IEEE transactions on software engineering, 2021-10, Vol.47 (10), p.2225-2241
2021
Details
- Autor(en) / Beteiligte
- Titel
- IntRepair: Informed Repairing of Integer Overflows
- Ist Teil von
- IEEE transactions on software engineering, 2021-10, Vol.47 (10), p.2225-2241
- Ort / Verlag
- New York: IEEE
- Erscheinungsjahr
- 2021
- Link zum Volltext
- Quelle
- IEEE/IET Electronic Library (IEL)
- Beschreibungen/Notizen
- Integer overflows have threatened software applications for decades. Thus, in this paper, we propose a novel technique to provide automatic repairs of integer overflows in C source code. Our technique, based on static symbolic execution, fuses detection , repair generation and validation . This technique is implemented in a prototype named IntRepair . We applied IntRepair to 2,052 C programs (approx. 1 million lines of code) contained in SAMATE's Juliet test suite and 50 synthesized programs that range up to 20 KLOC. Our experimental results show that IntRepair is able to effectively detect integer overflows and successfully repair them, while only increasing the source code (LOC) and binary (Kb) size by around 1 percent, respectively. Further, we present the results of a user study with 30 participants which shows that IntRepair repairs are more than 10x efficient as compared to manually generated code repairs.
- Sprache
- Englisch
- Identifikatoren
- ISSN: 0098-5589, 1939-3520eISSN: 1939-3520DOI: 10.1109/TSE.2019.2946148Titel-ID: cdi_proquest_journals_2582248264
- Format
- –
- Schlagworte
- Application programs, Applications programs, C (programming language), Computer software, Electric fuses, Engines, Fault detection, Fuses, integer overflow, Integer programming, Integers, Maintainability, Maintenance engineering, Model checking, Program repair, Repair, Runtime, Runtimes, Software, software bug, software fault, Software testing, Source code, source code refactoring, Source codes, static program analysis, symbolic execution