EunChong Lee, profile picture
Uploaded byEunChong Lee
36 views

V8 자바스크립트 메모리 할당 분석 도구 jsmtrace

V8 자바스크립트 메모리 할당 분석 도구 jsmtrace

Embed presentation

Download to read offline
V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Background - ê§lΩ∏X T®¨ Ñ )ï • Binary Instrument Tools (LLVM, Vargrind, PIN ... ) I ¡ ⌅¯®– ƒ! T‹| ΩÖXÏ ‰â⌘x T®¨X PÑD Ñ . (Source from https://cug.org/proceedings/cug2014_proceedings/includes/files/pap114.pdf) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Limitation - in Javascript Engine • Binary Instrument Tools (LLVM[1], Vargrind[3], PIN ... ) I ê§lΩ∏ ‘ƒX ‰â ¸ . • ê§lΩ∏î Adaptive JIT )›< ⌘⌅∏¥| ¨© T ¸ D pX‡, î ⌧ t∏T‹X ¸å ê§lΩ∏ |xD L0 ¥$¿. (Source from https://github.com/v8/v8/wiki/Interpreter) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Research Objective - ê§lΩ∏ T®¨ î ‹§ • l © I ê§lΩ∏ XΩ– i T®¨ î Ñ ‹§ 1. t∏T‹(⌘⌅∏¥) ‹X ‰â Ù| ê§lΩ∏ |x ‰â Ù ¿X. 2. ê§lΩ∏ |x–⌧X T®¨ `˘,t⌧,}0,0 Ù î 3. ‰⌧ XΩ– © • ‰â 1•X UÙ. Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable - ê§lΩ∏ T‹ ⌅X –… 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - ê§lΩ∏ T‹ ⌅X –… • 0 0Ω - ê§lΩ∏ T‹ ⌅X • Lt[5], SourcePositionTable I ⌘⌅∏¥(IR) ¿X ˃–⌧ ê§lΩ∏ |xX ⌅X| Lt– •h. (Source from https://github.com/v8/v8/wiki/Interpreter) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - ê§lΩ∏ T‹ ⌅X –… • JSMTrace - t∏T‹ ¿X ‹⇣–⌧ SourcePositionTable ⌅Ï. I ⌘⌅∏¥(IR) ¿X ˃–⌧ SourcePositionTable Ù| JSMTrace ⌅Ï. (Source from https://github.com/v8/v8/wiki/Interpreter) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory - Æ@ $щ‹X î )ï • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX T®¨ î 0ï I ASan@ ‰x ƒl‰– Dt T®¨ –Ï Äú–⌧ `x 1•D –. (Source from https://github.com/google/sanitizers/wiki/AddressSanitizerComparisonOfMemoryTools) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX uÏ L‡¨ò I T®¨X ¡‹| ò¿¥î Shadow Memory Ì `˘h. (Source from http://research.google.com/pubs/pub37752.html) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX uÏ L‡¨ò I T®¨X ÌX ¿T ⌧›Xt, Shadow Memory– ¡‹ ✓‰D ‹h. (Source from https://github.com/google/sanitizers/wiki/AddressSanitizerExampleUseAfterFree) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX uÏ L‡¨ò I T®¨ ⌘¸‹ MEM TO SHADOW ¡‹ Ux, O(1) 1•. (Source from https://github.com/llvm-mirror/compiler-rt/blob/master/lib/asan/asan_mapping.h#L319) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory - JSMTraceX $щ‹ Ë∏d • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - JSMTraceX î L‡¨ò I T®¨ ¨© î D ⌅ MTrace Shadow Memory `˘. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - JSMTraceX î L‡¨ò I T®¨ `˘t ⌧›Xt, PoisonMIdShadow| µt `˘ Ì– T®¨ `˘ ‡ à8 mallocId| ‹h, O(1) 1•. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Technical Background - Æ@ $щ‹X î )ï • 0 0Ω - JSMTraceX î L‡¨ò I T®¨ ⌘¸t ⌧›Xt, t˘Xî ÌX `˘ ‡ à8 mallocId| 8@ ú%h, O(1) 1•. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Experiment - ‰ÿ XΩ lï • ‰ÿ XΩ - §X»l ƒl| © 1• ‰ÿ¸, T®¨ î Ñ ‰ÿ I |0 ¨©, |0 ⌧p Ñ⌅X 1• ‰ÿ¸ ê§lΩ∏ |xƒ, `˘ ¯˘ƒ T®¨ î Ñ ‰ÿ. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Experiment - 1• ‰ÿ 1 • 1• ‰ÿ ∞¸ 1 - | 0 ⌧p Ñ⌅ I | 0 ⌧p Ñ⌅@, …‡ 1.2xX $щ‹| ÙÏ . T®¨X ¨©t Œ@ pdfjs.js–⌧ DP Œ@ $щ‹ ⌧›h. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Experiment - 1• ‰ÿ 2 • 1• ‰ÿ ∞¸ 2 - | 0 ¨© Ñ⌅ I | 0 ¨© Ñ⌅@, …‡ 3.1xX $щ‹| ÙÏ . T®¨X ¨©t Œ@ pdfjs.js–⌧ Ì‹ DP Œ@ $щ‹ ⌧›X ‡, ⌅¥ < | 0 ⌧p Ñ⌅Ù‰ 1• $щ‹ ⌧›h. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Experiment - Ñ ‰ÿ 1 • Ñ ‰ÿ ∞¸ 1 - ê§lΩ∏ |xƒ T®¨ Ñ I T®¨X ¨© î pt0| ê§lΩ∏ |xƒ ¸ < ‹ T Ñ ∞¸. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Experiment - Ñ ‰ÿ 2 • Ñ ‰ÿ ∞¸ 2 - ê§lΩ∏ T®¨ `˘ ¯˘ Ñ I T®¨X ¨© î pt0| T®¨ `˘ ‡ Dtƒ ¯˘TXÏ ‹ ‹ T Ñ ∞¸. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Agenda • Background • Limitation - in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Conclusion • V8 ê§lΩ∏–⌧ T®¨| î XÏ Ñ Xî ƒl| l⌅. • V8’s SourcePositionTable - ê§lΩ∏ |xX Symbol ı– • ASan’s Shadow Memory - T®¨ `˘ Ì î 1• T. • 1• ‰ÿ, ll §X»l ƒl Octane–⌧ | 0 ⌧p, | 0 ¨© . I …‡ 1.2x, 3.1xX î $щ‹ ⌧›. • Ñ ‰ÿ, ê§lΩ∏ |xƒ, `˘ ¯˘ƒ T®¨ Ñ . I Ñ ‰ÿD µt ê§lΩ∏–⌧ ⌧›Xî T®¨ ¿T| ‹ < ¸ ⇠ ໇, T®¨X `˘¸ ¨© ¯¨‡ åx ¸0ƒ – ¸⇠ à»L. • •ƒ Ë}⇣ êŸ Ñ Ñ|–⌧X ©. I JSMTrace–⌧X ê§lΩ∏ T®¨ î pt0| 0⇠<, •ƒ Fuzzing¸ Symbolic Execution Ñ|–⌧ T± ®¸ x êŸ Ë}⇣ Ñ t tË¥ » ⇠ àDp| 0 h. Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Reference 1. K. Serebryany, D. Bruening, A. Potapenko, and D. Vyukov. Addresssanitizer: a fast address sanity checker. In Presented as part of the 2012 USENIX Annual Technical Conference (USENIX ATC 12), pages 309–318, 2012. 2. B. Hackett and S.-y. Guo. Fast and precise hybrid type inference for javascript. ACM SIGPLAN Notices, 47(6):239–250, 2012. 3. N. Nethercote and J. Seward. Valgrind: a framework for heavyweight dynamic binary instrumentation. In ACM Sigplan notices, volume 42, pages 89–100. ACM, 2007. 4. C. Lattner. Llvm ir, 2015. Available online at http://www.aosabook.org/en/llvm.html. 5. R. McIlroy. Firing up the ignition interpreter, 2015. Available online at http://v8project.blogspot.kr/2016/08/firing-up-ignition-interpreter.html. 6. L. Bak. What is v8?, 2008. Available online at https://developers.google.com/v8. Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
Thank you ! Eunchong Lee (Email: gr4ce@korea.ac.kr ) Signal Processing and Advanced Intelligence (SPAI) Web: https://sites.google.com/site/securesiplab/ Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l

More Related Content

PDF
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
byOECD Directorate for Financial and Enterprise Affairs
 
PDF
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
bySocialHRCamp
 
PDF
Storytelling For The Web: Integrate Storytelling in your Design Process
byChiara Aliotta
 
PDF
2024 State of Marketing Report – by Hubspot
byMarius Sescu
 
PDF
2024 Trend Updates: What Really Works In SEO & Content Marketing
bySearch Engine Journal
 
PDF
Everything You Need To Know About ChatGPT
byExpeed Software
 
PDF
Product Design Trends in 2024 | Teenage Engineerings
byPixeldarts
 
PPTX
Ruby 스터디
byEunChong Lee
 
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
byOECD Directorate for Financial and Enterprise Affairs
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
bySocialHRCamp
 
Storytelling For The Web: Integrate Storytelling in your Design Process
byChiara Aliotta
 
2024 State of Marketing Report – by Hubspot
byMarius Sescu
 
2024 Trend Updates: What Really Works In SEO & Content Marketing
bySearch Engine Journal
 
Everything You Need To Know About ChatGPT
byExpeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
byPixeldarts
 
Ruby 스터디
byEunChong Lee
 

Recently uploaded

PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PDF
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PDF
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
Antminer S23Hyd-580_Manual-V1.1-oneminers.pdf
byFranzhLawrenceBataan1
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PDF
Towards a Vibrant AI Hardware Accelerator Ecosystem, invited talk at the 4th ...
byMichiaki Tatsubori
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PPTX
PPTX game guess the logo with a twistppt
byAdrianAnig
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
Antminer S23Hyd-580_Manual-V1.1-oneminers.pdf
byFranzhLawrenceBataan1
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
Towards a Vibrant AI Hardware Accelerator Ecosystem, invited talk at the 4th ...
byMichiaki Tatsubori
 
Workflow and decision Automation with Flowable
bychakib ch
 
PPTX game guess the logo with a twistppt
byAdrianAnig
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 

Featured

PDF
How Race, Age and Gender Shape Attitudes Towards Mental Health
byThinkNow
 
PDF
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
bymarketingartwork
 
PDF
Skeleton Culture Code
bySkeleton Technologies
 
PDF
PEPSICO Presentation to CAGNY Conference Feb 2024
byNeil Kimberley
 
PDF
Content Methodology: A Best Practices Report (Webinar)
bycontently
 
PPTX
How to Prepare For a Successful Job Search for 2024
byAlbert Qian
 
PDF
Social Media Marketing Trends 2024 // The Global Indie Insights
byKurio // The Social Media Age(ncy)
 
PDF
Trends In Paid Search: Navigating The Digital Landscape In 2024
bySearch Engine Journal
 
PDF
5 Public speaking tips from TED - Visualized summary
bySpeakerHub
 
PDF
ChatGPT and the Future of Work - Clark Boyd
byClark Boyd
 
PDF
Getting into the tech field. what next
byTessa Mero
 
PDF
Google's Just Not That Into You: Understanding Core Updates & Search Intent
byLily Ray
 
PDF
How to have difficult conversations
byRajiv Jayarajah, MAppComm, ACC
 
PDF
Introduction to Data Science
byChristy Abraham Joy
 
PDF
Time Management & Productivity - Best Practices
byVit Horky
 
PDF
The six step guide to practical project management
byMindGenius
 
PDF
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
byRachelPearson36
 
PDF
Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...
byApplitools
 
PDF
12 Ways to Increase Your Influence at Work
byGetSmarter
 
PDF
ChatGPT webinar slides
byAlireza Esmikhani
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
byThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
bymarketingartwork
 
Skeleton Culture Code
bySkeleton Technologies
 
PEPSICO Presentation to CAGNY Conference Feb 2024
byNeil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
bycontently
 
How to Prepare For a Successful Job Search for 2024
byAlbert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
byKurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
bySearch Engine Journal
 
5 Public speaking tips from TED - Visualized summary
bySpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
byClark Boyd
 
Getting into the tech field. what next
byTessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
byLily Ray
 
How to have difficult conversations
byRajiv Jayarajah, MAppComm, ACC
 
Introduction to Data Science
byChristy Abraham Joy
 
Time Management & Productivity - Best Practices
byVit Horky
 
The six step guide to practical project management
byMindGenius
 
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
byRachelPearson36
 
Unlocking the Power of ChatGPT and AI in Testing - A Real-World Look, present...
byApplitools
 
12 Ways to Increase Your Influence at Work
byGetSmarter
 
ChatGPT webinar slides
byAlireza Esmikhani
 

V8 자바스크립트 메모리 할당 분석 도구 jsmtrace

  • 1.
    V8 ê§lΩ∏ ‘ƒ–⌧XŸ T®¨ î ‹§ l Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/
  • 2.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 3.
    Background - ê§lΩ∏XT®¨ Ñ )ï • Binary Instrument Tools (LLVM, Vargrind, PIN ... ) I ¡ ⌅¯®– ƒ! T‹| ΩÖXÏ ‰â⌘x T®¨X PÑD Ñ . (Source from https://cug.org/proceedings/cug2014_proceedings/includes/files/pap114.pdf) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 4.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 5.
    Limitation - inJavascript Engine • Binary Instrument Tools (LLVM[1], Vargrind[3], PIN ... ) I ê§lΩ∏ ‘ƒX ‰â ¸ . • ê§lΩ∏î Adaptive JIT )›< ⌘⌅∏¥| ¨© T ¸ D pX‡, î ⌧ t∏T‹X ¸å ê§lΩ∏ |xD L0 ¥$¿. (Source from https://github.com/v8/v8/wiki/Interpreter) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 6.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 7.
    Research Objective -ê§lΩ∏ T®¨ î ‹§ • l © I ê§lΩ∏ XΩ– i T®¨ î Ñ ‹§ 1. t∏T‹(⌘⌅∏¥) ‹X ‰â Ù| ê§lΩ∏ |x ‰â Ù ¿X. 2. ê§lΩ∏ |x–⌧X T®¨ `˘,t⌧,}0,0 Ù î 3. ‰⌧ XΩ– © • ‰â 1•X UÙ. Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 8.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable - ê§lΩ∏ T‹ ⌅X –… 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 9.
    Technical Background -ê§lΩ∏ T‹ ⌅X –… • 0 0Ω - ê§lΩ∏ T‹ ⌅X • Lt[5], SourcePositionTable I ⌘⌅∏¥(IR) ¿X ˃–⌧ ê§lΩ∏ |xX ⌅X| Lt– •h. (Source from https://github.com/v8/v8/wiki/Interpreter) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 10.
    Technical Background -ê§lΩ∏ T‹ ⌅X –… • JSMTrace - t∏T‹ ¿X ‹⇣–⌧ SourcePositionTable ⌅Ï. I ⌘⌅∏¥(IR) ¿X ˃–⌧ SourcePositionTable Ù| JSMTrace ⌅Ï. (Source from https://github.com/v8/v8/wiki/Interpreter) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 11.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory - Æ@ $щ‹X î )ï • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 12.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX T®¨ î 0ï I ASan@ ‰x ƒl‰– Dt T®¨ –Ï Äú–⌧ `x 1•D –. (Source from https://github.com/google/sanitizers/wiki/AddressSanitizerComparisonOfMemoryTools) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 13.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX uÏ L‡¨ò I T®¨X ¡‹| ò¿¥î Shadow Memory Ì `˘h. (Source from http://research.google.com/pubs/pub37752.html) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 14.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX uÏ L‡¨ò I T®¨X ÌX ¿T ⌧›Xt, Shadow Memory– ¡‹ ✓‰D ‹h. (Source from https://github.com/google/sanitizers/wiki/AddressSanitizerExampleUseAfterFree) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 15.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - LLVM’s ASanX uÏ L‡¨ò I T®¨ ⌘¸‹ MEM TO SHADOW ¡‹ Ux, O(1) 1•. (Source from https://github.com/llvm-mirror/compiler-rt/blob/master/lib/asan/asan_mapping.h#L319) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 16.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory - JSMTraceX $щ‹ Ë∏d • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 17.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - JSMTraceX î L‡¨ò I T®¨ ¨© î D ⌅ MTrace Shadow Memory `˘. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 18.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - JSMTraceX î L‡¨ò I T®¨ `˘t ⌧›Xt, PoisonMIdShadow| µt `˘ Ì– T®¨ `˘ ‡ à8 mallocId| ‹h, O(1) 1•. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 19.
    Technical Background -Æ@ $щ‹X î )ï • 0 0Ω - JSMTraceX î L‡¨ò I T®¨ ⌘¸t ⌧›Xt, t˘Xî ÌX `˘ ‡ à8 mallocId| 8@ ú%h, O(1) 1•. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 20.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 21.
    Experiment - ‰ÿXΩ lï • ‰ÿ XΩ - §X»l ƒl| © 1• ‰ÿ¸, T®¨ î Ñ ‰ÿ I |0 ¨©, |0 ⌧p Ñ⌅X 1• ‰ÿ¸ ê§lΩ∏ |xƒ, `˘ ¯˘ƒ T®¨ î Ñ ‰ÿ. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 22.
    Experiment - 1•‰ÿ 1 • 1• ‰ÿ ∞¸ 1 - | 0 ⌧p Ñ⌅ I | 0 ⌧p Ñ⌅@, …‡ 1.2xX $щ‹| ÙÏ . T®¨X ¨©t Œ@ pdfjs.js–⌧ DP Œ@ $щ‹ ⌧›h. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 23.
    Experiment - 1•‰ÿ 2 • 1• ‰ÿ ∞¸ 2 - | 0 ¨© Ñ⌅ I | 0 ¨© Ñ⌅@, …‡ 3.1xX $щ‹| ÙÏ . T®¨X ¨©t Œ@ pdfjs.js–⌧ Ì‹ DP Œ@ $щ‹ ⌧›X ‡, ⌅¥ < | 0 ⌧p Ñ⌅Ù‰ 1• $щ‹ ⌧›h. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 24.
    Experiment - щÿ 1 • Ñ ‰ÿ ∞¸ 1 - ê§lΩ∏ |xƒ T®¨ Ñ I T®¨X ¨© î pt0| ê§lΩ∏ |xƒ ¸ < ‹ T Ñ ∞¸. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 25.
    Experiment - щÿ 2 • Ñ ‰ÿ ∞¸ 2 - ê§lΩ∏ T®¨ `˘ ¯˘ Ñ I T®¨X ¨© î pt0| T®¨ `˘ ‡ Dtƒ ¯˘TXÏ ‹ ‹ T Ñ ∞¸. (Source from V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l) Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 26.
    Agenda • Background • Limitation- in Javascript Engine • Research Objective • Technical Background 1. V8’s SourcePositionTable 2. ASan’s Shadow Memory • Experiment • Conclusion • Reference • Q & A Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 27.
    Conclusion • V8 ê§lΩ∏–⌧T®¨| î XÏ Ñ Xî ƒl| l⌅. • V8’s SourcePositionTable - ê§lΩ∏ |xX Symbol ı– • ASan’s Shadow Memory - T®¨ `˘ Ì î 1• T. • 1• ‰ÿ, ll §X»l ƒl Octane–⌧ | 0 ⌧p, | 0 ¨© . I …‡ 1.2x, 3.1xX î $щ‹ ⌧›. • Ñ ‰ÿ, ê§lΩ∏ |xƒ, `˘ ¯˘ƒ T®¨ Ñ . I Ñ ‰ÿD µt ê§lΩ∏–⌧ ⌧›Xî T®¨ ¿T| ‹ < ¸ ⇠ ໇, T®¨X `˘¸ ¨© ¯¨‡ åx ¸0ƒ – ¸⇠ à»L. • •ƒ Ë}⇣ êŸ Ñ Ñ|–⌧X ©. I JSMTrace–⌧X ê§lΩ∏ T®¨ î pt0| 0⇠<, •ƒ Fuzzing¸ Symbolic Execution Ñ|–⌧ T± ®¸ x êŸ Ë}⇣ Ñ t tË¥ » ⇠ àDp| 0 h. Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 28.
    Reference 1. K. Serebryany,D. Bruening, A. Potapenko, and D. Vyukov. Addresssanitizer: a fast address sanity checker. In Presented as part of the 2012 USENIX Annual Technical Conference (USENIX ATC 12), pages 309–318, 2012. 2. B. Hackett and S.-y. Guo. Fast and precise hybrid type inference for javascript. ACM SIGPLAN Notices, 47(6):239–250, 2012. 3. N. Nethercote and J. Seward. Valgrind: a framework for heavyweight dynamic binary instrumentation. In ACM Sigplan notices, volume 42, pages 89–100. ACM, 2007. 4. C. Lattner. Llvm ir, 2015. Available online at http://www.aosabook.org/en/llvm.html. 5. R. McIlroy. Firing up the ignition interpreter, 2015. Available online at http://v8project.blogspot.kr/2016/08/firing-up-ignition-interpreter.html. 6. L. Bak. What is v8?, 2008. Available online at https://developers.google.com/v8. Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l
  • 29.
    Thank you ! EunchongLee (Email: gr4ce@korea.ac.kr ) Signal Processing and Advanced Intelligence (SPAI) Web: https://sites.google.com/site/securesiplab/ Eunchong Lee (Email: gr4ce@korea.ac.kr) CIST, Korea University Homepage : https://sites.google.com/site/securesiplab/ V8 ê§lΩ∏ ‘ƒ–⌧X Ÿ T®¨ î ‹§ l