NN
Uploaded byNIKHIL NAWATHE
PPT, PDF740 views

Code Analysis-run time error prediction

This document discusses code analysis and techniques for predicting runtime errors in source code. It describes existing solutions like detecting uninitialized variables, overflows, divide by zeros, incorrect argument data types. It also discusses detecting out-of-bounds array and pointer references, memory allocation/deallocation errors, and memory leaks. The document outlines the design of a code analyzer that takes C code as input, performs lexical and syntax analysis to generate intermediate code, and then uses the intermediate code to predict possible runtime errors. Further work mentioned includes evaluating the intermediate code to perform data and control flow analysis for error prediction.

Embed presentation

Downloaded 26 times
Code Analysis
Overview • Introduction • Existing solutions • Run time errors • Design • Implementation • Future Work
Code Analysis Difference between project success & failure. • If there's going to be a program, there has to be construction. • Code is often the only accurate description of the software available. • Code must follow coding standards and code conventions.
Source code Conventions • 80% of the lifetime cost of a piece of software goes to maintenance. • Hardly any software is maintained for its whole life by the original author. • Code conventions improve the readability of the software. • Source code like any other product should be well packaged
Code optimization based analysis • Code Verification and Run-Time Error prediction at compile time using syntax directed translation. • Predict run time errors without program execution or test cases. • Uses Intermediate Code
Existing Solutions
Possible Run time Errors 1) Detecting uninitialized Variables Using variables before they have been initialized by the program can cause unpredictable results 2) Detecting Overflows, Underflows, and Divide by Zeros
Consider pseudo-code: X=X/(X-Y) Identifying all possible causes for error on the operation: o X and Y may not be initialized   X-Y may overflow or underflow  - X and Y may be equal and cause a division by zero  e X/(X–Y) may overflow or underflow  
All possible values of x & y in program p If the value of x & y both fall on the black line, there is a divide by zero error.
3) Detecting incorrect argument data types and incorrect number of arguments   • Checking of arguments for type and for the correct order of occurrence. • Requires both the calling program and the called program to be compiled with a special compiler option. • Checks can be made to determine if the number and types of arguments in function (and subroutine) calls are consistent with the actual function definitions.
4) Detecting errors with strings at run-time • A string must have a null terminator at the end of the meaningful data in the string. A common mistake is to not allocate room for this extra character. This can also be a problem with dynamic allocation. char * copy_str = malloc( strlen(orig_str) + 1); strcpy(copy_str, orig_str); • The strlen() function returns a count of the data characters which does not include the null terminator. • In the case of dynamic allocation, it might corrupt the heap
  a. Detecting Out-of-bounds indexing of statically and dynamically allocated arrays   A common run-time error is the reading and writing of arrays outside of their declared bounds. b. Detecting Out-of-Bounds Pointer References   A common run-time error for C and C++ programs occurs when a pointer points to memory outside its associated memory block.
Pseudo code for out of bound references for(i=0;i<5;i++) A[i]=i; p=A; for(i=0;i<=5;i++) p++; a=*p; /* out-of-bounds reading using pointers */
5) Detecting Memory Allocation and Deallocation Errors • A memory deallocation error occurs when a portion of memory is deallocated more than once. • Another common source of errors in C and C++ programs is an attempt to use a dangling pointer. A dangling pointer is a pointer to storage that is no longer allocated.
6) Detecting Memory Leaks • A program has a memory leak if during execution the program loses its ability to address a portion of memory because of a programming error; • A pointer points to a location in memory and then all the pointers pointing to this location are set to point somewhere else • A function/subroutine is called, memory is allocated during execution of the function/subroutine, and then the memory is not deallocated upon exit and all pointers to this memory are destroyed
Source code analyzer predicates Reliable: Proven free of run- time errors and under all operating conditions within the scope Faulty: Proven faulty each time the operation is executed. Dead: Proven unreachable (may indicate a functional issue) Unproven: Unproven code section or beyond the scope of the analyzer.
Specifications •Why Java for developing analyser?
Specifications •Why C/C++ as input language?
Design for Code Analyzer Input program (C File) S Lexical Analyzer y m b o l T a b l Parser e IC(SDT) Generation Run Time Error Predictions
Analysis of Code Input Program Lexical Analysis-Stream Tokenizer Parser- Condition = "(" Expression ("=="|"!="|">"|"<"|">="|"<=") Expression ")" Expression = Term {("+"|"-") Term} Term = Factor {("*"|"/") Factor} Factor = number | identifier | Intermediate code generation: Postfix Evaluation
3 address code generation Target Source File: argument operator operand operand result Test(n){ 1 2 int b,a,n,j; 0 < j n if(j<n) 1 if 0 gotol0 { 2 + a b a=a+b;} 3 = a 2 } l0:
Work Done: Intermediate Code
Further Work • Evaluation of intermediate code for performing data flow and control flow analysis. • Prediction of run time errors using intermediate code. • Using code optimization techniques such as constant folding to predict code behavior
REFERENCES • A V. Aho, R Sethi, J D. Ullman., Compilers: Principles, Techniques and Tools, 2nd ed. , Addison-Wesley Pub. Co. • G R. Luecke, J Coyle, J Hoekstra “A Survey of Systems for Detecting Serial Run-Time Errors”, The Iowa State University's High Performance Computing Group, Concurrency and Computation. : Practice and Experience. 18, 15(Dec. 2006), 1885-1907. • T Erkkinen, C Hote “Code Verification and Run-Time Error Detection Through Abstract Interpretation”, AIAA Modeling and Simulation Technologies Conference and Exhibit ,21 - 24 Aug 2006, Keystone, Colorado. • PolySpace Client for C/C++ 6 datasheet. Available HTTP: http://www.mathworks.com/products/polyspaceclientc.html. • D.M. Dhamdhere, Compiler Construction, Tata McGraw-Hill. • Semantic designs, “Flow analysis for control and data”, Available HTTP: http://www.semdesigns.com/Products/DMS/FlowAnalysis.html.

More Related Content

PDF
Symbolic Execution (introduction and hands-on)
byEmilio Coppa
 
PPTX
6 compiler lab - Flex
byMashaelQ
 
PDF
VHDL CODE
byVeer Singh shakya
 
PPTX
Static analysis
byGowriLatha1
 
PPTX
STAMP
bySaswat Anand
 
PPTX
Introduction of flex
byvip_du
 
PPT
C program compiler presentation
byRigvendra Kumar Vardhan
 
PPSX
Complete C++ programming Language Course
byVivek Singh Chandel
 
Symbolic Execution (introduction and hands-on)
byEmilio Coppa
 
6 compiler lab - Flex
byMashaelQ
 
VHDL CODE
byVeer Singh shakya
 
Static analysis
byGowriLatha1
 
STAMP
bySaswat Anand
 
Introduction of flex
byvip_du
 
C program compiler presentation
byRigvendra Kumar Vardhan
 
Complete C++ programming Language Course
byVivek Singh Chandel
 

What's hot

DOC
Lex tool manual
bySami Said
 
PDF
07 control+structures
bybaran19901990
 
PPT
Lex and Yacc ppt
bypssraikar
 
PPTX
C formatted and unformatted input and output constructs
byGopikaS12
 
PPT
C++ Programming Course
byDennis Chang
 
PPTX
4 compiler lab - Syntax Ana
byMashaelQ
 
PDF
Programming for Problem Solving Unit 2
byDhiviya Rose
 
PPT
Compiler Design Tutorial
bySarit Chakraborty
 
PPT
Lex (lexical analyzer)
bySami Said
 
PDF
Cd lab manual
byHaftu Hagos
 
PPTX
Intermediate code- generation
byrawan_z
 
PPT
Getting started with c++
byBussines man badhrinadh
 
PPT
Ch6
bykinnarshah8888
 
PPTX
C Programming Language Tutorial for beginners - JavaTpoint
byJavaTpoint.Com
 
PDF
Advanced C Language for Engineering
byVincenzo De Florio
 
PPTX
System Verilog Tutorial - VHDL
byE2MATRIX
 
PPT
verilog
byShrikant Vaishnav
 
PDF
AVR_Course_Day3 c programming
byMohamed Ali
 
PPT
Verilog tutorial
byraju reddy
 
PDF
C Programming
byAdil Jafri
 
Lex tool manual
bySami Said
 
07 control+structures
bybaran19901990
 
Lex and Yacc ppt
bypssraikar
 
C formatted and unformatted input and output constructs
byGopikaS12
 
C++ Programming Course
byDennis Chang
 
4 compiler lab - Syntax Ana
byMashaelQ
 
Programming for Problem Solving Unit 2
byDhiviya Rose
 
Compiler Design Tutorial
bySarit Chakraborty
 
Lex (lexical analyzer)
bySami Said
 
Cd lab manual
byHaftu Hagos
 
Intermediate code- generation
byrawan_z
 
Getting started with c++
byBussines man badhrinadh
 
Ch6
bykinnarshah8888
 
C Programming Language Tutorial for beginners - JavaTpoint
byJavaTpoint.Com
 
Advanced C Language for Engineering
byVincenzo De Florio
 
System Verilog Tutorial - VHDL
byE2MATRIX
 
verilog
byShrikant Vaishnav
 
AVR_Course_Day3 c programming
byMohamed Ali
 
Verilog tutorial
byraju reddy
 
C Programming
byAdil Jafri
 

Viewers also liked

PDF
Lec08-CS110 Computational Engineering
bySri Harsha Pamu
 
PDF
&lt;marquee>html title testfsdjk34254&lt;/marquee>
byslideshareperson2
 
PPTX
Memory management of datatypes
byMonika Sanghani
 
PDF
IEEE Floating Point
byJason Ricardo Thomas
 
PDF
XP - eXtreme Programming - 2010
byJônatas Paganini
 
PPSX
Fixed point and floating-point numbers
byMOHAN MOHAN
 
PDF
Floating Point Numbers
byJason Ricardo Thomas
 
PPT
Floating point units
bydipugovind
 
PPTX
Quick tutorial on IEEE 754 FLOATING POINT representation
byRitu Ranjan Shrivastwa
 
PPTX
floating point multiplier
byBipin Likhar
 
PPTX
Floating point ALU using VHDL implemented on FPGA
byAzhar Syed
 
PDF
Designing of 8 BIT Arithmetic and Logical Unit and implementing on Xilinx Ver...
byRahul Borthakur
 
Lec08-CS110 Computational Engineering
bySri Harsha Pamu
 
&lt;marquee>html title testfsdjk34254&lt;/marquee>
byslideshareperson2
 
Memory management of datatypes
byMonika Sanghani
 
IEEE Floating Point
byJason Ricardo Thomas
 
XP - eXtreme Programming - 2010
byJônatas Paganini
 
Fixed point and floating-point numbers
byMOHAN MOHAN
 
Floating Point Numbers
byJason Ricardo Thomas
 
Floating point units
bydipugovind
 
Quick tutorial on IEEE 754 FLOATING POINT representation
byRitu Ranjan Shrivastwa
 
floating point multiplier
byBipin Likhar
 
Floating point ALU using VHDL implemented on FPGA
byAzhar Syed
 
Designing of 8 BIT Arithmetic and Logical Unit and implementing on Xilinx Ver...
byRahul Borthakur
 

Similar to Code Analysis-run time error prediction

PPT
Fp201 unit1 1
byrohassanie
 
PPTX
SDD error types and detection
byMike Cusack
 
PPTX
Error detection recovery
byTech_MX
 
PPTX
Cp 111 lecture 2
byHafidhyMasoud
 
PPTX
Computer programing 111 lecture 2
byITNet
 
PPT
S D D Program Development Tools
bygavhays
 
PDF
A Survey Of Systems For Detecting Serial Run-Time Errors
byLisa Graves
 
PPT
01SoftwEng.pptInnovation technology pptInnovation technology ppt
bysultanahimed3
 
PPT
Unit 3 principles of programming language
byVasavi College of Engg
 
PPT
Ch1 principles of software development
byHattori Sidek
 
PDF
Static Code Analysis and Cppcheck
byZachary Blair
 
PPTX
Detecting Bugs in Binaries Using Decompilation and Data Flow Analysis
bySilvio Cesare
 
PDF
White Box Testing (Introduction to)
byHenry Muccini
 
PPTX
Software Testing
byForrester High School
 
DOCX
Example PseudocodeProblem Given a sorted array a with n elements .docx
byelbanglis
 
PDF
A exception ekon16
byMax Kleiner
 
DOCX
Example PseudocodeProblem Given a sorted array a with n elements .docx
bycravennichole326
 
PDF
Write once on silicon
bySandip Ray
 
PDF
Common Software Failures
byArul Selvan
 
PDF
Common Software Failures
byArul Selvan
 
Fp201 unit1 1
byrohassanie
 
SDD error types and detection
byMike Cusack
 
Error detection recovery
byTech_MX
 
Cp 111 lecture 2
byHafidhyMasoud
 
Computer programing 111 lecture 2
byITNet
 
S D D Program Development Tools
bygavhays
 
A Survey Of Systems For Detecting Serial Run-Time Errors
byLisa Graves
 
01SoftwEng.pptInnovation technology pptInnovation technology ppt
bysultanahimed3
 
Unit 3 principles of programming language
byVasavi College of Engg
 
Ch1 principles of software development
byHattori Sidek
 
Static Code Analysis and Cppcheck
byZachary Blair
 
Detecting Bugs in Binaries Using Decompilation and Data Flow Analysis
bySilvio Cesare
 
White Box Testing (Introduction to)
byHenry Muccini
 
Software Testing
byForrester High School
 
Example PseudocodeProblem Given a sorted array a with n elements .docx
byelbanglis
 
A exception ekon16
byMax Kleiner
 
Example PseudocodeProblem Given a sorted array a with n elements .docx
bycravennichole326
 
Write once on silicon
bySandip Ray
 
Common Software Failures
byArul Selvan
 
Common Software Failures
byArul Selvan
 

Recently uploaded

PDF
Transforming SAP® Processes Through Automation: 2026 Trends and Challenges.pdf
byPrecisely
 
PDF
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
PDF
The Future of Search: Why LLM Optimization Matters for Every Website
byav0763436
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PPTX
TCP/IP Presentation - Information Systems & Operations Management
byadriangallianispetka
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PDF
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
PDF
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
PDF
AI Technology important knowledge ......
byutkarshj2007
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
HCI and Its Impact on individual quality of life.pdf
byParham Abolghasemi
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PPTX
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
PDF
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
PDF
Safeguarding AI-Based Financial Infrastructure
bysleepandremedies
 
DOCX
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
Transforming SAP® Processes Through Automation: 2026 Trends and Challenges.pdf
byPrecisely
 
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
The Future of Search: Why LLM Optimization Matters for Every Website
byav0763436
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
TCP/IP Presentation - Information Systems & Operations Management
byadriangallianispetka
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
AI Technology important knowledge ......
byutkarshj2007
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
HCI and Its Impact on individual quality of life.pdf
byParham Abolghasemi
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
Safeguarding AI-Based Financial Infrastructure
bysleepandremedies
 
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 

Code Analysis-run time error prediction

  • 1.
  • 2.
    Overview • Introduction • Existingsolutions • Run time errors • Design • Implementation • Future Work
  • 3.
    Code Analysis Difference between project success & failure. • If there's going to be a program, there has to be construction. • Code is often the only accurate description of the software available. • Code must follow coding standards and code conventions.
  • 4.
    Source code Conventions •80% of the lifetime cost of a piece of software goes to maintenance. • Hardly any software is maintained for its whole life by the original author. • Code conventions improve the readability of the software. • Source code like any other product should be well packaged
  • 5.
    Code optimization basedanalysis • Code Verification and Run-Time Error prediction at compile time using syntax directed translation. • Predict run time errors without program execution or test cases. • Uses Intermediate Code
  • 6.
  • 7.
    Possible Run timeErrors 1) Detecting uninitialized Variables Using variables before they have been initialized by the program can cause unpredictable results 2) Detecting Overflows, Underflows, and Divide by Zeros
  • 8.
    Consider pseudo-code: X=X/(X-Y) Identifying all possible causes for error on the operation: o X and Y may not be initialized   X-Y may overflow or underflow  - X and Y may be equal and cause a division by zero  e X/(X–Y) may overflow or underflow  
  • 9.
    All possible valuesof x & y in program p If the value of x & y both fall on the black line, there is a divide by zero error.
  • 10.
    3) Detecting incorrectargument data types and incorrect number of arguments   • Checking of arguments for type and for the correct order of occurrence. • Requires both the calling program and the called program to be compiled with a special compiler option. • Checks can be made to determine if the number and types of arguments in function (and subroutine) calls are consistent with the actual function definitions.
  • 11.
    4) Detecting errorswith strings at run-time • A string must have a null terminator at the end of the meaningful data in the string. A common mistake is to not allocate room for this extra character. This can also be a problem with dynamic allocation. char * copy_str = malloc( strlen(orig_str) + 1); strcpy(copy_str, orig_str); • The strlen() function returns a count of the data characters which does not include the null terminator. • In the case of dynamic allocation, it might corrupt the heap
  • 12.
      a. Detecting Out-of-bounds indexing of statically and dynamically allocated arrays   A common run-time error is the reading and writing of arrays outside of their declared bounds. b. Detecting Out-of-Bounds Pointer References   A common run-time error for C and C++ programs occurs when a pointer points to memory outside its associated memory block.
  • 13.
    Pseudo code forout of bound references for(i=0;i<5;i++) A[i]=i; p=A; for(i=0;i<=5;i++) p++; a=*p; /* out-of-bounds reading using pointers */
  • 14.
    5) Detecting MemoryAllocation and Deallocation Errors • A memory deallocation error occurs when a portion of memory is deallocated more than once. • Another common source of errors in C and C++ programs is an attempt to use a dangling pointer. A dangling pointer is a pointer to storage that is no longer allocated.
  • 15.
    6) Detecting MemoryLeaks • A program has a memory leak if during execution the program loses its ability to address a portion of memory because of a programming error; • A pointer points to a location in memory and then all the pointers pointing to this location are set to point somewhere else • A function/subroutine is called, memory is allocated during execution of the function/subroutine, and then the memory is not deallocated upon exit and all pointers to this memory are destroyed
  • 16.
    Source code analyzerpredicates Reliable: Proven free of run- time errors and under all operating conditions within the scope Faulty: Proven faulty each time the operation is executed. Dead: Proven unreachable (may indicate a functional issue) Unproven: Unproven code section or beyond the scope of the analyzer.
  • 17.
    Specifications •Why Java fordeveloping analyser?
  • 18.
  • 19.
    Design for CodeAnalyzer Input program (C File) S Lexical Analyzer y m b o l T a b l Parser e IC(SDT) Generation Run Time Error Predictions
  • 20.
    Analysis of Code InputProgram Lexical Analysis-Stream Tokenizer Parser- Condition = "(" Expression ("=="|"!="|">"|"<"|">="|"<=") Expression ")" Expression = Term {("+"|"-") Term} Term = Factor {("*"|"/") Factor} Factor = number | identifier | Intermediate code generation: Postfix Evaluation
  • 21.
    3 address codegeneration Target Source File: argument operator operand operand result Test(n){ 1 2 int b,a,n,j; 0 < j n if(j<n) 1 if 0 gotol0 { 2 + a b a=a+b;} 3 = a 2 } l0:
  • 22.
  • 23.
    Further Work • Evaluationof intermediate code for performing data flow and control flow analysis. • Prediction of run time errors using intermediate code. • Using code optimization techniques such as constant folding to predict code behavior
  • 24.
    REFERENCES • A V.Aho, R Sethi, J D. Ullman., Compilers: Principles, Techniques and Tools, 2nd ed. , Addison-Wesley Pub. Co. • G R. Luecke, J Coyle, J Hoekstra “A Survey of Systems for Detecting Serial Run-Time Errors”, The Iowa State University's High Performance Computing Group, Concurrency and Computation. : Practice and Experience. 18, 15(Dec. 2006), 1885-1907. • T Erkkinen, C Hote “Code Verification and Run-Time Error Detection Through Abstract Interpretation”, AIAA Modeling and Simulation Technologies Conference and Exhibit ,21 - 24 Aug 2006, Keystone, Colorado. • PolySpace Client for C/C++ 6 datasheet. Available HTTP: http://www.mathworks.com/products/polyspaceclientc.html. • D.M. Dhamdhere, Compiler Construction, Tata McGraw-Hill. • Semantic designs, “Flow analysis for control and data”, Available HTTP: http://www.semdesigns.com/Products/DMS/FlowAnalysis.html.