Sandboxed execution of C and other unsafe languages on the Java virtual machine
Sprache des Vortragstitels:
Englisch
Original Tagungtitel:
Programming'18 Companion Conference Companion of the 2nd International Conference on Art, Science, and Engineering of Programming
Sprache des Tagungstitel:
Englisch
Original Kurzfassung:
Sulong is a system that tackles buffer overflows and other low-level errors in languages like C by automatically checking them and aborting execution if an error is detected. Supporting unstandardized elements such as inline assembly and compiler builtins is a challenge, which we have addressed by investigating their usage in a large number of open-source programs. Finally, we have devised an introspection mechanism, for which Sulong exposes metadata such as bounds, which library writers can use to increase the robustness of their libraries.