BIRD: Binary Interpretation using Runtime Disassembly

Nanda, Susanta; Li, Wei; Lam, Lap-chung; Chiueh, Tzi‐cker

doi:10.1109/cgo.2006.6

Cited by 68 publications

(65 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the context of dynamic instrumentation, Nanda et al proposed to resolve indirect branches at runtime, when the concrete jump target has already been computed [16]. In this paper, we generalize this idea to combining over-approximate static analysis with under-approximation and alternating between the two for resolving jump targets.…”

Section: Introductionmentioning

confidence: 98%

See 1 more Smart Citation

Alternating Control Flow Reconstruction

Kinder

Kravchenko

2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Unresolved indirect branch instructions are a major obstacle for statically reconstructing a control flow graph (CFG) from machine code. If static analysis cannot compute a precise set of possible targets for a branch, the necessary conservative over-approximation introduces a large amount of spurious edges, leading to even more imprecision and a degenerate CFG. In this paper, we propose to leverage under-approximation to handle this problem. We provide an abstract interpretation framework for control flow reconstruction that alternates between over-and under-approximation. Effectively, the framework imposes additional preconditions on the program on demand, allowing to avoid conservative over-approximation of indirect branches. We give an example instantiation of our framework using dynamically observed execution traces and constant propagation. We report preliminary experimental results confirming that our alternating analysis yields CFGs closer to the concrete CFG than pure over-or under-approximation.

show abstract

Section: Introductionmentioning

confidence: 98%

“…Nanda et al introduced hybrid disassembly in their tool BIRD [16]. They first use a heuristic disassembly algorithm to identify likely code regions in an executable.…”

Section: Related Workmentioning

confidence: 99%

Alternating Control Flow Reconstruction

Kinder

Kravchenko

2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Having direct access to the IR yields two significant advantages. First, it allows the runtime to avoid disassembling the binary, which can be difficult or impossible without access to fine-grain information about the executing code paths [47,48]. Second, the alternative of hoisting the binary to IR, as is done in prior work, loses important semantic information and limits the flexibility of the compiler [46].…”

Section: A Protean Code Compilermentioning

confidence: 99%

Protean Code: Achieving Near-Free Online Code Transformations for Warehouse Scale Computers

Laurenzano

Tang

Mars

2014

2014 47th Annual IEEE/ACM International Symposium on Microarchitecture

View full text Add to dashboard Cite

Abstract-Rampant dynamism due to load fluctuations, corunner changes, and varying levels of interference poses a threat to application quality of service (QoS) and has limited our ability to allow co-locations in modern warehouse scale computers (WSCs). Instruction set features such as the non-temporal memory access hints found in modern ISAs (both ARM and x86) may be useful in mitigating these effects. However, despite the challenge of this dynamism and the availability of an instruction set mechanism that might help address the problem, a key capability missing in the system software stack in modern WSCs is the ability to dynamically transform (and re-transform) the executing application code to apply these instruction set features when necessary.In this work we introduce protean code, a novel approach for enacting arbitrary compiler transformations at runtime for native programs running on commodity hardware with negligible (<1%) overhead. The fundamental insight behind the underlying mechanism of protean code is that, instead of maintaining full control throughout the program's execution as with traditional dynamic optimizers, protean code allows the original binary to execute continuously and diverts control flow only at a set of virtualized points, allowing rapid and seamless rerouting to the new code variants. In addition, the protean code compiler embeds IR with high-level semantic information into the program, empowering the dynamic compiler to perform rich analysis and transformations online with little overhead. Using a fully functional protean code compiler and runtime built on LLVM, we design PC3D, Protean Code for Cache Contention in Datacenters. PC3D dynamically employs non-temporal access hints to achieve utilization improvements of up to 2.8x (1.5x on average) higher than state-of-the-art contention mitigation runtime techniques at a QoS target of 98%.

show abstract

“…Disassembly research concentrates on algorithm improvements at home and abroad, such as static disassembly combined with machine learning [3] , error detection via control flow [4] , mixed disassembly method [5] , disassembly based on speculation [6] , etc. For the research of the reliability of the software for the smart meter, Zhejiang Electric Power Research Institute [7] utilize cross test strategy to test the software.…”

Section: Related Workmentioning

confidence: 99%

“…CppCheck has very good expansibility, using the open regular expression library PCRE. PCRE implements the detection of defects in lexical analysis phase, and then according to the value of the linener object Token to achieve the scalability of the defect mode [6] . The rest of the paper is organized as follows.…”

Section: Introductionmentioning

confidence: 99%

EA-CRT: An Error Analysis Method with Embedded Code Reverse Technology

Liu¹,

Zhang²,

Xu³

et al. 2016

Proceedings of the 2016 International Conference on Intelligent Control and Computer Application

View full text Add to dashboard Cite

The study of error analysis with embedded code reverse technology needs integration of decompiling, error module depict and comparison. This paper proposes an error analysis method for testing embedded code, and utilizes the smart meter's fault, white and black screen, as the example. Our method has been validated 12 times on Renesas chips of the smart meter of Wasion Group, with the Open Source Code. The experiment shows that the proposed method is 87% effective for the fault model of black and white.

show abstract

BIRD: Binary Interpretation using Runtime Disassembly

Cited by 68 publications

References 12 publications

Alternating Control Flow Reconstruction

Alternating Control Flow Reconstruction

Protean Code: Achieving Near-Free Online Code Transformations for Warehouse Scale Computers

EA-CRT: An Error Analysis Method with Embedded Code Reverse Technology

Contact Info

Product

Resources

About