Modular Pluggable Analyses for Data Structure Consistency

Kunčak, Viktor; Lam, Patrick; Zee, Karen; Rinard, Martin

doi:10.1109/tse.2006.125

Cited by 46 publications

(29 citation statements)

References 66 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These approaches di er signi cantly in the way protocols are speci ed, including typestates [33,15,26,19,17,7], type quali ers [20], size properties [13], direct constraints on ordering [24,10,30], type re nements [29,14], rst-order [27,2] or separation logic [32], and various temporal logics [23]. In these approaches, like in ours, usage rules of the API(s) of interest have to be codi ed by a developer.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Practical API Protocol Checking with Access Permissions

Bierhoff

Beckman

Aldrich

2009

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Reusable APIs often de ne usage protocols. We previously developed a sound modular type system that checks compliance with typestate-based protocols while a ording a great deal of aliasing exibility. We also developed Plural, a prototype tool that embodies our approach as an automated static analysis and includes several extensions we found useful in practice. This paper evaluates our approach along the following dimensions: (1) We report on experience in specifying relevant usage rules for a large Java standard API with our approach. We also specify several other Java APIs and identify recurring patterns. (2) We summarize two case studies in verifying third-party open-source code bases with few false positives using our tool. We discuss how tool shortcomings can be addressed either with code refactorings or extensions to the tool itself. These results indicate that our approach can be used to specify and enforce real API protocols in practice.

show abstract

Section: Related Workmentioning

confidence: 99%

“…(Interestingly, all of these approaches that we are aware of are modular typestate analyses [17,26,7].) Ours is the only approach (that we are aware of ) that can verify correct usage and implementation of dynamic state test methods.…”

Section: Related Workmentioning

confidence: 99%

Practical API Protocol Checking with Access Permissions

Bierhoff

Beckman

Aldrich

2009

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…We subsequently generalized this result to quantifier-free constraints on multisets (bags), collections in which an element can occur multiple times [22,23]. The usefulness of collections and cardinality measures on them has been established through a number of examples from software analysis and verification, including not only decision procedures [14,16,29] but also static analyses that operate directly on the set abstraction or the cardinality abstraction [11,13,21].…”

Section: Introductionmentioning

confidence: 99%

Collections, Cardinalities, and Relations

Yessenov

Piskač

Kunčak

2010

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

show abstract

“…Shape analysis (Ghiya and Hendren 1996;Sagiv et al 1999;Kuncak et al 2006;Bogudlov et al 2007;Zee et al 2008) is a static analysis technique that discovers and verifies properties of linked, dynamically allocated data structures. It is typically used at compile time to find software bugs or to verify high-level correctness properties of programs.…”

Section: Related Workmentioning

confidence: 99%

Scalable data structure detection and classification for C/C++ binaries

2015

View full text Add to dashboard Cite

Many existing techniques for reversing data structures in C/C++ binaries are limited to low-level programming constructs, such as individual variables or structs. Unfortunately, without detailed information about a program's pointer structures, forensics and reverse engineering are exceedingly hard. To fill this gap, we propose MemPick, a tool that detects and classifies high-level data structures used in stripped binaries. By analyzing how links between memory objects evolve throughout the program execution, it distinguishes between many commonly used data structures, such as singly-or doubly-linked lists, many types of trees (e.g., AVL, red-black trees, B-trees), and graphs. We evaluate the technique on 10 real world applications, 4 file system implementations and 16 popular libraries. The results show that MemPick can identify the data structures with high accuracy.

show abstract

Modular Pluggable Analyses for Data Structure Consistency

Cited by 46 publications

References 66 publications

Practical API Protocol Checking with Access Permissions

Practical API Protocol Checking with Access Permissions

Collections, Cardinalities, and Relations

Scalable data structure detection and classification for C/C++ binaries

Contact Info

Product

Resources

About