Skip to Main content Skip to Navigation
Journal articles

Weakly Sensitive Analysis for JavaScript Object-Manipulating Programs

Yoonseok Ko 1 Xavier Rival 2 Sukyoung Ryu 1
2 ANTIQUE - Analyse Statique par Interprétation Abstraite
DI-ENS - Département d'informatique de l'École normale supérieure, Inria de Paris
Abstract : While JavaScript programs have become pervasive in web applications, they remain hard to reason about. In this context, most static analyses for JavaScript programs require precise call-graph information, since the presence of large numbers of spurious callees significantly deteriorate precision. One of the most challenging JavaScript features that complicate the inference of precise static call graph information is read / write accesses to object fields the names of which are computed at runtime. JavaScript framework libraries often exploit this facility to build objects from other objects, as a way to simulate sophisticated high-level programming constructions. Such code patterns are difficult to analyze precisely, due to weak updates and limitations of unrolling techniques. In this paper, we observe that precise field correspondence relations can be inferred by locally reasoning about object copies, both regarding to the object and to the program structure, and we propose an abstraction which allows to separately reason about field read / write access patterns working on different fields, and to carefully handle the sets of JavaScript object fields. We formalize and implement an analysis based on this technique. We evaluate the performance and precision of the analysis on the computation of call-graph information for examples from jQuery tutorials.
Document type :
Journal articles
Complete list of metadatas

Cited literature [28 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-02399944
Contributor : Xavier Rival <>
Submitted on : Tuesday, December 10, 2019 - 9:51:48 AM
Last modification on : Tuesday, August 4, 2020 - 3:44:02 AM
Document(s) archivé(s) le : Wednesday, March 11, 2020 - 12:52:11 PM

File

outline.pdf
Files produced by the author(s)

Identifiers

Collections

Citation

Yoonseok Ko, Xavier Rival, Sukyoung Ryu. Weakly Sensitive Analysis for JavaScript Object-Manipulating Programs. International Journal on Software - Practice and Experience, 2019, ⟨10.1002/spe⟩. ⟨hal-02399944⟩

Share

Metrics

Record views

56

Files downloads

73