Static Analysis of Android Programs
Android is a programming language based on Java and an operating system for mobile or embedded devices. It features an extended event-based library and dynamic inflation of graphical views from declarative XML layout files. A static analyzer for Android programs must consider such features, for correctness and precision. This article is a description of how we extended the Julia system, based on abstract interpretation, to run formally correct analyses of Android programs. We have analyzed with Julia the Android sample applications by Google and a few larger open-source programs. Julia has found, automatically, bugs and flaws both in the Google samples and in the open-source programs.
KeywordsClass Analysis Abstract Interpretation Constraint Graph Graphical View Embed Device
Unable to display preview. Download preview PDF.
- 1.Cousot, P., Cousot, R.: Abstract Interpretation: A Unifed Lattice Model for Static Analysis of Programs by Construction or Approximation of Fixpoints. In: Proc. of the 4th Symposium on Principles of Programming Languages (POPL 1977), pp. 238–252. ACM Press, New York (1977)Google Scholar
- 3.Palsberg, J., Schwartzbach, M.I.: Object-Oriented Type Inference. In: Paepcke, A. (ed.) Proc. of the 6th International ACM Conference on Object-Oriented Programming, Systems, Languages and Applications (OOPSLA 1991). ACM SIGPLAN Notices, vol. 26(11), pp. 146–161. ACM Press, New York (1991)Google Scholar