关键词: 符号执行，软件测试，数组混淆，约束求解

Abstract: Symbolic execution is a common static analysis technology. Issue of array element confusion is one of the key factors limiting symbolic execution performance itself. hhrough analysis to array confusion essence, branch confusion al- gorithm was proposed. With the strategy that manages confusion algorithm and symbolic execution in the same time, some complex array problems were solved. Using the real time method of constraint solving, infcasible confusion bran- ches were cut in time. Combining with symbolic execution and constraint solving, the prototypical tool ASym was devc loped,which was based on improved confusion algorithm. Primary experiments show that it can solve the confusion problem in branch structure and avoid array semantic error in delay replacement. Mcanwhile,extensional branches arc dramatically reduced and efficiency is improved.

Key words: Symbolic execution,Software testing,Array confusion,Constraint solving