Finding resource-release omission faults in Linux

Authors:
Suman Saha;Julia Lawall;Gilles Muller
Affiliations:
LIP6-Regal;DIKU, University of Copenhagen;INRIA/LIP6-Regal
Venue:
PLOS '11 Proceedings of the 6th Workshop on Programming Languages and Operating Systems
Year:
2011

Citing 8
Cited 2

Bugs as deviant behavior: a general approach to inferring errors in systems code

SOSP '01 Proceedings of the eighteenth ACM symposium on Operating systems principles
PR-Miner: automatically extracting implicit programming rules and detecting violations in large software code

Proceedings of the 10th European software engineering conference held jointly with 13th ACM SIGSOFT international symposium on Foundations of software engineering
Path-Sensitive Inference of Function Precedence Protocols

ICSE '07 Proceedings of the 29th international conference on Software Engineering
From uncertainty to belief: inferring the specification within

OSDI '06 Proceedings of the 7th symposium on Operating systems design and implementation
Documenting and automating collateral evolutions in linux device drivers

Proceedings of the 3rd ACM SIGOPS/EuroSys European Conference on Computer Systems 2008
Specification Mining with Few False Positives

TACAS '09 Proceedings of the 15th International Conference on Tools and Algorithms for the Construction and Analysis of Systems: Held as Part of the Joint European Conferences on Theory and Practice of Software, ETAPS 2009,
A few billion lines of code later: using static analysis to find bugs in the real world

Communications of the ACM
Mining temporal specifications for error detection

TACAS'05 Proceedings of the 11th international conference on Tools and Algorithms for the Construction and Analysis of Systems

A Study of Linux File System Evolution

ACM Transactions on Storage (TOS)
A study of Linux file system evolution

FAST'13 Proceedings of the 11th USENIX conference on File and Storage Technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

The management of the releasing of allocated resources is a continual problem in ensuring the robustness of systems code. Missing resource-releasing operations lead to memory leaks and deadlocks. A number of approaches have been proposed to detect such problems, but they often have a high rate of false positives, or focus only on commonly used functions. In this paper we observe that resource-releasing operations are often found in error-handling code, and that the choice of resource-releasing operation may depend on the context in which it is to be used. We propose an approach to finding resource-release omission faults in C code that takes into account these issues. We use our approach to find over 100 faults in the drivers directory of Linux 2.6.34, with a false positive rate of only 16%, well below the 30% that has been found to be acceptable to developers.