Efficient type and memory safety for tiny embedded systems

Regehr, John; Cooprider, Nathan; Archer, Will; Eide, Eric

doi:10.1145/1215995.1216001

Cited by 6 publications

(7 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We note that this bug was first discovered with our previous work, a CCured-based version of Safe TinyOS [22]. We have verified that our current Deputy-based toolchain also finds this error.…”

Section: Bug #4: Incorrect Search-failure Checksupporting

confidence: 54%

“…Nevertheless, we plan to continue working toward further optimizing Safe TinyOS applications. Consider for example that for the previous version of our toolchain [22], which was based on CCured and TinyOS 1, safe optimized applications actually had lower duty cycles, on average, than the original unsafe applications. We attribute our prior success largely to the fact that TinyOS 1 was coded much less tightly than TinyOS 2 is.…”

Section: Processor Usementioning

confidence: 99%

“…Safe TinyOS builds upon our earlier work [22] which was based on CCured [20] rather than Deputy. In addition, Condit et al [3] present a one-paragraph summary of early experiences using Deputy with TinyOS.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Efficient memory safety for TinyOS

Cooprider

Archer

Eide

et al. 2007

Proceedings of the 5th International Conference on Embedded Networked Sensor Systems

Self Cite

View full text Add to dashboard Cite

Reliable sensor network software is difficult to create: applications are concurrent and distributed, hardware-based memory protection is unavailable, and severe resource constraints necessitate the use of unsafe, low-level languages. Our work improves this situation by providing efficient memory and type safety for TinyOS 2 applications running on the Mica2, MicaZ, and TelosB platforms. Safe execution ensures that array and pointer errors are caught before they can corrupt RAM. Our contributions include showing that aggressive optimizations can make safe execution practical in terms of resource usage; developing a technique for efficiently enforcing safety under interrupt-driven concurrency; extending the nesC language and compiler to support safety annotations; finding previously unknown bugs in TinyOS; and, finally, showing that safety can be exploited to increase the availability of sensor networks applications even when memory errors are left unfixed.

show abstract

Section: Bug #4: Incorrect Search-failure Checksupporting

confidence: 54%

Section: Processor Usementioning

confidence: 99%

See 1 more Smart Citation

Efficient memory safety for TinyOS

Cooprider

Archer

Eide

et al. 2007

Proceedings of the 5th International Conference on Embedded Networked Sensor Systems

Self Cite

View full text Add to dashboard Cite

show abstract

“…We found that adding contract checking code to the nesC compiler's output invalidated its inlining decision (by making functions larger), resulting in large code size blowup (often by 400% or more) when the application with contract checks was compiled. In previous work [2,12] we developed an inliner for C code that is followed up by a strong dead code elimination pass. Our inliner makes its decisions based on code size after contracts are added, enabling it to make good decisions.…”

Section: Add Contract State Fields To Data Structure Definitionsmentioning

confidence: 99%

“…Sympathy appears to be almost perfectly complementary to our contract work: it could be used to log contract failure events and relay them to a base station. t-kernel [5], SoS [13], Virgil [14], and our type-safe version of TinyOS [12] all use language-based protection to avoid memory safety violations in sensornet applications. This kind of protection is perfectly complementary to interface contract checking.…”

Section: Related Workmentioning

confidence: 99%

Interface contracts for TinyOS

Archer¹,

Levis²,

Regehr³

2007

Proceedings of the 6th International Conference on Information Processing in Sensor Networks - IPSN '07

Self Cite

View full text Add to dashboard Cite

TinyOS applications are built with software components that communicate through narrow interfaces. Since components enable finegrained code reuse, this approach has been successful in creating applications that make very efficient use of the limited code and data memory on sensor network nodes. However, the other important benefit of components-rapid application development through black-box reuse-remains largely unrealized because in many cases interfaces have implied usage constraints that can be the source of frustrating program errors. Developers are commonly forced to read the source code for components, partially defeating the purpose of using components in the first place. Our research helps solve these problems by allowing developers to explicitly specify and enforce component interface contracts. Due to the extensive reuse of the most common interfaces, implementing contracts for a small number of frequently reused interfaces permitted us to extensively check a number of applications. We uncovered some subtle and previously unknown bugs in applications that have been in common use for years.

show abstract

Memory Leak Dynamic Monitor Based On HOOK Technique

Shu

Yin

et al. 2009

2009 International Conference on Computational Intelligence and Software Engineering

View full text Add to dashboard Cite

Efficient type and memory safety for tiny embedded systems

Cited by 6 publications

References 9 publications

Efficient memory safety for TinyOS

Efficient memory safety for TinyOS

Interface contracts for TinyOS

Memory Leak Dynamic Monitor Based On HOOK Technique

Contact Info

Product

Resources

About