Rajput, A and Gopinath, K (2022) GARUDA: Heap aware symbolic execution. In: 44th ACM/IEEE International Conference on Software Engineering: Companion, ICSE-Companion 2022, 22 - 27 May 2022, Pittsburgh, pp. 352-353.
![[img]](https://eprints.iisc.ac.in/style/images/fileicons/application_pdf.png) |
PDF
ACM-IEEE_ICSE 2022_352-353_2022.pdf - Published Version Restricted to Registered users only Download (764kB) | Request a copy |
Abstract
Symbolic execution is a widely employed technique in vulnerability detection. However, it faces an acute problem of state space explosion when analyzing programs that dynamically allocate memory. In this work we present GARUDA that makes the symbolic execution heap-aware to mitigate the state space explosion problem. We show that GARUDA can detect vulnerabilities in real-world software and can generate inputs to trigger two more safety violations than the winner of the TestComp2021 testing competition in the heap safety category of TestComp2021 benchmarks.
| Item Type: | Conference Paper |
|---|---|
| Publication: | Proceedings - International Conference on Software Engineering |
| Publisher: | IEEE Computer Society |
| Additional Information: | The copyright for this article belongs to the IEEE Computer Society. |
| Keywords: | Software Testing; Symbolic Execution; Vulnerability |
| Department/Centre: | Division of Electrical Sciences > Computer Science & Automation Autonomous Societies / Centres > Society for Innovation and Development |
| Date Deposited: | 05 Jul 2022 11:06 |
| Last Modified: | 05 Jul 2022 11:06 |
| URI: | https://eprints.iisc.ac.in/id/eprint/74133 |
Actions (login required)
 |
View Item |
