Defective Error/Pointer Interactions in the Linux Kernel
| dc.contributor.author | Rubio-Gonzalez, Cindy | en_US |
| dc.contributor.author | Liblit, Ben | en_US |
| dc.date.accessioned | 2012-03-15T17:25:28Z | |
| dc.date.available | 2012-03-15T17:25:28Z | |
| dc.date.created | 2011 | en_US |
| dc.date.issued | 2011 | en_US |
| dc.description.abstract | Linux run-time errors are represented by integer values referred to as error codes. These values propagate across long function-call chains before being handled. As these error codes propagate, they are often temporarily or permanently encoded into pointer values. Error-valued pointers are not valid memory addresses, and therefore require special care by programmers. Misuse of pointer variables that store error codes can lead to serious problems such as system crashes, data corruption, unexpected results, etc. We use static program analysis to find three classes of bugs relating error-valued pointers: bad dereferences, bad pointer arithmetic, and bad overwrites. Our tool finds 57 true bugs among 52 different Linux file system implementations, the virtual file system (VFS), the memory management module (mm), and 4 drivers. | en_US |
| dc.format.mimetype | application/pdf | en_US |
| dc.identifier.citation | TR1687 | en_US |
| dc.identifier.uri | http://digital.library.wisc.edu/1793/60732 | |
| dc.publisher | University of Wisconsin-Madison Department of Computer Sciences | en_US |
| dc.title | Defective Error/Pointer Interactions in the Linux Kernel | en_US |
| dc.type | Technical Report | en_US |
Files
Original bundle
1 - 1 of 1