SaTC: CORE: Small: Reasoning about dependencies and information flow in dynamic code

SaTC：核心：小：动态代码中依赖关系和信息流的推理

• 批准号: 1908313
• 负责人: Saumya Debray
• 金额: $ 51.53万
• 依托单位: University of Arizona
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2019
• 资助国家: 美国
• 起止时间: 2019-10-01 至 2023-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1908313&HistoricalAwards=false
• 关键词: SaTC; CORE; Small; Reasoning; about

This project aims to investigate software whose code can change during its execution. Such code is ubiquitous in modern systems. For example, all modern web browsers contain a component, known as a JIT compiler, that creates or modifies code during execution. Reasoning about relationships between the code that carries out the runtime modifications, and the code that is created or modified as a result, is important for a number of software security applications. For example, bugs in a JIT compiler can result in vulnerabilities that can be exploited by hackers. Currently, such reasoning is performed manually. Because of the size and complexity of software that uses code that is created or modified during execution, such manual reasoning is difficult, slow, tedious, and error-prone. This project aims to develop concepts, techniques, and tools to automate this process and make it faster and easier to reason about and understand the behavior of such software. Potential benefits of the project include improved software security and training undergraduate and graduate students, including members of underrepresented minorities, in advanced research techniques.The project will focus on developing concepts, techniques, and algorithms for reasoning about code that can be created or modified at runtime ("dynamic code") that are not predicated on specific technologies or implementation artifacts, and will articulate clearly any underlying assumptions. Its research activities will focus on the following topics: (1) identification of suitable representations for the computational structure of dynamic code so as to make it possible to reason about end-to-end information flow, i.e.,information flow between the code that performs dynamic code modification and the code that is modified as a result; (2) identification of appropriate notions of dependency that can adequately capture end-to-end information flow in dynamic code; extension of analyses developed for static code to work on dynamic code in a natural way. (3) the evaluation of these ideas to determine how well they work in practice in the context of real-world applications such as bug localization in JIT compilers.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

这个项目旨在调查那些代码在执行过程中可以改变的软件。这样的代码在现代系统中无处不在。例如，所有现代web浏览器都包含一个组件，称为JIT编译器，它在执行期间创建或修改代码。对执行运行时修改的代码和由此创建或修改的代码之间的关系进行推理，对于许多软件安全性应用程序来说是很重要的。例如，JIT编译器中的错误可能导致黑客可以利用的漏洞。目前，这种推理是手动执行的。由于使用在执行过程中创建或修改的代码的软件的大小和复杂性，这种手动推理是困难的、缓慢的、乏味的，并且容易出错。该项目旨在开发概念、技术和工具来自动化此过程，并使其更快、更容易地推理和理解此类软件的行为。该项目的潜在好处包括提高软件安全性，培训本科生和研究生，包括未被充分代表的少数民族成员，掌握先进的研究技术。该项目将专注于开发概念、技术和算法，用于对可以在运行时创建或修改的代码（“动态代码”）进行推理，这些代码不以特定的技术或实现工件为前提，并且将清楚地表达任何潜在的假设。其研究活动将集中在以下主题上：(1)识别动态代码计算结构的合适表示，从而可以推断端到端的信息流，即执行动态代码修改的代码与被修改代码之间的信息流；(2)识别适当的依赖概念，这些概念可以在动态代码中充分捕获端到端信息流；为静态代码开发的分析的扩展，以自然的方式在动态代码上工作。(3)对这些想法进行评估，以确定它们在实际应用程序（如JIT编译器中的错误定位）中的实际工作效果。该奖项反映了美国国家科学基金会的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。

项目成果

Automated bug localization in JIT compilers

• DOI: 10.1145/3453933.3454021
• 发表时间: 2021-04
• 期刊: Proceedings of the 17th ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments
• 作者: HeuiChan Lim;S. Debray

A Framework for Automatic Exploit Generation for JIT Compilers

• DOI: 10.1145/3465413.3488573
• 发表时间: 2021-11
• 期刊: Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks
• 作者: Xiyu Kang;S. Debray

Automatically Localizing Dynamic Code Generation Bugs in JIT Compiler Back-End

自动定位 JIT 编译器后端中的动态代码生成错误

• DOI: 10.1145/3578360.3580260
• 发表时间: 2023
• 期刊: ACM
• 作者: Lim, HeuiChan;Debray, Saumya
• 通讯作者: Debray, Saumya

Visualizing JIT Compiler Graphs

可视化 JIT 编译器图

• 发表时间: 2021
• 期刊: 29th International Symposium on Graph Drawing and Network Visualization (GD 2021
• 作者: Lim, HeuiChan;Kobourov, Stephen
• 通讯作者: Kobourov, Stephen

Representing and reasoning about dynamic code

动态代码的表示和推理

• DOI: 10.1145/3324884.3416542
• 发表时间: 2020
• 期刊: ASE '20: Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering
• 作者: Bartels, Jesse;Stephens, Jon;Debray, Saumya
• 通讯作者: Debray, Saumya