کد مقاله کد نشریه سال انتشار مقاله انگلیسی نسخه تمام متن
434949 1441655 2015 35 صفحه PDF دانلود رایگان
عنوان انگلیسی مقاله ISI
Two techniques to improve the precision of a demand-driven null-dereference verification approach
ترجمه فارسی عنوان
دو تکنیک برای بهبود دقت یک رویکرد تأیید اعتبار ناپایدار مبتنی بر تقاضا
کلمات کلیدی
موضوعات مرتبط
مهندسی و علوم پایه مهندسی کامپیوتر نظریه محاسباتی و ریاضیات
چکیده انگلیسی


• We propose two novel extensions to a base flow-sensitive backwards analysis.
• First: a way to “skip” difficult constructs soundly.
• Second: a way to account for calls to Collections APIs soundly and efficiently.
• We have evaluated our approach on large programs. Its efficiency is excellent.
• It has significantly higher precision than the analysis on which it is based.

The problem addressed in this paper is sound, scalable, demand-driven null-dereference verification for Java programs. Our approach consists conceptually of a base analysis, plus two major extensions for enhanced precision. The base analysis is a dataflow analysis wherein we propagate formulas in the backward direction from a given dereference, and compute a necessary condition at the entry of the program for the dereference to be potentially unsafe. The extensions are motivated by the presence of certain “difficult” constructs in real programs, e.g., virtual calls with too many candidate targets, and library method calls, which happen to need excessive analysis time to be analyzed fully. The base analysis is hence configured to skip such a difficult construct when it is encountered by dropping all information that has been tracked so far that could potentially be affected by the construct. Our extensions are essentially more precise ways to account for the effect of these constructs on information that is being tracked, without requiring full analysis of these constructs. The first extension is a novel scheme to transmit formulas along certain kinds of def–use edges, while the second extension is based on using manually constructed backward-direction summary functions of library methods. We have implemented our approach, and applied it on a set of real-life benchmarks. The base analysis is on average able to declare about 84% of dereferences in each benchmark as safe, while the two extensions push this number up to 91%.

ناشر
Database: Elsevier - ScienceDirect (ساینس دایرکت)
Journal: Science of Computer Programming - Volume 98, Part 4, 1 February 2015, Pages 645–679
نویسندگان
, ,