Intel Corporation
COMPILER-DIRECTED SELECTION OF OBJECTS FOR CAPABILITY PROTECTION

Abstract:

Techniques for capability-based access control and selection of memory objects for capability protection in a compiler are disclosed. The compiler includes an analyzer to analyze a request to allocate a memory object, identify all accesses to the memory object; and for an access to the memory object, determine whether the access is potentially unsafe; and a code generator to generate code to invoke a capability-enabled allocation routine when the access is potentially unsafe and to generate code to invoke an unchecked allocation routine when the assess is not potentially unsafe.