Algorithm to build the cross-chain CFG (xCFG)

Author: merendamattia

src/main/java/it/unipr/abi/ABIFunctionSelector.java

@@ -33,8 +33,8 @@
  * </ul>
  * </p>
  */
-public class AbiFunctionSelector {
-	private static final Logger log = LogManager.getLogger(AbiFunctionSelector.class);
+public class ABIFunctionSelector {
+	private static final Logger log = LogManager.getLogger(ABIFunctionSelector.class);
 
 	/**
 	 * Computes the function selector for a given function signature. The
@@ -63,12 +63,18 @@ public static String getFunctionSelector(String functionSignature) {
 	 * 
 	 * @return A set of pairs where each pair contains the function signature
 	 *             and its corresponding selector.
-	 * 
-	 * @throws IOException If an error occurs while reading the ABI file.
 	 */
-	public static Set<Pair<String, String>> parseAbi(Path abi) throws IOException {
+	public static Set<Pair<String, String>> parseABI(Path abi) {
 		Set<Pair<String, String>> functionSet = new HashSet<>();
-		String abiJson = Files.readString(abi, StandardCharsets.UTF_8);
+		String abiJson;
+
+		try {
+			abiJson = Files.readString(abi, StandardCharsets.UTF_8);
+		} catch (IOException e) {
+			log.error("Unable to read abi json {}: {}", abi.toString(), e.getMessage());
+			return functionSet;
+		}
+
 		JSONArray abiArray = new JSONArray(abiJson);
 
 		for (int i = 0; i < abiArray.length(); i++) {
@@ -88,7 +94,7 @@ public static Set<Pair<String, String>> parseAbi(Path abi) throws IOException {
 				String functionSelector = getFunctionSelector(signature.toString());
 				functionSet.add(Pair.of(signature.toString(), functionSelector));
 
-				log.debug("{} -> {}", signature, functionSelector);
+//				log.debug("{} -> {}", signature, functionSelector);
 			}
 		}
 		return functionSet;
@@ -102,13 +108,18 @@ public static Set<Pair<String, String>> parseAbi(Path abi) throws IOException {
 	 * @param functionSet  A set of function signature-selector pairs extracted
 	 *                         from the ABI.
 	 * @param bytecodePath Path to the smart contract's compiled bytecode.
-	 * 
-	 * @throws IOException If an error occurs while reading the bytecode file.
 	 */
-	public static void verifyFunctionSelectors(Set<Pair<String, String>> functionSet, Path bytecodePath)
-			throws IOException {
+	public static void verifyFunctionSelectors(Set<Pair<String, String>> functionSet, Path bytecodePath) {
 		int counter = 0;
-		String bytecode = Files.readString(bytecodePath, StandardCharsets.UTF_8);
+		String bytecode;
+
+		try {
+			bytecode = Files.readString(bytecodePath, StandardCharsets.UTF_8);
+		} catch (IOException e) {
+			log.error("Unable to read bytecode {}: {}", bytecodePath.toString(), e.getMessage());
+			return;
+		}
+
 		for (Pair<String, String> entry : functionSet) {
 			int occurrences = StringUtils.countMatches(bytecode, entry.getValue());
 
@@ -118,6 +129,9 @@ public static void verifyFunctionSelectors(Set<Pair<String, String>> functionSet
 					log.info("Function selector {} ({}) is present {} times in the bytecode.", entry.getValue(),
 							entry.getKey(), occurrences);
 			} else {
+				// TODO (bug) functions with array in parameters are not
+				// recognised, e.g.,
+				// `returnVaultAssets(address,address,tuple[],string)`
 				log.warn("Function selector {} ({}) is NOT present in the bytecode.", entry.getValue(), entry.getKey());
 			}
 		}
@@ -130,9 +144,10 @@ public static void main(String[] args) {
 		Path bytecode = Paths.get("test-cross-chain-analysis", "test-ABI-function-selector", "buggy_1.bytecode");
 
 		try {
-			Set<Pair<String, String>> functionSet = parseAbi(abi);
+			Set<Pair<String, String>> functionSet = parseABI(abi);
+			assert functionSet != null;
 			verifyFunctionSelectors(functionSet, bytecode);
-		} catch (IOException e) {
+		} catch (Exception e) {
 			log.error("Error reading ABI or bytecode file", e);
 		}
 	}

src/main/java/it/unipr/cfg/EVMCFG.java

@@ -33,15 +33,20 @@
 import java.util.Set;
 import java.util.Stack;
 import java.util.stream.Collectors;
+import org.apache.commons.lang3.tuple.Pair;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
 
 public class EVMCFG extends CFG {
+	private static final Logger log = LogManager.getLogger(EVMCFG.class);
 
 	public Set<Statement> jumpDestsNodes;
 	public Set<Number> jumpDestsNodesLocations;
 	public Set<Statement> jumpNodes;
 	public Set<Statement> pushedJumps;
 	public Set<Statement> sstores;
 	public Set<Statement> sha3s;
+	public Set<Statement> logxs;
 
 	public EVMCFG(CodeMemberDescriptor descriptor, Collection<Statement> entrypoints,
 			NodeList<CFG, Statement, Edge> list) {
@@ -53,7 +58,29 @@ public EVMCFG(CodeMemberDescriptor cfgDesc) {
 	}
 
 	/**
-	 * Returns a set of all the SSTORE statements in the CFG. SSTORE
+	 * Returns a set of all the LOGx statements in the CFG.
+	 *
+	 * @return a set of all the LOGx statements in the CFG
+	 */
+	public Set<Statement> getAllLogX() {
+		if (logxs == null) {
+			NodeList<CFG, Statement, Edge> cfgNodeList = this.getNodeList();
+			Set<Statement> logxs = new HashSet<>();
+
+			for (Statement statement : cfgNodeList.getNodes()) {
+				if (statement instanceof Log) {
+					logxs.add(statement);
+				}
+			}
+
+			return this.logxs = logxs;
+		}
+
+		return logxs;
+	}
+
+	/**
+	 * Returns a set of all the SSTORE statements in the CFG.
 	 * 
 	 * @return a set of all the SSTORE statements in the CFG
 	 */
@@ -75,7 +102,7 @@ public Set<Statement> getAllSstore() {
 	}
 
 	/**
-	 * Returns a set of all the SHA3 statements in the CFG. SHA3
+	 * Returns a set of all the SHA3 statements in the CFG.
 	 * 
 	 * @return a set of all the SHA3 statements in the CFG
 	 */
@@ -364,4 +391,45 @@ private boolean dfsSequential(Statement start, Statement target, Set<Statement>
 
 		return false;
 	}
+
+	/**
+	 * The method performs a depth-first search (DFS) and identifies `Push`
+	 * statements containing function selectors.
+	 *
+	 * @param start          The starting statement for the search.
+	 * @param abiFunctionSet A set of function signatures and their
+	 *                           corresponding function selectors.
+	 * 
+	 * @return A set of pairs where each pair consists of a function signature
+	 *             (from the ABI) and the corresponding statement in the CFG.
+	 */
+	public Set<Pair<String, Statement>> findMatchingStatements(Statement start,
+			Set<Pair<String, String>> abiFunctionSet) {
+		Set<Pair<String, Statement>> matchingStatements = new HashSet<>();
+		Set<Statement> visited = new HashSet<>();
+		Stack<Statement> stack = new Stack<>();
+		stack.push(start);
+
+		while (!stack.isEmpty()) {
+			Statement current = stack.pop();
+
+			if (!visited.contains(current)) {
+				visited.add(current);
+
+				if (current instanceof Push)
+					for (Pair<String, String> abiFunction : abiFunctionSet)
+						if (current.toString().contains(abiFunction.getRight()))
+							matchingStatements.add(Pair.of(abiFunction.getLeft(), current));
+
+				Collection<Edge> outgoingEdges = list.getOutgoingEdges(current);
+				for (Edge edge : outgoingEdges) {
+					Statement next = edge.getDestination();
+					if (!visited.contains(next))
+						stack.push(next);
+				}
+			}
+		}
+
+		return matchingStatements;
+	}
 }

src/main/java/it/unipr/crossChainAnalysis/Bridge.java

@@ -0,0 +1,80 @@
+package it.unipr.crossChainAnalysis;
+
+import java.io.IOException;
+import java.nio.file.DirectoryStream;
+import java.nio.file.Files;
+import java.nio.file.Path;
+import java.util.*;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+
+public class Bridge implements Iterable<SmartContract> {
+	private static final Logger log = LogManager.getLogger(Bridge.class);
+	private final Set<SmartContract> _contracts;
+
+	public Bridge() {
+		this._contracts = new HashSet<>();
+	}
+
+	/**
+	 * Initializes the bridge by mapping and matching smart contracts from the
+	 * ABI and bytecode directories. It creates `SmartContract` objects for each
+	 * contract that has both an ABI and a bytecode file.
+	 *
+	 * @param abiDir      the path to the directory containing ABI files
+	 * @param bytecodeDir the path to the directory containing bytecode files
+	 */
+	public Bridge(Path abiDir, Path bytecodeDir) {
+		this();
+		Map<String, Path> abiFiles = mapFilesByName(abiDir, ".abi.json");
+		Map<String, Path> bytecodeFiles = mapFilesByName(bytecodeDir, ".bytecode");
+
+		for (String name : bytecodeFiles.keySet()) {
+			if (abiFiles.containsKey(name)) {
+				_contracts.add(new SmartContract(name, abiFiles.get(name), bytecodeFiles.get(name)));
+			} else {
+				log.warn("Cannot find ABI file: {}", name);
+			}
+		}
+	}
+
+	/**
+	 * Scans a directory for files with a given extension and maps them by their
+	 * base name. The base name is derived from the file name without its
+	 * extension.
+	 *
+	 * @param directory the directory to scan
+	 * @param extension the file extension to filter by (e.g., ".abi.json",
+	 *                      ".bytecode")
+	 * 
+	 * @return a map where keys are base file names and values are their
+	 *             corresponding paths
+	 */
+	private Map<String, Path> mapFilesByName(Path directory, String extension) {
+		Map<String, Path> fileMap = new HashMap<>();
+		try (DirectoryStream<Path> stream = Files.newDirectoryStream(directory, "*" + extension)) {
+			for (Path file : stream) {
+				String fileName = file.getFileName().toString();
+				String baseName = fileName.substring(0, fileName.indexOf('.'));
+				fileMap.put(baseName, file);
+			}
+		} catch (IOException e) {
+			log.error("Error reading directory: {}", e.getMessage());
+		}
+		return fileMap;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder result = new StringBuilder("Bridge Contracts:\n");
+		for (SmartContract contract : _contracts) {
+			result.append(contract).append("\n");
+		}
+		return result.toString();
+	}
+
+	@Override
+	public Iterator<SmartContract> iterator() {
+		return _contracts.iterator();
+	}
+}