decompiling boolean expressions from java
play

Decompiling Boolean Expressions from Java TM Bytecode Mangala - PowerPoint PPT Presentation

Nov 21, 2023 •193 likes •570 views

Decompiling Boolean Expressions from JavaTM Bytecode Decompiling Boolean Expressions from Java TM Bytecode Mangala Gowri Nanda (IBM-IRL) and S. Arun-Kumar (IIT Delhi) Decompiling Boolean Expressions from JavaTM Bytecode Introduction The

  1. Decompiling Boolean Expressions from JavaTM Bytecode Decompiling Boolean Expressions from Java TM Bytecode Mangala Gowri Nanda (IBM-IRL) and S. Arun-Kumar (IIT Delhi)

  2. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Motivation Generating executable code from program slices. Java bytecode does not preserve program structure, especially for complex boolean expressions. Try to reconstruct boolean expression (equivalent to the original) in terms of && , || and the ternary if-then-else . goto is a four-letter word (so is break ).

  3. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 (n % 9==0) 4202 (n % 9!=0) 4203 4204 (m % 9==1) hs.add(new Integer(3)); 4203 4204 (m % 9!=1) hs.add(new Integer(3)); 4205 hs.add(new Integer(m)); return; 4205 hs.add(new Integer(m)); return; 4206 4206 (a) The Classic OR if(n%9==0) goto 4204 else goto 4203 4203: if(m%9==1) goto 4204 else goto 4205 4204: hs.add(new Int(3)); goto 4205 4205: hs.add(new Int(m)); return;

  4. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 (n % 9==0) 4202 (n % 9!=0) 4203 4204 (m % 9==1) hs.add(new Integer(3)); 4203 4204 (m % 9!=1) hs.add(new Integer(3)); 4205 hs.add(new Integer(m)); return; 4205 hs.add(new Integer(m)); return; 4206 4206 (a) The Classic OR (b) The AND equivalent if(n%9==0) goto 4204 else goto 4203 4203: if(m%9==1) goto 4204 if(n%9!=0 && m%9!=1) {} else goto 4205 else { hs.add(new Int(3)) 4204: hs.add(new Int(3)); } goto 4205 hs.add(new Int(m)); 4205: hs.add(new Int(m)); return; return;

  5. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 (n % 9==0) 4202 (n % 9!=0) 4203 4204 (m % 9==1) hs.add(new Integer(3)); 4203 4204 (m % 9!=1) hs.add(new Integer(3)); 4205 hs.add(new Integer(m)); return; 4205 hs.add(new Integer(m)); return; 4206 4206 (a) The Classic OR (b) The AND equivalent if(n%9==0) goto 4204 else goto 4203 4203: if(m%9==1) goto 4204 if(n%9!=0 && m%9!=1) {} else goto 4205 else { hs.add(new Int(3)) 4204: hs.add(new Int(3)); } goto 4205 hs.add(new Int(m)); 4205: hs.add(new Int(m)); return; return;

  6. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 (n % 9==0) 4202 (n % 9!=0) 4203 4204 (m % 9==1) hs.add(new Integer(3)); 4203 4204 (m % 9!=1) hs.add(new Integer(3)); 4205 hs.add(new Integer(m)); return; 4205 hs.add(new Integer(m)); return; 4206 4206 (a) The Classic OR (b) The AND equivalent if(n%9==0) goto 4204 else goto 4203 4203: if(m%9==1) goto 4204 if(n%9!=0 && m%9!=1) {} else goto 4205 else { hs.add(new Int(3)) 4204: hs.add(new Int(3)); } goto 4205 hs.add(new Int(m)); 4205: hs.add(new Int(m)); return; return;

  7. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4202 (n % 9==0) 4203 4204 (m % 9!=1) hs.add(new Integer(3)); 4205 hs.add(new Integer(m)); return; 4206 (c) An alternative if(n%9==0) goto 4204 else goto 4203 4203: if(m%9!=1) goto 4205 else goto 4204 4204: hs.add(new Int(3)); goto 4205 4205: hs.add(new Int(m)); return;

  8. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 4202 (n % 9==0) (n % 9!=0) 4203 4204 4203 4204 (m % 9!=1) hs.add(new Integer(3)); (m % 9==1) hs.add(new Integer(3)); 4205 4205 hs.add(new Integer(m)); hs.add(new Integer(m)); return; return; 4206 4206 (c) An alternative if(n%9==0) goto 4204 else goto 4203 4203: if(m%9!=1) goto 4205 else goto 4204 4204: hs.add(new Int(3)); goto 4205 4205: hs.add(new Int(m)); return;

  9. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 4202 (n % 9==0) (n % 9!=0) 4203 4204 4203 4204 (m % 9!=1) hs.add(new Integer(3)); (m % 9==1) hs.add(new Integer(3)); 4205 4205 hs.add(new Integer(m)); hs.add(new Integer(m)); return; return; 4206 4206 (d) Yet Another Alternative (c) An alternative if(n%9!=0) goto 4203 if(n%9==0) goto 4204 else goto 4204 else goto 4203 4203: if(m%9==1) goto 4204 4203: if(m%9!=1) goto 4205 else goto 4205 else goto 4204 4204: hs.add(new Int(3)); 4204: hs.add(new Int(3)); goto 4205 goto 4205 4205: hs.add(new Int(m)); 4205: hs.add(new Int(m)); return; return;

  10. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Equivalent CFGs for a simple OR clause 4201 4201 4202 4202 (n % 9==0) (n % 9!=0) 4203 4204 4203 4204 (m % 9!=1) hs.add(new Integer(3)); (m % 9==1) hs.add(new Integer(3)); 4205 4205 hs.add(new Integer(m)); hs.add(new Integer(m)); return; return; 4206 4206 (d) Yet Another Alternative (c) An alternative if(n%9!=0) goto 4203 if(n%9==0) goto 4204 else goto 4204 else goto 4203 4203: if(m%9==1) goto 4204 4203: if(m%9!=1) goto 4205 else goto 4205 else goto 4204 4204: hs.add(new Int(3)); 4204: hs.add(new Int(3)); goto 4205 goto 4205 4205: hs.add(new Int(m)); 4205: hs.add(new Int(m)); return; return;

  11. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Outline 1 Introduction The Problem 2 Generating Code The Monochromatic Theorem An example with only AND s and OR s Handling ternary expressions

  12. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Outline 1 Introduction The Problem 2 Generating Code The Monochromatic Theorem An example with only AND s and OR s Handling ternary expressions 3 Untwistable DAGs Managing untwistable DAGs

  13. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Outline 1 Introduction The Problem 2 Generating Code The Monochromatic Theorem An example with only AND s and OR s Handling ternary expressions 3 Untwistable DAGs Managing untwistable DAGs 4 Results

  14. Decompiling Boolean Expressions from JavaTM Bytecode Introduction The Problem Outline 1 Introduction The Problem 2 Generating Code The Monochromatic Theorem An example with only AND s and OR s Handling ternary expressions 3 Untwistable DAGs Managing untwistable DAGs 4 Results

  15. Decompiling Boolean Expressions from JavaTM Bytecode Generating Code The Monochromatic Theorem The Monochromatic Theorem: A Lemma The language of non-negative conditional expressions is defined by the BNF c ::= a | c 1 && c 2 | c 1 � c 2 | c 0 ? c 1 : c 2 | ( c 0 ? i 1 : i 2) == val | ( c 0 ? o 1 : o 2) . boolfunc() Lemma For this language of non-negative conditional expressions, every CFG generated for the program segment if c then S true else S false may be transformed into one that preserves the property that all incoming edges to any node in the CFG are of the same color.

  16. Decompiling Boolean Expressions from JavaTM Bytecode Generating Code The Monochromatic Theorem Pushing Negation Inwards Lemma The Boolean Identities !! c ′ c ′ = !( c 0 ? c 1 : c 2 ) = ! c 0 ?! c 2 :! c 1 , !( c 1 && c 2 ) = ! c 1 � ! c 2 !( c 1 � c 2 ) = ! c 1 &&! c 2 , Negations of all comparison operators are also available in non-negative form Negation “twists” the subgraphs Use negation (recursively) to ensure that incoming arcs are of the same color.

  17. Decompiling Boolean Expressions from JavaTM Bytecode Generating Code The Monochromatic Theorem The Monochromatic Theorem Theorem For each basic block that participates in a boolean expression, all the incoming edges must be the same color. That is, all incoming edges are either true edges or they are false edges , or in the case of certain ternary clauses, they may be unconditional edges ( black edges ). If they are not, simply twist them using the boolean identities.

  18. Decompiling Boolean Expressions from JavaTM Bytecode Generating Code The Monochromatic Theorem Constructing the boolean expressions c00 c0 c00 c01 c0 c0 c01 c10 c0 t8 = i1; t8 = i2; c10 c1 c1 c2 c11 c1 c11 (t8==val) sFalse(); sTrue(); sTrue(); sFalse(); sTrue(); sFalse(); sTrue(); sFalse(); sTrue(); sFalse(); sTrue(); sFalse(); (a) c0 && (c) c0 ? c1 (f) (c00 && (b) c0 || c1 (e) (c00 || c1 : c2 c01) || (c10 c01) && (d) (c0 ? i1 : i2) && c11) (c10 || c11) == val c0 c0 c00 c00 c00 c0 t12 = i1; t12 = i2; t12 = i1; t12 = i2; c0 c01 c02 c00 c01 c02 c01 c02 c1 c2 (t12==val1) (t12==val1) c1 c2 c1 c2 c01 c02 c10 c20 c3 t10 = i1; t10 = i2; t14 = i1; t14 = i2; t14 = i3; t14 = i4; c1 c1 c3 (t14==val) c1 c2 c5 c4 t13 = i3; t13 = i4; t13 = i3; t13 = i4; c11 c12 c21 c22 (t10==val) c5 c4 sTrue(); sFalse(); (t13==val2) (t13==val2) sFalse(); sTrue(); sTrue(); sFalse(); sTrue(); sFalse(); sTrue(); sFalse(); (l) ((c00 ? sTrue(); sFalse(); sTrue(); sFalse(); sFalse(); sTrue(); c01 : c02) ? (i) (c0 ? c1 (h) (c00 ? c01 : (g) (c00 ? (j) (c0 ? c1 (c1 ? i1 : i2) : c2) && (k) ((c00 ? (m) (c0 ? i1 (n) (c0 ? i1 c02) ? (c10 ? c01 : c02) ? : c2) || (c3 : (c2 ? i3 : (c3 ? c4 : c01 : c02) ? : i2) == val1 :i2) == val1 c11 : c12): (c20 c1 : c2 ? c4 : c5) i4) ) == val c5) i1 : i2) == && (c1 ? i3 : || (c1? i3 ? c21 : c22) val i4) == val2 :i4) == val2

Recommend

Mat 2170 Week 3 Chapter Three Java Expressions Variable Declarations Java Expressions

Mat 2170 Week 3 Chapter Three Java Expressions Variable Declarations Java Expressions

Mat 2170 Chapter Three Java Expressions Mat 2170 Week 3 Chapter Three Java Expressions Variable Declarations Java Expressions Operators Mixed Mode Assignment Applications Spring 2014 Boolean Expressions Data Types Java

766 views • 41 slides
Boolean Functions Boolean Expressions Let B = { 0 , 1 } . 1 ... true, 0 ... false Let x 1 , x 2 ,

Boolean Functions Boolean Expressions Let B = { 0 , 1 } . 1 ... true, 0 ... false Let x 1 , x 2 ,

Boolean Functions Boolean Expressions Let B = { 0 , 1 } . 1 ... true, 0 ... false Let x 1 , x 2 , . . . , x n be boolean variables. Boolean Function of Arity n Semantics and Verification 2005 Abstract Syntax for Boolean Expressions ( x ranges

382 views • 4 slides
1 Characters Boolean A char variable stores a single character A boolean value represents

1 Characters Boolean A char variable stores a single character A boolean value represents

CSC 2014 Java Bootcamp Lecture 2 Variables, Expressions, I/O & Control VARIABLES & EXPRESSIONS 2 Variables Variable Initialization A variable is a name for a location in memory A variable can be given an initial value in the

105 views • 10 slides
Normal Forms for Boolean Expressions A NORMAL FORM defines a class expressions s.t. a. Satisfy

Normal Forms for Boolean Expressions A NORMAL FORM defines a class expressions s.t. a. Satisfy

Normal Forms for Boolean Expressions A NORMAL FORM defines a class expressions s.t. a. Satisfy certain structural properties b. Are usually universal: able to express every boolean function 1. Disjunctive Normal Form (DNF) - Sum Of Products of

1.01k views • 68 slides
1 Boolean Algebra 1. Boolean Algebra Verification Technology Content 1.1 Boolean algebra basics

1 Boolean Algebra 1. Boolean Algebra Verification Technology Content 1.1 Boolean algebra basics

Fachgebiet Rechnersysteme 1. Boolean Algebra 1 1 Boolean Algebra 1. Boolean Algebra Verification Technology Content 1.1 Boolean algebra basics (recap) 1 2 Reasoning about Boolean expressions 1.2 Reasoning about Boolean expressions 1.

1.22k views • 69 slides
Branching and Boolean Expressions Roman Kontchakov / Carsten Fuhs Birkbeck, University of London

Branching and Boolean Expressions Roman Kontchakov / Carsten Fuhs Birkbeck, University of London

Software and Programming I Branching and Boolean Expressions Roman Kontchakov / Carsten Fuhs Birkbeck, University of London Outline The if statement Comparing numbers and strings Nested branches Boolean variables and expressions Sections

578 views • 30 slides
Java 8 Workshop Lambda Expressions and the Stream API Joe DiFebo 2/6/2017 What's new in Java

Java 8 Workshop Lambda Expressions and the Stream API Joe DiFebo 2/6/2017 What's new in Java

Java 8 Workshop Lambda Expressions and the Stream API Joe DiFebo 2/6/2017 What's new in Java 8? Lambda Expressions Stream API The Optional data type Security Enhancements JavaFX Improvements New and Improved Tools

1.35k views • 65 slides
Boolean Logic Guan-Shieng Huang Oct. 4, 2006 0-0 Boolean Expressions X = { x 1 ,

Boolean Logic Guan-Shieng Huang Oct. 4, 2006 0-0 Boolean Expressions X = { x 1 ,

Boolean Logic Guan-Shieng Huang Oct. 4, 2006 0-0 Boolean Expressions X = { x 1 , x 2 , . . . } a countably infinite variables, each can be true or false . Logical connectivities: : logical or; : logical and; :

517 views • 17 slides
Introduction to Java Chapters 1 and 2 The Java Language Section 1.1 Data & Expressions

Introduction to Java Chapters 1 and 2 The Java Language Section 1.1 Data & Expressions

Introduction to Java Chapters 1 and 2 The Java Language Section 1.1 Data & Expressions Sections 2.1 2.5 Instructor: Scott Kristjanson CMPT 125/125 SFU Burnaby, Fall 2013 Scope 2 Introduce the Java programming language

725 views • 61 slides
The boolean type and boolean operators Recall that Java provides a data type boolean which can

The boolean type and boolean operators Recall that Java provides a data type boolean which can

The boolean type and boolean operators Recall that Java provides a data type boolean which can take on only one of two values: true or false. boolean b = true; // stores the truth value true in b b = false; // overwrites b with the

158 views • 11 slides
STATS 701 Data Analysis using Python Lecture 2: Conditionals, Recursion, and Iteration Boolean

STATS 701 Data Analysis using Python Lecture 2: Conditionals, Recursion, and Iteration Boolean

STATS 701 Data Analysis using Python Lecture 2: Conditionals, Recursion, and Iteration Boolean Expressions Boolean expressions evaluate the truth/falsity of a statement Python supplies a special Boolean type, bool variable of type bool can be

427 views • 32 slides
Building Java Programs Chapter 5 Lecture 12: Boolean Logic and Assertions reading: 5.3 5.5 1

Building Java Programs Chapter 5 Lecture 12: Boolean Logic and Assertions reading: 5.3 5.5 1

Building Java Programs Chapter 5 Lecture 12: Boolean Logic and Assertions reading: 5.3 5.5 1 2 Type boolean boolean : A logical type whose values are true and false . A logical test is actually a boolean expression. Like other

660 views • 31 slides
Building Java Programs Chapter 5 Lecture 5-3: Boolean Logic and Assertions reading: 5.3 5.5

Building Java Programs Chapter 5 Lecture 5-3: Boolean Logic and Assertions reading: 5.3 5.5

Building Java Programs Chapter 5 Lecture 5-3: Boolean Logic and Assertions reading: 5.3 5.5 1 2 Type boolean boolean : A logical type whose values are true and false . A logical test is actually a boolean expression. Like other

450 views • 21 slides
Circuits and Gates 15-110 Wednesday 09/16 Learning Goals Translate Boolean expressions to

Circuits and Gates 15-110 Wednesday 09/16 Learning Goals Translate Boolean expressions to

Circuits and Gates 15-110 Wednesday 09/16 Learning Goals Translate Boolean expressions to truth tables and circuits Translate circuits to truth tables and Boolean expressions Recognize how addition is done at the circuit level

441 views • 33 slides
Chapter 6: Selection Statements boolean expressions constants: true and false method

Chapter 6: Selection Statements boolean expressions constants: true and false method

Chapter 6: Selection Statements boolean expressions constants: true and false method return values: if a method returns true or false , then sending the message counts as a boolean expression relational operators: > , > =,

415 views • 4 slides
cl the Boolean algebra of languages regular expressions Informatics 1 School of

cl the Boolean algebra of languages regular expressions Informatics 1 School of

https://app-ca.tophat.com/e/835603 NFA and regex cl the Boolean algebra of languages regular expressions Informatics 1 School of Informatics, University of Edinburgh 1 KISS DFA D eterministic F inite A utomaton Exactly one start

849 views • 35 slides
CS 312 Introduction to booleans Jeffrey Wang Boolean boolean is another primitive data type in

CS 312 Introduction to booleans Jeffrey Wang Boolean boolean is another primitive data type in

CS 312 Introduction to booleans Jeffrey Wang Boolean boolean is another primitive data type in Java, just like int, double, and char A variable of the boolean type can have one of two values: true or false Examples: boolean

136 views • 10 slides
cl the Boolean algebra of languages regular expressions Informatics 1 School of

cl the Boolean algebra of languages regular expressions Informatics 1 School of

NFA to DFA cl the Boolean algebra of languages regular expressions Informatics 1 School of Informatics, University of Edinburgh 1 A mathematical definition of a Finite State Machine. M = ( Q , , B , A , ) Q : the set of states,

606 views • 41 slides
Python Alternative Statements More on Conditions Thomas Schwarz, SJ Conditions A condition

Python Alternative Statements More on Conditions Thomas Schwarz, SJ Conditions A condition

Python Alternative Statements More on Conditions Thomas Schwarz, SJ Conditions A condition is an expression that evaluates to True or False This type is called Boolean Boolean Expressions The simplest Boolean expressions are True

481 views • 8 slides
Evaluating boolean Expressions } The simple numeric comparison operators and equality relations

Evaluating boolean Expressions } The simple numeric comparison operators and equality relations

Evaluating boolean Expressions } The simple numeric comparison operators and equality relations are easy to evaluate P Q P && Q } T o determine whether a more T T T complex logical formula is true or T F F false, we use truth

357 views • 3 slides
COMP 110-003 Introduction to Programming Branching Statements and Boolean Expressions January

COMP 110-003 Introduction to Programming Branching Statements and Boolean Expressions January

COMP 110-003 Introduction to Programming Branching Statements and Boolean Expressions January 29, 2013 Haohan Li TR 11:00 12:15, SN 011 Spring 2013 Announcements Lab 1 grading and comments on Sakai Office hour for Wednesday Jan.

817 views • 36 slides
Flow Control: boolean expressions, if selec5on statements

Flow Control: boolean expressions, if selec5on statements

CS 101 Lecture 25 Flow Control: boolean expressions, if selec5on statements (Alice In Ac5on, Ch 4) Slides Credit: Joel Adams, Alice in Action Flow Control Flow: sequence of

391 views • 15 slides
Learning the Java Language Based on The Java Tutorial

Learning the Java Language Based on The Java Tutorial

Learning the Java Language Based on The Java Tutorial (http://docs.oracle.com/javase/tutorial/java/) Bryn Mawr College CS206 Intro to Data Structures Language Basics Variables Operators Expressions, Statements and Blocks

415 views • 20 slides
Lecture 6: Flow Control Lecture 6: Flow Control 1 / 28 Relational Expressions Conditions in if

Lecture 6: Flow Control Lecture 6: Flow Control 1 / 28 Relational Expressions Conditions in if

Lecture 6: Flow Control Lecture 6: Flow Control 1 / 28 Relational Expressions Conditions in if statements use expressions that are conceptually either true or false . These expressions are called relational expressions or Boolean expressions

570 views • 28 slides

More recommend