A special lecture at the BGU by Barton Miller

-


Distinguished Lecture Guest: Prof. Barton P. Miller
Computer Science Department
University of Wisconsin - Madison

Monday, January 28th, 2008 14:00-16:00 in the Saal Auditorium (202), Alon Hi-Tech Bldg (37)
at the Ben-Gurion University of the Negev, Beer-Sheva


A Framework for Binary Code Analysis and Static and Dynamic Patching

Barton P. Miller
Computer Sciences Department
University of Wisconsin
Madison, WI 53706
bart@cs.wisc.edu

Tools that analyze and modify binary code are crucial to many areas of computer science, including cyber forensics, program tracing, debugging, testing, performance profiling, performance modeling, and software engineering. While there are many tools used to support these activities, these tools have significant limitations in functionality, efficiency, accuracy, portability, and availability.

To overcome these limitations, we are actively working on the design and implementation of a new framework for binary code analysis and modification. The goal of this framework is to provide a component architecture to support tools that analyze binary code and modify it both statically (binary rewriting) and dynamically (dynamic instrumentation), allow for interoperability of the static and dynamic code modification, and enable the sharing and leveraging of this complex technology.

Characteristics of this framework include:

* multi-architecture, multi-format, and multi-operating system;
* library-based, so that components can be used separately as needed;
* open source, to allow both local control and auditing;
* extensible data structures, so that new analyses and interfaces can be added easily;
* exportable data structures, so that all analysis products will be stored in a format that can be readily used by other tools;
* batch enabled, so that tools can operate effectively without interactive control;
* testable, with each separate component provided with a detailed test suite;
* accurate and efficient, using best-known current algorithms and the addition of new algorithms for code parsing;
* up to date, handling modern binary code idioms like exceptions, and functions with non-contiguous and shared code.

This component-based approach requires identifying key portable and multi-platform abstractions at every level of functionality. If we (as a community) are successful in transitioning to this model, we can break the "hero model" of tool development of having each group trying to produce its own end-to-end complete tool sets.

The Paradyn group is working on several initial library components of this effort, including symbol table parsers, binary code scanners (instruction decoders), binary code parsers (control flow analysis), dynamic code generators, stack walkers, process execution controllers, and a visual binary code editor.

The goal of this talk is to lay out the motivation, plans, and current progress for this project. We also hope to solicit feedback on both its design and functionality.

====================
This talk is in the framework of the GriVAC collaboration meeting at the BGU

Comments

Post a Comment

Popular posts from this blog

Cellular Automata - Part II, Using Condor

-
My post on Cellular Automata from January 12 was not put there by mistake. I want to use it as a starting point for a couple of exercises in my Parallel Processing course. In that post I gave a few drawings that differ only by the generating rule number. Today, I am going to show how using the Condor High-Throughput Computing system allows to handle in a very simple way large volume of computations. I used this simple Condor submit file : universe = vanilla executable = nks.py Error = err.$(Process) Output= out.$(Process) Log = log.$(Process) Arguments = $(Process) Queue 256 And was able to compute the whole set of 256 rules (jobs) with the same effort of computing a single rule. I submitted the task to my Personal Condor on my laptop and was not disappointed; After a while I got all the outputs happily waiting for post processing.
Read more

[mpich-discuss] Errors while testing MPICH2 on Vista

-
[mpich-discuss] Errors while testing MPICH2 on Vista Guy Tel-Zur gtelzur at gmail.com Sat Oct 24 14:39:26 CDT 2009 Previous message: [mpich-discuss] MPI-3 Fortran feedback Next message: [mpich-discuss] MPI function to test a machine alive or not. Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] I am trying to test a fresh installation of MPICH2 (version 1.2) on Vista32 and get the following errors: c:\temp>"c:\Program Files\MPICH2\bin\mpiexec.exe" -n 4 cpi.exe Please specify an authentication passphrase for smpd: <*I type here the passphrase, e.g. behappy*> Error while connecting to host, No connection could be made because the target machine actively refused it. (10061) Connect on sock (host=user-PC, port=8676) failed, exhaused all end points Unable to connect to 'user-PC:8676', sock error: Error = -1 I will appreciate any comment. --Gu
Read more

The End of Grid Computing?

-
Image
In the year 2003 the MIT Technology review ranked "Grid Computing" among the 10 Emerging Technologies That Will Change the World [1]. We are now four years later and something is not going well with "Grid Computing". An indication that there is a problem can easily be seen by looking at the "Google Trends" plot for the term "Grid Computing": (click on the image to get the current trend). This finding can be compared with another buzz word, "Virtualization", which is older than "Grid Computing" and yet is gaining more and more momentum: There is however one exception. The Academic Grid is still having lot's of glory thanks to the huge heavily funded European (EGEE) and other US projects. When LHC data will start to be taken at CERN it will reach it's top importance. But, it seems that for other scientific projects Grid Computing is not going to be such a success. It will remain as "Nice to have" but will never
Read more