Tracking bad apples: reporting the origin of null and undefined value errors

Authors:
Michael D. Bond;Nicholas Nethercote;Stephen W. Kent;Samuel Z. Guyer;Kathryn S. McKinley
Affiliations:
University of Texas at Austin, Austin, TX;National ICT Australia, Melbourne, Australia;University of Texas at Austin, Austin, TX;Tufts University, Boston, MA;University of Texas at Austin, Austin, TX
Venue:
Proceedings of the 22nd annual ACM SIGPLAN conference on Object-oriented programming systems and applications
Year:
2007

Citing 21
Cited 16

Dynamic program slicing

PLDI '90 Proceedings of the ACM SIGPLAN 1990 conference on Programming language design and implementation
Exploiting hardware performance counters with flow and context sensitive profiling

Proceedings of the ACM SIGPLAN 1997 conference on Programming language design and implementation
Adaptive optimization in the Jalapeño JVM

OOPSLA '00 Proceedings of the 15th ACM SIGPLAN conference on Object-oriented programming, systems, languages, and applications
A system and language for building system-specific, static analyses

PLDI '02 Proceedings of the ACM SIGPLAN 2002 Conference on Programming language design and implementation
Extended static checking for Java

PLDI '02 Proceedings of the ACM SIGPLAN 2002 Conference on Programming language design and implementation
Java Virtual Machine Specification

Java Virtual Machine Specification
Tracking down software bugs using automatic anomaly detection

Proceedings of the 24th International Conference on Software Engineering
The Jalapeño virtual machine

IBM Systems Journal
Finding bugs is easy

OOPSLA '04 Companion to the 19th annual ACM SIGPLAN conference on Object-oriented programming systems, languages, and applications
AccMon: Automatically Detecting Memory-Related Bugs via Program Counter-Based Invariants

Proceedings of the 37th annual IEEE/ACM International Symposium on Microarchitecture
Scalable statistical bug isolation

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
TraceBack: first fault diagnosis by reconstruction of distributed control flow

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
Rx: treating bugs as allergies---a safe method to survive software failures

Proceedings of the twentieth ACM symposium on Operating systems principles
Evaluating and tuning a static analysis to find null pointer bugs

PASTE '05 Proceedings of the 6th ACM SIGPLAN-SIGSOFT workshop on Program analysis for software tools and engineering
DieHard: probabilistic memory safety for unsafe languages

Proceedings of the 2006 ACM SIGPLAN conference on Programming language design and implementation
The DaCapo benchmarks: java benchmarking development and analysis

Proceedings of the 21st annual ACM SIGPLAN conference on Object-oriented programming systems, languages, and applications
AVIO: detecting atomicity violations via access interleaving invariants

Proceedings of the 12th international conference on Architectural support for programming languages and operating systems
Using Valgrind to detect undefined value errors with bit-precision

ATEC '05 Proceedings of the annual conference on USENIX Annual Technical Conference
Valgrind: a framework for heavyweight dynamic binary instrumentation

Proceedings of the 2007 ACM SIGPLAN conference on Programming language design and implementation
Towards locating execution omission errors

Proceedings of the 2007 ACM SIGPLAN conference on Programming language design and implementation
Enhancing server availability and security through failure-oblivious computing

OSDI'04 Proceedings of the 6th conference on Symposium on Opearting Systems Design & Implementation - Volume 6

Practical Object-Oriented Back-in-Time Debugging

ECOOP '08 Proceedings of the 22nd European conference on Object-Oriented Programming
A small cache of large ranges: Hardware methods for efficiently searching, storing, and updating big dataflow tags

Proceedings of the 41st annual IEEE/ACM International Symposium on Microarchitecture
Go with the flow: profiling copies to find runtime bloat

Proceedings of the 2009 ACM SIGPLAN conference on Programming language design and implementation
Profile-guided static typing for dynamic scripting languages

Proceedings of the 24th ACM SIGPLAN conference on Object oriented programming systems languages and applications
Breadcrumbs: efficient context sensitivity for dynamic bug detection analyses

PLDI '10 Proceedings of the 2010 ACM SIGPLAN conference on Programming language design and implementation
Finding low-utility data structures

PLDI '10 Proceedings of the 2010 ACM SIGPLAN conference on Programming language design and implementation
Formalisation and implementation of an algorithm for bytecode verification of @NonNull types

Science of Computer Programming
Querypoint: moving backwards on wrong values in the buggy execution

Proceedings of the 19th ACM SIGSOFT symposium and the 13th European conference on Foundations of software engineering
QVM: An Efficient Runtime for Detecting Defects in Deployed Systems

ACM Transactions on Software Engineering and Methodology (TOSEM)
Measuring enforcement windows with symbolic trace interpretation: what well-behaved programs say

Proceedings of the 2012 International Symposium on Software Testing and Analysis
Uncovering performance problems in Java applications with reference propagation profiling

Proceedings of the 34th International Conference on Software Engineering
Be conservative: enhancing failure diagnosis with proactive logging

OSDI'12 Proceedings of the 10th USENIX conference on Operating Systems Design and Implementation
Generating sound and effective memory debuggers

Proceedings of the 2013 international symposium on memory management
Jalangi: a selective record-replay and dynamic analysis framework for JavaScript

Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering
Jalangi: a tool framework for concolic testing, selective record-replay, and dynamic analysis of JavaScript

Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering
DeltaPath: Precise and Scalable Calling Context Encoding

Proceedings of Annual IEEE/ACM International Symposium on Code Generation and Optimization

Quantified Score

Hi-index	0.00

Visualization

Abstract

Programs sometimes crash due to unusable values, for example, when Java and C# programs dereference null pointers and when C and C++ programs use undefined values to affect program behavior. A stack trace produced on such a crash identifies the effect of the unusable value, not its cause, and is often not much help to the programmer. This paper presents efficient origin tracking of unusable values; it shows how to record where these values come into existence, correctly propagate them, and report them if they cause an error. The key idea is value piggybacking: when the original program stores an unusable value, value piggybacking instead stores origin information in the spare bits of the unusable value. Modest compiler support alters the program to propagate these modified values through operations such as assignments and comparisons. We evaluate two implementations: the first tracks null pointer origins in a JVM, and the second tracks undefined value origins in a memory-checking tool built with Valgrind. These implementations show that origin tracking via value piggybacking is fast and often useful, and in the Java case, has low enough overhead for use in a production environment.