Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Stack overflow position detection method

A detection method and stack overflow technology, applied in software testing/debugging, platform integrity maintenance, etc., to achieve simple decision logic, high execution efficiency, and good adaptability

Active Publication Date: 2015-12-02
UNIV OF ELECTRONICS SCI & TECH OF CHINA
View PDF4 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The detection of the stack overflow location by the current technology is based on recompiling the source code, and cannot target the compiled software

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Stack overflow position detection method
  • Stack overflow position detection method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0030] In the present invention, a tool software Pin for program testing developed by Intel Corporation is used, which is a dynamic binary analysis framework, can be used to build a powerful dynamic program analysis tool, and supports 32-bit, 64-bit Linux and The executable program of Windows can detect the detailed information of commands, memory, addresses, etc. during the running of the program. In order to block the technology, Intel did not make Pin open source, but it provides a compiled version for use, and users can extend custom analysis functions in the form of plug-ins.

[0031] Simply put, Pin is to insert some detection functions into the executable binary code for observation, recording, analysis, etc. Through the API provided by Pin, various analysis functions can be written, so that after the program is run, statistics and analysis results are also generated at the same time.

[0032] When a process is running under the Pin framework, the real running code inc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a stack overflow position detection method and relates to the technical field of software detection. The method is used for quickly detecting a stack overflow position to help software analysis. The method comprises: defining a set A and executing test software by utilizing program instrumentation; when executing a call instruction, obtaining an in-stack address and storing the in-stack address in the set A; and when executing a ret instruction, judging whether a return address is in the set A or not, and if so, judging that stack overflow does not occur to a function, or otherwise, judging that stack overflow occurs to the function. The technical scheme of the invention is mainly used for software analysis, a module with stack overflow can be quickly and accurately positioned, and a specific position causing stack overflow can be accurately positioned through further analysis. According to the method, commercial software can be processed without the need for a source code of tested software, all function types such as various complicated nested functions can be detected, and better adaptability is achieved.

Description

technical field [0001] The invention belongs to the technical field of software analysis, and is an automatic stack overflow detection method for software analysis, which can process commercial software without the source code of the tested software, and can detect all function types. Background technique [0002] A stack overflow is a type of buffer overflow. During the running of the program, in order to temporarily access data, some memory space is generally allocated, and these spaces are usually called buffers. If data exceeding its own length is written into the buffer, so that the buffer cannot be accommodated, the buffer overflows, the program crashes, or the program executes other instructions instead. [0003] Buffer overflow vulnerabilities are common and their attacks are easy to implement. Whenever a function call occurs, the caller leaves an active record on the stack, which contains the address to return to when the function ends. The stack overflow mainly ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F11/36G06F21/52
Inventor 张小松吴林牛伟纳王东陈瑞东白金徐浩然吴安彬
Owner UNIV OF ELECTRONICS SCI & TECH OF CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com