Reduced size of computed summaries by excluding standard libraries etc. Also, reduced number of roots per app.

Author: marek-trtik

regression/december_demo_sprint/Alfresco/APP/roots.json

@@ -1,12 +1,4 @@
 [
-    "org.alfresco.web.app.Application.handleServletError",
-    "org.alfresco.web.app.Application.handleSystemError",
-    "org.alfresco.web.sharepoint.auth.BasicAuthenticationHandler.authenticateRequest",
-    "org.alfresco.web.sharepoint.auth.BasicAuthenticationHandler.isUserAuthenticated",
-    "org.alfresco.web.app.servlet.UploadFileServlet.service",
-    "org.alfresco.web.app.servlet.CommandServlet.service",
-    "org.alfresco.web.app.servlet.UploadContentServlet.doPut",
-    "org.alfresco.web.app.servlet.DownloadRawContentServlet.service",
-    "org.alfresco.web.app.servlet.DownloadRawContentServlet.processRequest"
+    "org.alfresco.web.app.servlet.UploadContentServlet.doPut"
 ]
 

regression/december_demo_sprint/Alfresco/APP/taint.json

@@ -1,79 +1,3 @@
 [
-  {
-    "id": "source_0_X1",
-    "kind": "source",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "javax.servlet.http.HttpServletRequest.getQueryString"
-  },
-  {
-    "id": "source_1_X1",
-    "kind": "source",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "javax.servlet.http.HttpServletRequest.getRequestURI"
-  },
-  {
-    "id": "source_2_X1",
-    "kind": "source",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "javax.servlet.http.HttpServletRequest.getRequestURL"
-  },
-  {
-    "id": "source_3_X1",
-    "kind": "source",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "javax.servlet.ServletRequest.getParameter"
-  },
-  {
-    "id": "source_4_X1",
-    "kind": "source",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "javax.servlet.ServletRequest.getParameterValues"
-  },
-  {	
-    "id": "source_5_X1",
-    "kind": "source",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "javax.servlet.ServletRequest.getInputStream"
-  },
-
-  {
-    "id": "sink_0_X1",
-    "kind": "sanitizer",
-    "where": "return_value",
-    "taint": "X1",
-    "function": "",
-    "message": "sanitize(X1)"
-  },
-
-  {
-    "id": "sink_0_X1",
-    "kind": "sink",
-    "where": "parameter1",
-    "taint": "X1",
-    "function": "java.io.PrintWriter.write",
-    "message": "sink(X1)"
-  },
-  {
-    "id": "sink_1_X1",
-    "kind": "sink",
-    "where": "return_value",
-    "taint": "parameter1",
-    "function": "java.io.PrintWriter.print",
-    "message": "sink(X1)"
-  },
-  {
-    "id": "sink_2_X1",
-    "kind": "sink",
-    "where": "parameter1",
-    "taint": "X1",
-    "function": "java.io.PrintWriter.println",
-    "message": "sink(X1)"
-  }
 ]
 

regression/december_demo_sprint/DSpace/APP/roots.json

@@ -1,5 +1,4 @@
 [
-  "org.dspace.app.webui.servlet.BitstreamServlet.doDSGet",
-  "org.dspace.app.webui.servlet.DisplayStatisticsServlet.doDSGet"
+  "org.dspace.app.webui.servlet.BitstreamServlet.doDSGet"
 ]
 

regression/december_demo_sprint/Encuestame/APP/HACKS.txt

@@ -9,6 +9,3 @@ actually carries taint (these are more precise, since a Java field 'taintfield'
 can only ever be addressed by that name). This will be fixed by the precision
 improvements described elsewhere.
 
-
-
-

regression/december_demo_sprint/Encuestame/APP/README.txt

@@ -21,7 +21,7 @@ Analysed commit: 42cb745cbf15c9b40e497242898c2f75ded278f7
 We had to use few hacks in the app to produce traces. So, we cloned the
 original repository and perform changes there. Here is the new analysed
 repository: https://github.com/smowton/encuestame/
-
+Hacks are described in the file HACKS.txt
 
 Installation on Ubuntu:
 

regression/december_demo_sprint/Ginco/APP/roots.json

@@ -1,6 +1,4 @@
 [
-    "fr.mcc.ginco.security.AuthenticationFilter.attemptAuthentication",
-    "fr.mcc.ginco.rest.services.ImportRestService.uploadFile",
-    "fr.mcc.ginco.rest.services.ImportRestService.uploadGincoXmlThesaurusFile"
+    "fr.mcc.ginco.security.AuthenticationFilter.attemptAuthentication"
 ]
 

regression/december_demo_sprint/README.txt

@@ -16,8 +16,13 @@ There are two special sub-directories:
         and data providing fully automated analysis of benchmarks.
 
     ./TRAINING
-        This is a root directory of traning benchmarks. They serve us only for
-        debugging purposes. They won't be part of the evaluation (demo).
+        This is a root directory of traning benchmarks. They serve us for
+        debugging purposes.
+
+    ./TOY_APPS
+        This is a root directory of small Java web applications. They serve us
+        for debugging purposes.
+
 
 All remaining sub-directories in this directory represent root directories
 of genuine benchmarks which will be used in the evaluation. Names of these
@@ -27,6 +32,11 @@ There is also file "INFO.txt" in this directory. It contains general info about
 this demo (its specification) received from meetings and discussions with
 management.
 
+Once the benchmarks are evalauted, there will be generated file "index.html"
+representing a root file for browsing all computed results and statistics
+of all evaluated benchmarks.
+
+
 1.1. Directory structure of a benchmark
 
 Each benchmark directory (including training ones) must have this structure
@@ -84,6 +94,8 @@ following:
           /<java-web-app-sources-dir>
               ...
           README.txt
+          HACKS.txt       (optional)
+          jars.json       (optional)
           roots.json
           taint.json
     ./BENCHMARK
@@ -105,6 +117,12 @@ The directory "RESULTS.aux" is auxiliary. We use it for debug purposes - until
 we update the analyser so that it is able to produce results usable for the
 evaluation.
 
+The file "HACKS.txt" describes modification we had to do in source code of the
+benchmark in order to produce an error-trace.
+
+The file "jars.json" specifies what JAR files should be specified in classpath
+variable. When not specified, all JAR files in the buld directory are used.
+
 
 2. Directory structure of analyser
 
@@ -130,7 +148,26 @@ The "run.py" is the root script of the analyser. Whenever you want to run the
 analyser, use this Python script.
 
 
-3. Structure of results
+3. How to run the evalaution
 
-TODO!
+Open terminal in the sub-directory "goto-analyser" and type there:
+    python ./run.py -E <benchmark> --statistics
+    
+where <benchmark> is a root directory of some benchmark. For example:
+    python ./run.py -E "../Encuestame" --statistics
+    python ./run.py -E "../TRAINING/taint_traces_05" --statistics
+will evaluate benchmarks "Encuestame" and the training one "taint_traces_05".
+To evaluate only real-word benchmarks you can type:
+    python ./run.py -E REAL --statistics
+To ovaluate only training benchmarks you can type:
+    python ./run.py -E TRAINING --statistics
+To ovaluate all benchmarks you can type:
+    python ./run.py -E ALL --statistics
+
+
+4. Structure of results
+
+Results from the evaluation (including statistical data) are presented in form
+of HTML files. The root HTML file "index.html" is located in the root directory
+of the evaluation framework.
 

regression/december_demo_sprint/Red5/APP/roots.json

@@ -1,10 +1,5 @@
 [
-    "org.red5.server.net.rtmpt.RTMPTServlet.handleOpen",
-    "org.red5.server.net.rtmpt.RTMPTServlet.handleSend",
-    "org.red5.server.net.rtmpt.RTMPTServlet.service",
-    "org.red5.server.net.servlet.AMFTunnelServlet.service",
     "org.red5.server.net.servlet.RedirectHTTPServlet.service",
-    "org.red5.server.net.servlet.AMFGatewayServlet.service",
-    "org.red5.server.net.servlet.AMFGatewayServlet.serviceAMF"
+    "org.red5.server.net.servlet.AMFGatewayServlet.service"
 ]
 

regression/december_demo_sprint/Sakai/APP/HACKS.txt

@@ -0,0 +1,11 @@
+1. Complex taint sources (e.g. where only InputStreams derived from a Servlet,
+rather than all InputStreams, should yield taint) were implemented by direct
+modification of the source, but are conceptually not difficult (need to add 
+state to classes that indirectly yield taint).
+
+2. Character arrays as used in Strings are imprecisely modelled and lead to
+taint getting everywhere, so I added a parallel field 'taintfield' that 
+actually carries taint (these are more precise, since a Java field 'taintfield'
+can only ever be addressed by that name). This will be fixed by the precision
+improvements described elsewhere.
+