Integer overflow discovery using goal-directed conditional branch enforcement
Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2014.
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Thesis |
| Language: | eng |
| Published: |
Massachusetts Institute of Technology
2014
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/1721.1/91865 |
| _version_ | 1826210611535544320 |
|---|---|
| author | Rittenhouse, Nathan (Nathan W.) |
| author2 | Martin C. Rinard. |
| author_facet | Martin C. Rinard. Rittenhouse, Nathan (Nathan W.) |
| author_sort | Rittenhouse, Nathan (Nathan W.) |
| collection | MIT |
| description | Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2014. |
| first_indexed | 2024-09-23T14:52:42Z |
| format | Thesis |
| id | mit-1721.1/91865 |
| institution | Massachusetts Institute of Technology |
| language | eng |
| last_indexed | 2024-09-23T14:52:42Z |
| publishDate | 2014 |
| publisher | Massachusetts Institute of Technology |
| record_format | dspace |
| spelling | mit-1721.1/918652019-04-12T16:12:49Z Integer overflow discovery using goal-directed conditional branch enforcement Rittenhouse, Nathan (Nathan W.) Martin C. Rinard. Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science. Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science. Electrical Engineering and Computer Science. Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2014. Cataloged from PDF version of thesis. Includes bibliographical references (pages 67-68). We present a new technique and system, DIODE, for automatically generating inputs that trigger overflows at memory allocation sites. DIODE is designed to identify relevant sanity checks that inputs must satisfy to trigger overflows at target memory allocation sites, then generate inputs that satisfy these sanity checks to successfully trigger the overflow. DIODE works with off-the-shelf, production x86 binaries. Our results show that, for our benchmark set of applications, for every target memory allocation site, either 1) DIODE is able to generate an input that triggers an overflow at that site or 2) there is no input that would trigger an overflow for the observed target expression at that site. by Nathan Rittenhouse. M. Eng. 2014-11-24T18:41:00Z 2014-11-24T18:41:00Z 2014 2014 Thesis http://hdl.handle.net/1721.1/91865 894354417 eng M.I.T. theses are protected by copyright. They may be viewed from this source for any purpose, but reproduction or distribution in any format is prohibited without written permission. See provided URL for inquiries about permission. http://dspace.mit.edu/handle/1721.1/7582 68 pages application/pdf Massachusetts Institute of Technology |
| spellingShingle | Electrical Engineering and Computer Science. Rittenhouse, Nathan (Nathan W.) Integer overflow discovery using goal-directed conditional branch enforcement |
| title | Integer overflow discovery using goal-directed conditional branch enforcement |
| title_full | Integer overflow discovery using goal-directed conditional branch enforcement |
| title_fullStr | Integer overflow discovery using goal-directed conditional branch enforcement |
| title_full_unstemmed | Integer overflow discovery using goal-directed conditional branch enforcement |
| title_short | Integer overflow discovery using goal-directed conditional branch enforcement |
| title_sort | integer overflow discovery using goal directed conditional branch enforcement |
| topic | Electrical Engineering and Computer Science. |
| url | http://hdl.handle.net/1721.1/91865 |
| work_keys_str_mv | AT rittenhousenathannathanw integeroverflowdiscoveryusinggoaldirectedconditionalbranchenforcement |