Journal of University of Science and Technology of China ›› 2015, Vol. 45 ›› Issue (7): 601-607.
• Research Articles • Previous Articles
Online:
Published:
Abstract: Limited by incomplete call graph analysis and path feasibility analysis, current static integer overflow defect detection methods generally return results with high false positives. To reduce this inefficiency, aiming at automatic exploration of the external input triggering integer overflow defects, a new source code oriented detection method was proposed combining call graph analysis, static taint analysis and static symbolic execution, in which a fieldsensitive and flowsensitive pointer analysis method was proposed for constructing an over-approximation of the target program’s real call graph, with a static taint-sink propagation analysis carried out for calculating the potential external input reachable integer overflow defects, on which flowsensitive static symbolic execution is conducted to reduce the false positives introduced by the detection system through justifying the satisfiability of the corresponding defect constraint. Experiments prove the effectiveness of the methodin real-world integer overflow defect detection and false alarm reduction.
Key words: integer overflow, field-sensitive flow-sensitive pointer analysis, taint analysis, static symbolic execution
CLC Number:
TP311
HUANG Hui, LU Yuliang, LIU Lintao, ZHAO Jun. A source code oriented static detection method for integer overflow defects[J]. Journal of University of Science and Technology of China, 2015, 45(7): 601-607.
0 / / Recommend
Add to citation manager EndNote|Ris|BibTeX
URL: http://just-cn.ustc.edu.cn/EN/
http://just-cn.ustc.edu.cn/EN/Y2015/V45/I7/601