Dynamic Detection of Use-After-Free Bugs


Дәйексөз келтіру

Толық мәтін

Ашық рұқсат Ашық рұқсат
Рұқсат жабық Рұқсат берілді
Рұқсат жабық Тек жазылушылар үшін

Аннотация

A novel method for detecting use-after-free bugs based on the program dynamic analysis is described. In memory unsafe programming languages, such as C or C++, this class of bugs mainly occurs when the program tries to access an area of dynamically allocated memory that has been already freed. For each program execution path, the method checks the correction of the allocation, deallocation, and access operations. Since the dynamic analysis is used, bugs can be found only in the parts of the code that was actually executed. The symbolic program execution with the help of SMT (Satisfiability Modulo Theories) solvers is used. This allows us to generate data the processing of which produces new execution paths.

Авторлар туралы

S. Asryan

Institute of Problems in Informatics and Automation, Armenia National Academy of Sciences

Хат алмасуға жауапты Автор.
Email: asryan@ispras.ru
Армения, Erevan, 0014

S. Gaissaryan

Ivannikov Institute for System Programming, Russian Academy of Sciences; Faculty of Computational Mathematics and Cybernetics, Moscow State University; Moscow Institute of Physics and Technology; State University—Higher School of Economics

Хат алмасуға жауапты Автор.
Email: ssg@ispras.ru
Ресей, Moscow, 109004; Moscow, 119991; Dolgoprudnyi, Moscow oblast, 141700; Moscow, 101000

Sh. Kurmangaleev

Ivannikov Institute for System Programming, Russian Academy of Sciences

Хат алмасуға жауапты Автор.
Email: kursh@ispras.ru
Ресей, Moscow, 109004

A. Aghabalyan

Erevan State University

Хат алмасуға жауапты Автор.
Email: anna.aghabalyan@ispras.ru
Армения, Erevan, 0025

N. Hovsepyan

Erevan State University

Хат алмасуға жауапты Автор.
Email: narekhnh@ispras.ru
Армения, Erevan, 0025

S. Sargsyan

Erevan State University

Хат алмасуға жауапты Автор.
Email: sevaksargsyan@ispras.ru
Армения, Erevan, 0025

Қосымша файлдар

Қосымша файлдар
Әрекет
1. JATS XML

© Pleiades Publishing, Ltd., 2019