research-article

Angelix: scalable multiline program patch synthesis via symbolic analysis

Authors:

Sergey Mechtaev,

Abhik RoychoudhuryAuthors Info & Claims

ICSE '16: Proceedings of the 38th International Conference on Software Engineering

Pages 691 - 701

https://doi.org/10.1145/2884781.2884807

Published: 14 May 2016 Publication History

Abstract

Since debugging is a time-consuming activity, automated program repair tools such as GenProg have garnered interest. A recent study revealed that the majority of GenProg repairs avoid bugs simply by deleting functionality. We found that SPR, a state-of-the-art repair tool proposed in 2015, still deletes functionality in their many "plausible" repairs. Unlike generate-and-validate systems such as GenProg and SPR, semantic analysis based repair techniques synthesize a repair based on semantic information of the program. While such semantics-based repair methods show promise in terms of quality of generated repairs, their scalability has been a concern so far. In this paper, we present Angelix, a novel semantics-based repair method that scales up to programs of similar size as are handled by search-based repair tools such as GenProg and SPR. This shows that Angelix is more scalable than previously proposed semantics based repair methods such as SemFix and DirectFix. Furthermore, our repair method can repair multiple buggy locations that are dependent on each other. Such repairs are hard to achieve using SPR and GenProg. In our experiments, Angelix generated repairs from large-scale real-world software such as wireshark and php, and these generated repairs include multi-location repairs. We also report our experience in automatically repairing the well-known Heartbleed vulnerability.

References

[1]

The heartbleed bug. http://heartbleed.com, 2014.

[2]

M. Bland. https://code.google.com/p/mike-bland/source/browse/heartbleed/, 2015.

[3]

M. Böhme and A. Roychoudhury. Corebench: Studying complexity of regression errors. In ISSTA, pages 105--115, 2014.

Digital Library

[4]

C. Cadar, D. Dunbar, and D. R. Engler. KLEE: Unassisted and automatic generation of high-coverage tests for complex systems programs. In OSDI, pages 209--224, 2008.

Digital Library

[5]

M. Carbin, S. Misailovic, M. Kling, and M. C. Rinard. Detecting and escaping infinite loops with Jolt. In ECOOP, pages 609--633, 2011.

Digital Library

[6]

S. Chandra, E. Torlak, S. Barman, and R. Bodik. Angelic debugging. In ICSE, pages 121--130, 2011.

Digital Library

[7]

M. Y. Chen, E. Kiciman, E. Fratkin, A. Fox, and E. Brewer. Pinpoint: Problem determination in large, dynamic internet services. In DSN, pages 595--604, 2002.

Digital Library

[8]

F. Demarco, J. Xuan, D. L. Berre, and M. Monperrus. Automatic repair of buggy if conditions and missing preconditions with SMT. In CSTVA, pages 30--39, 2014.

Digital Library

[9]

B. Demsky, M. D. Ernst, P. J. Guo, S. McCamant, J. H. Perkins, and M. Rinard. Inference and enforcement of data structure consistency specifications. In ISSTA, pages 233--244, 2006.

Digital Library

[10]

B. Elkarablieh and S. Khurshid. Juzi: a tool for repairing complex data structures. In ICSE, pages 855--858, 2008.

Digital Library

[11]

Q. Gao, H. Zhang, J. Wang, Y. Xiong, L. Zhang, and H. Mei. Fixing recurring crash bugs via analyzing Q&A sites. In ASE, pages 307--318, 2015.

Digital Library

[12]

D. Gopinath, M. Z. Malik, and S. Khurshid. Specification-based program repair using SAT. In TACAS, pages 173--188, 2011.

Digital Library

[13]

C. L. Goues, M. Dewey-Vogt, S. Forrest, and W. Weimer. GenProg ICSE2012 benchmark. http://dijkstra.cs.virginia.edu/genprog/resources/genprog-icse2012-benchmarks/, 2012.

[14]

C. L. Goues, M. Dewey-Vogt, S. Forrest, and W. Weimer. A systematic study of automated program repair: Fixing 55 out of 105 bugs for $8 each. In ICSE, pages 3--13, 2012.

Digital Library

[15]

C. L. Goues, N. Holtschulte, E. K. Smith, Y. Brun, P. Devanbu, S. Forrest, and W. Weimer. The ManyBugs and IntroClass benchmarks for automated repair of C programs. IEEE TSE, 41(12):1236--1256, 2015.

[16]

H. He and N. Gupta. Automated debugging using path-based weakest preconditions. In FASE, pages 267--280, 2004.

[17]

S. Jha, S. Gulwani, S. A. Seshia, and A. Tiwari. Oracle-guided component-based program synthesis. In ICSE, pages 215--224, 2010.

Digital Library

[18]

G. Jin, L. Song, W. Zhang, S. Lu, and B. Liblit. Automated atomicity-violation fixing. In PLDI, pages 389--400, 2011.

Digital Library

[19]

B. Jobstmann, A. Griesmayer, and R. Bloem. Program repair as a game. In CAV, pages 226--238, 2005.

Digital Library

[20]

S. Kaleeswaran, V. Tulsian, A. Kanade, and A. Orso. Minthint: Automated synthesis of repair hints. In ICSE, pages 266--276, 2014.

Digital Library

[21]

D. Kim, J. Nam, J. Song, and S. Kim. Automatic patch generation learned from human-written patches. In ICSE, pages 802--811, 2013.

Digital Library

[22]

R. Könighofer and R. Bloem. Automated error localization and correction for imperative programs. In FMCAD, pages 91--100, 2011.

Digital Library

[23]

F. Long and M. Rinard. Staged program repair with condition synthesis. In ESEC-FSE, pages 166--178, 2015.

Digital Library

[24]

S. Mechtaev, J. Yi, and A. Roychoudhury. Directfix: Looking for simple program repairs. In ICSE, pages 448--458, 2015.

Digital Library

[25]

M. Monperrus. A critical review of "Automatic Patch Generation Learned from Human-written Patches": Essay on the problem statement and the evaluation of automatic software repair. In ICSE, pages 234--242, 2014.

Digital Library

[26]

H. D. T. Nguyen, D. Qi, A. Roychoudhury, and S. Chandra. Semfix: Program repair via semantic analysis. In ICSE, pages 772--781. IEEE Press, 2013.

Digital Library

[27]

G. Novark, E. D. Berger, and B. G. Zorn. Exterminator: Automatically correcting memory errors with high probability. Commun. ACM, 51(12):87--95, 2008.

Digital Library

[28]

A. Orso and G. Rothermel. Software testing: A research travelogue (2000-2014). In FOSE, pages 117--132, 2014.

Digital Library

[29]

Y. Pei, C. A. Furia, M. Nordio, Y. Wei, B. Meyer, and A. Zeller. Automated fixing of programs with contracts. IEEE Trans. Software Eng., 40(5):427--449, 2014.

Digital Library

[30]

J. H. Perkins, S. Kim, S. Larsen, S. Amarasinghe, J. Bachrach, M. Carbin, C. Pacheco, F. Sherwood, S. Sidiroglou, G. Sullivan, W.-F. Wong, Y. Zibin, M. D. Ernst, and M. Rinard. Automatically patching errors in deployed software. In SOSP, pages 87--102, 2009.

Digital Library

[31]

Y. Qi, X. Mao, Y. Lei, Z. Dai, and C. Wang. The strength of random search on automated program repair. In ICSE, pages 254--265, 2014.

Digital Library

[32]

Y. Qi, X. Mao, Y. Lei, and C. Wang. Using automated program repair for evaluating the effectiveness of fault localization techniques. In ISSTA, pages 191--201, 2013.

Digital Library

[33]

Z. Qi, F. Long, S. Achour, and M. Rinard. An analysis of patch plausibility and correctness for generate-and-validate patch generation systems. In ISSTA, pages 24--36. ACM, 2015.

Digital Library

[34]

H. Samimi, E. D. Aung, and T. Millstein. Falling back on executable specifications. In ECOOP, pages 552--576, 2010.

Digital Library

[35]

H. Samimi, M. Schäfer, S. Artzi, T. Millstein, F. Tip, and L. Hendren. Automated repair of HTML generation errors in PHP applications using string constraint solving. In ICSE, pages 277--287, 2012.

Digital Library

[36]

S. Sidiroglou and A. D. Keromytis. Countering network worms through automatic patch generation. IEEE Security and Privacy, 3(6):41--49, 2005.

Digital Library

[37]

A. Smirnov and T. cker Chiueh. DIRA: automatic detection, identification and repair of control-hijacking attacks. In NDSS, 2005.

[38]

E. K. Smith, E. T. Barr, C. Le Goues, and Y. Brun. Is the cure worse than the disease? Overfitting in automated program repair. In FSE, pages 532--543, 2015.

Digital Library

[39]

S. H. Tan and A. Roychoudhury. relifix: Automated repair of software regressions. In ICSE, pages 471--482, 2015.

Digital Library

[40]

W. Weimer, Z. P. Fry, and S. Forrest. Leveraging program equivalence for adaptive program repair: Models and first results. In ASE, pages 356--366, 2013.

Digital Library

Cited By

Hou JHan JHuang CWang NLi L(2025)LineJLocRepair: A line-level method for Automated Vulnerability Repair based on joint trainingFuture Generation Computer Systems10.1016/j.future.2024.107671166(107671)Online publication date: May-2025
https://doi.org/10.1016/j.future.2024.107671
Kang SChen BYoo SLou J(2025)Explainable automated debugging via large language model-driven scientific debuggingEmpirical Software Engineering10.1007/s10664-024-10594-x30:2Online publication date: 1-Mar-2025
https://dl.acm.org/doi/10.1007/s10664-024-10594-x
George RChen MHuang KQian ZLa Porta TJaeger TBalzarotti DXu W(2024)OPTISANProceedings of the 33rd USENIX Conference on Security Symposium10.5555/3698900.3699302(7195-7212)Online publication date: 14-Aug-2024
https://dl.acm.org/doi/10.5555/3698900.3699302
Show More Cited By

Index Terms

Angelix: scalable multiline program patch synthesis via symbolic analysis
1. Software and its engineering
  1. Software creation and management
    1. Software verification and validation
      1. Software defect analysis
        Software testing and debugging

Recommendations

Model and Program Repair via SAT Solving
Special Issue on MEMCODE 2015 and Regular Papers (Diamonds)

We consider the subtractive model repair problem: given a finite Kripke structure M and a CTL formula η, determine if M contains a substructure M^′ that satisfies η. Thus, M can be “repaired” to satisfy eta by deleting some transitions and states. We map ...
On the effectiveness of unified debugging: an extensive study on 16 program repair systems
ASE '20: Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering

Automated debugging techniques, including fault localization and program repair, have been studied for over a decade. However, the only existing connection between fault localization and program repair is that fault localization computes the potential ...
Hybrid Automated Program Repair by Combining Large Language Models and Program Analysis
Automated Program Repair (APR) has garnered significant attention due to its potential to streamline the bug repair process for human developers. Recently, LLM-based APR methods have shown promise in repairing real-world bugs. However, existing APR ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

ICSE '16: Proceedings of the 38th International Conference on Software Engineering

May 2016

1235 pages

ISBN:9781450339001

DOI:10.1145/2884781

General Chair:
Laura Dillon
Michigan State University
,
Program Chairs:
Willem Visser
Stellenbosch University, South Africa
,
Laurie Williams
North Carolina State University

Copyright © 2016 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

ACM: Association for Computing Machinery
SIGSOFT: ACM Special Interest Group on Software Engineering
IEEE-CS\TCSE: TC on Software Engineering
IEEE-CS\DATC: IEEE Computer Society

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 14 May 2016

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

National Research Foundation Singapore

Conference

ICSE '16

Sponsor:

ACM
SIGSOFT
IEEE-CS\TCSE
IEEE-CS\DATC

ICSE '16: 38th International Conference on Software Engineering

May 14 - 22, 2016

Texas, Austin

Acceptance Rates

Overall Acceptance Rate 276 of 1,856 submissions, 15%

Upcoming Conference

ICSE 2025

2025 IEEE/ACM 46th International Conference on Software Engineering

April 26 - May 3, 2025

Ottawa , ON , Canada

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

375
Total Citations
View Citations
1,431
Total Downloads

Downloads (Last 12 months)139
Downloads (Last 6 weeks)9

Reflects downloads up to 24 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Hou JHan JHuang CWang NLi L(2025)LineJLocRepair: A line-level method for Automated Vulnerability Repair based on joint trainingFuture Generation Computer Systems10.1016/j.future.2024.107671166(107671)Online publication date: May-2025
https://doi.org/10.1016/j.future.2024.107671
Kang SChen BYoo SLou J(2025)Explainable automated debugging via large language model-driven scientific debuggingEmpirical Software Engineering10.1007/s10664-024-10594-x30:2Online publication date: 1-Mar-2025
https://dl.acm.org/doi/10.1007/s10664-024-10594-x
George RChen MHuang KQian ZLa Porta TJaeger TBalzarotti DXu W(2024)OPTISANProceedings of the 33rd USENIX Conference on Security Symposium10.5555/3698900.3699302(7195-7212)Online publication date: 14-Aug-2024
https://dl.acm.org/doi/10.5555/3698900.3699302
Xing YWang SSun SHe XSun KLi QBalzarotti DXu W(2024)What IF is not enough? fixing null pointer dereference with contextual checkProceedings of the 33rd USENIX Conference on Security Symposium10.5555/3698900.3698977(1367-1382)Online publication date: 14-Aug-2024
https://dl.acm.org/doi/10.5555/3698900.3698977
Fei ZGe JLi CWang TLi YZhang HHuang LLuo B(2024)Patch Correctness Assessment: A SurveyACM Transactions on Software Engineering and Methodology10.1145/370297234:2(1-50)Online publication date: 8-Nov-2024
https://dl.acm.org/doi/10.1145/3702972
Huang KXu ZYang SSun HLi XYan ZZhang Y(2024)Evolving Paradigms in Automated Program Repair: Taxonomy, Challenges, and OpportunitiesACM Computing Surveys10.1145/369645057:2(1-43)Online publication date: 10-Oct-2024
https://dl.acm.org/doi/10.1145/3696450
Kim YPark YHan SYi JFilkov VRay BZhou M(2024)Enhancing the Efficiency of Automated Program Repair via Greybox AnalysisProceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering10.1145/3691620.3695602(1719-1731)Online publication date: 27-Oct-2024
https://dl.acm.org/doi/10.1145/3691620.3695602
Liu FLiu ZZhao QJiang JZhang LSun ZLi GLi ZMa YFilkov VRay BZhou M(2024)FastFixer: An Efficient and Effective Approach for Repairing Programming AssignmentsProceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering10.1145/3691620.3695062(669-680)Online publication date: 27-Oct-2024
https://dl.acm.org/doi/10.1145/3691620.3695062
Li YPei HHuang LYin BCai K(2024)Automatic Repair of Quantum Programs via Unitary OperationACM Transactions on Software Engineering and Methodology10.1145/366460433:6(1-43)Online publication date: 28-Jun-2024
https://dl.acm.org/doi/10.1145/3664604
Xin QWu HTang JLiu XReiss SXuan J(2024)Detecting, Creating, Repairing, and Understanding Indivisible Multi-Hunk BugsProceedings of the ACM on Software Engineering10.1145/36608281:FSE(2747-2770)Online publication date: 12-Jul-2024
https://dl.acm.org/doi/10.1145/3660828
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten