a principled intermediate language for javascript
play

A Principled Intermediate Language for JavaScript Verification - PowerPoint PPT Presentation

Aug 01, 2023 •243 likes •645 views

A Principled Intermediate Language for JavaScript Verification Daiva Naud zi unien e Imperial College London Resource Reasoning Meeting 1/40 The Team Thomas Philippa Gareth Smith Wood Gardner Petar Jos e Fragoso Maksimovi

  1. A Principled Intermediate Language for JavaScript Verification Daiva Naudˇ zi¯ unien˙ e Imperial College London Resource Reasoning Meeting 1/40

  2. The Team Thomas Philippa Gareth Smith Wood Gardner Petar Jos´ e Fragoso Maksimovi´ c Santos 2/40

  3. Running Example: Where is Alice? var Person = function (x) { this .name = x; } Person.prototype.sayHi = function () { return ”Hi! I am ” + this .name; } var alice = new Person(”Alice”); alice .sayHi(); 3/40

  4. Where is Alice? var Person = function (x) { this .name = x; } Person.prototype.sayHi = function () { return “Hi! I am ” + this .name; l g } Person: var alice = new Person(”Alice”); x person alice.sayHi(); @code: “PProc” 1. Evaluate the function literal @scope: [ l g ] and assign to var Person @proto: l fp x proto 2. Evaluate the function literal, prototype: @proto: l op and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being an object created in Step 3 5. Assign new object to var alice 6. Call alice.sayHi() 4/40

  5. Where is Alice? var Person = function (x) { this .name = x; l g } Person.prototype.sayHi = function () { Person: return “Hi! I am ” + this .name; x person } @code: “PProc” var alice = new Person(”Alice”); @scope: [ l g ] alice.sayHi(); x proto @proto: l fp @proto: l op prototype: 1. Evaluate the function literal and assign to var Person sayHi: 2. Evaluate the function literal, and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being an object created in Step 3 5. Assign new object to var alice 6. Call alice.sayHi() 5/40

  6. Where is Alice? var Person = function (x) { this .name = x; l g } Person.prototype.sayHi = function () { Person: return “Hi! I am ” + this .name; x person x this } @code: “PProc” var alice = new Person(”Alice”); @proto: @scope: [ l g ] alice.sayHi(); x proto @proto: l fp @proto: l op prototype: 1. Evaluate the function literal and assign to var Person sayHi: 2. Evaluate the function literal, and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being an object created in Step 3 5. Assign new object to var alice 6. Call alice.sayHi() 6/40

  7. Where is Alice? var Person = function (x) { this .name = x; } l g Person.prototype.sayHi = function () { Person: return “Hi! I am ” + this .name; x this x person } @proto: var alice = new Person(”Alice”); @code: “PProc” name: “Alice” @scope: [ l g ] alice.sayHi(); x proto @proto: l fp @proto: l op 1. Evaluate the function literal and assign to var Person prototype: 2. Evaluate the function literal, sayHi: and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being an object created in Step 3 5. Assign new object to var alice 6. Call alice.sayHi() 7/40

  8. Where is Alice? var Person = function (x) { this .name = x; l g } alice: Person.prototype.sayHi = function () { Person: return “Hi! I am ” + this .name; x this x person } @proto: var alice = new Person(”Alice”); @code: “PProc” name: “Alice” @scope: [ l g ] alice.sayHi(); x proto @proto: l fp @proto: l op 1. Evaluate the function literal and assign to var Person prototype: 2. Evaluate the function literal, sayHi: and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being an object created in Step 3 5. Assign new object to var alice 6. Call alice.sayHi() 8/40

  9. Where is Alice? var Person = function (x) { this .name = x; l g } alice: Person.prototype.sayHi = function () { Person: return “Hi! I am ” + this .name; x this x person } @proto: @code: “PProc” var alice = new Person(”Alice”); name: “Alice” alice.sayHi(); @scope: [ l g ] x proto @proto: l fp @proto: l op 1. Evaluate the function literal and assign to var Person prototype: 2. Evaluate the function literal, sayHi: and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being an object created in Step 3 5. Assign new object to var alice 6. Call alice.sayHi() 9/40

  10. Running Wrong Example: We Cannot Find Alice var Person = function (x) { this .name = x; } Person.prototype.sayHi = function () { return ”Hi! I am ” + this .name; } var alice = Person(”Alice”); alice .sayHi(); 10/40

  11. We cannot find Alice var Person = function (x) { this .name = x; } l g Person.prototype.sayHi = function () { Person: return “Hi! I am ” + this .name; x this x person } @proto: var alice = Person(”Alice”); @code: “PProc” name: “Alice” @scope: [ l g ] alice.sayHi(); x proto @proto: l fp @proto: l op 1. Evaluate the function literal and assign to var Person prototype: 2. Evaluate the function literal, sayHi: and assign to “Person.prototype.sayHi” 3. Create new object 4. Evaluate function body with this being undefined 5. Assign return value to var alice 6. Call alice.sayHi() 11/40

  12. Verifying JavaScript Programs ‘Towards a Program Logic for JavaScript’, POPL’12, Gardner, Maffeis, and Smith. 12/40

  13. Overall Project JSVerify: A verification tool for JavaScript programs based on an intermediate language JSIL � JS Logic ES5 Strict � JSVerify � JSIL Logic JSIL 13/40

  14. From ES5 Strict to JSIL - Our choices We implemented, tested, and proved correct a ES5 Strict principled translation from ES5 Strict to JSIL. JSIL was specifically designed as a simple verification language for Javascript: Principled ◮ small language; Translation ◮ simple semantics; ◮ similar memory model to JavaScript’s memory model. JSIL 14/40

  15. JSIL Simple goto language: � C ∈ Cmd x := E | skip | goto l | goto [ E ] l 1 , l 2 l denotes a label and E is an expression with no side effects. 15/40

  16. JSIL Procedure calls: � C ∈ Cmd x := E | skip | goto l | goto [ E ] l 1 , l 2 | x := p ( E , . . . , E ) p ∈ { E , eval , built-in-PId } 16/40

  17. JSIL JavaScript heap commands: � C ∈ Cmd x := E | skip | goto l | goto [ E ] l 1 , l 2 | x := p ( E , . . . , E ) | x := new () | x := hasField ( E , E ) | x := [ E , E ] | [ E , E ] := E | x := delete ( E , E ) 17/40

  18. JSIL Prototype-based inheritance: � C ∈ Cmd x := E | skip | goto l | goto [ E ] l 1 , l 2 | x := p ( E , . . . , E ) | x := new () | x := hasField ( E , E ) | x := [ E , E ] | [ E , E ] := E | x := delete ( E , E ) | x := protoField ( E , E ) | x := protoObj ( E , E ) 18/40

  19. JSIL � C ∈ Cmd x := E | skip | goto l | goto [ E ] l 1 , l 2 | x := p ( E , . . . , E ) | x := new () | x := hasField ( E , E ) | x := [ E , E ] | [ E , E ] := E | x := delete ( E , E ) | x := protoField ( E , E ) | x := protoObj ( E , E ) � proc PId ( x 1 , . . . , x n ) { Procedure 0: C 0 1: C 1 . . . m: C m } 19/40

  20. JSIL Logic versus JS Logic 20/40

  21. However... The complexity of JavaScript does not disappear. It has moved to the code generated by the translation 21/40

  22. Back to Example: Where is Alice? var Person = function (x) { this .name = x; } var alice = new Person(”Alice”); 22/40

  23. Translating: Where is Alice in JSIL? ◮ The translation generates a top level procedure for each function literal. ◮ The translation generates a special procedure main for the global code. ◮ No nesting of procedures. JavaScript Code JSIL Code var Person = function (x) { ... } proc PProc ( x sc , x this , x ) { ... } Whole Program proc main () { ... } 23/40

  24. Translating: Where is Alice in JSIL? JSIL Code x proto := new () JavaScript Code [ x proto , @ proto ] := l op x person := new () var Person = function (x) { [ x person , @ code ] := “ PProc ” this .name = x; [ x person , @ scope ] := [ l g ] } [ x person , @ proto ] := l fp var alice = new Person(”Alice”); [ x person , “ prototype ”] := x proto l g 1. Evaluate the function literal 2. Assign function object to var Person 3. Create new object x person 4. Evaluate function body with @code: “PProc” this being an object created in Step 3 @scope: [ l g ] 5. Assign new object to var alice @proto: l fp x proto prototype: @proto: l op 24/40

  25. Translating: Where is Alice in JSIL? JavaScript Code JSIL Code var Person = function (x) { [ l g , “ Person ”] := x person this .name = x; } l g var alice = new Person(”Alice”); Person: x person 1. Evaluate the function literal 2. Assign function object to var Person @code: “PProc” @scope: [ l g ] 3. Create new object 4. Evaluate function body with @proto: l fp x proto this being an object created in Step 3 prototype: @proto: l op 5. Assign new object to var Alice 25/40

  26. Translating: Where is Alice in JSIL? JavaScript Code JSIL Code x this := new () var Person = function (x) { [ x this , @ proto ] := x proto this .name = x; } l g var alice = new Person(”Alice”); Person: x person 1. Evaluate the function literal x this 2. Assign function object to var Person @code: “PProc” 3. Create new object @proto: @scope: [ l g ] 4. Evaluate function body with @proto: l fp x proto this being an object created in Step 3 prototype: @proto: l op 5. Assign new object to var alice 26/40

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

J AVA S CRIPT JavaScript is the programming language of HTML and the Web. JavaScript

J AVA S CRIPT JavaScript is the programming language of HTML and the Web. JavaScript

J AVA S CRIPT JavaScript is the programming language of HTML and the Web. JavaScript Java JavaScript is interpreted by the browser JavaScript 1/15 JS W HERE T O <!DOCTYPE html> <html> <head> <script

591 views • 15 slides
JAVASCRIPT an d th e We b ! JAVASCRIPT popular scripting language on the Web, supported by

JAVASCRIPT an d th e We b ! JAVASCRIPT popular scripting language on the Web, supported by

CS498RK SPRING 2020 JAVASCRIPT an d th e We b ! JAVASCRIPT popular scripting language on the Web, supported by browsers separate scripting from structure (HTML) and presentation (CSS) client- and server-side programming object-oriented,

628 views • 31 slides
JAVASCRIPT an d th e We b ! JAVASCRIPT popular scripting language on the Web, supported by

JAVASCRIPT an d th e We b ! JAVASCRIPT popular scripting language on the Web, supported by

CS 498RK SPRING 2019 JAVASCRIPT an d th e We b ! JAVASCRIPT popular scripting language on the Web, supported by browsers separate scripting from structure (HTML) and presentation (CSS) client- and server-side programming object-oriented,

501 views • 32 slides
JavaScript! What is JavaScript? A (traditionally) client-side scripting language Meant

JavaScript! What is JavaScript? A (traditionally) client-side scripting language Meant

JavaScript! What is JavaScript? A (traditionally) client-side scripting language Meant (traditionally) to run entirely on the users browser Defined by the ECMAscript standard, published by the ECMA foundation JavaScript != Java,

657 views • 32 slides
JAVASCRIPT Fashionabl e an d Functiona l ! JAVASCRIPT popular scripting language on the Web,

JAVASCRIPT Fashionabl e an d Functiona l ! JAVASCRIPT popular scripting language on the Web,

CS498RK SPRING 2020 JAVASCRIPT Fashionabl e an d Functiona l ! JAVASCRIPT popular scripting language on the Web, supported by browsers separate scripting from structure (HTML) and presentation (CSS) client- and server-side programming

857 views • 49 slides
JavaScript Primer Basic Introduction of JavaScript JavaScript History Why (re)introduce

JavaScript Primer Basic Introduction of JavaScript JavaScript History Why (re)introduce

JavaScript Primer Basic Introduction of JavaScript JavaScript History Why (re)introduce JavaScript? Notorious for being worlds most misunderstood programming language o (Douglas Crockford -

432 views • 11 slides
CE419 Session 5: JavaScript Web Programming 1 What is JavaScript? JavaScript is a dynamic

CE419 Session 5: JavaScript Web Programming 1 What is JavaScript? JavaScript is a dynamic

CE419 Session 5: JavaScript Web Programming 1 What is JavaScript? JavaScript is a dynamic programming language. Introduced in 1995 as a way to add programs to web pages in the Netscape Navigator browser. It has made modern web

795 views • 35 slides
JavaScript as a second language let languageWeUse = 'JavaScript' if (intimidating == true) {

JavaScript as a second language let languageWeUse = 'JavaScript' if (intimidating == true) {

JavaScript as a second language let languageWeUse = 'JavaScript' if (intimidating == true) { dontPanic('about it') } Types of languages natural languages (English, Mandarin) formal languages symbolic (math, logic) computer

359 views • 15 slides
Introduction to JavaScript Niels Olof Bouvin 2 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 2 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 2 Overview A brief history of JavaScript and ECMAScript JavaScript for Java developers The JavaScript ecosystem Getting access to JavaScript Some language basics A look at the Node.js standard

1.03k views • 54 slides
Introduction to JavaScript Niels Olof Bouvin 1 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 1 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 1 Overview A brief history of JavaScript and ECMAScript JavaScript for Java developers The JavaScript ecosystem Getting access to JavaScript Some language basics A look at the Node.js standard

1.1k views • 57 slides
JavaScript: The Good Parts vs. JavaScript: The Definitive Guide CS 252: Advanced Programming

JavaScript: The Good Parts vs. JavaScript: The Definitive Guide CS 252: Advanced Programming

JavaScript: The Good Parts vs. JavaScript: The Definitive Guide CS 252: Advanced Programming Language Principles Introduction to JavaScript Prof. Tom Austin San Jos State University History of JavaScript In 1995, Netscape hired Brendan

395 views • 16 slides
Javascript Thierry Sans Introduction Javascript (aka Ecmascript) Scripting language

Javascript Thierry Sans Introduction Javascript (aka Ecmascript) Scripting language

Javascript Thierry Sans Introduction Javascript (aka Ecmascript) Scripting language (dynamically and weakly typed) Object-oriented (first prototype-based and now class-based) Functional (first-class functions) Reflexive (eval method)

1.19k views • 18 slides
JavaScript Dr. Steven Bitner What is it? JavaScript is a scripting language No compiling

JavaScript Dr. Steven Bitner What is it? JavaScript is a scripting language No compiling

JavaScript Dr. Steven Bitner What is it? JavaScript is a scripting language No compiling or linking Where is it? It is included in a page load In the head of an html page between <script></script> tags In a

1.01k views • 36 slides
JavaScript (a dialect of ECMAScript) JavaScript is an object-based scripting language. It works

JavaScript (a dialect of ECMAScript) JavaScript is an object-based scripting language. It works

CS125 Spring 2014 Interim JavaScript (a dialect of ECMAScript) JavaScript is an object-based scripting language. It works with the objects associated with a web page: the window, the document it contains, and the elements in the document (such

338 views • 13 slides
A Principled Approach to Ornamentation in ML Thomas Williams , Didier Rmy Inria - Gallium June

A Principled Approach to Ornamentation in ML Thomas Williams , Didier Rmy Inria - Gallium June

A Principled Approach to Ornamentation in ML Thomas Williams , Didier Rmy Inria - Gallium June 15, 2018 1 Motivation In a statically-typed programming language with ADTs. Imagine we wrote an evaluator for a simple language: type expr = let

550 views • 53 slides
JavaScript: The Good Parts vs. JavaScript: The Definitive Guide For next class, read

JavaScript: The Good Parts vs. JavaScript: The Definitive Guide For next class, read

JavaScript: The Good Parts vs. JavaScript: The Definitive Guide For next class, read http://eloquentjavascript.net/ chapters 1-4. CS 152: Programming Language Paradigms JavaScript Prof. Tom Austin San Jos State University History of

550 views • 17 slides
NDN in Javascript Ryan Bennett Colorado State University 1 A Bit of Background 2 Why

NDN in Javascript Ryan Bennett Colorado State University 1 A Bit of Background 2 Why

NDN in Javascript Ryan Bennett Colorado State University 1 A Bit of Background 2 Why Javascript? A fertile ground for NDN adoption Low deployment overhead in the browser JavaScript is moving from front-end to full stack Node.js

287 views • 14 slides
Data visualisation with HighChart or D3 Vasilij Nevlev Aviva Health How to get sashelp.stocks

Data visualisation with HighChart or D3 Vasilij Nevlev Aviva Health How to get sashelp.stocks

Data visualisation with HighChart or D3 Vasilij Nevlev Aviva Health How to get sashelp.stocks from this: To this in two data steps: Agenda Introduction Why to visualise with HighCharts or D3? What do you need to have? What do

382 views • 22 slides
JavaScript for IoTivity Sakari Poussa, Intel @spoussa Topics Vision JavaScript for Everything

JavaScript for IoTivity Sakari Poussa, Intel @spoussa Topics Vision JavaScript for Everything

JavaScript for IoTivity Sakari Poussa, Intel @spoussa Topics Vision JavaScript for Everything Cloud HTML5 REST Apps Web API REST Server Server JavaScript GW Engine(s) Applica'on developer can use only web

484 views • 16 slides
JavaScript* Meets Zephyr OS Sakari Poussa @spoussa Intel Zephyr is a trademark of the Linux

JavaScript* Meets Zephyr OS Sakari Poussa @spoussa Intel Zephyr is a trademark of the Linux

JavaScript* Meets Zephyr OS Sakari Poussa @spoussa Intel Zephyr is a trademark of the Linux Foundation. *Other names and brands may be claimed as the property of others. Outline Why JavaScript* Architecture Arduino 101* Port Building

244 views • 21 slides
Develop in Pharo, run on Javascript h"p://pharojs.org Noury Bouraqadi & Dave Mason HTML

Develop in Pharo, run on Javascript h"p://pharojs.org Noury Bouraqadi & Dave Mason HTML

Develop in Pharo, run on Javascript h"p://pharojs.org Noury Bouraqadi & Dave Mason HTML Web Mobile Javascript Clients Apps CSS Web Mobile Clients Apps framework Web Mobile Clients Apps Tools Lifecycle with 100% Pharo 0%

808 views • 13 slides
NAT Alejandro Acosta, Agustn Formoso LACNIC Labs LACNIC 27 - May 2017, Foz do Iguau How

NAT Alejandro Acosta, Agustn Formoso LACNIC Labs LACNIC 27 - May 2017, Foz do Iguau How

Detecting and Measuring IPv4 and IPv6 NAT Alejandro Acosta, Agustn Formoso LACNIC Labs LACNIC 27 - May 2017, Foz do Iguau How much NAT exists? How much NAT exists? Is there NAT66? Measuring NAT from the browser Detecting if a browser

428 views • 19 slides
JSON JavaScript Object Notation Thierry Sans Sending structured data How to send a structured

JSON JavaScript Object Notation Thierry Sans Sending structured data How to send a structured

JSON JavaScript Object Notation Thierry Sans Sending structured data How to send a structured data (arrays or dictionaries) through an HTTP request or response? Only strings are send back and forth Have a string representation of a

446 views • 9 slides
CSE 154 LECTURE 24: JSON Pros and cons of XML pro: standard open format; don't have to

CSE 154 LECTURE 24: JSON Pros and cons of XML pro: standard open format; don't have to

CSE 154 LECTURE 24: JSON Pros and cons of XML pro: standard open format; don't have to "reinvent the wheel" for storing new types of data can represent almost any general kind of data (record, list, tree) easy to read

1.42k views • 15 slides

More recommend