Skip to content
/ sound-rse Public

A sound (and static) relational symbolic execution analyzer.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ignatirabo/sound-rse

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
programs
programs
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

Sound Symbolic Execution via Abstract Interpretation

In this software we implement several symbolic execution analyzers that are sound. Also there is an implementation of dependence analysis from Static Analysis of Information flow using Hypercollecting Semantics [1].

Installation

Requirements

This project is implemented in OCaml 4.12.0, but any version should work. To install OCaml and OPAM you can check the following link.

Also several opam libraries are required:

  • z3 is being used to check propositions,
  • bitv is used to model security lattices,
  • dune is the builder, and
  • apron is a library for abstract domains. These can be installed with opam install z3 bitv dune apron

Build

The project is built using dune:

  • to build: make, equivalent to dune build --root src main.exe.
  • to clean: make clean, equivalent to dune --root src clean.

The link to the executable can be found in the current directory.

It is important to notice that the compilation does not work with bytecode automatically, we need to define a environment path.

Usage

Compiled program is main.exe and is used by activating switches and providing a program to execute.

To execute the tests of the submission:

./main.exe --test

To execute different analyses of different programs:

./main.exe [ switches ] <file>

Switches for non-relational analysis are as follows:

  • --sse activates sound symbolic execution.
  • --intvs activates intervals domain.
  • --poly activates convex polyhedra domain.

For relational analysis:

  • --rse activates relational symbolic execution.
  • --dep activates dependence analysis.

By combining the switches we can get the different combinations presented on the submission. We will list them:

  1. ./main.exe --sse <file> executes SoundSE.
  2. ./main.exe --sse --intvs <file> executes RedSoundSE with intervals.
  3. ./main.exe --sse --poly <file> executes RedSoundSE with polyhedra.
  4. ./main.exe --rse <file> executes SoundRSE.
  5. ./main.exe --rse --dep <file> executes RedSoundRSE.
  6. ./main.exe --rse --dep --intvs executes RedSoundRSE instantiated with RedSoundSE with intervals.
  7. ./main.exe --rse --dep --intvs executes RedSoundRSE instantiated with RedSoundSE with polyhedra.

Folder structure

  • src/ contains all source OCaml files plus dune build files.
  • programs/ contains programs to analyze.

About

A sound (and static) relational symbolic execution analyzer.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages