可组合的描述符泄露类型检查

Compositional Type Checking of Descriptor Leaking

下载PDF

导出

摘要应用程序通过操作系统的系统调用对文件描述符进行操作并管理文件资源。如果应用程序对资源描述符的管理出现错误并发生描述符泄漏,会严重影响系统的可用性。据此,提出了一种检查程序是否会导致描述符泄漏的类型系统,给出了描述符操作方法的语义和类型约束,证明了类型系统的可靠性定理。此外,还初步讨论了该类型系统在并发程序下的扩展。 Programs manage files, as a kind of resource, using system calls provided by operating systems to manipulate file descriptors. The availability of the system will be significantly degenerated if programs deal with file descriptors ar- bitrarily. We proposed a type system to check whether a program leaks some resource （typically, file） descriptors. We defined semantics for descriptor-related operations in sequential programs, and proved that the type system is sound with respect to our semantics. In addition, the extension of this type system with concurrent semantics was discussed.

作者李沁缪瑨

机构地区安徽工业大学计算机科学与技术学院

出处《计算机科学》 CSCD 北大核心 2015年第10期184-188,共5页 Computer Science

基金国家自然科学基金(61170070) 省教育厅科研项目(kj2012Z022) 国家科技支撑计划(2012BAK30B049-02) 安徽高校省级自然科学研究重大项目(KJ2014ZD05)资助

关键词描述符泄露类型检查软件安全 Descriptor leaking, Type checking, Software safety

分类号 TP301 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献13

1Albert E,et al. Resource Usage Analysis and Its Application toResource Certification[M] // Aldini V A,et al.,eds. Founda-tions of Security Analysis and Design. Springer Berlin Heidel-berg, 2009,5705 :258-288.
2Albert E,et al. On the Inference of Resource Usage Upper andLower Bounds[J], ACM Trans. Comput. Logic, 2013,14(3) : 1-35.
3Albert E, et al. Incremental resource usage analysis[C] //Pro-ceedings of the ACM SIGPLAN 2012 Workshop on PartialEvaluation and Program Manipulation. Philadelphia, Pennsylva-nia, USA, 2012: 25-34.
4Jost S,et al. Static determination of quantitative resource usagefor higher-order programs[C] //Proceedings of the 37th AnnualACM SIGPLAN-SIGACT Symposium on Principles of Program-ming Languages. Madrid Spain ,2010.
5Kobayashi N,et al. Resource Usage Analysis for the 7rCalculus[M] // Verification, Model Checking, and Abstract Interpreta-tion. Springer Berlin Heidelberg,2006 : 298-312.
6Bartoletti M,et al. Local policies for resource usage analysis[J].ACM Trans. Program, Lang. Syst. ,2009,31: 1-43.
7Antunes J,et al. Detection and Prediction of Resource-Exhaus-tion Vulnerabilities[C]//19th International Symposium on Soft-ware Reliability Engineering,2008(ISSRE 2008). 2008:87-96.
8Calcagno C,et al. Compositional Shape Analysis by Means of Bi-Abduction[C] //POPL 09. 2009: 289-300.
9Lokuciejewski P,et al. A Fast and Precise Static Loop AnalysisBased on Abstract Interpretation, Program Slicing and PolytopeModels[C] // Code Generation, and Optimization, 2009 (CGO2009). 2009 : 136-146.
10Coughlin D,et al. Fissile type analysis: Modular Checking of Al-most Everywhere Invariants [J], SIGPLAN Notices, 2014, 49(1):73-85.

1朱军军.家用自动报警系统的实现[J].中文信息,2013(10):2-2.
2袁康乐.Web服务器的搭建和安全问题[J].水泥科技,2015,0(4):29-35.
3风险.专家教你六招抵御网络风险[J].网络与信息,2007,21(4):48-48.
4王群.NT4.0组网技术系列讲座（三）：———第三讲建立并管理用户帐号[J].微型计算机,1999(3):91-96.
5IBM发布虚拟服务器管理软件[J].中国计算机用户,2009(18):71-71.
6焦铬,陈溪辉,刘辉.在WINDOWS 2000 SERVER下搭建CA中心[J].甘肃科技,2005,21(3):63-64.
7陈婉.在WINDOWS 2003平台上构建ASP WEB服务器[J].科教文汇,2009(8):277-278.
8贺朝晖.UNIX系统C语言编程技巧[J].中国金融电脑,1996(10):54-57.
9近期Unix／Linux漏洞[J].网管员世界,2006(2):106-106.
10邵志清,宋国新,傅纯一,王立中,陆道宏.关于过程调用中的透明性和可靠性[J].华东理工大学学报（自然科学版）,1995,21(1):95-98.

计算机科学

2015年第10期

浏览历史

内容加载中请稍等...

可组合的描述符泄露类型检查

参考文献13

相关作者

相关机构

相关主题

浏览历史