论文信息 - Selective path-sensitive interval analysis (WIP paper)

Selective path-sensitive interval analysis (WIP paper)

K-limited path-sensitive interval domain is an abstract domain that has been proposed for precise and scalable analysis of large software systems. The domain maintains variables’ value ranges in the form of intervals along a configurable K subsets of paths at each program point, which implicitly provides co-relation among variables. When the number of paths at the join point exceeds K, the set of paths are partitioned into K subsets, arbitrarily, which results in loss of precision required to verify program properties. To address this problem, we propose selective merging of paths - identify and merge paths in such a way that the intervals computed help verifying more properties. Our selective path-sensitive approach is based on the knowledge of variables whose values influence the verification outcomes of program properties. We evaluated our approach on industrial automotive applications as well as academic benchmarks. We show benefits of selective path merging over arbitrary path selection by verifying 40% more properties.

Bharti Chimdyalwar | Shrawan Kumar

[1] Shrawan Kumar,et al. VeriAbs: Verification by Abstraction and Test Generation - (Competition Contribution) , 2018, TACAS.

[2] Patrick Cousot,et al. Static Analysis and Verification of Aerospace Software by Abstract Interpretation , 2010, Found. Trends Program. Lang..

[3] Patrick Cousot,et al. Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints , 1977, POPL.

[4] Patrick Cousot,et al. The ASTREÉ Analyzer , 2005, ESOP.

[5] Thomas A. Henzinger,et al. The software model checker B last : Applications to software engineering , 2007 .

[6] Priyanka Darke,et al. Statically relating program properties for efficient verification (short WIP paper) , 2018, LCTES.

[7] Amitabha Sanyal,et al. Value Slice: A New Slicing Concept for Scalable Property Checking , 2015, TACAS.

[8] Shrawan Kumar,et al. Precise range analysis on large industry code , 2013, ESEC/FSE 2013.

[9] Keshav Pingali,et al. A framework for generalized control dependence , 1996, PLDI '96.