product Line (sec) MobileMedia 5700 14 2784 0.3 2 Mobile RSS 20 000 14 2048 1 8 Reader Lampiro 45 000 11 2048 2 19 Berkeley DB 70 000 42 3.6 billion 3 21
  • 40. [ICSE’10, AOSD‘11] 40 Open-Source C Projects apache, berkely db, cherokee, clamav, dia, variable code in C files (in %) emacs, freebsd, gcc, ghostscript, gimp, glibc, gnumeric, gnuplot, irssi, libxml, lighttpd, linux, lynx, minix, mplayer, mpsolve, openldap, opensolaris, openvpn, parrot, php, pidgin, postgresql, privoxy, python, sendmail, sqlite, subversion, sylpheed, tcl, vim, xfig, xine-lib, xorg-server, xterm Lines of code
  • 41.
  • 42. Parse Type Check greet. c 
 VWORL printf VBYE main .c D msg Δ msg Δ printf Linker checks msg greet. c 
 VWORL printf VBYE main .c D msg Δ msg Δ printf msg greet. c 
 VWORL printf VBYE main D .c msg Δ msg Δ printf msg
  • 43. Challenges Real-world C code C preprocessor Huge size Module system / linker checks
  • 44. Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

  • 45. [OOPSLA‘11] greet.c 
 printf VWORLD VBYE main msg Δ msg Δ printf msg AST with Variability Information
  • 46. Parsing C without Preprocessing
  • 47. Macro expansion Undisciplined needed for parsing annotations Alternative macros ? ? ? greet.c + printf VWORLD VBYE + main + msg Δ + msg Δ printf msg
  • 48.
  • 49.
  • 50. Previous Solutions Disciplined Subset Requires Code Preparation Heuristics and Partial Analysis Inaccurate, False Positives Brute Force Infeasible Effort
  • 51. TypeChef ( + 2 Variability-Aware * Variability-Aware 3 * VA Lexer ) + Parser 4A 5ÂŹA 2 3 4 5 Variability-Aware Analysis https://github.com/ckaestne/TypeChef
  • 52. [OOPSLA‘11] 4A (ÂŹA 4ÂŹA˄B +ÂŹA˄B 6ÂŹA )ÂŹA true ( 3 + ) 4ÂŹA˄B +ÂŹA˄B 6ÂŹA 4A (ÂŹA )ÂŹA + 4ÂŹA˄B +ÂŹA˄B 6ÂŹA 3 VA 4 VB Library of + 6 Variability-Aware Parser Combinators 4 6 in Scala
  • 53. 7665 C files (x86) 0 353 included header files per C file 0 8590 distinct macros per C file 0 72 % conditional 0 30 seconds per file (median) 0 2.6.33.3 X86 0 syntax errors
  • 54. Type Checking 20 seconds per file 2.6.33.3 X86
  • 55. 511 files 260.000 lines of C code 811 features 51 minutes parsing 6 minutes type checking 4 seconds linker checking Type Checking BusyBox
  • 56. //
 skipped 260 lines struct globals { double cur_time; //
 skipped 11 lines #if ENABLE_FEATURE_NTPD_SERVER int listen_fd; #endif unsigned verbose; //
 skipped 73 lines }; //
 skipped 1761 lines int ntpd_main(int argc UNUSED_PARAM, char **argv) { #undef G struct globals G; //
 skipped 81 lines if (i > (ENABLE_FEATURE_NTPD_SERVER && G.listen_fd != -1)) { 
 ntpd.c: 2128 } 
 } [CONFIG_NTPD && !CONFIG_FEATURE_NTPD_SERVER] field listen_fd unknown in struct globals
  • 59. Product Generation Variability-Aware Conventional Analysis Analysis
  • 60. Variability-Aware Analysis Parser Type System Static Analysis Bug Finding Testing Model Checking Theorem Proving 

  • 61. Product-Line Evolution 615 trillion config. 553 quintillion config.
  • 62. [GPCE’09; Grant Prop.] Reengineering Variability #ifdef plug-ins parameters feature modules branches in VCS aspects clones disciplined annotations domain knowledge runtime variability Disciplined Legacy System refactoring Variability Implementation
  • 63. Compositional Approaches [ICSE’09, J.ASE’10, SCP’10, TSE’12] Base / Platform class Stack { void push(Object o) { elementData[size++] = o; } ... } class Stack { void push(Object o) { Lock l = lock(o); Feature: Queue elementData[size++] = o; refines class Stack { Composition } l.unlock(); ... void push(Object o) { Lock l = lock(o); } Super.push(o); l.unlock(); } ... } Module Components Feature: Diagnostic Frameworks, Plug-ins aspect Diagnostics { ... Feature-Modules / Mixin Layers / 
 } Aspects / Subjects, Hyper/J, Deltas
  • 64. Predicting [SPLC’11, SQJ’11, ICSE’12] Nonfunctional Properties
  • 66. Domain- Specific Languages: SugarJ [GPCE’11, OOPSLA’11] Runtime Updates for Java [APSEC’08, J. SP&E’11]
  • 67. Parsing and Type Checking all 210000 Configurations of the Linux Kernel greet.c 4 ( 4ÂŹA˄B +ÂŹA˄B 6ÂŹA )ÂŹA true 
 ( 3 + ) printf VWORLD VBYE main 4ÂŹA˄B +ÂŹA˄B 6ÂŹA 4 ( )ÂŹA 4ÂŹA˄B +ÂŹA˄B 6ÂŹA msg Δ msg Δ printf msg https://github.com/ckaestne/TypeChef
  • 68. TypeChef (Analyzing Real-World C Code) Virtual Separation of Concerns (Tool Support for Annotation-Based Variability Implementation) Aspect-Oriented Decomposition of Berkeley DB AOP Compiler Extensions M.Sc. Ph.D. Thesis Post Doc Thesis 1982
 2006 2007 2008 2009 2010 2011 2012 Austin, Texas Magdeburg, Germany Marburg, Germany