Ghost Code in Action: Automated Verification of a Symbolic Interpreter

Becker, Benedikt; Marché, Claude

doi:10.1007/978-3-030-41600-3_8

Cited by 3 publications

(11 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This study had several additional outcomes. The toolchain includes tools for parsing and light static analysis of shell scripts [30], an engine for the symbolic execution of imperative languages based on first-order logics representation of program configurations [5], and an efficient decision procedure for feature tree logics. We also provide a formal specification of Posix commands used in Debian scripts in terms of a first-order logic [24].…”

Section: Resultsmentioning

confidence: 99%

“…With a similar approach as for the concrete interpreter (Section 3.1), we designed and implemented a symbolic interpreter for the CoLiS language in Why3. Guided by a proof-of-concept symbolic interpreter for a simple IMP language [5], the main design choices for the symbolic interpreter for CoLiS are:…”

Section: Analysis By Symbolic Executionmentioning

confidence: 99%

“…The Why3 code for the symbolic interpreter is annotated with post-conditions to express that it computes an over-approximation [5] of the concrete states that are reachable without exceeding the given bound on loop iterations. This property is formally proven using automated provers.…”

Section: Analysis By Symbolic Executionmentioning

confidence: 99%

“…2. A verification toolchain for maintainer scripts based on an existing symbolic execution engine [5,6] and a symbolic representation [26]. Some components of this toolchain have been published independently; we improve them to cope with this case study.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Analysing installation scenarios of Debian packages

Becker

Jeannerod

Marché

et al. 2020

Tools and Algorithms for the Construction and Analysis of Systems

Self Cite

View full text Add to dashboard Cite

The Debian distribution includes more than 28 thousand maintainer scripts, almost all of them are written in Posix shell. These scripts are executed with root privileges at installation, update, and removal of a package, which make them critical for system maintenance. While Debian policy provides guidance for package maintainers producing the scripts, few tools exist to check the compliance of a script to it. We report on the application of a formal verification approach based on symbolic execution to find violations of some non-trivial properties required by Debian policy in maintainer scripts. We present our methodology and give an overview of our toolchain. We obtained promising results: our toolchain is effective in analysing a large set of Debian maintainer scripts and it pointed out over 150 policy violations that lead to reports (more than half already fixed) on the Debian Bug Tracking system.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Analysis By Symbolic Executionmentioning

confidence: 99%

Section: Analysis By Symbolic Executionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Analysing installation scenarios of Debian packages

Becker

Jeannerod

Marché

et al. 2020

Tools and Algorithms for the Construction and Analysis of Systems

Self Cite

View full text Add to dashboard Cite

show abstract

“…A verication toolchain for maintainer scripts based on an existing symbolic execution engine [5,6] and a symbolic representation [26]. Some components of this toolchain have been published independently; we improve them to cope with this case study.…”

mentioning

confidence: 99%

Analysing installation scenarios of Debian packages

Marché¹,

Becker²,

Jeannerod³

et al. 2021

Preprint

Self Cite

View full text Add to dashboard Cite

The Debian distribution includes more than 28 thousand maintainer scripts, almost all of them are written in Posix shell. These scripts are executed with root privileges at installation, update, and removal of a package, which make them critical for system maintenance. While Debian policy provides guidance for package maintainers producing the scripts, few tools exist to check the compliance of a script to it. We report on the application of a formal verication approach based on symbolic execution to nd violations of some non-trivial properties required by Debian policy in maintainer scripts. We present our methodology and give an overview of our toolchain. We obtained promising results: our toolchain is eective in analysing a large set of Debian maintainer scripts and it pointed out over 150 policy violations that lead to reports (more than half already xed) on the Debian Bug Tracking system.

show abstract

The CoLiS platform for the analysis of maintainer scripts in Debian software packages

Becker

Jeannerod

Marché

et al. 2022

Int J Softw Tools Technol Transfer

Self Cite

View full text Add to dashboard Cite

The software packages of the Debian distribution include more than twenty-seven thousand maintainer scripts in total, almost all of them being written in the Posix shell language. These scripts are executed with root privileges at installation, update, and removal of a package, which makes them critical for system maintenance. While the Debian policy provides guidance for package maintainers producing the scripts, only few tools exist to check the compliance of a script to that policy. We present CoLiS, a software platform for discovering violations of non-trivial properties required by the Debian policy in maintainer scripts. We describe our methodology which is based on symbolic execution and feature tree constraints, and we give an overview of the toolchain. We obtain promising results: our toolchain is effective in analysing a large set of Debian maintainer scripts, and it has already detected over 150 policy violations that have lead to bug reports, more than two-third of them now being fixed.

show abstract

Ghost Code in Action: Automated Verification of a Symbolic Interpreter

Cited by 3 publications

References 11 publications

Analysing installation scenarios of Debian packages

Analysing installation scenarios of Debian packages

Analysing installation scenarios of Debian packages

The CoLiS platform for the analysis of maintainer scripts in Debian software packages

Contact Info

Product

Resources

About