Repository containing the code used for the evalutation in [link to paper].
Classical program analysis techniques, such as abstract interpretation and symbolic execution, are essential for ensuring software correctness, optimizing performance, and enabling compiler optimizations. However, these techniques face computational limitations when analyzing programs with large or exponential state spaces, limiting their effectiveness in ensuring system reliability. Quantum computing, with its parallelism and ability to process superposed states, offers a promising solution to these challenges. In this work, we present QEX, a design that uses quantum computing to analyze classical programs. By synthesizing quantum circuits that encode program states in superposition, QEX enables the simultaneous exploration of program execution paths, significantly improving scalability and precision. This advancement has broad applications, from debugging and security verification to optimizing compilers for next-generation hardware. As a proof-of-concept, we evaluated QEX on 22 benchmark programs, demonstrating its feasibility in analyzing program states with zero false positives. To our knowledge, this is the first proposal to use quantum computing for classical program analysis.
The repository is organized as follow:
- cbmc_unrolling: folder including a simple example how to use CBMC to unroll a C program
- exp: folder containing scripts used to obtain the caracteristics (e.g. depth, number of gates) of some circuit representing arithmetic operation
- hybrid_method_metrics:
- hybrid-fully_quantum_comparison: contains the unrolled porgrams used for the resource and performance comparison between the fully quantum execution and the hybrid execution
- symbolic_exec_quantum_comparison: contains some experimental evidence of the equivalence between Quantum Execution and Symbolic Execution on unrolled programs
- impact_input_on_fp: contains the programs used to study the impact of the input range on the FP rate
- largest_programs_metrics: contains the programs with the largest metrics (# of gates, depth, # of qubits) among the programs considered
- overflow: contains examples on using the Quantum Execution algorithm coupled with the Fixed Point Quantum Algorithm to find overflow occurring in simple programs
- qarithmetic: contains the modified Quantum Arithmetics library
- quantum_sim_equivalence: contains the programs used to show the equivalence between our quantum simulator and quantum execution on Qiskit
- sv-benchmarks: contains the modified used as benchmark. Such programs are a modified version of some programs provided by the SV-Benchmarking repository
- vra_methods_comparison: contains the scripts comparing the performance in terms of FP and FN rate of Angr, CBMC (GOTO), Frama-C, KLEE, [LAST TOOL], our Quantum Execution algorithm
All the metrics provided in the paper come from experiments runned on a laptop with the following characteristics:
- Distribution name and version: Linux Mint 21.1 (Vera)
- Kernel version: 5.15.0-130-generic
- RAM: 16 GB
- Python: 3.11
- Angr: 9.2.137
- Frama-C: 29.0 (Copper)
- GOTO: 6.3.1 (cbmc-6.3.1)
- KLEE: 3.1
- LLVM: 14.0.0
- Clang: Ubuntu clang version 14.0.0-1ubuntu1.1; Target: x86_64-pc-linux-gnu; Thread model: posix
- gcc: (Ubuntu 11.4.0-1ubuntu1~22.04) 11.4.0
This project requires Python and several external libraries. You can find the exact versions of all required Python modules in the requirements.txt. The contents of this file can be viewed online here: requirements.txt.
We acknowledge the use of QArithmetics. Modifications were made to adapt it for the latest version of Qiskit. We also acknowledge the use of multiple programs from the SV-Benchmarking repository, which were modified for our purpose.