Open source case studies for Frama-C
This repository is a collection of open source C codes to be used with Frama-C, in particular with the Eva (Evolved Value Analysis) plug-in.
Each directory contains open-source code that constitutes a "case study".
- GNU Make >= 4.0;
- Frama-C 20 (Calcium);
frama-cbinary must be in the PATH.
cdto one of the case studies;
maketo parse and run Eva on the predefined targets (you can run
make helpto get the list of base targets). Note that the default file used by GNU Make is
GNUmakefileif it exists. We use this to avoid renaming the original Makefile, if any. It also means that, if you want to compile the code using its Makefile, you'll have to explicitly name it (
make -f Makefile).
For each base target
t, the following targets are generated:
t.parse: parse the sources;
t.eva: run Eva;
t.eva.gui: open the GUI.
Each target depends on the previous one; note that
t.parse.guiis also available (e.g. for inspecting the AST before the analysis).
For each base target
t, the following optional targets are generated:
t.stats: print time/memory usage;
t.eva.loop: use the Loop Analysis plug-in to produce a file with slevel heuristics (running Eva may improve the result of Loop Analysis, so
t.eva.loopshould be more precise than
t.parse.loop). After obtaining this initial set of parameters, consider saving it to a
.slevelfile and including it in the
GNUmakefile. This way, you can improve the parameters for specific functions as you refine the analysis.
The output of
t.evais verbose, but you can ignore it; the important information (warnings and alarms) can be inspected via the GUI;
The result of each analysis is stored in a directory containing the full logs and Frama-C save files; successive runs are copied into timestamped directories, to allow comparing them (e.g. via
To try other parametrizations, simply edit variables
Source code modifications
Only minor modifications were performed on each of these case studies:
GNUmakefileis added to each case study, with Frama-C/Eva-specific rules for parsing and running the analysis;
- Some case studies contain a
.slevelfile which is derived from the result obtained by the Loop Analysis plug-in;
- When necessary, syntactic modifications were performed to ensure better C99-compliance and/or the inclusion of stubs to allow Frama-C to parse the files;
- In some cases, an
eva_mainfunction was added to provide a better initial context for the analysis;
- When recursive calls are present, the functions containing them need to be replaced with specifications;
- Some ACSL annotations may have been added to the sources (to illustrate their usage, or to improve the analysis).
The main objectives of these files are:
Therefore, some of the code bases are voluntarily parametrized with suboptimal parameters, for non-regression testing; alternatively, some code bases may be present several times, with different versions and/or parametrizations;
These case studies constitute work in progress and do not represent "finalized" case studies.
If you know of other open source code bases where Frama-C/Eva produces
interesting results, please contribute with pull requests including the
sources and the
GNUmakefile that you have devised to run Frama-C.
On the other hand, if you have some interesting open-source C software (ideally, C99-compatible) that you are unable to parse and/or run with Frama-C/Eva, consider creating an issue with the description of the problem you are facing (e.g. missing/incompatible declarations in the Frama-C libc, problems when preprocessing/parsing the software, constructs unsupported by Eva, etc). Ideally, create a (WIP) pull request with the sources in a new directory, ready to be prepared for the case study.
License files are kept in each directory where they were originally found, when available. We also summarize the license of each directory below.
debie1: distribution and use authorized by Patria Aviation Oy, Space Systems Finland Ltd. and Tidorum Ltd, see
hiredis: Redis license (BSD-style), see
itc-benchmarks: BSD 2-clause, see
kilo: BSD 2-clause "Simplified" (see https://github.com/antirez/kilo/blob/master/LICENSE)
libspng: BSD 2-clause, see
mini-gmp: LGPL or GPL
solitaire: public domain (see
tweetnacl-usable: public domain (see
x509-parser: GPLv2 / BSD (see