Presentation is loading. Please wait.

Presentation is loading. Please wait.

Stories of the past and a future topic on API recommendation Qirun Zhang.

Published byCamron Tyler Modified over 9 years ago

Similar presentations

Presentation on theme: "Stories of the past and a future topic on API recommendation Qirun Zhang."— Presentation transcript:

1 Stories of the past and a future topic on API recommendation Qirun Zhang

2 Outline The past The future

3 The past stories

4 Do you recall… Buffer overflow ? Implementation? (What do I want?) 1. Regular expression. 2. Complier infrastructure. 3. Parser (yacc & lex) 4. Gnu-Binutils

5 Regular expression Potential approach Result (failure) Why? Example Printf(“/* int a */”); /* some comments */ char a[4]; char* b;

6 Parser (yacc && lex) Potential approach yacc- LALR parser Result (failure) Why? 1. need help from a preprocessor what if this happens… #define ggg int myfunc() 2. need globe information Node a;

7 Gnu-Binutil Potential approach Result (partial success) But not reliable gcc is an industrial-specified tool Result failure

8 Complier infrastructure Potential approach Result 1. CIL (C Intermediate Language) http://hal.cs.berkeley.edu/cil/ http://hal.cs.berkeley.edu/cil/ 2. Rose Compiler http://rosecompiler.orghttp://rosecompiler.org 3. Non-research purposed solutions ncc http://students.ceid.upatras.gr/~sxanth/ncc/http://students.ceid.upatras.gr/~sxanth/ncc/ tcc(Tiny C Compiler) http://bellard.org/tcc/http://bellard.org/tcc/ failure

9 Anyway, but how?

10 LLVM (The Dreamlover??) Low Level Virtual Machine http://llvm.org/http://llvm.org/ Why llvm Publications in the past: OSDI, SOSP, PLDI, PPoPP, NDSS, ICSE, POPL, FSE, Usenix Security, ASE, ICCAD… Publications of 2010: ICSE(1),EurSys(2),ASPLOS(5)!!! (32/181 ) Industrial focus by Adobe, Apple, Sun, Google... A long road-map

11 Topic in the future: API recommendation

12 What to do? Why API recommendation? A basic scenario fp = fopen(…); fread(fp, …); fclose(fp);

13 Current State-of-The-Art [FSE09]API Hyperlinking via Structural Overlap (altair) [FSE07]Recommending Random Walks (FRAN)

14 Limitations Random Walks (FRAN) – Large searching space(exp) – Candidates are not closely correlated Structural Overlap (Altair) – What if the available information is limited? http://137.189.90.59/lxr/source/srclib/apr/file_io/unix/open.c?v=apache2063#246 – Similar rather than related – A lot of implement issues (wrapper fun, intra- procedural analysis..)

15 Motivation What we can learn from each of them? One solution to address all these problems…. An example to beat both approaches.. Given a function apr_socket_close() Altair recommends: apr_socket_inherit_set, apr_socket_inherit_unset, apr_socket_data_set, apr_wait_for_io_or_timeout, apr_socket_from_file, apr_socket_create_ex, apr_os_sock_put, apr_socket_accept, apr_os_sock_make Let’s see that is apr_socket_close http://137.189.90.59/lxr/source/support/ab.c?v=apache2063#1256 http://137.189.90.59/lxr/source/srclib/apr/network_io/unix/sockets.c?v=apache2063#124

16 Solution In order to do a better job than both of them, we should – Consider the structural overlap (the lesson from why FRAN fails) – Consider the logic correlations (the lesson from why Altair fails) – Mining from the client code – Introduce a BRAND-NEW concept of call graph – Implement issue….

17 Thank you!

18

Download ppt "Stories of the past and a future topic on API recommendation Qirun Zhang."

Similar presentations

CLASS PROJECT How do you present yourself to a potential employer?

CLASS PROJECT How do you present yourself to a potential employer?
Vilmos Zsombori , Shanghai

Vilmos Zsombori , Shanghai
Introduction to Compiler Construction

Introduction to Compiler Construction
Lesson 6 CDT301 – Compiler Theory, Spring 2011 Teacher: Linus Källberg.

Lesson 6 CDT301 – Compiler Theory, Spring 2011 Teacher: Linus Källberg.
CMPT 401 Summer 2007 Dr. Alexandra Fedorova Lecture XVIII: Concluding Remarks.

CMPT 401 Summer 2007 Dr. Alexandra Fedorova Lecture XVIII: Concluding Remarks.
Teaching Difficult Topics in Statistics THE STATWAY LEARNING MODEL Rachel Mudge – Statway Writer, Math Prof. at Foothill College, Los Altos Hills, CA Andre.

Teaching Difficult Topics in Statistics THE STATWAY LEARNING MODEL Rachel Mudge – Statway Writer, Math Prof. at Foothill College, Los Altos Hills, CA Andre.
JShield: Towards Real-time and Vulnerability-based Detection of Polluted Drive-by Download Attacks Yinzhi Cao*, Xiang Pan**, Yan Chen** and Jianwei Zhuge***

JShield: Towards Real-time and Vulnerability-based Detection of Polluted Drive-by Download Attacks Yinzhi Cao*, Xiang Pan**, Yan Chen** and Jianwei Zhuge***
Debugging: Catching Bugs ( I ) Ying Wu Electrical & Computer Engineering Northwestern University ECE230 Lectures Series.

Debugging: Catching Bugs ( I ) Ying Wu Electrical & Computer Engineering Northwestern University ECE230 Lectures Series.
Greg MorrisettFall 2013.  Compilers.  (duh)  Translating one programming language into another.  Also interpreters.  Translating and running a language.

Greg MorrisettFall  Compilers.  (duh)  Translating one programming language into another.  Also interpreters.  Translating and running a language.
Costas Busch - RPI1 Positive Properties of Context-Free languages.

Costas Busch - RPI1 Positive Properties of Context-Free languages.
CS590 Z Software Defect Analysis Xiangyu Zhang. CS590F Software Reliability What is Software Defect Analysis  Given a software program, with or without.

CS590 Z Software Defect Analysis Xiangyu Zhang. CS590F Software Reliability What is Software Defect Analysis  Given a software program, with or without.
Improving Network Applications Security: a New Heuristic to Generate Stress Testing Data Presented by Conrad Pack Del Grosso et al.

Improving Network Applications Security: a New Heuristic to Generate Stress Testing Data Presented by Conrad Pack Del Grosso et al.
A brief [f]lex tutorial Saumya Debray The University of Arizona Tucson, AZ 85721.

A brief [f]lex tutorial Saumya Debray The University of Arizona Tucson, AZ
Jieming Zhu 1, Pinjia He 1, Qiang Fu 2, Hongyu Zhang 3, Michael R. Lyu 1, Dongmei Zhang 3 1 The Chinese University of Hong Kong, Hong Kong 2 Microsoft,

Jieming Zhu 1, Pinjia He 1, Qiang Fu 2, Hongyu Zhang 3, Michael R. Lyu 1, Dongmei Zhang 3 1 The Chinese University of Hong Kong, Hong Kong 2 Microsoft,
Introduction to Programming. Objectives Look at why we write programs Describe some things it takes to learn to be a programmer Discuss some important.

Introduction to Programming. Objectives Look at why we write programs Describe some things it takes to learn to be a programmer Discuss some important.
Types for Programs and Proofs Lecture 1. What are types? int, float, char, …, arrays types of procedures, functions, references, records, objects,...

Types for Programs and Proofs Lecture 1. What are types? int, float, char, …, arrays types of procedures, functions, references, records, objects,...
Improving Programmer Productivity via Mining Program Source Code Tao Xie Department of Computer Science North Carolina State University

Improving Programmer Productivity via Mining Program Source Code Tao Xie Department of Computer Science North Carolina State University
Flow-Augmented Call Graph: A New Foundation for Taming API Complexity Qirun Zhang 1009004750 1.

Flow-Augmented Call Graph: A New Foundation for Taming API Complexity Qirun Zhang
Networking ITTC with TT:CLEAR Xiaohua ZHANG Tsinghua University, Beijing, China.

Networking ITTC with TT:CLEAR Xiaohua ZHANG Tsinghua University, Beijing, China.
Sadegh Aliakbary Sharif University of Technology Fall 2012.

Sadegh Aliakbary Sharif University of Technology Fall 2012.

Similar presentations

Ads by Google