Skip to content

nakhlarafi/taint-analysis

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.idea
.idea
 
 
TaintAnalysisScratch
TaintAnalysisScratch
 
 
TestPrograms
TestPrograms
 
 
.DS_Store
.DS_Store
 
 
README.md
README.md
 
 

Repository files navigation

ECSE 688 Programming Assignment 1

Objective

This assignment aims to use Soot to implement a taint analysis tool.

Instructions to Use the Tool

What You Need to Get Started:

  • Java Development Kit 8
  • Maven
  • Git

How to Get the Code:

Use this command in your terminal to clone the repository: git clone https://github.com/nakhlarafi/taint-analysis.git

How to Run the Code:

  • Run MainDriver.java.
  • Make sure the file paths for Sink.txt and Source.txt in TaintAnalysis.java are correct.
  • Ensure the processDir path in MainDriver.java is also correct.

Assignment Description

Input Output Examples

Input source file: source.txt

<io.github.liliweise.Source: int sensitive()>()
<io.github.liliweise.Source: int source()>()

Each line is the signature of one source API

Input sink file: sink.txt

<io.github.liliweise.Source: int sink()>()
<io.github.liliweise.Sink: int sink()>()

Each line is the signature of one sink API

Input program:

 1.  package io.github.liliweise;  
 2.   
 3.  public class Test {  
 4.      public void test() {  
 5.          int a = Source.sensitive();  
 6.          int b = Source.source();  
 7.          int c = 3;  
 8.          int d = a * c;  
 9.          if (a > 1) {  
10.            c = b + 1;  
11.          }  
12.          int e = Source.benign();  
13.          int f = 0;  
14.          if (e > 1) {  
15.              f = e;  
16.          }  
17.          Source.sink(c);  
18.          Source.sink(f);  
19.          Source.sink(d);  
20.      }  
21.  }

Output:

——————————————————
Found a Leak in <io.github.liliweise.Test: void test()>
Source: line 6: b = staticinvoke <io.github.liliweise.Source: int source()>()
Leak: line 17: staticinvoke <io.github.liliweise.Source: void sink(int)>(c)
——————————————————
Found a Leak in <io.github.liliweise.Test: void test()>
Source: line 5: a = staticinvoke <io.github.liliweise.Source: int sensitive()>()
Leak: line 17: staticinvoke <io.github.liliweise.Source: void sink(int)>(c)
——————————————————
Found a Leak in <io.github.liliweise.Test: void test()>
Source: line 5: a = staticinvoke <io.github.liliweise.Source: int sensitive()>()
Leak: line 19: staticinvoke <io.github.liliweise.Source: void sink(int)>(d)

Test Programs

The structure of the test program folder is as follows:

|TestPrograms
  +--- InputFiles // Lists of sources and sinks
  +--- src
     +--- ProgramToAnalyzeWithExpectedOutputs.java //Test programs with expected outputs
     +--- OpenOutputTests.java //Test programs without expected outputs
     ...
  +--- bytecode //The folder containing the compiled ProgramToAnalyzeWithExpectedOutputs and OpenOutputTests

InputFiles contain two files: source.txt - the list of source API signatures sink.txt - the list of sink API signatures

ProgramToAnalyzeWithExpectedOutputs This folder contains the test programs that will be used to verify the correctness of your implementation, and grade your implementation.

OpenOutputTests This folder contains the test programs that will be used to guide you answer the critical thinking questions.

About

This tool aims to use Soot to do taint analysis.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages