Defect report missing analysis and solving method of code-level memory in program

A solution, code-level technology, applied in the field of software static analysis, to achieve the effect of eliminating false positives

Inactive Publication Date: 2017-05-17
CHINA UNIV OF PETROLEUM (EAST CHINA)
View PDF0 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In view of this, the main purpose of the present invention is to first analyze the factors that lead to the under-reporting of code-level memory defects, and propose corresponding solutions for the under-reporting factors

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Defect report missing analysis and solving method of code-level memory in program
  • Defect report missing analysis and solving method of code-level memory in program
  • Defect report missing analysis and solving method of code-level memory in program

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050] When the method of this patent detects code-level memory defects, it first preprocesses the program under test to obtain intermediate representations of programs such as abstract syntax tree, symbol table, definition usage chain, and control flow graph; and then performs reliable data based on the control flow graph Flow analysis, to obtain the storage state of memory objects described by abstract memory modules at each program point; then based on the results of data flow analysis and the rules of code-level memory defect patterns, fully identify the code-level memory defect detection objects; finally, Based on the results of the data flow analysis and the rules of the code-level memory defect mode, it is accurately determined whether the identified code-level memory defect detection object is a defect.

[0051] The above descriptions are only preferred embodiments of the present invention, and are not intended to limit the protection scope of the present invention.

...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a solution of defect report missing of a code-level memory in a program. The method can achieve detection of all code-level memory defects in programs and comprises the steps that (A) code-level memory defect modes are fully summarized; (B) a storage state of a memory object is comprehensively described, an abstract domain is adopted to express values of expressions, an abstract memory model is adopted to describe various relevance of the expressions; (C) reliable data flow analysis is performed, and an upper approximate value of each memory object value on each program point and various possible relations of the expressions are analyzed and obtained; (D) code-level memory detect detecting objects are completely identified; (E) according to rules of the summarized code-level memory defect modes and data flow analysis results, whether each code-level memory detect detecting object violates correct semantic rules for memory reading and writing or not is accurately detected. By the adoption of the defect report missing analysis and solving method of code-level memories in programs, sufficiency of the detection on the code-level memory defects in the programs can be achieved.

Description

technical field [0001] The invention relates to software static analysis technology, in particular to defect detection based on static analysis. Background technique [0002] Static analysis is a type of software testing method. Its purpose is to analyze whether the software complies with the predetermined requirements through static analysis. It is an important part of ensuring software quality. Static analysis, also known as static testing, does not actually run the software under test, but scans the source program to find structural anomalies, control flow anomalies, and data flow anomalies that may cause errors. [0003] Defect detection is a kind of static analysis technology, which can statically detect defects in the program that do not meet the syntax or semantic requirements. Among them, code-level memory defects are a kind of defects that violate the normal semantics of reading and writing memory, and do not meet the predetermined requirements for memory reading a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/07G06F11/10
CPCG06F11/073G06F11/104
Inventor 董玉坤
Owner CHINA UNIV OF PETROLEUM (EAST CHINA)
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap