论文信息 - Checking for Deadlock, Double-Free and Other Abuses in the Linux Kernel Source Code

Checking for Deadlock, Double-Free and Other Abuses in the Linux Kernel Source Code

The analysis described in this article detects about two real and uncorrected deadlock situations per thousand C source files or million lines of code in the Linux kernel source, and three accesses to freed memory, at a few seconds per file. In distinction to model-checking techniques, the analysis applies a configurable “3-phase” Hoare-style logic to an abstract interpretation of C code to obtain its results.

Peter T. Breuer | Simon Pickin

[1] Peter T. Breuer,et al. Static Deadlock Detection in the Linux Kernel , 2004, Ada-Europe.

[2] David A. Wagner,et al. A First Step Towards Automated Detection of Buffer Overrun Vulnerabilities , 2000, NDSS.

[3] Carlos Delgado Kloos,et al. A refinement calculus for the synthesis of verified hardware descriptions in VHDL , 1997, TOPL.

[4] Alexander Aiken,et al. A theory of type qualifiers , 1999, PLDI '99.

[5] David A. Wagner,et al. Finding User/Kernel Pointer Bugs with Type Inference , 2004, USENIX Security Symposium.

[6] Patrick Cousot,et al. Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints , 1977, POPL.

[7] Alexander Aiken,et al. Flow-sensitive type qualifiers , 2002, PLDI '02.

[8] Carlos Delgado Kloos,et al. A formal method for specification and refinement of real-time systems , 1996, Proceedings of the Eighth Euromicro Workshop on Real-Time Systems.

[9] Alfred Strohmeier,et al. Reliable Software Technologies - Ada-Europe 2004 , 2004, Lecture Notes in Computer Science.