Certified Parsing of Dependent Regular Grammars

2022 IEEE Security and Privacy Workshops (SPW) Pub Date : 2022-05-01 DOI:10.1109/spw54247.2022.9833893

J. Sarracino, Gang Tan, Greg Morrisett

{"title":"Certified Parsing of Dependent Regular Grammars","authors":"J. Sarracino, Gang Tan, Greg Morrisett","doi":"10.1109/spw54247.2022.9833893","DOIUrl":null,"url":null,"abstract":"Parsers are ubiquitous, but formal reasoning about the behavior of a parser is challenging. One key challenge is parsing dependent formats, which are difficult for traditional techniques to handle because parse values can influence future parsing behavior. We present dependent regular grammars, which extend regular languages with data-dependency by generalizing concatenation to monadic bind. Even this small tweak adds significant expressive power; for example, conditional parsing and dependent repetition are both implementable using monadic bind.However, it is not obvious how to actually parse dependent regular grammars. We implement a Brzozowski derivative based matching algorithm, and we show how many popular parser combinator functions can be implemented in our library while retaining the same simplicity as traditional parser combinators.We implement and formalize these grammars in Coq, as well as a derivative-based matching algorithm. We prove soundness and completeness of the derivative operator in the standard way. We also implement a variety of popular parser combinator functions and give formal specifications to them. Finally, we implement as a case study a verified netstring parser, and prove functional correctness of the parser.","PeriodicalId":334852,"journal":{"name":"2022 IEEE Security and Privacy Workshops (SPW)","volume":"69 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE Security and Privacy Workshops (SPW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/spw54247.2022.9833893","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Parsers are ubiquitous, but formal reasoning about the behavior of a parser is challenging. One key challenge is parsing dependent formats, which are difficult for traditional techniques to handle because parse values can influence future parsing behavior. We present dependent regular grammars, which extend regular languages with data-dependency by generalizing concatenation to monadic bind. Even this small tweak adds significant expressive power; for example, conditional parsing and dependent repetition are both implementable using monadic bind.However, it is not obvious how to actually parse dependent regular grammars. We implement a Brzozowski derivative based matching algorithm, and we show how many popular parser combinator functions can be implemented in our library while retaining the same simplicity as traditional parser combinators.We implement and formalize these grammars in Coq, as well as a derivative-based matching algorithm. We prove soundness and completeness of the derivative operator in the standard way. We also implement a variety of popular parser combinator functions and give formal specifications to them. Finally, we implement as a case study a verified netstring parser, and prove functional correctness of the parser.

查看原文本刊更多论文

依赖规则语法的认证解析

解析器无处不在，但是关于解析器行为的正式推理是具有挑战性的。一个关键的挑战是解析依赖格式，这对于传统技术来说很难处理，因为解析值会影响未来的解析行为。我们提出了依赖规则语法，它通过将连接推广到一元绑定来扩展具有数据依赖性的规则语言。即使是这个小小的调整也增加了显著的表现力;例如，条件解析和依赖重复都可以使用一元绑定实现。然而，如何真正解析依赖的规则语法并不明显。我们实现了一个基于Brzozowski导数的匹配算法，并展示了有多少流行的解析器组合子函数可以在我们的库中实现，同时保持与传统解析器组合子相同的简单性。我们在Coq中实现并形式化了这些语法，以及基于导数的匹配算法。我们用标准方法证明了导数算子的完备性和完全性。我们还实现了各种流行的解析器组合子函数，并给出了它们的正式规范。最后，我们实现了一个经过验证的netstring解析器作为案例研究，并证明了解析器的功能正确性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 IEEE Security and Privacy Workshops (SPW)

自引率

0.00%

发文量