作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2012, Vol. 38 ›› Issue (06): 43-46. doi: 10.3969/j.issn.1000-3428.2012.06.014

• 软件技术与数据库 • 上一篇    下一篇

CoSy C语言编译器安全性研究

王少培 1,吴 健 1,阮 园 2   

  1. (1. 西北工业大学计算机学院,西安 710072;2. 中国电子科技集团公司第五十八研究所,江苏 无锡 214035)
  • 收稿日期:2011-08-02 出版日期:2012-03-20 发布日期:2012-03-20
  • 作者简介:王少培(1986-),女,硕士,主研方向:CoSy编译器,软件工程;吴 健,教授;阮 园,高级工程师
  • 基金资助:
    “核高基”重大专项“面向终端应用的高性能、低功耗嵌入式DSP”(2009ZX01034-001-002-003)

Research on CoSy C Compiler Security

WANG Shao-pei 1, WU Jian 1, RUAN Yuan 2   

  1. (1. College of Computer, Northwestern Polytechnical University, Xi’an 710072, China; 2. No.58 Research Institute of China Electronics Technology Group Corporation, Wuxi 214035, China)
  • Received:2011-08-02 Online:2012-03-20 Published:2012-03-20

摘要: 为验证CoSy编译器的安全性,并确定不安全因素大致出现的位置,提出一种通过控制流图的同构对比判定CoSy编译器是否安全的方法。该方法生成源程序的控制流图以及CoSy中级中间表示的控制流图后,生成由CoSy编译器产生的目标汇编码的控制流图,根据控制流图同构算法,判断控制流图是否同构,由此确定CoSy编译器的不安全因素发生在编译器的前端还是后端。实验结果表明,该方法能有效验证编译器的安全性。

关键词: 编译器安全性, 中间表示, 控制流图, CoSy编译器, 同构图, 不安全因素范围

Abstract: In order to validate the security of CoSy compiler, and roughly determine the location of the insecure factors, this paper puts forwards a method making use of control flow graph isomorphism comparison to estimate the security of CoSy compiler. After creating the control flow graphs of C program and Common CoSy medium-level intermediate representation with the method, the control flow graph of object assembler produced by CoSy compiler is generated, and estimates whether the control flow graphs are isomorphic, which determines the insecure factors are in front-end or back-end of CoSy compiler, according to isomorphism algorithm. Experimental result indicates that the method can satisfactorily validate the security of the compiler.

Key words: compiler security, intermediate representation, control flow graph, CoSy compiler, isomorphic graph, bound of insecure factors

中图分类号: