Klee: Unassisted and automatic generation of high-coverage tests for complex systems programs

Proceedings of the 8th USENIX Symposium on Operating Systems Design and Implementation, OSDI 2008

Volumn , Issue , 2019, Pages 209-224

  Cadar, Cristian ^a   Dunbar, Daniel ^a   Engler, Dawson ^a  

^a STANFORD UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

AUTOMATIC TEST PATTERN GENERATION; OPEN SYSTEMS; SYSTEMS ANALYSIS;

AUTOMATIC GENERATION; BUG FINDING TOOLS; FUNCTIONAL CORRECTNESS; LINES OF CODE; OPEN SOURCE PROJECTS; STAND -ALONE; SYMBOLIC EXECUTION; UNIX SYSTEMS;

PROGRAM DEBUGGING;

EID: 85076893888     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (39)

1. Busybox. www.busybox.net, August 2008.
2. Coreutils. www.gnu.org/software/coreutils, August 2008.
3. IEEE Std 1003.1, 2004 edition. www.unix.org/version3/ ieee std.html, May 2008.
4. MINIX 3. www.minix3.org, August 2008.
5. SecurityFocus, www.securityfocus.com, March 2008.
6. uCLibc. www.uclibc.org, May 2008.
7. United States National Vulnerability Database, nvd.nist. gov, March 2008.
8. ANAND, S., GODEFROID, P., AND TILLMANN, N. Demand-driven compositional symbolic execution. In Proceedings of Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2008).
9. ARTZI, S., KIEZUN , A., DOLBY, J., TIP, F., DIG, D., PARADKAR, A., AND ERNST, M. D. Finding bugs in dynamic web applications. In Proceedings of the International Symposium on Software Testing and Analysis (ISSTA 2008).
10. BALL, T., AND RAJAMANI, S. Automatically validating temporal safety properties of interfaces. In SPIN 2001 Workshop on Model Checking of Software (May 2001).
11. BOONSTOPPEL, P., CADAR, C., AND ENGLER, D. RWset: Attacking path explosion in constraint-based test generation. In Proceedings of Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2008).
12. BRAT, G., HAVELUND, K., PARK, S., AND VISSER, W. Model checking programs. In IEEE International Conference on Automated Software Engineering (ASE 2000).
13. BRUMLEY, D., CABALLERO, J., LIANG, Z., NEWSOME, J., AND SONG, D. Towards automatic discovery of deviations in binary implementations with applications to error detection and fingerprint generation. In Proceedings of USENIX Security Symposium (USENIX Security 2007).
14. BRUMLEY, D., NEWSOME, J., SONG, D., WANG, H., AND JHA, S. Towards automatic generation of vulnerability-based signatures. In Proceedings of the 2006 IEEE Symposium on Security and Privacy (IEEE S&P 2006).
15. CADAR, C., AND ENGLER, D. Execution generated test cases: How to make systems code crash itself. In Proceedings of the 12th International SPIN Workshop on Model Checking of Software (SPIN 2005).
16. CADAR, C., GANESH, V., PAWLOWSKI, P., DILL, D., AND ENGLER, D. EXE: Automatically generating inputs of death. In Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS 2006).
17. CLARKE, E., AND KROENING, D. Hardware verification using ANSI-C programs as a reference. In Proceedings of the Asia and South Pacific Design Automation Conference (ASP-DAC 2003).
18. CLARKE, E., KROENING, D., AND LERDA, F. A tool for checking ANSI-C programs. In Proceedings of Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2004).
19. CORBETT, J., DWYER, M., HATCLIFF, J., LAUBACH, S., PASAREANU, C., ROBBY, AND ZHENG, H. Bandera: Extracting finite-state models from Java source code. In Proceedings of the International Conference on Software Engineering (ICSE 2000).
20. COSTA, M., CASTRO, M., ZHOU, L., ZHANG, L., AND PEINADO, M. Bouncer: Securing software by blocking bad input. In Proceedings of the 21th ACM Symposium on Operating Systems Principles (SOSP 2007).
21. COSTA, M., CROWCROFT, J., CASTRO, M., ROWSTRON, A., ZHOU, L., ZHANG, L., AND BARHAM, P. Vigilante: end-to-end containment of Internet worms. In Proceedings of the 20th ACM Symposium on Operating Systems Principles (SOSP 2005).
22. EMMI, M., MAJUMDAR, R., AND SEN, K. Dynamic test input generation for database applications. In International Symposium on Software Testing and Analysis (ISSTA 2007).
23. GANESH, V., AND DILL, D. L. A decision procedure for bit-vectors and arrays. In Proceedings of the 19th International Conference on Computer Aided Verification (CAV 2007).
24. GODEFROID, P. Compositional dynamic test generation. In Proceedings of the 34th Symposium on Principles of Programming Languages (POPL 2007).
25. GODEFROID, P. Model Checking for Programming Languages using VeriSoft. In Proceedings of the 24th ACM Symposium on Principles of Programming Languages (POPL 1997).
26. GODEFROID, P., KLARLUND, N., AND SEN, K. DART: Directed automated random testing. In Proceedings of the Conference on Programming Language Design and Implementation (PLDI 2005).
27. GODEFROID, P., LEVIN, M. Y., AND MOLNAR, D. Automated whitebox fuzz testing. In Proceedings of Network and Distributed Systems Security (NDSS 2008).
28. HOFFMANN, J., AND KOEHLER, J. A new method to index and query sets. In Proceedings of the Sixteenth International Joint Conference on Artificial Intelligence (IJCAI 1999).
29. HOLZMANN, G. J. From code to models. In Proceedings of 2nd International Conference on Applications of Concurrency to System Design (ACSD 2001).
30. HOLZMANN, G. J. The model checker SPIN. Software Engineering 23, 5 (1997), 279-295.
31. KHURSHID, S., PASAREANU, C. S., AND VISSER, W. Generalized symbolic execution for model checking and testing. In Proceedings of Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2003).
32. KROENING, D., CLARKE, E., AND YORAV, K. Behavioral consistency of C and Verilog programs using bounded model checking. In Proceedings of the 40th Design Automation Conference (DAC 2003).
33. LATTNER, C., AND ADVE, V. LLVM: A compilation framework for lifelong program analysis & transformation. In Proceedings of the international symposium on Code generation and optimization (CGO 2004).
34. MAJUMDAR, R., AND SEN, K. Hybrid concolic testing. In Proceedings of the 29th International Conference on Software Engineering (ICSE 2007).
35. MILLER, B., KOSKI, D., LEE, C. P., MAGANTY, V., MURTHY, R., NATARAJAN, A., AND STEIDL, J. Fuzz revisited: A reexamination of the reliability of UNIX utilities and services. Tech. rep., University of Wisconsin - Madison, 1995.
36. SEN, K., MARINOV, D., AND AGHA, G. CUTE: A concolic unit testing engine for C. In In 5th joint meeting of the European Software Engineering Conference and ACM Symposium on the Foundations of Software Engineering (ESEC/FSE 2005).
37. VISSER, W., PASAREANU, C. S., AND KHURSHID, S. Test input generation with Java PathFinder. In Proceedings of the 2004 ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2004).
38. YANG, J., SAR, C., AND ENGLER, D. eXplode: a lightweight, general system for finding serious storage system errors. In Proceedings of the 7th Symposium on Operating Systems Design and Implementation (OSDI 2006).
39. ZELDOVICH, N., BOYD-WICKIZER, S., KOHLER, E., AND MAZIÈRES, D. Making information flow explicit in HiStar. In Proceedings of the 7th Symposium on Operating Systems Design and Implementation (OSDI 2006).