Automated Repair of Heap-Manipulating Programs Using Deductive Synthesis

Nguyen, Thanh-Hung; Ta, Quang-Trung; Sergey, Ilya; Chin, Wei-Ngan

doi:10.1007/978-3-030-67067-2_17

Cited by 4 publications

(3 citation statements)

References 61 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…But what if the program is already written previously but is buggy-would it be possible to automatically find a fix for it if we know what its specification is? This line of research, employing deductive synthesis for automated program repair [30], known as deductive program repair, has been explored in the past for functional programs [42] and simple memory safety properties [90], and only recently has been extended to heap-manipulating programs using the approach pioneered by SuSLik [63]. The SL-based deductive repair relies on existing automated deductive verifiers [17] to identify a buggy code fragment (which breaks the verification), followed by the discovery of the correct specification, which is used for the subsequent synthesis of the patch.…”

Section: Program Repairmentioning

confidence: 99%

Deductive Synthesis of Programs with Pointers: Techniques, Challenges, Opportunities

Itzhaky,

Peleg,

Polikarpova

et al. 2021

Computer Aided Verification

Self Cite

View full text Add to dashboard Cite

show abstract

Section: Program Repairmentioning

confidence: 99%

Deductive Synthesis of Programs with Pointers: Techniques, Challenges, Opportunities

Itzhaky,

Peleg,

Polikarpova

et al. 2021

Computer Aided Verification

Self Cite

View full text Add to dashboard Cite

show abstract

“…Static Program Repair Algorithms: Two exemplars of this class are an approach by Nguyen et al [53] and Footpatch [54]. The approach of Nguyen et al [53] can synthesize patches with side effects and provide formal correctness guarantees, but requires formal specification, and was only demonstrated to repair small programs. TRIDENT scales to real-world programs, but relies on a test suite, so it is subject to test-overfitting.…”

Section: Automated Program Repairmentioning

confidence: 99%

Trident: Controlling Side Effects in Automated Program Repair

Parasaram¹,

Barr²,

Mechtaev³

2021

IIEEE Trans. Software Eng.

View full text Add to dashboard Cite

The goal of program repair is to eliminate a bug in a given program by automatically modifying its source code. The majority of real-world software is written in imperative programming languages. Each function or expression in imperative code may have side effects, observable effects beyond returning a value. Existing program repair approaches have a limited ability to handle side effects. Previous test-driven semantic repair approaches only synthesise patches without side effects. Heuristic repair approaches generate patches with side effects only if suitable code fragments exist in the program or a database of repair patterns, or can be derived from training data. This work introduces Trident, the first test-driven program repair approach that synthesizes patches with side effects without relying on the plastic surgery hypothesis, a database of patterns, or training data. Trident relies on an interplay of several parts. First, it infers a specification for synthesising side-effected patches using symbolic execution with a custom state merging strategy that alleviates path explosion due to side effects. Second, it uses a novel component-based patch synthesis approach that supports lvalues, values that appear on the left-hand sides of assignments. In an evaluation on open-source projects, Trident successfully repaired 6 out of 10 real bugs that require insertion of new code with side effects, which previous techniques do not therefore repair. Evaluated on the ManyBugs benchmark, Trident successfully repaired two new bugs that previous approaches could not. Adding patches with side effects to the search space can exacerbate test-overfitting. We experimentally demonstrate that the simple heuristic of preferring patches with the fewest side effects alleviates the problem. An evaluation on a large number of smaller programs shows that this strategy reduces test-overfitting caused by side-effects, increasing the rate of correct patches from 33.3% to 58.3%.

show abstract

“…Automated program repair (APR) [21] is an emerging technology paradigm for automatically fixing logical bugs via search [54], semantic reasoning [45] and learning [38]. The recent works on semantic program repair [42,45] make use of advances in program synthesis [14,41,46,48] to automatically generate one-line or multi-line fixes. However, these approaches have been mostly studied for sequential programs.…”

Section: Related Workmentioning

confidence: 99%

HIPPODROME: Data Race Repair using Static Analysis Summaries

Costea¹,

Tiwari²,

Sigmund³

et al. 2021

Preprint

Self Cite

View full text Add to dashboard Cite

Implementing bug-free concurrent programs is a challenging task in modern software development. State-of-the-art static analyses find hundreds of concurrency bugs in production code, scaling to large codebases. Yet, fixing these bugs in constantly changing codebases represents a daunting effort for programmers, particularly because a fix in the concurrent code can introduce other bugs in a subtle way.In this work, we show how to harness compositional static analysis for concurrency bug detection, to enable a new Automated Program Repair (APR) technique for data races in large concurrent Java codebases. The key innovation of our work is an algorithm that translates procedure summaries inferred by the analysis tool for the purpose of bug reporting, into small local patches that fix concurrency bugs (without introducing new ones). This synergy makes it possible to extend the virtues of compositional static concurrency analysis to APR, making our approach effective (it can detect and fix many more bugs than existing tools for data race repair), scalable (it takes seconds to analyse and suggest fixes for sizeable codebases), and usable (generally, it does not require annotations from the users and can perform continuous automated repair). Our study conducted on popular open-source projects has confirmed that our tool automatically produces concurrency fixes similar to those proposed by the developers in the past.

show abstract

Automated Repair of Heap-Manipulating Programs Using Deductive Synthesis

Cited by 4 publications

References 61 publications

Deductive Synthesis of Programs with Pointers: Techniques, Challenges, Opportunities

Deductive Synthesis of Programs with Pointers: Techniques, Challenges, Opportunities

Trident: Controlling Side Effects in Automated Program Repair

HIPPODROME: Data Race Repair using Static Analysis Summaries

Contact Info

Product

Resources

About