Anonymous
11/8/2025, 6:25:11 PM
No.107144468
I'm writing an article based on this paper for my SCA job:
https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf
So I implemented it using Sonnet 4.5 through a 36-chapter book (and several appendices):
https://chubak.neocities.org/xcrunity-dossier
(if you want a thorough introduction to UAFX, read Appendix A).
This is admittedly grade-a slop, but it will help you get familiarized with pointer analysis, kernel idioms, UAF, and most importantly OCaml, because it uses OCaml and its ecosystem to implement XCrutiny (my implementation of UAFX).
It uses the CIL library as a C frontent, and SMTML + Z3 to solve the constraints.
If you like this book, help me create a better Pandoc template for them. I've made 77 "dossiers" so far (I call my slop 'dossiers'). For example, this is my "Ultimate Neovim Dossier":
https://chubak.neocities.org/nvim-ultimate-dossier
It uses a prior template, which is much worse than the current one. Still, if anyone can help me make a better template, lemme know.
I explained my process of creating these slop a few days ago. If you're interested, I'll explain again. I have made several Fish functions that help me create these slop in a streamlined manner.
https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf
So I implemented it using Sonnet 4.5 through a 36-chapter book (and several appendices):
https://chubak.neocities.org/xcrunity-dossier
(if you want a thorough introduction to UAFX, read Appendix A).
This is admittedly grade-a slop, but it will help you get familiarized with pointer analysis, kernel idioms, UAF, and most importantly OCaml, because it uses OCaml and its ecosystem to implement XCrutiny (my implementation of UAFX).
It uses the CIL library as a C frontent, and SMTML + Z3 to solve the constraints.
If you like this book, help me create a better Pandoc template for them. I've made 77 "dossiers" so far (I call my slop 'dossiers'). For example, this is my "Ultimate Neovim Dossier":
https://chubak.neocities.org/nvim-ultimate-dossier
It uses a prior template, which is much worse than the current one. Still, if anyone can help me make a better template, lemme know.
I explained my process of creating these slop a few days ago. If you're interested, I'll explain again. I have made several Fish functions that help me create these slop in a streamlined manner.