Abstract
For the efficient and effective use of automated static analysis of software systems it is crucial to know what kind of errors can be detected and how seriously a reported problem can or should be taken. In the study conducted for this paper we applied a widely used tool (PC-lint) for automated static analysis (ASA) to check C++ code fragments from student exercises. The goal of this research was to discover which types of defects can be identified by automated static analysis. In this paper we present our findings; furthermore the results from classifying the defects are set in relation to detection rules and severity levels provided by ASA, in order to derive insights for calibrating ASA tools in a specific application context.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Ayewah, N., Pugh, W., Morgenthaler, J.D., Penix, J., Zhou, Y.: Evaluating static analysis defect warnings on production software. In: PASTE 2007: Proceedings of the 7th ACM SIGPLAN-SIGSOFT workshop on Program analysis for software tools and engineering, pp. 1–8. ACM, New York (2007)
Barr, A.: Find the Bug: A Book of Incorrect Programs. Addison-Wesley Professional, Reading (2004)
Chillarege, R., Bhandari, I., Chaar, J., Halliday, M., Moebus, D., Ray, B., Wong, M.: Orthogonal Defect Classification: a Concept for In-process Measurements. IEEE Transactions on Software Engineering 18(11), 943–956 (1992)
Cousot, P., Cousot, R., Feret, J., Mauborgne, L., Miné, A., Monniaux, D., Rival, X.: Varieties of Static Analyzers: A Comparison with ASTRÉE. In: First IEEE & IFIP International Symposium on Theoretical Aspects of Software Engineering, TASE 2007, Shanghai, China, pp. 3–17 (2007)
Dobler, H., Ramler, R., Wolfmaier, K.: A Study of Tool Support for the Evaluation of Student’s Solutions of Exercises in Programming. In: EuroCAST (2007)
Emanuelsson, P., Nilsson, U.: A Comparative Study of Industrial Static Analysis Tools (extended version), Technical report, Linkoping University, Linköping University Electronic Press (2008)
Huber, J. T.: A Comparison of IBM’s Orthogonal Defect Classification to Hewlett Packard’s Defect Origins, Types, and Modes (1989), http://www.stickyminds.com/sitewide.asp?Function=edetail&ObjectType=ART&ObjectId=2883
Jaspan, C., Chen, I., Sharma, A.: Understanding the value of program analysis tools. In: OOPSLA 2007: Companion to the 22nd ACM SIGPLAN conference on Object oriented programming systems and applications companion, pp. 963–970. ACM, New York (2007)
Knuth, D.E.: The errors of TEX. Softw. Pract. Exper. 19(7), 607–685 (1989)
Meyers, S.: Effective C++: 55 Specific Ways to Improve Your Programs and Designs, 3rd edn. Addison-Wesley, Reading (2005)
Rutar, N., Almazan, C.B., Foster, J.S.: A Comparison of Bug Finding Tools for Java. In: ISSRE 2004: Proceedings of the 15th International Symposium on Software Reliability Engineering, pp. 245–256. IEEE Computer Society, Washington (2004)
Zheng, J., Williams, L., Nagappan, N., Snipes, W., Hudepohl, J.P., Vouk, M.A.: On the value of static analysis for fault detection in software. IEEE Transactions on Software Engineering 32(4), 240–253 (2006)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2009 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wolfmaier, K., Ramler, R., Guta, G., Dobler, H. (2009). Observable Runtime Behavior for Defects Indicated by Automated Static Analysis. In: Moreno-DÃaz, R., Pichler, F., Quesada-Arencibia, A. (eds) Computer Aided Systems Theory - EUROCAST 2009. EUROCAST 2009. Lecture Notes in Computer Science, vol 5717. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-04772-5_41
Download citation
DOI: https://doi.org/10.1007/978-3-642-04772-5_41
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-04771-8
Online ISBN: 978-3-642-04772-5
eBook Packages: Computer ScienceComputer Science (R0)