We describe ongoing work about global static analysis for GCC4 within the GlobalGCC European project, funded thru the ITEA Programme. The aim of this work is to provide global (whole program) static analysis, notably based upon abstract interpretation and knowledge based techniques, within the GCC compiler, targeted for analysis of medium sized C, Fortran or C++ programs. This will facilitate the adoption of GCC in the area of safetycritical software development, by providing features found in a few expensive commercial tools (PolySpace, AbsInt) or research prototypes (Astree). In this perspective, the emphasis is on the quality of analysis, at the expense of much bigger compilation times, without sacrificing scalability. Such analysis can be used for several purposes: statically compute some interesting properties of the program at most control points (possibly reporting them the user); provide clever, contextual, warnings about possible hazards in the user program (null pointer dereferences, zero divide, conversion loss, out of bound array access, ...) while avoiding too much false alarms; enable additional optimisations, like conditional contextual constant folding, C++ method call devirtualization, an other contextual optimizations. The compiler’s rich program manipulation infrastructure facilitates the development of these advanced analysis capabilities. To facilitate the development high-level semantical analyses, a domain specific language has been developped, and is translated (thru C) into dynamically loaded code. It uses the Parma Polyhedra Library (also used in the GRAPHITE project) for relational analysis on scalars and gives more expressivity to develop analaysis algorithms. It permits multi-staged generation of the specific analysis tailored to the analyzed source code. Presenting this work at the 2007 GCC summit will allow us to stress the importance of all outputs of the compiler, not only object-code, and to expose the complementary contribution of static analyses and dynamic/instrumentation approaches like mudflap.
[1]
Roberto Bagnara,et al.
Precise widening operators for convex polyhedra
,
2003,
Sci. Comput. Program..
[2]
George C. Necula,et al.
CCured: type-safe retrofitting of legacy software
,
2005,
TOPL.
[3]
Jacques Pitrat.
Implementation of a reflective system
,
1996,
Future Gener. Comput. Syst..
[4]
Rafael Dueire Lins,et al.
Garbage collection: algorithms for automatic dynamic memory management
,
1996
.
[5]
James Cheney,et al.
Cyclone: A Safe Dialect of C
,
2002,
USENIX Annual Technical Conference, General Track.
[6]
Patrick Cousot,et al.
Abstract Interpretation Frameworks
,
1992,
J. Log. Comput..
[7]
Roberto Bagnara,et al.
The Parma Polyhedra Library: Toward a complete set of numerical abstractions for the analysis and verification of hardware and software systems
,
2006,
Sci. Comput. Program..
[8]
Eugen-Nicolae Volanschi.
A Portable Compiler-Integrated Approach to Permanent Checking
,
2006,
ASE.
[9]
Christian Queinnec.
Lisp in small pieces
,
1994
.
[10]
Patrick Cousot,et al.
Combination of Abstractions in the ASTRÉE Static Analyzer
,
2006,
ASIAN.
[11]
Sebastian Pop,et al.
The SSA Representation Framework: Semantics, Analyses and GCC Implementation
,
2006
.
[12]
Guillaume Brat,et al.
Precise and efficient static array bound checking for large embedded C programs
,
2004,
PLDI '04.
[13]
Pierre Cointe.
Metaclasses are first class: The ObjVlisp Model
,
1987,
OOPSLA 1987.
[14]
Patrick Cousot,et al.
Basic concepts of abstract interpretation
,
2004,
IFIP Congress Topical Sessions.