Saved in:
Bibliographic Details
Main Authors: Jia, Ang, Jiang, He, Ren, Zhilei, Li, Xiaochen, Yang, Zhipeng, Duan, Yaxin, Fan, Ming, Liu, Ting
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2506.19425
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866917133297909760
author Jia, Ang
Jiang, He
Ren, Zhilei
Li, Xiaochen
Yang, Zhipeng
Duan, Yaxin
Fan, Ming
Liu, Ting
author_facet Jia, Ang
Jiang, He
Ren, Zhilei
Li, Xiaochen
Yang, Zhipeng
Duan, Yaxin
Fan, Ming
Liu, Ting
contents Third-Party Library (TPL) detection, which identifies reused libraries in binary code, is critical for software security analysis. At its core, TPL detection depends on binary decomposition-the process of partitioning a monolithic binary into cohesive modules. Existing decomposition methods, whether anchor-based or clustering-based, fundamentally rely on the assumption that reused code exhibits similar function call relationships. However, this assumption is severely undermined by Function Call Graph (FCG) variations introduced by diverse compilation settings, particularly function inlining decisions that drastically alter FCG structures. In this work, we conduct the first systematic empirical study to establish the oracle for optimal binary decomposition under compilation variance. We first develop a labeling method to create precise FCG mappings on a comprehensive dataset compiled with 17 compilers, 6 optimizations, and 4 architectures; then, we identify the minimum semantic-equivalent function regions between FCG variants to derive the ground-truth decomposition. This oracle provides the first rigorous evaluation framework that quantitatively assesses decomposition algorithms under compilation variance. Using this oracle, we evaluate existing methods and expose their critical limitations: they either suffer from under-aggregation failure or over-aggregation failure. Our findings reveal that current decomposition techniques are inadequate for robust TPL detection, highlighting the urgent need for compilation-aware approaches.
format Preprint
id arxiv_https___arxiv_org_abs_2506_19425
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle Towards an Oracle for Binary Decomposition Under Compilation Variance
Jia, Ang
Jiang, He
Ren, Zhilei
Li, Xiaochen
Yang, Zhipeng
Duan, Yaxin
Fan, Ming
Liu, Ting
Software Engineering
Third-Party Library (TPL) detection, which identifies reused libraries in binary code, is critical for software security analysis. At its core, TPL detection depends on binary decomposition-the process of partitioning a monolithic binary into cohesive modules. Existing decomposition methods, whether anchor-based or clustering-based, fundamentally rely on the assumption that reused code exhibits similar function call relationships. However, this assumption is severely undermined by Function Call Graph (FCG) variations introduced by diverse compilation settings, particularly function inlining decisions that drastically alter FCG structures. In this work, we conduct the first systematic empirical study to establish the oracle for optimal binary decomposition under compilation variance. We first develop a labeling method to create precise FCG mappings on a comprehensive dataset compiled with 17 compilers, 6 optimizations, and 4 architectures; then, we identify the minimum semantic-equivalent function regions between FCG variants to derive the ground-truth decomposition. This oracle provides the first rigorous evaluation framework that quantitatively assesses decomposition algorithms under compilation variance. Using this oracle, we evaluate existing methods and expose their critical limitations: they either suffer from under-aggregation failure or over-aggregation failure. Our findings reveal that current decomposition techniques are inadequate for robust TPL detection, highlighting the urgent need for compilation-aware approaches.
title Towards an Oracle for Binary Decomposition Under Compilation Variance
topic Software Engineering
url https://arxiv.org/abs/2506.19425