四川大学学报(自然科学版)2024,Vol.61Issue(4):172-181,10.DOI:10.19907/j.0490-6756.2024.043001
基于悬空指针追踪的UAF漏洞检测方法研究
Research on use-after-free detection method based on the dangling pointer tracking
摘要
Abstract
With the increasing attention paid to the UAF vulnerability,its exploitation methods have become more diverse and the threat posed to computer systems has become more serious.Therefore,this paper pro-poses a lightweight UAF vulnerability detection scheme.The scheme accumulates all possible dangling point-ers in the program under test based on LLVM IR,and then after performing accurate data flow analysis and control flow analysis on them,the redefined pointers can be excluded and all dangling pointers can be ob-tained.Finally,the operation sequence of the UAF vulnerability can be obtained by performing reachability analysis and data flow analysis on the dangling pointer.The scheme also reduces system overhead in two ways:simplifying inter-procedural analysis to intra-procedural analysis and combining alias analysis algo-rithms with data flow analysis.The experiment results tested on open-source test cases and real programs show that the scheme can quickly and accurately identify UAF vulnerabilities in the code and report the dan-gerous operation sequences.关键词
悬空指针/LLVM/UAF/漏洞检测Key words
Dangling pointer/LLVM/UAF/Vulnerability detection分类
信息技术与安全科学引用本文复制引用
许敏,胡勇,李新建..基于悬空指针追踪的UAF漏洞检测方法研究[J].四川大学学报(自然科学版),2024,61(4):172-181,10.基金项目
国家重点研发计划项目(2021YGB3101800) (2021YGB3101800)
