全部 标题 作者
关键词 摘要

OALib Journal期刊
ISSN: 2333-9721
费用:99美元
投递稿件

查看量下载量

相关文章

更多...
电子学报  2015 

基于值依赖分析的空指针解引用检测

DOI: 10.3969/j.issn.0372-2112.2015.04.004, PP. 647-651

Keywords: 程序分析,静态缺陷检测,空指针解引用检测,需求驱动别名分析

Full-Text   Cite this paper   Add to My Lib

Abstract:

本文提出了一种基于程序值依赖分析的、路径敏感的空指针解引用检测方法.该方法通过结合数据流分析中的到达定值分析、区间分析及指向分析创建了值依赖分析图,该图刻画了可能产生空指针语句到其解引用语句的值依赖关系.该图中的边采用守卫标注,即描述了相邻点之间的到达条件.为了降低误报率,本文同时提出了一种需求驱动的必然别名算法.由本文所述方法实现的工具展示了良好的实验效果,在10个SPEC2000项目中发现了70余个空指针解引用缺陷,误报率仅为6%左右.

 References

[1]  J Uniejewski.SPEC Benchmark Suite:Designed for Today''s Advanced Systems[R].Technical Report 1,SPEC Newsletter 1,1989.
[2]  Das M,S Lerner,M Seigle.ESP:Path-sensitive program verification in polynomial time[J].ACM Sigplan Notices,2002,37(5):57-68.
[3]  Engler D,Chelf B,Chou A,et al.Checking System Rules Using System-Specific,Programmer-Written Compiler Extensions[M].Berkeley:Usenix Assoc,2000.1-16.
[4]  Jagannathan,Suresh,et al.Single and loving it:must-alias analysis for higher-order languages[A].25th ACM Sigplan-Sigact Symposium on Principles of Programming Languages[C].USA:ACM,1998.329-341.
[5]  Altucher,Rita Z,William Landi.An extended form of must alias analysis for dynamic allocation[A].22nd ACM Sigplan-Sigact Symposium Principles of Programming Languages[C].USA:ACM,1995.74-84.
[6]  Jeannet B,Mine A.Apron:a library of numerical abstract domains for static analysis[A].Lecture Notes in Computer Science[C].Berlin:Springer-Verlag,2009.661-667.
[7]  Weise,Daniel,et al.Value dependence graphs:representation without taxation[A].21st ACM Sigplan-Sigact Symposium on Principles of Programming Languages[C].USA:ACM,1994.297-310.
[8]  Daniel Le Berre,Anne Parrain.SAT4J:a satisfiability library for java[OL].http://www.sat4j.org/,2011-01-01.
[9]  Radu Rugina,Maksim Orlovich,Xin Zheng.Crystal:a program analysis system for C[OL].http://www.cs.cornell.edu/projects/crystal,2006-11-01.
[10]  Moore R E,Kearfott R B,Cloud M J.Introduction to Interval Analysis[M].Siam,2009.
[11]  P?r Emanuelsson,Ulf Nilsson.A comparative study of industrial static analysis tools[A].Proceedings of the 3rd International Workshop on Systems Software Verification[C]. Australia,2008.5-21.
[12]  Xie Y C,Aiken A.Scalable error detection using boolean satisfiability[J].ACM Sigplan Notices,2005,40(1):351-363.
[13]  The MITRE Corporation.Common Weakness Enumeration[OL].http://cwe.mitre.org/,2014-07-31.

Full-Text

Contact Us

service@oalib.com

QQ:3279437679

WhatsApp +8615387084133