Static buffer overflow detection techniques tend to report too many false positives fundamentally due to the lack of software execution information. It is very time consuming to manually inspect all the static warnings. In this paper, we propose BovInspector, a framework for automatically validating static buffer overflow warnings and providing suggestions for automatic repair of true buffer overflow warnings for C programs. Given the program source code and the static buffer overflow warnings, BovInspector first performs warning reachability analysis. Then, BovInspector executes the source code symbolically under the guidance of reachable warnings. Each reachable warning is validated and classified by checking whether all the path conditions and the buffer overflow constraints can be satisfied simultaneously. For each validated true warning, BovInspector provides suggestions to automatically repair it with 11 repair strategies. BovInspector is complementary to prior static buffer overflow discovery schemes. Experimental results on real open source programs show that BovInspector can automatically validate on average 60% of total warnings reported by static tools.

基本上，由于缺少软件执行信息，静态缓冲区溢出检测技术往往会报告过多的误报。手动检查所有静态警告非常耗时。在本文中，我们提出了BovInspector，它是一个用于自动验证静态缓冲区溢出警告并为自动修复C程序真实缓冲区溢出警告提供建议的框架。给定程序源代码和静态缓冲区溢出警告，BovInspector首先执行警告可达性分析。然后，BovInspector在可到达的警告的指导下象征性地执行源代码。通过检查是否可以同时满足所有路径条件和缓冲区溢出约束，对每个可达警告进行验证和分类。对于每个经过验证的真实警告，BovInspector提供了使用11种修复策略自动修复它的建议。BovInspector是对先前的静态缓冲区溢出发现方案的补充。在真实的开源程序上的实验结果表明，BovInspector可以自动平均验证静态工具报告的总警告的60％。