Presentation is loading. Please wait.

Presentation is loading. Please wait.

Efficient Memory Safety for TinyOS 2.1

Published byOddgeir Olafsen Modified over 5 years ago

Similar presentations

Presentation on theme: "Efficient Memory Safety for TinyOS 2.1"— Presentation transcript:

1 Efficient Memory Safety for TinyOS 2.1
Yang Chen, Nathan Cooprider, Will Archer, Eric Eide, David Gay§, John Regehr School of Computing, University of Utah §Intel Research, Berkeley {chenyang, coop, warcher, eeide, Wireless Sensor Network Safe TinyOS Tool Chain Wireless Sensor Network Annotate Safe TinyOS code run modified nesC compiler enforce safety using Deputy compress error messages app Modify TinyOS to work with Deputy Enforce Deputy’s safety model Reduce overhead Introduction Background The Benefits of Safety Reliable sensor network software is difficult to create: applications are concurrent and distributed hardware-based memory protection is unavailable severe resource constraints necessitate the use of unsafe, low-level languages. TinyOS. TinyOS 2 is the dominant system for programming wireless sensor network devices. A programmer writes a few custom components and links them with components from the TinyOS library. Components are written in nesC, a dialect of C. for (i = 0; i < NUM_BUFFERS; i++) { if (m_pool[i].msg == NULL) break; } if (m_pool[i].msg == NULL) { m_pool[i].msg = _msg; Array Out-of-bounds Deputy. Deputy is a source-to-source compiler for ensuring type and memory safety for c code. A programmer must inform the compiler of this previously implicit information using type annotations. Code compiled by Deputy relies on a mix of compile- and run-time checks to ensure that these annotations are respected, and hence that type and memory safety are respected. Bug Confirmed! Array Out-of-bounds Reboot Normal TinyOS Safe Rebuild Soft state Normal TinyOS: 0% average availability Safe TinyOS: 95% average Array Out-of-bounds Practical Safety for TinyOS interface ReadStream<val_t> { command error_t postBuffer(val_t* buf, uint16_t n); command error_t read(uint32_t usPeriod); event void bufferDone(error_t result, val_t* buf, uint16_t n); event void readDone(error_t result, uint32_t usActualPeriod); } /* code from TinyOS 2.1 */ Null Pointer Dereference Our Goal: Catch all pointer and array bounds errors before they corrupt states; Put wireless sensor network software development on a solid foundation make mica2 safe Increased Availability! Conclusion and Future Work interface ReadStream<val_t> { command error_t postBuffer(val_t* COUNT_NOK(n) buf, uint16_t n); command error_t read(uint32_t usPeriod); event void bufferDone(error_t result, val_t* COUNT_NOK(n) buf, uint16_t n); event void readDone(error_t result, uint32_t usActualPeriod); } /* annotated code */ Our effort shows that Safe TinyOS is a practical system for the development of reliable sensor network software We are currently deploying and actively working on Safe TinyOS. In the near future we plan to: Support platforms other than Mica2, Micaz, and TelosB Integrate Safe TinyOS with a stack depth analysis tool to avoid stack overflows Solve the problem of unsafe accesses to pointers to dead stack frames – these are not covered by Deputy and make safe execution the default for TinyOS Our contributions: extending the nesC language and compiler to support safety annotations; finding previously unknown bugs; and showing that safety can be exploited to increase the availability of sensor networks applications even when memory errors are left unfixed. Visit Safe TinyOS homepage to know more information! Acknowledgments This material is based upon work supported by the National Science Foundation under Grant Nos , , and   Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation.

Download ppt "Efficient Memory Safety for TinyOS 2.1"

Similar presentations

Operating Systems Components of OS

Operating Systems Components of OS
NesC Prepared for the Multimedia Networks Group University of Virginia.

NesC Prepared for the Multimedia Networks Group University of Virginia.
Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
Lecture 16 Buffer Overflow modified from slides of Lawrie Brown.

Lecture 16 Buffer Overflow modified from slides of Lawrie Brown.
Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.

Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.
Sensor Network Platforms and Tools

Sensor Network Platforms and Tools
Extensibility, Safety and Performance in the SPIN Operating System Department of Computer Science and Engineering, University of Washington Brian N. Bershad,

Extensibility, Safety and Performance in the SPIN Operating System Department of Computer Science and Engineering, University of Washington Brian N. Bershad,
Static Analysis of Embedded C Code John Regehr University of Utah Joint work with Nathan Cooprider.

Static Analysis of Embedded C Code John Regehr University of Utah Joint work with Nathan Cooprider.
Vertically Integrated Analysis and Transformation for Embedded Software John Regehr University of Utah.

Vertically Integrated Analysis and Transformation for Embedded Software John Regehr University of Utah.
1 Efficient Memory Safety for TinyOS Nathan Cooprider Will Archer Eric Eide David Gay † John Regehr University of Utah School of Computing † Intel Research.

1 Efficient Memory Safety for TinyOS Nathan Cooprider Will Archer Eric Eide David Gay † John Regehr University of Utah School of Computing † Intel Research.
How to Code on TinyOS Xufei Mao Advisor: Dr. Xiang-yang Li CS Dept. IIT.

How to Code on TinyOS Xufei Mao Advisor: Dr. Xiang-yang Li CS Dept. IIT.
Incremental Network Programming for Wireless Sensors NEST Retreat June 3 rd, 2004 Jaein Jeong UC Berkeley, EECS Introduction Background – Mechanisms of.

Incremental Network Programming for Wireless Sensors NEST Retreat June 3 rd, 2004 Jaein Jeong UC Berkeley, EECS Introduction Background – Mechanisms of.
1 TinyOS 2.1: Deploying Memory Safety Nathan Cooprider Yang Chen Will Archer Eric Eide David Gay † John Regehr University of Utah School of Computing †

1 TinyOS 2.1: Deploying Memory Safety Nathan Cooprider Yang Chen Will Archer Eric Eide David Gay † John Regehr University of Utah School of Computing †
Random Testing of Interrupt-Driven Software John Regehr University of Utah.

Random Testing of Interrupt-Driven Software John Regehr University of Utah.
Generic Sensor Platform for Networked Sensors Haywood Ho.

Generic Sensor Platform for Networked Sensors Haywood Ho.
Static Analysis of Embedded C John Regehr University of Utah Joint work with Nathan Cooprider.

Static Analysis of Embedded C John Regehr University of Utah Joint work with Nathan Cooprider.
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
Generic Sensor Platform for Networked Sensors Haywood Ho.

Generic Sensor Platform for Networked Sensors Haywood Ho.
1 Efficient Memory Safety for TinyOS 2.1 Yang Chen Nathan Cooprider Will Archer Eric Eide David Gay † John Regehr University of Utah School of Computing.

1 Efficient Memory Safety for TinyOS 2.1 Yang Chen Nathan Cooprider Will Archer Eric Eide David Gay † John Regehr University of Utah School of Computing.
Extensibility, Safety and Performance in the SPIN Operating System Dave Camarillo.

Extensibility, Safety and Performance in the SPIN Operating System Dave Camarillo.

Similar presentations

Ads by Google