SI110: Programs Part 1

"Cyber Space" consists of digital information, physical machines and programs ... and people, depending on how you want to look at it. Of the non-human elements, programs are the most important to understand in order to get a handle on cyber security/warfare. This doesn't mean you need to be a programmer (though to be a true technical practitioner of cyber security you do), but you need some understanding of what programs are and the basics of how they work. In this lesson, that's what we'll start to do.

What are programs? What are programming languages? What is Javascript?

The word program means lots of things in the context of computing. In previous classes, we described a program as a file that contains instructions for the computer in its native language of 1's and 0's. We might call that a Program with a capital "P" to clarify. Almost nobody writes this kind of program. Instead, we write programs in a programming language, which is a set of commands that can be automatically turned in to a Program (capital "P"). Programming languages should be easier for humans to use than the physical machine's native language of 0's and 1's.

Javascript is a programming language that's primarily used in web pages. This aspect of the language is something we'll look more closely at later. You'll hear Javascript referred to as a "scripting language" and its programs called "scripts". A Program (capital "P") is said to "run on the machine". Javascript programs are not meant to run on a physical machine, but instead to "run on the browser", which itself is a Program running on the physical machine. This kind of "program running within a program", which is actually extremely common, is often referred to as a script.

Expressions: Type, Value and Basic Operations

A calculator is interactive. You enter a mathematical expression, press =, and you get the value of the expression. Most programs don't work that way. The commands that make up the program are all written ahead of time in some file, and then the program executes all at once. Some kinds of programming languages must work that way. They are called compiled languages. Other languages are interpreted, which means that they can be evaluated interactively one command at a time, although that's still not the way it's usually done. Javascript is interpreted, and we have an interpreter below that allows you to enter Javascript a single expression or statement at a time, just like a calculator. Using the language interactively like this is a great way to learn.

Numbers, Expressions, Variables If you enter an expression in the input box to the right, the interpreter will evaluate the expression and write its value in the box below.

Numbers: The simplest expression is a number. It evaluates to itself. Try this: input 58 and press enter. Not exciting, but it shows that 58 evaluates to 58. There are lots of arithmetic operations available, so you can enter complex mathematical expressions and the interpreter will evaluate them for you.
basic arithmetic: +, -, *, / (the usual order of operations apply!) [note: % is the "remainder" operator]
math functions:, Math.sin( ), Math.cos( ), Math.log( ), Math.exp( ), Math.sqrt( ), Math.floor( ), etc.
math constants: Math.PI, Math.E, etc.
Check out this complete reference of Math functions and constants.
Question: What is the value of the expression
```
Math.sqrt(Math.PI*3*3)
```
which, by the way, computes the side length for a square whose area is the same as a circle of radius 3.
Variables: Javascript lets you define variables, which are simply names that point to values. Once a name is declared as a variable, that name evaluates to the value it points to.

declare name x as a variable: var x;

assign name x a value: x = Math.sqrt(17);

evaluate name x to get its value: x

Usually, we declare and assign simultaneously, e.g. var x = Math.sqrt(17);.
Enter the following statements in turn.
```
var r = 0.25;
cost;
var cost = 57.99;
cost = cost*(1 - r);
cost = cost*(1 - r);
```
You've just calculated how much a $57.99 item would cost with 25% off of a price already reduced by 25%.
Note: = is assignment, not equality, which is why x = x + 1; makes sense.
What's with the ';'? The ; is used to terminate statements. Statements are actions for the interpreter to perform. The action may be nothing more than evaluating an expression, but sometimes, like when we declare a variable with var, there's no expression — just an action to perform. Javascript is pretty flexible about whether or not you use ;'s, but better to just terminate every command with one. BTW: you can put several statements on one line, e.g.
```
var r = 0.25; var cost = 57.99; cost = cost*(1 - r);
```
Guess what — there are only seconds until 2017's graduation! Use the Javascript interpreter to figure the time to graduation as the number of weeks, days, hours, minutes, seconds. Note: the % operator, which gives remainder, is really useful! For example, to start things off, if there are T seconds until graduation, then calculating s = T % 60; h = (T - s)/60;, there are h hours and s seconds.

Strings

Javascript has more types of values than just Number. Another value type in Javascript is String. Strings are used to represent sequences of characters. A string literal, analogous to a number literal like 76, is anything starting or ending with the " "s or ' 's. So, "hello world!" and 'hello world!' are both string literals. I cannot overestimate the importance in this course, in cyber security and in life of strings! Here are some things to know about strings in Javascript.

http://xkcd.com/234/

Variables: strings can be assigned to variables just like numbers. Try this: var s = "the"; s;
Escaping: Writing the string can't is easy with " "s, but not with ' 's. Try entering 'can't' in the interpreter and see what the problem is. Conversely, a string like the "it" is not important is easy to write with ' 's but not with " "s. What about the string:
```
I didn't say "hello" to you!
```
How could I set a variable equal to such a string? Inside a " "-delimited string, the " character has a special meaning, putting a \ character in front of it "escapes" that special meaning. Same thing works for a ' '-delimited string. Thus either of these two statements
```
var s1 = "I didn't say \"hello\" to you!";
var s2 = 'I didn\'t say "hello" to you!';
```
are OK. Of course this begs the question" "How do I write a \ character?" The answer is, escape it!
```
var s3 = "You can put \\ in a string!";
```
I recommend putting all of those in the interpreter and seeing what values the variables get.
+ for concatenation: When used with strings, the "+" operator is not addition, it is concatenation, i.e. it "glues" together the two strings, in order, to form a single new string. So, for example, "man" + "age" evaluates to "manage". The + operator works this way regardless of whether we have literal strings or variables that refer to strings. So, for example, if var x = "man" and var y = "age", then x + y evaluates to "manage". Don't forget: with strings, + means concatenation, not addition.
subscripting: If you want to pick out a character from a string at a certain position, you can do it by "subscripting". We specify the positions of characters within a string by a number we call an index. The trick is that index 0 corresponds to the first character in a string, which may be counter-intuitive. The syntax is string[index]. So, if var x = "hard", the expression x[0] evaluates to h, the expressions x[1] evaluates to a, etc.
the empty string: Although it won't seem useful yet, you can specify a string with no characters as "" or ''.
.length: You can put a .length at the end of a string to create an expression that evaluates to a string's length. So, for example, "hard".length evaluates to 4.
ASCII values: We know that characters are represented inside the computer as bytes via the ASCII table. In other words, each character has a number (via ASCII) that represents it. Not all numbers represent characters, but numbers between 32 and 127 do. We can go back and forth between characters and ASCII numbers in Javascript. Here's how:
- character-to-ASCII-number: string.charCodeAt(index) Example: "hard".charCodeAt(0) yields 104, because 104 is the ASCII value of the character h.
- ASCII-number-to-character: String.fromCharCode(number) Example: String.fromCharCode(104); yields "h"
Substrings: We can generate a string that is a smaller piece of another string by using .substr(s,n). The s is the start of the substring and n is the number of characters to include. So
```
"Long string".substr(2,4);
```
yields
```
"ng s"
```

The Best Jobs Need Programming
Five of the top 10 jobs in 2012 U.S. News & World Report's "25 Best Jobs" list require programming skilz!

Software Developer (#2)
Database Administrator (#5)
Web Developer (#6)
Computer Systems Analyst (#7)
Computer Programmer (#9)

Types, `typeof`, and type conversions

We now know two types that a value can have, Number and String. There are other types (Boolean, Function and Object), though they'll be less relevant to us given the small amount we do with Javascript. Javascript has a special operator, typeof, that can be used to determine the type of a value. For example, typeof(7) → Number, and typeof("foo") → String. We can call typeof for any expression. You might ask what kind of value typeof returns. Here's how to find out: enter typeof(typeof(4)) into the interpreter. So now you know, typeof returns a String that gives the name of the type.

Here's some interesting ones to try:

typeof(7+5);
typeof("7"+"5");
typeof(7*"5");
typeof(7+"5");

What's going on here? Javascript automatically converts numbers to strings and strings to numbers when it deems it to be necessary. If an arithmetic expression involves strings and any operation other than +, Javascript will convert the string to a number. Because the + operation means something special to strings, Javascript won't convert strings to numbers in that case. In fact, if you mix strings and numbers in a + expression, the numbers get converted to strings, which the last of the above examples demonstrates. This kind of type conversion that happens automatically behind the scenes is called an implicit conversion. There are explicit conversions too. If you wrap a string in Number( ) the interpreter attempts to convert the string to a number. For example, try 3 + Number("7") and compare what you get to 3 + "7". Similarly, if you wrap a number in String( ) the interpreter attempts to convert the number to string. For example, try typeof(String(365)).

To say a word about the three other types:

boolean — these are true/false values. They're used to make decisions within a program, and you'll see more of them later.
functions — Javascript commands like Math.sqrt( ) are examples of functions. Programmers can define their own functions as well as use the extensive library of built-in functions like the Math functions we've already seen.
objects — we really won't get into this, but objects pack several pieces of data into a single ... well, "object".

What are programs? What are programming languages? What is Javascript?

Expressions: Type, Value and Basic Operations

Strings

Types, typeof, and type conversions

Types, `typeof`, and type conversions