Git Product home page Git Product logo

patchweave's Introduction

PatchWeave

Semantic based patch transplantation tool for C programs. PatchWeave transplants patches across programs which are semantically equivalent but syntactically different, to fix bugs/vulnerabilities that exist across multiple programs (i.e. recurring vulnerabilities)

Docker Image

PatchWeave is distributed in source code form and pre-installed in Docker image. The Docker image also contains PatchWeave evaluation results.

You can download Docker image with pre-installed PatchWeave. Note that it contains multiple versions with and without the experiment results, use the correct tag for desired version.

Example Usage

PatchWeave requires a configuration file which specifies the source code path to the donor program and the target program. Following is an example configuration file for bug id 1, as provided in our docker image

path_a:/data/openjpeg-jasper/div-zero-1/openjpeg-1.5.1;
path_b:/data/openjpeg-jasper/div-zero-1/openjpeg-1.5.2;
path_c:/data/openjpeg-jasper/div-zero-1/jasper-1.900.2
exploit_command_c:/src/appl/imginfo -f $POC
exploit_command_a:/applications/codec/j2k_to_image -i $POC -o out.bmp
path_poc:/data/exploits/jasper/CVE-2016-8691.j2k
asan_flag:integer

Once you setup a configuration file as above you can use the following command to run PatchWeave which will transplant the patch from OpenJPEG to Jasper.

python PatchWeave.py --conf=/path/to/conf/file

Documentation

To set optimal configuration for your subject, refer to the Configuration section of the manual.

Citing PatchWeave

We are researchers, therefore if you use PatchWeave in an academic work we would be really glad if you cite our paper using the following bibtex:

@article{10.1145/3412376,
author = {Shariffdeen, Ridwan Salihin and Tan, Shin Hwei and Gao, Mingyuan and Roychoudhury, Abhik},
title = {Automated Patch Transplantation},
year = {2021},
issue_date = {January 2021},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
volume = {30},
number = {1},
issn = {1049-331X},
url = {https://doi.org/10.1145/3412376},
doi = {10.1145/3412376},
abstract = {Automated program repair is an emerging area that attempts to patch software errors and vulnerabilities. In this article, we formulate and study a problem related to automated repair, namely automated patch transplantation. A patch for an error in a donor program is automatically adapted and inserted into a “similar” target program. We observe that despite standard procedures for vulnerability disclosures and publishing of patches, many un-patched occurrences remain in the wild. One of the main reasons is the fact that various implementations of the same functionality may exist and, hence, published patches need to be modified and adapted. In this article, we therefore propose and implement a workflow for transplanting patches. Our approach centers on identifying patch insertion points, as well as namespaces translation across programs via symbolic execution. Experimental results to eliminate five classes of errors highlight our ability to fix recurring vulnerabilities across various programs through transplantation. We report that in 20 of 24 fixing tasks involving eight application subjects mostly involving file processing programs, we successfully transplanted the patch and validated the transplantation through differential testing. Since the publication of patches make an un-patched implementation more vulnerable, our proposed techniques should serve a long-standing need in practice.},
journal = {ACM Trans. Softw. Eng. Methodol.},
month = dec,
articleno = {6},
numpages = {36},
keywords = {code transplantation, dynamic program analysis, Program repair, patch transplantation}
}

Developers / Maintainers

  • Ridwan Shariffdeen

License

This project is licensed under the MIT License - see the LICENSE file for details

patchweave's People

Contributors

rshariffdeen avatar

Stargazers

avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar

Forkers

spearo2 sonicstark

patchweave's Issues

run PatchWeave in docker encountered a problem

when I run PatchWeave in docker, there are some problems:

Successful generating symbolic trace information from donor program, after 11.6607911587 seconds.

        starting generating symbolic trace information from target program...
        __________________________________________________________________________________________

        /data/libsndfile-wavpack/shift-overflow/wavpack-5.1.0
                generating symbolic trace for path conditions
                collecting symbolic path conditions
{}
/patchweave/output/shift-overflow/log-klee-pc


        No symbolic path for Pc
        Crash during generating symbolic trace information from target program, after 3.24142503738 seconds.


        Error. Exiting...
        Unexpected error during generating symbolic trace information from target program.
Traceback (most recent call last):
  File "PatchWeave.py", line 63, in <module>
    run_patchweave()
  File "PatchWeave.py", line 40, in run_patchweave
    Concolic.execute()
  File "/patchweave/phases/Concolic.py", line 153, in execute
    safe_exec(sym_trace_target, "generating symbolic trace information from target program")
  File "/patchweave/phases/Concolic.py", line 129, in safe_exec
    error_exit(exception, "Unexpected error during " + description + ".")
  File "/patchweave/common/Utilities.py", line 42, in error_exit
    raise Exception("Error. Exiting...")
Exception: Error. Exiting...

the run command is python PatchWeave.py --conf=/data/libsndfile-wavpack/shift-overflow/shift-overflow.conf, conf content is

root@fd6a97a8dbf8:/patchweave# cat /data/libsndfile-wavpack/shift-overflow/shift-overflow.conf 
path_a:/data/libsndfile-wavpack/shift-overflow/libsndfile-1.0.25
path_b:/data/libsndfile-wavpack/shift-overflow/libsndfile-1.0.26
path_c:/data/libsndfile-wavpack/shift-overflow/wavpack-5.1.0
exploit_command_a:/programs/sndfile-convert $POC out.wav
exploit_command_c:/cli/wavpack $POC -o output
config_command_c:./configure --disable-asm
path_poc:/data/exploits/audiofile/CVE-2017-6828.wav
asan_flag:integer

the directory is:
20230602221232

how can i solve it :(?

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.