Team meetingFeb 16, 2012

Christophe Foket

Class hierarchy flattening

Developer Attacker

Tool flow

dacapo.jar

VMTamiFlex

input

.class

refl.log

soot

obfuscator

.classinput

Problem:transformed program usually only works for specified input as analyses are unsound.

smalldefault

Tool flow

dacapo.jar

VMTamiFlex

input

refl.log

soot

obfuscator

.classinput

Analyses are sound, since all classes are considered.Soot fails to parse some classes. (7/14 bms transformed)

smalldefault

dacapo.jar

TODO (past week)

• h2: soot’s type assigner fails• batik: call graph construction out of memory• xalan: bad access to protected data• tradebeans & tradesoap: work, but only small

percentage of classes transformed by soot• fop: phantom class loaded at run time• jython: make soot aware of getSuperClass

TODO (past week)

• h2: soot’s type assigner fails• batik: call graph construction out of memory• xalan: bad access to protected data• tradebeans & tradesoap: work, but only small

percentage of classes transformed by soot• fop: phantom class loaded at run time• jython: make soot aware of getSuperClass

VirtualBox image: lab sessions compilers

TODO (coming week)

• h2: use different runtime environment• tradebeans & tradesoap: huge benchmarks

(18000+ classes), transformation really slow, not finished => speed up

• jython: soot is aware of getSuperClass, but needs testing