Precise static happens-before analysis for detecting UAF order violations in android

Wu, D; Liu, J; Sui, Y; Chen, S; Xue, J

Precise static happens-before analysis for detecting UAF order violations in android

Wu, D Liu, J Sui, Y

Chen, S Xue, J

Permalink

Publication Type:: Conference Proceeding
Citation:: Proceedings - 2019 IEEE 12th International Conference on Software Testing, Verification and Validation, ICST 2019, 2019, pp. 276 - 287
Issue Date:: 2019-04-01

Open Access

Copyright Clearance Process

Recently Added
In Progress
Open Access

This item is open access.

Adobe PDF

Download Accepted ManuscriptAdobe PDF (1.2 MB)

View on publisher's site

View statistics

Full metadata record

Field	Value	Language
dc.contributor.author	Wu, D	en_US
dc.contributor.author	Liu, J	en_US
dc.contributor.author	Sui, Y https://orcid.org/0000-0002-9510-6574	en_US
dc.contributor.author	Chen, S	en_US
dc.contributor.author	Xue, J	en_US
dc.date.available	2021-01-01T18:04:09Z
dc.date.issued	2019-04-01	en_US
dc.identifier.citation	Proceedings - 2019 IEEE 12th International Conference on Software Testing, Verification and Validation, ICST 2019, 2019, pp. 276 - 287	en_US
dc.identifier.isbn	9781728117355	en_US
dc.identifier.uri	http://hdl.handle.net/10453/134644
dc.description.abstract	© 2019 IEEE. Unlike Java, Android provides a rich set of APIs to support a hybrid concurrency system, which consists of both Java threads and an event queue mechanism for dispatching asynchronous events. In this model, concurrency errors often manifest themselves in the form of order violations. An order violation occurs when two events access the same shared object in an incorrect order, causing unexpected program behaviors (e.g., null pointer dereferences). This paper presents SARD, a static analysis tool for detecting both intra-and inter-thread use-after-free (UAF) order violations, when a pointer is dereferenced (used) after it no longer points to any valid object, through systematic modeling of Android's concurrency mechanism. We propose a new flow-and context-sensitive static happens-before (HB) analysis to reason about the interleavings between two events to effectively identify precise HB relations and eliminate spurious event interleavings. We have evaluated SARD by comparing with NADROID, a state-of-the-art static order violation detection tool for Android. SARD outperforms NADROID in terms of both precision (by reporting three times fewer false alarms than NADROID given the same set of apps used by NADROID) and efficiency (by running two orders of magnitude faster than NADROID).	en_US
dc.relation.ispartof	Proceedings - 2019 IEEE 12th International Conference on Software Testing, Verification and Validation, ICST 2019	en_US
dc.relation.isbasedon	10.1109/ICST.2019.00035	en_US
dc.rights	info:eu-repo/semantics/openAccess
dc.title	Precise static happens-before analysis for detecting UAF order violations in android	en_US
dc.type	Conference Proceeding
utslib.for	0803 Computer Software	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Computer Science
pubs.organisational-group	/University of Technology Sydney/Strength - CAI - Centre for Artificial Intelligence
utslib.copyright.status	open_access	*
pubs.publication-status	Published	en_US

Abstract:

© 2019 IEEE. Unlike Java, Android provides a rich set of APIs to support a hybrid concurrency system, which consists of both Java threads and an event queue mechanism for dispatching asynchronous events. In this model, concurrency errors often manifest themselves in the form of order violations. An order violation occurs when two events access the same shared object in an incorrect order, causing unexpected program behaviors (e.g., null pointer dereferences). This paper presents SARD, a static analysis tool for detecting both intra-and inter-thread use-after-free (UAF) order violations, when a pointer is dereferenced (used) after it no longer points to any valid object, through systematic modeling of Android's concurrency mechanism. We propose a new flow-and context-sensitive static happens-before (HB) analysis to reason about the interleavings between two events to effectively identify precise HB relations and eliminate spurious event interleavings. We have evaluated SARD by comparing with NADROID, a state-of-the-art static order violation detection tool for Android. SARD outperforms NADROID in terms of both precision (by reporting three times fewer false alarms than NADROID given the same set of apps used by NADROID) and efficiency (by running two orders of magnitude faster than NADROID).

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/134644