Detection of erroneous usage of synchronization monitor in С# via static analysis

Trudy Instituta sistemnogo programmirovaniia RAN Pub Date : 2022-01-01 DOI:10.15514/ispras-2022-34(4)-5

Polina Ilyinichna Ragozina, V. N. Ignatyev

{"title":"Detection of erroneous usage of synchronization monitor in С# via static analysis","authors":"Polina Ilyinichna Ragozina, V. N. Ignatyev","doi":"10.15514/ispras-2022-34(4)-5","DOIUrl":null,"url":null,"abstract":"The paper describes static analysis algorithms aimed at finding three types of errors related to the concept of a synchronizing monitor: redefinition of a variable of mutually exclusive locking inside a critical section; use of an incorrect variable type when entering the monitor; blocking involving an object that has methods that use a reference to an instance (this) to lock. Developed algorithms rely on symbolic execution technology and involve interprocedural analysis via summary of functions, which ensures scalability, field-, context-, and flow-sensivity. Proposed methods were implemented in the infrastructure of a static analyzer in the form of three separate detectors. Testing on the set of open source projects revealed 23 errors and the true positive ratio of 88.5% was obtained, while the time consumption only made up from 0.1 to 0.7% of the total analysis time. The errors that these detectors were designed to find are difficult to detect by testing or dynamic analysis because of their multithreading nature. At the same time, it is necessary to find them: just one such defect can lead to incorrectness of the program and even make it vulnerable to intruders.","PeriodicalId":33459,"journal":{"name":"Trudy Instituta sistemnogo programmirovaniia RAN","volume":"60 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2022-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Trudy Instituta sistemnogo programmirovaniia RAN","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.15514/ispras-2022-34(4)-5","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The paper describes static analysis algorithms aimed at finding three types of errors related to the concept of a synchronizing monitor: redefinition of a variable of mutually exclusive locking inside a critical section; use of an incorrect variable type when entering the monitor; blocking involving an object that has methods that use a reference to an instance (this) to lock. Developed algorithms rely on symbolic execution technology and involve interprocedural analysis via summary of functions, which ensures scalability, field-, context-, and flow-sensivity. Proposed methods were implemented in the infrastructure of a static analyzer in the form of three separate detectors. Testing on the set of open source projects revealed 23 errors and the true positive ratio of 88.5% was obtained, while the time consumption only made up from 0.1 to 0.7% of the total analysis time. The errors that these detectors were designed to find are difficult to detect by testing or dynamic analysis because of their multithreading nature. At the same time, it is necessary to find them: just one such defect can lead to incorrectness of the program and even make it vulnerable to intruders.

查看原文本刊更多论文

通过静态分析检测С#中同步监视器的错误使用

本文描述了静态分析算法，旨在发现与同步监视器概念相关的三种类型的错误:重定义临界区内互斥锁的变量;在进入监视器时使用不正确的变量类型;阻塞涉及一个对象，该对象的方法使用对实例(this)的引用进行锁定。已开发的算法依赖于符号执行技术，并通过函数摘要进行过程间分析，从而确保可伸缩性、字段、上下文和流敏感性。提出的方法在静态分析仪的基础设施中以三个独立检测器的形式实现。在一组开源项目上的测试显示了23个错误，获得了88.5%的真阳性率，而时间消耗仅占总分析时间的0.1到0.7%。由于这些检测器的多线程特性，它们设计用来查找的错误很难通过测试或动态分析来检测。同时，有必要找到它们:仅仅一个这样的缺陷就可能导致程序不正确，甚至使它容易受到入侵者的攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Trudy Instituta sistemnogo programmirovaniia RAN

自引率

0.00%

发文量

审稿时长

4 weeks