Author:
Abate Carmine,Blanco Roberto,Ciobâcă Ștefan,Durier Adrien,Garg Deepak,Hrițcu Cătălin,Patrignani Marco,Tanter Éric,Thibault Jérémy
Abstract
AbstractCompiler correctness is, in its simplest form, defined as the inclusion of the set of traces of the compiled program into the set of traces of the original program, which is equivalent to the preservation of all trace properties. Here traces collect, for instance, the externally observable events of each execution. This definition requires, however, the set of traces of the source and target languages to be exactly the same, which is not the case when the languages are far apart or when observations are fine-grained. To overcome this issue, we study a generalized compiler correctness definition, which uses source and target traces drawn from potentially different sets and connected by an arbitrary relation. We set out to understand what guarantees this generalized compiler correctness definition gives us when instantiated with a non-trivial relation on traces. When this trace relation is not equality, it is no longer possible to preserve the trace properties of the source program unchanged. Instead, we provide a generic characterization of the target trace property ensured by correctly compiling a program that satisfies a given source property, and dually, of the source trace property one is required to show in order to obtain a certain target property for the compiled code. We show that this view on compiler correctness can naturally account for undefined behavior, resource exhaustion, different source and target values, side-channels, and various abstraction mismatches. Finally, we show that the same generalization also applies to many secure compilation definitions, which characterize the protection of a compiled program against linked adversarial code.
Publisher
Springer International Publishing
Reference64 articles.
1. M. Abadi, A. Banerjee, N. Heintze, and J. G. Riecke. A core calculus of dependency. POPL, 1999.
2. C. Abate, R. Blanco, D. Garg, C. Hriţcu, M. Patrignani, and J. Thibault. Journey beyond full abstraction: Exploring robust property preservation for secure compilation. CSF, 2019.
3. A. Ahmed, D. Garg, C. Hriţcu, and F. Piessens. Secure compilation (Dagstuhl Seminar 18201). Dagstuhl Reports, 8(5), 2018.
4. A. Anand, A. Appel, G. Morrisett, Z. Paraskevopoulou, R. Pollack, O. S. Belanger, M. Sozeau, and M. Weaver. CertiCoq: A verified compiler for Coq. CoqPL Workshop, 2017.
5. K. Backhouse and R. Backhouse. Safety of abstract interpretations for free, via logical relations and Galois connections. Science of Computer Programming, 51(1–2), 2004.
Cited by
8 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. SecurePtrs: Proving Secure Compilation with Data-Flow Back-Translation and Turn-Taking Simulation;2022 IEEE 35th Computer Security Foundations Symposium (CSF);2022-08
2. Towards effective preservation of robust safety properties;Proceedings of the 37th ACM/SIGAPP Symposium on Applied Computing;2022-04-25
3. An Extended Account of Trace-relating Compiler Correctness and Secure Compilation;ACM Transactions on Programming Languages and Systems;2021-12-31
4. Exorcising Spectres with Secure Compilers;Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security;2021-11-12
5. Securing Interruptible Enclaved Execution on Small Microprocessors;ACM Transactions on Programming Languages and Systems;2021-09-30