This content is not included in
your SAE MOBILUS subscription, or you are not logged in.
Reducing Defects in Automotive Software Using Static Analysis
Technical Paper
2015-01-0191
ISSN: 0148-7191, e-ISSN: 2688-3627
Annotation ability available
Sector:
Language:
English
Abstract
Improving reliability and quality of software is a major aspect in automotive industry. Software reliability and quality improves by reducing bugs or defects in the software. However, finding these defects at an early stage in the software development life cycle is important to reduce rework and cost. Manually detecting defects or bugs in large code sets is time consuming and is less accurate. Hence, using static or dynamic analysis tools has become a standard practice in automotive industry. Though many such tools are commercially available, it is observed that these tools are less used for various reasons. Some of the major reasons are users need to spend considerable amount of time to learn to use these tools to get desired output reports, customized checks are required for an application that are not provided by the tool and reports are too lengthy as well as cumbersome to analyze. In this paper, we propose a static analysis based YUCCA-CCC tool that addresses some of the major limitations like support for differential code sets, function pointers analysis, and customized checks. We treat this tool as a complementary tool to other tools since it incorporates customized checks and customized report formats. We also discuss our results obtained on three automotive software source codes in production. The results show 42.30% increase in accuracy over the manual process.
Authors
Citation
Ranadive, P., Vaidya, V., and Rajguru, C., "Reducing Defects in Automotive Software Using Static Analysis," SAE Technical Paper 2015-01-0191, 2015, https://doi.org/10.4271/2015-01-0191.Also In
References
- Kemerer C.F. , and Paulk M.C. The Impact of Design and Code Reviews on Software Quality: An Empirical Study Based on PSP Data IEEE Software Engineering Transactions 2009 35 4 534 550
- Conrad M. Verification and Validation According to ISO 26262: A Workflow to Facilitate the Development of High-Integrity Software www.mathworks.com/tagteam/71300_1D-4.pdf
- Chimdyalwar B. Survey of Array out of Bound Access Checkers for C Code Proc. 5th India Software Eng. Conf. (ISEC 2012) 2012 45 48
- Williams C. , and Hollingsworth J. Bug Driven Bug Finders Int'l Workshop Mining Software Repositories, (MSR 2004) 2004 70 74
- Ayewah N. and Pugh W. Null Dereference Analysis in Practice Program Analysis Software Tools Eng., (PASTE 2010) 2010 65 72
- Nesov V. Automatically Finding Bugs in Open Source Programs Electronic Communications of the EASST 2009
- Zheng J. , Williams L. , Nagappan N. , Snipes W. , Hudepohl J.P. , and Vouk M.A. On the Value of Static Analysis for Fault Detection in Software Trans. Software Eng. 2006 32 4 240 253
- Chelf B. , Engler D. and Hallem S. How to Write System specific, Static Checkers in Metal Workshop Program Analysis Software Tools Eng, (PASTE 2002), ACM 2002 51 60
- Kienle H.M. , Kraft J. , and Müller H. Software Reverse Engineering in the Domain of Complex Embedded Systems Book Chapter, Reverse Engineering, InTech 2011
- Hallem S. , Chelf B. , Xie Y. , and Engler D. A System and Language for Building SystemSpecific static analysis Conf. Programming Language Design Implementation, (PLDI 2002) 2002 69 82
- Kielne H.M. , Kraft J. and Nolte T. System-specific static code analyses: a case study in the complex embedded systems domain Software Quality J. 20 2 June 2012 337 367
- Foster J. , Hicks M. , and Pugh W. Improving Software Quality with Static Analysis Program Analysis Software Tools Eng., (PASTE 2007), ACM 2007 83 84
- Polyspace http://www.mathworks.in/products/polyspace/
- Qa-C http://www.programmingresearch.com/products/qac/
- Codesonar http://www.grammatech.com/products/codesonar/overview.html
- Coverity http://www.coverity.com/
- Goanna http://redlizards.com/
- Klocwork Insight http://www.klocwork.com/products/insight/index.php
- Ostberg J. , and Wagner S. Get started imminently: Using tutorials to accelerate learning in automated static analysis ICCSW 28 2012 109 115
- Fehnker Ansgar , Huuck Ralf , Seefried Sean and Tapp Michael Fade to Grey: Tuning Static Program Analysis Electronic Notes in Theoretical Computer Science
- Holzmann Gerard J. The Power of Ten -Rules for Developing Safety Critical Code.
- Athavale A. , Ranadive P. , Babu M.N. , Pawar P. , Sah S. , Vaidya V. , and Rajguru C. Automatic sequential to parallel code conversion: the S2P tool and performance analysis J. Computing, (JoC) 2012 1 4 Vasik O. , and Dudka K. Common Errors in C/C++ Code and Static Analysis RedHat publication February 2011
- Ayewah N. , Pugh W. , Morgenthaler J. , Penix J. , and Zhou Y. Evaluating Static Analysis Defect Warnings On Production Software Workshop Program Analysis Software Tools Eng., (PASTE 2007), ACM 2007 1 8
- Ruthruff J. , Penix J. , Morgenthaler J. , Elbaum S. , and Rothermel G. Predicting Accurate and Actionable Static Analysis Warnings: An Experimental Approach 30th Int'l Conf. Software Eng., (ICSE 2008) 2008 341 350
- Hovemeyer D. , and Pugh W. Finding More Null Pointer Bugs, But Not Too Many Workshop Program Analysis Software Tools Eng., (PASTE 2007), ACM 2007 9 14
- Ayewah N. , and Pugh W. A Report on a Survey and Study of Static Analysis Users Workshop Defects in Large Software Systems 2008 1 5
- Vetro' A. , Torchiano M , Morisio M Quantitative Assessment of the Impact of Automatic Static Analysis Issues on Time Efficiency Informatica Quantitativa 2011 27 29
- Heckman S. , Williams L. On Establishing a Benchmark for Evaluating Static Analysis Alert Prioritization and Classification Techniques Int'l Symposium Empirical Software Eng. Measurement, (ESEM 2008), ACM-IEEE 2008 41 50
- Ayewah N. Static Analysis in Practice doctoral thesis Univ. of Maryland 2010
- Nanda M. , Gupta M. , Sinha S. , Chandra S. , Schmidt D. , and Balachandran P. Making defect-finding tools work for you Int'l Conf. Software Eng. (ICSE 2010) 2010 99 108
- Understand Source Code Analysis and Metrics http://www.scitools.com/
- Sane A. , Ranadive P. , and Sah S. Data Dependency Analysis Using Data-Write Detection Techniques 2nd Int'l Conf. Software Technology Eng. (ICSTE 2010) October 2010 1 9 12
- Aho Alfred V. , Sethi Ravi , Ullman Jeffrey D. Compilers: Principles, Techniques, and Tools 3rd 2005
- Graaf D. Detection of Static Flaws in Changesets Masters thesis Iowa State University 2010