SBOM.exe: Countering Dynamic Code Injection based on Software Bill of Materials in Java

Java is a dynamic programming language, in the sense that it features different capabilities to load and modify code at runtime [23]. A classloader in Java is responsible for loading classes into the Java Virtual Machine (JVM). A typical classloader takes in the name of the class and finds binary code corresponding to it on disk. Dynamic class loading does not require the binary code to exist on disk since the start of JVM. For example, it enables downloading binary code on the fly or generation of binary code at runtime. In the following, we enumerate the main mechanisms through which a class can be loaded dynamically in Java.

First, classloaders can be extended to execute classes from a remote source [24] or compiled code at runtime [25]. Both of these APIs are open for public usage and extensively used by the native SDK.

Proxies [26] are runtime generated classes that add common functionalities to some classes in the application. For example, a proxy class can have functions to record the time taken for execution. The code for proxies is generated at runtime. Within Java, a major usage of proxies is to generate the code corresponding to Java annotations [27].

Java allows classes to introspect themselves. This is called reflection in Java and this feature also leverages dynamic code generation. Internally, Java creates subclasses of \StrSubstitute[0]MagicAccessorImpl.. [28] which grants access to the Java runtime to members of the class which otherwise would be inaccessible. Introspection is an essential feature of frameworks. For example, JUnit uses reflection to find the test methods in a class.

Finally, Java bytecode has an instruction called \StrSubstitute[0]invokedynamic.. [29] that allows bootstrap** methods at runtime. It bootstraps methods by dynamically generating a ‘hidden class’ [30] that contains the implementation of the method. This instruction is used to implement lambda expressions in Java, which is essential in modern versions of Java. Java records also rely on this feature to implement their members like \StrSubstitute[0]equals...

To sum up, Java is a highly dynamic platform, and its dynamic features are foundational for most notable Java capabilities and usages. However, this dynamicity can be used for malicious purposes, which is the problem we address in this paper. We will study real-world instances of such attacks in section 3 and subsection 6.3.

Software Supply Chain refers to the sequence of steps and inputs resulting in the creation of a software artefact [31]. We define the important terms used in the paper regarding the software supply chain.

Build System. A build system is a piece of software that takes in the source code and all its dependencies to create a package or a software artefact. Some examples of build systems are \StrSubstitute[0]mvn.., \StrSubstitute[0]npm.., and \StrSubstitute[0]pip...

Package Registry. A package registry is a trusted central service that hosts packages, dependencies, or software components. Packages are deployed to registries so that other developers can use them. Some examples of package registries are Maven Central, the npm registry, and PyPI.

SBOM. SBOM – software bill of material – is a formal, machine-readable inventory of software components, information about those components, and their hierarchical relationships [32]. Its goal is to enable transparency of the software supply chain. This enables multiple uses to multiple stakeholders [33], such as license compliance analysis or vulnerability management.

One of the key features of SBOM is to report the complete list of software components or dependencies of a software package [34]. The dependencies here refer to both direct and indirect dependencies. The direct dependencies refer to the ones declared by the developers to leverage the additional functionalities. The indirect dependencies are the ones that are required by the direct dependencies and are implicitly trusted by the developers.

Figure 2 presents an overview of SBOM.exe, a system that verifies the binary integrity of an application’s dependencies at runtime. The system operates in two different phases.

At build time, the indexing phase consists of building an allowlist of all binary classes that are allowed to be executed by the JVM in production. We call this list the \StrSubstitute[0]BOMI.., which stands for Bill Of Material Index. Then at runtime, SBOM.exe verifies that no unknown class is executed using the BOMI as the ground truth of accepted classes. The \StrSubstitute[0]SBOM Runtime Watchdog.. is the key component at this stage. It verifies the acceptability of a class by comparing the checksum of a canonical version of a Java class. This checksum is computed exactly the same way in the indexing phase.

There are two major novel concepts in our system.

BOMI. A Bill of Material Index, shortened as ‘BOMI’, is an allowlist of binary classes that are allowed to be executed by the JVM. The core idea behind maintaining an allowlist is to restrict the execution of classes that are not known by the developers. SBOM.exe fully automates this process of indexing all the classes, not requiring the developer to do any manual work. The BOMI captures the identity of allowed classes by computing a checksum over a canonical version of Java bytecode (subsection 4.4).

SBOM Runtime Watchdog. The goal of SBOM Runtime Watchdog is to ensure that no unknown class is executed. It enforces the BOMI at runtime by controlling the loading of classes. In other words, it checks for equivalence of the checksum of the class to load with the checksum of the class in the BOMI. Since some classes are non-deterministically generated at runtime, we canonicalize (subsection 4.4) them to ensure that the checksum equivalence is correct.

In the \StrSubstitute[0]Indexing.. phase (top part of Figure 2), SBOM.exe lists all Java classes necessary to run the application before it is deployed to production. In Java, default class loaders allow loading classes from filesystem [23, §2]. These can be used to load environment classes and supply chain classes. The default class loaders can be extended to download classes from a remote source or generate classes at runtime. We refer to those classes as dynamically loaded classes.

Now, we define each of the three sets of classes. First, environment classes are the built-in classes provided by the Java standard library. Second, supply chain classes are classes written by the developers of the application, as well as the classes declared as dependencies to the application. Finally, dynamically-loaded classes are classes that only appear at runtime. They are either downloaded from a remote source or generated.

The bottom part of Figure 2 is about the \StrSubstitute[0]Runtime.. phase of SBOM.exe. In production, a JVM is spawned to run an application. We propose to attach an SBOM Runtime Watchdog to the JVM. The SBOM Runtime Watchdog is attached to the application during startup with the Java agent mechanism. It takes as input the BOMI, which will be used to detect unknown or tampered binary classes. To sum up, for a class to be accepted and used in production, it must be present in the BOMI, and must have the same canonical checksum as recorded in the \StrSubstitute[0]Indexing.. phase.

The core idea in the \StrSubstitute[0]Indexing.. phase is to list all Java classes necessary to run the application.

SBOM.exe has three indexing components: environment, supply chain, and dynamic code indexer. All these processes execute sequentially and write the classes to the BOMI. Thus, the BOMI is the union of all classes obtained from the three indexers. We now describe each of the indexers in detail.

SBOM.exe is meant to detect unknown code before it is being executed in production, in order to fail-fast under attack, see section 3. The SBOM Runtime Watchdog is responsible for terminating the application when this happens. It is a Java agent that is attached to the application during startup and takes as input the BOMI generated by the above three indexers. At runtime, it intercepts all classes that are loaded by the JVM, computes the checksum of the classes and verifies if the class is in the BOMI. If the class exists in the BOMI and the checksum matches, it means that the class is known and the application continues to execute. If the class is unknown, it means that either the application is under attack or that the indexing was incomplete. Our systematic analysis of the Java software stack is made to exclude the latter (see our experiments in subsection 6.3).

The core duty of the SBOM Runtime Watchdog is to disallow unknown classes and terminate the application when an unknown class is detected. In addition, the incident is reported to the security team.

A major problem with runtime generated code is that it is non-deterministic. This means that running the same application twice would give slightly different generated bytecodes. To the best of our knowledge, the Java standard library cannot be forced to be fully deterministic [45]. It is capable of producing non-deterministic code [16]. For example, 4 shows the difference between two decompiled versions of the same proxy class in different executions. To account for that problem, SBOM.exe preprocesses all generated classes to obtain a deterministic canonical version, which we describe below.

The first addressed non-determinism feature is the class name. The names of generated classes, like \StrSubstitute[0]Proxy.. classes include a number that depends on the order of the class loaded, this order is non-deterministic due to e.g. parallelism. Hence this number could be different between runs even though the content of the bytecode is equivalent. In order to ensure that these classes are not considered as different classes, we rewrite the class names to a fixed string constant. For example, the class \StrSubstitute[0]$Proxy21.. and \StrSubstitute[0]$Proxy14.. in line number 1 and 2 in 4 is rewritten to \StrSubstitute[0]foo.. in line number 1 in 5.

The second non-addressed non-determinism feature is type references in the class code. The names of type references are derived from the class name and are also non-deterministic. For example, if class \StrSubstitute[0]$Proxy21.. has a field called \StrSubstitute[0]m3... It can be referred to as \StrSubstitute[0]$Proxy21.m3.., where \StrSubstitute[0]$Proxy21.. is the type reference. This reference can be used in the bytecode of the same class as shown in line number 12 of 4 or a different class where \StrSubstitute[0]$Proxy21.. is imported. Thus, we also need to rewrite these references to a fixed string constant \StrSubstitute[0]foo.. like in line number 6 of 5.

Finally, a third problem lies in the map** of fields and methods in generated classes between different runs. For example, \StrSubstitute[0]m3.. is mapped to \StrSubstitute[0]visualUpdate.. in one run and \StrSubstitute[0]expert.. in another run. This also affected the order of statements in the methods as shown in line number 30 to 33 of 4. This is fixed by sorting the byte array of the bytecode just before computing the checksum in the next step.

After performing the above three transformations, we have a canonical, stable, and deterministic view of the class. SBOM.exe then computes the SHA-256 checksum of the constant pool and the JVM opcodes. The constant pool of a bytecode reflects all the APIs and their exact arguments. The JVM opcodes reflect how these APIs and the arguments are combined and executed.

To sum up, bytecode canonicalization is an essential component of SBOM.exe. Without it, it is impossible to reason about the integrity of binary code across executions. To our knowledge, we are the first to propose such a canonicalization of runtime generated code for the JVM.

The BOMI is a critical component of SBOM.exe. We take the following special measures to ensure the integrity of the BOMI. We ensure that all the indexing processes are running in a trusted environment. We create a Docker image from the base image of the official OpenJDK [46] and then install SBOM.exe in the container.

First, the environment indexer should analyze a safe version of the Java standard library. This is ensured by our selection of the official Java distribution.

Second, we ensure that the indexers interact with trusted sources. For the supply chain index, we only consider the classes that are downloaded from Maven Central. The Maven Central repository has many sub repositories, we ensure that the URLs of the JAR belong to one of the sub repositories of Maven Central. We also install the SSL certificates required to interact with Maven Central so that dependency resolution uses verified URLs. Enforcing SSL certificate verification also prevents DNS hijacking attacks.

We have implemented a prototype of the design which is made available on GitHub [22] under the same name SBOM.exe.

We document the study subjects in Table I and these will be used to evaluate SBOM.exe. The first three subjects are high-profile CVE with severity rating critical associated with them. They fall under our threat model and are used to evaluate the effectiveness of SBOM.exe. The last three subjects are real-world applications that are used to evaluate the applicability and performance of SBOM.exe. These Java applications are open-source and popular repositories on GitHub. The next column shows the Java version used to run the application. The versions are the latest LTS, but for CVE, older LTS versions are used to replicate the vulnerability. Next, we show the number of dependencies that are part of the application. Finally, we show the workload that is used for three different purposes. 1) For replicating the vulnerability in the case of high-profile attacks. 2) For running the study subject under the influence of SBOM Runtime Watchdog to evaluate the applicability of SBOM.exe. And finally, 3) for measuring the overhead of SBOM.exe.

To answer this question, we study BOMIs generated by SBOM.exe for the 3 CVEs and 3 real-world applications that will be studied in RQ2 and RQ3. We create the BOMI-Environment statically using the Java Standard Library. We select \StrSubstitute[0]build-info-go.. as the SBOM producer to generate the BOMI-SupplyChain. It is deemed to be the most precise way to capture the dependencies for a Java application [5]. Finally, test suites are used by Dynamic Code Indexer to create the BOMI-Runtime. Then, we manually analyze them and comment on their characteristics. We also, comment on how deterministic the generation of BOMI is. The BOMI is deterministic if the same classes and checksums corresponding to them are generated for the same application across different runs.

For RQ1, we collect three high-profile attacks to show that SBOM.exe can successfully stop them. High-profile attacks are those that have a CVE with a severity rating critical associated with them. We first replicate the vulnerability in a proof-of-concept application and we show how it can be exploited using a malicious payload. Next, we create a BOMI for the application and pass it to SBOM.exe for enforcement at runtime. Finally, we deploy the application with SBOM.exe’s SBOM Runtime Watchdog and we run the attack using the same malicious payload as in the initial reproduction. We check that SBOM.exe’s approach works and that the application terminates before the malicious class is executed, completely mitigating the attack.

We ensure that SBOM.exe can be used for providing runtime integrity to real-world applications without any false positives, i.e. without terminating the application wrongfully. To answer this question, we run SBOM.exe on a set of 3 real-world applications - \StrSubstitute[0]PDFBox.. (an application for manipulating PDF files), \StrSubstitute[0]GraphHopper.. (an open source navigation engine that powers openstreetmap.org) \StrSubstitute[0]Ttorrent.. (a peer-to-peer file downloading tool based on the BitTorrent protocol). Then we construct the BOMI for each application. Finally, we run the application with the workload, while attaching the Runtime SBOM Watchdog to the JVM. If the application executes successfully without inappropriate termination by the watchdog (false positive), we consider the application to be compatible with SBOM.exe.

We measure the overhead of SBOM.exe caused by the SBOM Runtime Watchdog by running all study subjects with appropriate workloads. The workload is the same as used in RQ3 to evaluate the applicability of SBOM.exe. These workloads are also appropriate for measuring the overhead of SBOM.exe as they are representative of the real-world usage of the application. Per the best practices of overhead measurement in Java, the evaluation is done using a microbenchmarking framework Java Microbenchmark Harness (JMH)  [47] and it reports two metrics - end-to-end time with warmup and workload time excluding warmup. End-to-end time with warmup is the measure of the sum of how long it takes for the JVM to warm up and then run the application. Warming up of JVM is the process of profiling and compiling the bytecode to machine code, it is significant because the JVM has two JIT compilers. We configure JMH to spawn 5 forks of JVM wherein it executes 5 warm-up executions first so that the just-in-time compilers can perform optimizations and compile bytecode to machine code. After that, it runs 5 measurement executions of the workload. End-to-end time with warmup reports the average of 5 warm-up runs and 5 measurement runs over 5 forks. Workload time excluding warmup reports the mean of the runtime of the application over all executions and it excludes the JVM warm-up time. Hence, it gives the execution time when all code has been compiled to machine code and the application is running in its most optimized state. So, times excluding warmup are always lower than end-to-end times with warmup. Finally, we report the percentage overhead for the two metrics. We use the following formula to calculate the overhead:

where

• •

  $t_{\text{w/}}$ is the time reported with SBOM.exe,

• •

  $t_{\text{w/o}}$ is the workload time without SBOM.exe,

• •

  $\Delta t_{\text{w/}}$ is the error in time with $t_{\text{w/}}$,

• •

  $\Delta t_{\text{w/o}}$ is the error in time without $t_{\text{w/o}}$,

• •

  $Actual\ Value$ is the relative overhead incurred by SBOM.exe,

• •

  $Error$ is the error in the overhead calculation.

Table II presents the details of the BOMI for all the study subjects. The first column lists the study subjects that will evaluate the effectiveness and applicability of SBOM.exe in RQ2 and RQ3 respectively. The second column is the number of classes in BOMI-Environment. It is dependent upon the Java version. The third column is the number of classes in BOMI-SupplyChain. The classes in the supply chain include the dependencies and the project itself. The fourth column lists the number of classes in BOMI-Runtime. BOMI shows the total number of classes by adding the classes from BOMI-Environment, BOMI-SupplyChain, and BOMI-Runtime. Finally, the last column reports if the BOMI is reproducible or not. The BOMI is reproducible if all classes and checksums in BOMI-Environment, BOMI-SupplyChain, and BOMI-Runtime are deterministic.

For CVE-2021-44228, we build the BOMI-Environment using the Java standard library version 17.0.10 Temurin and we capture 24085 classes. The BOMI-SupplyChain contains 1269 classes from the source code for replication on this CVE and its 2 dependencies. The BOMI-Runtime contains 27 classes that are generated during the execution of the test suite of replication. The total number of classes in the BOMI is 25381. We generated the BOMI twice and it contained the same classes and checksums. Hence, we consider the BOMI for CVE-2021-44228 to be reproducible.

We discuss characteristics of BOMI-Environment, BOMI-SupplyChain, and BOMI-Runtime in the following subsections.

Table III presents the attacks we aim to mitigate in our experiment. We first mention the CVEs, then we report the vulnerable dependency that includes the CVE, as deployed on Maven Central. The dependency name is the concatenation of the group ID, artefact ID, and version. We also mention the use case for the dependency, to give some context about where the vulnerability is exploited. Next, we mention the particular API entrypoint for the attack and thus, make the dependency vulnerable. Finally, the column ‘Malicious Class’ is the classname that is injected during the attack, and which should be detected and blocked by SBOM.exe. All the attacks are available in our repository [22] and are fully reproducible.

For example, consider the first row of the table which has details about CVE-2021-44228, also known as \StrSubstitute[0]Log4Shell... The vulnerable dependency group ID, artefact ID, and version are \StrSubstitute[0]org.apache.logging.log4j.., \StrSubstitute[0]log4j-core.., and \StrSubstitute[0]2.14.1.. respectively. This dependency is one of the most popular logging frameworks in Java [48]. The API that processes the malicious input is \StrSubstitute[0]org.apache.logging.log4j.Logger#error(String)... and the malicious class we use in our experiment is called \StrSubstitute[0]xExportObject...

We select the versions of the real-world applications as shown in Table IV to evaluate the compatibility of SBOM.exe.

The first column ‘Project’ is the name of the GitHub repository of the application. The module column is the exact maven module that we consider. The use case column describes the functionality of the application that we evaluate. The release column is the latest version of the application as of 1^st June 2024, hosted on Maven Central. kLOC indicates the number of thousands of lines of code in the module. The number of tests is the total number of tests that are executed to capture the dynamic classes. Finally, we indicate the number of stars the repository has on GitHub, as an indicator of the popularity of the application.

For example, in the first row, we consider the \StrSubstitute[0]PDFBox.. application. We consider the module \StrSubstitute[0]pdfbox-app.. as it is the main module for performing PDF manipulations. The main module in maven projects produces the executable JAR. We take the latest release \StrSubstitute[0]3.0.2.. of the module. The application has 117 kLOC and 907 tests. The repository has 2.5K stars on GitHub.

In the following subsections, we present the results for each application. We run our experiments using OpenJDK 21.0.2. We organize the results of each application in four parts.

First, we describe the creation of a workload so that we can prepare a baseline usage for the application, as described in Table I. Then we describe the generated BOMI and we report the classes detected by SBOM.exe that are not part of the BOMI and the reasons those classes are not there. Finally, we discuss the changes that we made to the application to make it compatible with SBOM.exe.

Table V shows the performance of the study subjects, as recorded by state-of-the-art tool JMH [47]. It is given in seconds per execution of the workload. The second column and the third column list the end-to-end time with warmup and workload time excluding warmup with and without SBOM.exe, as well as the overhead induced by SBOM Runtime Watchdog.

For example, \StrSubstitute[0]PDFBox.. takes $5.949\pm 0.281$ and $7.380\pm 1.456$ seconds to run the workload without and with SBOM.exe respectively when considering the end-to-end time with warmup. The overhead is computed as follows $\frac{3.404-2.551}{2.551}\pm\frac{3.404-2.551}{2.551}\sqrt{\left(\frac{0.393+0.204}{3.404-2.551}\right)^{2}\pm\left(\frac{0.204}{2.551}\right)^{2}}$. This evaluates to $(24.1\pm 29.2)\%$. Similarly, times after warmup are $1.822\pm 0.027$ and $1.840\pm 0.025$ seconds without and with SBOM.exe. The overhead incurred is $(1.0\pm 2.9)\%$.

In the following subsections, we discuss the end-to-end time with warmup and workload time excluding warmup metrics.

Permission managers allow developers to define access permissions for the application at varying granularities. Developers define policies, which specify what resources can be accessed by the application, libraries or system calls. The permission manager then enforces the policies at runtime. The integrity of the application is protected, as the sensitive resources can only be accessed per the rules defined in the policies.

Amusuo et al. [52] map network, filesystem, and process permissions to each dependency in the policy file. At runtime, the tool enforces the policy by allowing or denying access to the resources based on which access permissions are defined for the dependency. The enforcement of permissions is done by adding hooks to methods handling resource access in the Java standard library. Jamrozik et al. [53] map the complete application to the Android permissions for location, microphone, etc. They get the list of resources accessed by running the application against the test generated using fuzzing. Only the resources that were accessed during the tests are allowed to be accessed at runtime. Java also provides native support for writing permissions using Java Security Manager (JSM), which is a built-in permission manager that allows the developer to define access permissions for each Java class. JSM is deprecated for removal [54].

There is a body of literature on permission management for JavaScript. Ohm et al. [55], Ferreira et al. [56], Ahmadpanah et al. [57], and De Groef et al. [58] propose permission managers for Node.js applications. Vasilakis et al. [59] propose enforcing read, write, and execute permissions on each field and method in JavaScript. Finally, one can enforce permissions on every single system call invoked by an application, such as in SWAT4J [60], HODOR [61] and Confine [62], which leverage Seccomp BPF to restrict invocation of system calls at runtime.

Our approach is fundamentally different because it does not require the developer to define access permissions for the application, libraries, or system calls. To that extent, our approach is more lightweight and more smoothly applicable in practice. Moreover, enforcing permissions requires modification in the runtime environment like JVM or Node.js which is not required in our approach.

Compartmentalization is a method where different parts of an application are executed in different protection domains. This ensures integrity as one part of the application can be protected against malicious behavior in other parts. Application partitioning and third-party code isolation are methods that have been studied to compartmentalize applications at runtime.

Application partitioning can be done at the hardware level or the software level. Intel Software Guard Extensions (SGX) is a hardware-based security feature that runs untrusted code in an isolated environment, called enclave. Uranus [63] and Montsalvat [64] are two frameworks that enable developers to use SGX capabilities in their applications. The developers can use these libraries to indicate trusted and untrusted parts of the application. The JVM will then execute the trusted and untrusted parts in different regions of the CPU. Another hardware-based mechanism is proposed by Tsampas et al. [65]. They propose a source to source compiler that compiles the code in such a way that it is executed in isolated memory segments. The isolation of memory segments is done by unforgeable pointers that are protected by hardware.

At software level, the trusted and untrusted part of the application is executed in separate processes. Another line of work by Song et al. [66] and Gudka et al. [67] relocates the untrusted part of the application to a separate process. This process has limited access permissions, in the Linux sense.

Isolation of third-party code is another method to compartmentalize applications. [68], [69], [70], and [71] consider third-party code as untrusted because the developer cannot control its code. They propose running the third-party code in an isolated environment which has limited access to the system resources. Then it becomes a challenge for the developer to define the access permissions for the third-party code as we saw in the previous section - access permissions for dependency requires modification in runtimes like Node.js or JVM.

SBOM.exe runs the application in a single process so that the performance overhead at runtime is minimal. Moreover, compartmentalization approaches require manual work to split the application into trusted and untrusted parts.

Integrity Measurement comes from the Linux kernel and means measuring the application in terms of its call, memory or any kind of execution behavior. This measurement data is then used at runtime to ensure that the application is executing as expected. These measurement based techniques can further be divided into two subsections based on the enforcement mechanism.

Control flow integrity is about checking that the application executes according to the control flow graph as intended. The survey by Burrow et al. [79] provides a comprehensive overview of recent related work on control flow integrity for runtime protection. SBOM.exe is different from control flow integrity: 1) it is at a higher level of abstraction: dependencies; 2) it protects against a different class of attacks (see section 3).

Oblivious Hashing [80] is a technique where the side effects of executed code are verified. The hashing function instruments the code to add guards at the end of every control flow path. At runtime, the guards ensure that the code is executing as expected by verifying the hash of the control flow path. SBOM.exe focuses on the prevention of execution of malicious classes rather than verifying the resulting state of the application. Moreover, SBOM.exe does not require any source code modification in the application whose runtime integrity needs to be preserved.

Deserialization attacks are common in Java applications [81]. In this class of attacks, the attacker sends a serialized object to the application and expects the application to deserialize it. Upon deserialization, the malicious code is executed. Filtering mechanisms [82] have been proposed which allow and deny certain classes to be deserialized. However, Sayar et al. [81] find that these mechanisms make the allowlist contain all possible serializable classes and the deny list is empty. A solution proposed by the authors is to allowlist only the used classes of the application and SBOM.exe is exactly on those lines.