Questions tagged [klee]

KLEE: Unassisted and Automatic Generation of High-Coverage, is a symbolic virtual machine built on top of the LLVM compiler infrastructure

KLEE is a symbolic execution tool, capable of automatically generating tests that achieve high coverage on a diverse set of complex and environmentally-intensive programs, KLEE could also be used as a bug finding too.

Home page

KLEE publication

64 questions

votes

0 answers

use cmake to build klee

I'm newer in using Linux and cmake. I have some trouble when I want to build a KLEE system in ubuntu14.04. When I come to the 8th part as the official page said. see in this page: http://klee.github.io/build-llvm34/ There is something wrong with the…

cmake c++14 klee

asked Feb 16 '19 at 12:41

Eric焚书指南

votes

0 answers

How to make source code file be ready under home/klee when use Klee docker image

I have Klee installed as a docker image. I am trying to follow the first tutorial of KLEE. I am wondering instead of inputing source codes by echo "int main(int argn, char** argv) { return 0; }" > test.c, how can I input the .c file to…

docker docker-container klee

asked Jun 20 '18 at 13:35

YING.W

votes

3 answers

Klee installation error

I am trying to install klee (http://klee.github.io/build-llvm34/) in Ubuntu 16.04 LTS. I am having clang-3.9. After executing below command in klee_build_dir, I have bin directory with klee-stats and ktest-tool, but no klee. Please help cmake…

klee

asked Nov 01 '17 at 16:25

The Voyager

votes

2 answers

Understand KLEE test data for array or pointer

I am using KLEE to generate test data for function. But the test data generated by KLEE makes me in some troubles. Input: void arrange(int a[]) { ... } Here is a test data in KLEE: ... object 0: name: 'a' object 0: size: 40 object 0:…

unit-testing klee

asked Mar 11 '17 at 05:53

ducanhnguyen

votes

1 answer

KLEE does not find uninitialized variable error

I am learning KLEE now and I wrote a simple code: #include "klee/klee.h" #include #include int test(int *p) { int *q = (int *) malloc(sizeof(int)); if ((*p) == (*q)) { printf("reading uninitialized heap…

klee

asked Jan 17 '17 at 12:31

YjyJeff

votes

1 answer

How to make KLEE stop exploring paths after finding an assertion fail

If finding an assertion fail in one execution, KLEE will report it, then ignore it and keep searching for other executions. Then it comes to my question: is there any configuration or trick to force KLEE to stop searching when finding an assertion…

klee

asked Jul 21 '16 at 10:30

yuiyin

votes

2 answers

klee LLVM 3.4 running example error

I'm fresh to KLEE, and tried to install and test it. I worked with the manual steps by steps, and it seems no exception mistakes, but how did this problem happened? here is the command I…

llvm emit klee

asked May 16 '16 at 14:34

DazenhomNJU

votes

3 answers

tools for symbolic execution on binaries

are there any tools for symbolic execution on binaries. i mean using which, we do not require to modify the source code - like klee_make_symbolic or we can do such changes in IR (llvm ir etc.) thanks in advance

llvm llvm-ir klee symbolic-execution

asked Apr 19 '16 at 06:01

hilly

votes

1 answer

KLEE convert non-symbolic variable to symbolic

How can I convert a non-symbolic variable (i.e the variable is not declared symbolic in the input program) to symbolic in KLEE

variables symbolic-math klee

asked Mar 18 '16 at 13:45

sumit

votes

1 answer

How does KLEE count number of branches

I'm using Klee 2.9, and trying to obtain branch information from stat file klee generats. I fed in a one if-else statement program, and klee reported NumBranches as 8. Code under test is shown below, #include #include int…

klee

asked Jun 24 '15 at 21:49

Min Gao

votes

1 answer

Compile KLEE on MIPS error

Now I want to use KLEE on MIPS. but when I compile it by makefile, there is a error:unknown target triple "mips64el-unkown-linux-gnu", please use -triple or -arch I don not know whether KLEE surport MIPS, and KLEE's documents also have this…

llvm mips klee

asked Jan 25 '15 at 06:23

wangxf

votes

0 answers

Boost TR1 include problems in Ubuntu 14.04.1 LTS

I've installed boost version 1.54 on a 64-bit Ubuntu 14.04.1 OS and I'm trying to compile KLEE with metaSMT. However, I think my problem is independent of KLEE and metaSMT, hence the title of the question. Nevertheless, I present the steps needed to…

c++ ubuntu boost makefile klee

asked Sep 27 '14 at 18:45

Benny

votes

1 answer

Disable warnings in llvm-gcc

I'm trying to build an open source project with llvm-gcc 4.2 with -emit-llvm flag. However I get many errors due to warning flags. Example of these errors: cc1: error: unrecognized command line option "-Warray-bounds" cc1: error: unrecognized…

makefile suppress-warnings llvm-gcc klee

asked May 10 '14 at 21:16

drum

5,416
7
57
91

votes

1 answer

Why the function sleep() can not work when the klee execute the Objectfile?

Yesterday I asked question on stackoverflow, but I have not described it clearly, so I change the way to ask, maybe make the problem clear. First, I modify the example get_sign.c which the klee provide, I include the unistd.h in the program, and…

c++ c uclibc klee

asked Mar 07 '14 at 02:03

wangxf

-1

votes

1 answer

KLEE: ERROR: Loading file /usr/local/lib/klee/runtime/klee-uclibc.bca failed: Invalid record

When running KLEE with klee --libc=uclibc --posix-runtime --external-calls=all program.bc, it gives me this error: KLEE: NOTE: Using POSIX model: /usr/local/lib/klee/runtime/libkleeRuntimePOSIX64_Debug+Asserts.bca KLEE: ERROR: Loading file…

c clang llvm klee

asked Aug 02 '22 at 19:24

Katelyn Chenelle

Prev 1 2 3

5 Next