Article

Free access

A formal framework for the Java bytecode language and verifier

Authors:

Stephen N. Freund,

John C. MitchellAuthors Info & Claims

OOPSLA '99: Proceedings of the 14th ACM SIGPLAN conference on Object-oriented programming, systems, languages, and applications

Pages 147 - 166

https://doi.org/10.1145/320384.320397

Published: 01 October 1999 Publication History

Abstract

This paper presents a sound type system for a large subset of the Java bytecode language including classes, interfaces, constructors, methods, exceptions, and bytecode subroutines. This work serves as the foundation for developing a formal specification of the bytecode language and the Java Virtual Machine's bytecode verifier. We also describe a prototype implementation of a type checker for our system and discuss some of the other applications of this work. For example, we show how to extend our work to examine other program properties, such as the correct use of object locks.

References

[1]

Peter Bertelsen. Dynamic semantics of Java bytecode. In Workshop on Principles of Abstract Machines, September 1998.]]

[2]

E. Boerger and W. Schulte. Programmer friendly modular definition of the semantics of Java. In J. A1ves-Foss, editor, Formal Syntax and Semantics of Java. Springer VerIag LNCS 1523, 1998.]]

Digital Library

[3]

Alessandro Coglio, Allen Goldberg, and Zhenyu Qian. Toward a provably-correct implementation of the JVM bytecode verifier. In Workshop on the Formal Underpinnings of the Java Paradigm, October 1998.]]

[4]

Rich Cohen. Defensive Java Virtual Machine Version 0.5 Mpha Release. Available from http://www.cli.com/software/djvm/index.html, November 1997.]]

[5]

W.R. Cook. A proposal for making Eiffel typesafe. In European Conf. on Object-Oriented Programming, pages 57-72, 1989.]]

Digital Library

[6]

Grzegorz Czajkowski and Thorsten von Eieken. Jres: A resource accounting interface for Java. In Proceedings of A CM Conference on Object Oriented Languages and Systems, October 1998.]]

Digital Library

[7]

S. Drossopoulou and S. Eisenbach. Java is type safe probably. In European Conference On Object Oriented Programming, pages 389-418, 1997.]]

[8]

Drew Dean, Edward W. Felten, Dan S. Wallach, and Dirk Balfanz. Java security: Web browers and beyond. in Dorothy E. Denning and Peter J. Denning, editors, Internet Beseiged: Countering Cyberspace Scofflaws. ACM Press, New York, New York, Octo~ ber 1997.]]

Digital Library

[9]

Cormac Flanagan and Martin Abadi, Types for s~fe locking. In Proceedings of European Symposium on Programming, March 1999.]]

Digital Library

[10]

Stephen Freund and John Mitchell. A type system for object initialization in the Java bytecode language. In Proc. A CM Conference on Object- Oriented Programming: Languages, Systems, and Applications, October 1998. An extended version appears as Stanford University Technical Note STAN- CS-98-62, April 1998.]]

Digital Library

[11]

Stephen Freund and John Mitchell. Specification and verification of Java bytecode subroutines and exceptions, August 1999. To appear as a Stanford University Technical Note. Currently available from http ://cs. stanford, edu/'freunds.]]

[12]

Sanjay Ghemawat.srcjava.Available from http://www.research.digital.com/SRC/java, August 1999.]]

[13]

Allen Goldberg. A specification of Java loading and bytecode verification. In A CM Conference on Computer and Communication Security, 1998.]]

Digital Library

[14]

Java-Powered Ring.Available from http://www.ibutton.com, March 1999.]]

[15]

Mark Jones. The functions of Java bytecode. In Workshop on the Formal Underpinnings of the Java Paradigm, October 1998.]]

[16]

Tim Lindholm and Frank Yellin. The Java Virtual Machine Specification. Addison-Wesley, 1996.]]

Digital Library

[17]

Greg Morrisett, Karl Crary, Neal Glew, and David Walker. From system F to typed assembly language. In Proc. 25th A CM Symposium on Principles of Programming Languages, January 1998.]]

Digital Library

[18]

George C. Necula. Proof-carrying code. In Proc. 2~th A CM Symposium on Principles of Programming Languages, 1997.]]

Digital Library

[19]

Tobias Nipkow and David yon Oheimb. Javatig~,t is Type-Safe- Definitely. In Proc. 25th A CM Symposium on Principles of Programming Languages, Januaxy 1998.]]

Digital Library

[20]

Robert O'CMlahan. A simple, comprehensive type system for Java bytecode subroutines. In Proc. 26th A CM Symposium on Principles of Programming Languages, January 1999.]]

Digital Library

[21]

Cornelia Pusch. Proving the soundness of a Java bytecode verifier specification in Isabelte/HOL. In TA CAN, 1999.]]

Digital Library

[22]

Joachim Posegga and Harald Vogt. Byte code verification for Java smart cards based on modei checking. in 5th European Symposium on Research in Computer Security (ESORICS), Louvain-la-Neuve, Belgium, 1998. Springer LNCS.]]

Digital Library

[23]

Zhenyu Qian. A Formal Specification of Java(tin) Virtual Machine Instructions. In 3. Alves-Foss, editor, Formal Syntax and Semantics of Java. Springer Verlag LNCS 1523, 1998.]]

[24]

Zhenyu Qian. Least types for memory locations in (Java) bytecode. In Sixth Workshop on Foundations of Object-Oriented Languages, January 1999.]]

[25]

Eva Rose. Towards secure bytecode verification on a Java card. Master's thesis, University of Copenhagen, 1998.]]

[26]

Eva Rose and Kristoffer Hogsbro Rose. Toward a provably-correct implementation of the JVM bytecode verifier. In Workshop on the Formal Underpinnings of the Java Paradigm, October 1998.]]

[27]

Raymie Stata and Martin Abadi. A type system for Java bytecode subroutines. Transaction on Programming Languages and Systems, 1999. To appear. Currently available as Digital Equipment Corporation Systems Reseerch Center Research Report 158, June 1998. An earlier version appeared in Proc. 25th ACM Symposium on Principles of Programming Languages, January 1998.]]

Digital Library

[28]

Emin Grin Sirer, Scan McDirmid, and Brian Bershad. Kimera: A Java system architecture. Available from http://kimera.cs.washington.edu, November 1997.]]

[29]

Don Syme. Proving Java type soundness. Technieat Report 427, University of Cambridge Computer Laboratory Technical Report, 1997.]]

[30]

D. Tarditi, G. Morrisett, P. Cheng, C. Stone, g. Harper, and P. Lee. TIL: A type-directed optimizing compiler for ML. ACM SIGPLAN Notices, 31(5):181-192, May 1996.]]

Digital Library

[31]

Dam S. Wallach and Edward W. Felten. Understanding Java stack inspection. In Proceedings of IEEE Symposium on Security and Privacy, May 1998.]]

[32]

Hongwei Xi and Frank Pfenning. Dependent types in praztical programming, In Proc. 26th A CM Symposium on Principles of Programming Languages, January 1999.]]

Digital Library

[33]

Phillip Yelland. A compositional account of the Java Virtual Machine. In Proc. 26th A CM Symposium on Principles of Programming Languages, January 1999.]]

Digital Library

Cited By

Kirke AMiranda E(2017)Experiments in Sound and Music Quantum ComputingGuide to Unconventional Computing for Music10.1007/978-3-319-49881-2_5(121-157)Online publication date: 21-Feb-2017
https://doi.org/10.1007/978-3-319-49881-2_5
Savary AFrappier MLanet J(2013)Detecting Vulnerabilities in Java-Card Bytecode Verifiers Using Model-Based TestingIntegrated Formal Methods10.1007/978-3-642-38613-8_16(223-237)Online publication date: 2013
https://doi.org/10.1007/978-3-642-38613-8_16
Gal AProbst CFranz M(2008)Java bytecode verification via static single assignment formACM Transactions on Programming Languages and Systems10.1145/1377492.137749630:4(1-21)Online publication date: 1-Aug-2008
https://dl.acm.org/doi/10.1145/1377492.1377496
Show More Cited By

Index Terms

Recommendations

A formal framework for the Java bytecode language and verifier

This paper presents a sound type system for a large subset of the Java bytecode language including classes, interfaces, constructors, methods, exceptions, and bytecode subroutines. This work serves as the foundation for developing a formal specification ...
A Type System for the Java Bytecode Language and Verifier

The Java Virtual Machine executes bytecode programs that may have been sent from other, possibly untrusted, locations on the network. Since the transmitted code may be written by a malicious party or corrupted during network transmission, the Java ...
Java (programming language): Java (software platform), Java Virtual Machine, Java performance, Java syntax, Java applet, JavaServer Pages, Swing (Java), Java Servlet, Generics in Java

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

OOPSLA '99: Proceedings of the 14th ACM SIGPLAN conference on Object-oriented programming, systems, languages, and applications

October 1999

462 pages

ISBN:1581132387

DOI:10.1145/320384

Chairmen:
Brent Hailpern
IBM T. J. Watson Research Center
,
Linda M. Northrop
Carnegie Mellon Univ., Pittsburgh, PA
,
Editor:
A. Michael Berman

ACM SIGPLAN Notices Volume 34, Issue 10
Oct. 1999
460 pages
ISSN:0362-1340
EISSN:1558-1160
DOI:10.1145/320385
Chairman:
Brent Hailpern,
Editors:
A. Michael Berman,
Linda M. Northrop
Issue’s Table of Contents

Copyright © 1999 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGPLAN: ACM Special Interest Group on Programming Languages

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 October 1999

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Article

Conference

OOPSLA99

Sponsor:

SIGPLAN

OOPSLA99: Conference on Object Oriented Programming Systems Languages and Applications

November 1 - 5, 1999

Colorado, Denver, USA

Acceptance Rates

OOPSLA '99 Paper Acceptance Rate 30 of 152 submissions, 20%;

Overall Acceptance Rate 268 of 1,244 submissions, 22%

Upcoming Conference

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

37
Total Citations
View Citations
957
Total Downloads

Downloads (Last 12 months)98
Downloads (Last 6 weeks)22

Reflects downloads up to 14 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Kirke AMiranda E(2017)Experiments in Sound and Music Quantum ComputingGuide to Unconventional Computing for Music10.1007/978-3-319-49881-2_5(121-157)Online publication date: 21-Feb-2017
https://doi.org/10.1007/978-3-319-49881-2_5
Savary AFrappier MLanet J(2013)Detecting Vulnerabilities in Java-Card Bytecode Verifiers Using Model-Based TestingIntegrated Formal Methods10.1007/978-3-642-38613-8_16(223-237)Online publication date: 2013
https://doi.org/10.1007/978-3-642-38613-8_16
Gal AProbst CFranz M(2008)Java bytecode verification via static single assignment formACM Transactions on Programming Languages and Systems10.1145/1377492.137749630:4(1-21)Online publication date: 1-Aug-2008
https://dl.acm.org/doi/10.1145/1377492.1377496
Hubert LJensen TPichardie D(2008)Semantic Foundations and Inference of Non-null AnnotationsProceedings of the 10th IFIP WG 6.1 international conference on Formal Methods for Open Object-Based Distributed Systems10.1007/978-3-540-68863-1_9(132-149)Online publication date: 4-Jun-2008
https://dl.acm.org/doi/10.1007/978-3-540-68863-1_9
Permandla PRoberson MBoyapati C(2007)A type system for preventing data races and deadlocks in the java virtual machine languageACM SIGPLAN Notices10.1145/1273444.125476842:7(10)Online publication date: 13-Jun-2007
https://dl.acm.org/doi/10.1145/1273444.1254768
Permandla PRoberson MBoyapati CPande SLi Z(2007)A type system for preventing data races and deadlocks in the java virtual machine languageProceedings of the 2007 ACM SIGPLAN/SIGBED conference on Languages, compilers, and tools for embedded systems10.1145/1254766.1254768Online publication date: 13-Jun-2007
https://dl.acm.org/doi/10.1145/1254766.1254768
Drossopoulou SLagorio GEisenbach S(2006)A flexible model for dynamic linking in Java and C#Theoretical Computer Science10.1016/j.tcs.2006.02.021368:1-2(1-29)Online publication date: 1-Dec-2006
https://dl.acm.org/doi/10.1016/j.tcs.2006.02.021
Upadhyaya BLiu Z(2004)Formal Support for Development of JavaBeans" Component SystemsProceedings of the 28th Annual International Computer Software and Applications Conference - Volume 0110.5555/1025117.1025471(23-28)Online publication date: 28-Sep-2004
https://dl.acm.org/doi/10.5555/1025117.1025471
Upadhyaya BZhiming Liu (2004)Formal support for development of Javabeans component systemsProceedings of the 28th Annual International Computer Software and Applications Conference, 2004. COMPSAC 2004.10.1109/CMPSAC.2004.1342801(23-28)Online publication date: 2004
https://doi.org/10.1109/CMPSAC.2004.1342801
Rose E(2004)Lightweight Bytecode VerificationJournal of Automated Reasoning10.1023/B:JARS.0000021015.15794.8231:3-4(303-334)Online publication date: 15-Jan-2004
https://dl.acm.org/doi/10.1023/B%3AJARS.0000021015.15794.82
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Media

Figures

Other

Tables

View Table of Contents