Precise Analysis of String Expressions
DOI:
https://doi.org/10.7146/brics.v10i5.21776Abstract
We perform static analysis of Java programs to answer a simple question: which values may occur as results of string expressions? The answers are summarized for each expression by a regular language that is guaranteed to contain all possible values. We present several applications of this analysis, including statically checking the syntax of dynamically generated expressions, such as SQL queries. Our analysis constructs flow graphs from class files and generates a context-free grammar with a nonterminal for each string expression. The language of this grammar is then widened into a regular language through a variant of an algorithm previously used for speech recognition. The collection of resulting regular languages is compactly represented as a special kind of multi-level automaton from which individual answers may be extracted. If a program error is detected, examples of invalid strings are automatically produced. We present extensive benchmarks demonstrating that the analysis is efficient and produces results of useful precision.Downloads
Published
2003-01-06
How to Cite
Christensen, A. S., Møller, A., & Schwartzbach, M. I. (2003). Precise Analysis of String Expressions. BRICS Report Series, 10(5). https://doi.org/10.7146/brics.v10i5.21776
Issue
Section
Articles
License
Articles published in DAIMI PB are licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License.
