The goal of the Parfait project is to find bugs in C source code in a scalable and precise way. To this end, Parfait was designed as a framework with layers of sound program analyses, multiple layers per bug type, to identify bugs in a program more quickly and accurately.Parfait also aims to identify security bugs, i.e., bugs that may be exploited by a malicious user. To this end, an optional pre-processing step is available to reduce the scope of potential bugs of interest.
To evaluate Parfait's precision and recall, we have developed BegBunch, a bug benchmarking suite that contains existing synthetic benchmarks and samples of bugs ("bug kernels") taken from open source code.
"Program analysis for bug detection using Parfait"
Cristina Cifuentes, Nathan Keynes, Lian Li, and Bernhard Scholz.
Proceedings of the 2009 ACM SIGPLAN workshop on Partial evaluation and program manipulation (PEPM'09) , Savannah, GA, January 2009.
@inproceedings{1480947,
author = {Cifuentes, Cristina and Keynes, Nathan and Li, Lian and Scholz, Bernhard},
title = {Program analysis for bug detection using Parfait},
booktitle = {PEPM '09: Proceedings of the 2009 ACM SIGPLAN workshop on Partial evaluation and program manipulation},
year = {2009},
isbn = {978-1-60558-327-3},
pages = {7--8},
location = {Savannah, GA, USA},
doi = {http://doi.acm.org/10.1145/1480945.1480947},
publisher = {ACM},
address = {New York, NY, USA},
}