Use on-demand control- data- flow slicing combined with taint analysis and symbolic execution to produce scalable and precise UB detection for Linux kernel.
For the case below, I find KUBO does not correctly label the user-controlled parameter argp with F_USER. I think the problem exists in pass/Ksym/Oracle.cpp when parsing previously generated UserInputArg. The PR tries to this problem. Please help validate the PR.
For the case below, I find KUBO does not correctly label the user-controlled parameter
argpwithF_USER. I think the problem exists inpass/Ksym/Oracle.cppwhen parsing previously generatedUserInputArg. The PR tries to this problem. Please help validate the PR.Thanks!