DOCSLIB.ORG

Execution Model Enforcement Via Program Shepherding

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Execution Model Enforcement Via Program Shepherding Execution Model Enforcement Via Program Shepherding Vladimir Kiriansky, Derek Bruening, Saman Amarasinghe Laboratory for Computer Science Massachusetts Institute of Technology Cambridge, MA 02139 vlk,iye,saman ¡ @lcs.mit.edu Abstract no efficient way to require that the rules of this execution model Nearly all security attacks have one thing in common: they co- be adhered to. The result is that the execution model becomes, in erce the target program into performing actions that it was never practice, a convention rather than a strict set of rules. If this model intended to perform. In short, they violate the program’s execu- were enforced, and only program actions that the programmer in- tion model. The execution model encompasses the Application tended were allowed, a majority of current security holes would be Binary Interface (ABI), higher-level specifications from the pro- closed. For example, a common attack type overwrites a return ad- gram’s source programming language, and components specific to dress to point to a malicious destination. This destination is not a the program — for example, which values a particular function valid return target in the program’s execution model, and would be pointer may take. If this execution model were enforced, and only disallowed by enforcement of the model. program actions that the programmer intended were allowed, a ma- Most security attacks target data storing program addresses. It jority of current security holes would be closed. is unreasonable to try to stop all malevolent writes to memory con- In this paper, we employ program shepherding [26] to enforce taining program addresses, because addresses are stored in many a program’s execution model. Program shepherding monitors con- different places and are legitimately manipulated by the applica- trol flow in order to enforce a security policy. We use static and dy- tion, compiler, linker, and loader. Our model of security attacks namic analyses to automatically build a custom security policy for a assumes that an attacker is able to exploit program vulnerabilities target program which specifies the program’s execution model. We to gain random write access to arbitrary memory locations in the have implemented our analyses in the DynamoRIO [4, 5] runtime program address space. code modification system. The resulting system imposes minimal In this paper, we employ program shepherding [26] to enforce a or no performance overhead, operates on unmodified native bina- program’s execution model. Instead of attempting to protect data, ries, and requires no special hardware or operating system support. program shepherding monitors control flow in order to enforce a se- Our static analyses require source code access but not recompila- curity policy. We use static and dynamic analyses to automatically tion. The analysis process requires no user interaction, but is able build a custom security policy for a target program which specifies to build a strict enough policy to prevent all deviations from the the program’s execution model. This process requires no user in- program’s control flow graph and nearly all violations of the call- teraction, but is able to build a strict enough policy to prevent all ing convention, greatly reducing the possibility of an unintended deviations from the program’s control flow graph and nearly all vi- program action. olations of the calling convention, greatly reducing the possibility of an unintended program action. We have implemented our analyses in the DynamoRIO [4, 5] 1. INTRODUCTION runtime code modification system. DynamoRIO executes a pro- The greatest threat to our modern information infrastructure is gram through copies of its code stored in a cache. This code cache the remote exploitation of program vulnerabilities. The goal of is the key to efficient, secure execution, because it allows many se- most security attacks is to gain unauthorized access to a computer curity checks to be performed only once, when the code is copied system by taking control of a vulnerable privileged program. This to the cache. If the code cache is protected from malicious modi- is done by exploiting bugs that allow overwriting stored program fication, future executions of the trusted cached code proceed with addresses with pointers to malicious code. Today’s most prevalent no security overhead. A second key feature of DynamoRIO is the attacks target buffer overflow and format string vulnerabilities. creation of traces, hot streams of code that cross control flow tran- Nearly all attacks have one thing in common: they coerce the sitions. Security checks on transitions can be elided when execu- target program into performing actions that it was never intended tion follows the trace. These features result in a secure system that to perform. In short, they violate the execution model followed by imposes minimal or no performance overhead, operates on unmod- legitimate programs. The execution model encompasses the Appli- ified native binaries, and requires no special hardware or operating cation Binary Interface (ABI) and higher-level specifications from system support. Our static analyses require source code access but the program’s source programming language. The model also in- not recompilation. corporates components specific to the program, for example, which The contributions of this paper are as follows: values a particular function pointer may take. ¢ We demonstrate that enforcing a program’s execution model A program’s execution model is invariably narrower than that can thwart many security attacks; imposed by the underlying hardware. As such, there is typically ¢ We analyze features of the execution model that can be en- This research was supported in part by the Defense Advanced Re- forced with reasonable cost and those whose costs are unac- search Projects Agency under Grant F29601-01-2-0166. ceptable; ¢ We show how to incorporate static analyses to automatically them random write access to arbitrary addresses in the program ad- extract features of the program’s execution model such as its dress space. In most security attacks modifying data is simply the call graph; means to executing a sequence of instructions that will ultimately compromise the whole system. Attackers induce this by overwrit- ¢ We identify aspects of enforcement that can be performed ing a stored program address that will be used in an indirect control and further enhanced dynamically; transfer. ¢ We present two different schemes for verifying that the call- 2.2 Stored Program Addresses ing convention is followed; Security exploits can attack program addresses stored in many ¢ different places. Buffer overflow attacks target addresses adjacent We give experimental evidence that the execution model can to the vulnerable buffer. The classic return address attacks and local be enforced efficiently and effectively using a runtime code function pointer attacks exploit overflows of stack allocated buffers. modification system. Global data and heap buffer overflows also allow global function In Section 2 we classify the types of security exploits that we are pointer attacks and setjmp structure attacks. Data pointer buffer aiming to prevent. The execution model and how to enforce it is overflows, malloc overflow attacks, and %n format string attacks discussed in Section 3. Applying the enforcement policies using are able to modify any stored program address in the vulnerable program shepherding is described in Section 4, and our implemen- application — in addition to the aforementioned addresses, these tation is discussed in Section 5. We present experimental results attacks target entries in the atexit list, .dtors destructor rou- and the performance of our system in Section 6. We discuss related tines, and in the Global Offset Table (GOT) [14] of shared object work in Section 7 and conclude the paper in Section 8. entries. Program addresses are credibly manipulated by a number of en- tities. For example, dynamic loaders patch shared object functions; 2. SECURITY EXPLOITS dynamic linkers update relocation tables; and language runtime This section provides some background on the types of security systems modify dynamic dispatch tables. Generally, these program exploits we are targeting. We classify security exploits based on addresses are intermingled with and indistinguishable from data. three characteristics: the program vulnerability being exploited, the In such an environment, preventing a control transfer to malicious stored program address being overwritten, and the malicious code code by stopping illegitimate memory writes is next to impossible. that is then executed. It requires the cooperation of numerous trusted and untrusted en- tities that need to check many different conditions and understand 2.1 Program Vulnerabilities high-level semantics in a complex environment. The resulting pro- The two most-exploited classes of program bugs involve buffer tection is only as powerful as the weakest link. overflows and format strings. Buffer overflow vulnerabilities are present when a buffer with weak or no bounds checking is popu- 2.3 Malicious Code lated with user supplied data. A trivial example is unsafe use of Using the privileges of the application, an attacker can cause the C library functions strcpy or gets. This allows an attacker damage by executing newly injected malicious code or by mali- to corrupt adjacent structures containing program addresses, most ciously reusing already present code. Currently, the first approach often return addresses kept on the stack [9]. Buffer overflows af- is prevalently taken and attack code is implemented as new native fecting a regular data pointer can actually have a more disastrous code that is injected in the program address space as data [31]. effect by allowing a memory write to an arbitrary location on a sub- Modifying any stored program address to point to the introduced sequent use of that data pointer. One particular attack corrupts the code will trigger intrusion when that address is used for control fields of a double-linked free list kept in the headers of malloc transfer. In our previous work [26] we have presented a system allocation units [25].
Load more

Recommended publications
  • An Execution Model for Serverless Functions at the Edge
    An Execution Model for Serverless Functions at the Edge Adam Hall Umakishore Ramachandran Georgia Institute of Technology Georgia Institute of Technology Atlanta, Georgia Atlanta, Georgia ach@gatech:edu rama@gatech:edu ABSTRACT 1 INTRODUCTION Serverless computing platforms allow developers to host single- Enabling next generation technologies such as self-driving cars or purpose applications that automatically scale with demand. In con- smart cities via edge computing requires us to reconsider the way trast to traditional long-running applications on dedicated, virtu- we characterize and deploy the services supporting those technolo- alized, or container-based platforms, serverless applications are gies. Edge/fog environments consist of many micro data centers intended to be instantiated when called, execute a single function, spread throughout the edge of the network. This is in stark contrast and shut down when finished. State-of-the-art serverless platforms to the cloud, where we assume the notion of unlimited resources achieve these goals by creating a new container instance to host available in a few centralized data centers. These micro data center a function when it is called and destroying the container when it environments must support large numbers of Internet of Things completes. This design allows for cost and resource savings when (IoT) devices on limited hardware resources, processing the mas- hosting simple applications, such as those supporting IoT devices sive amounts of data those devices generate while providing quick at the edge of the network. However, the use of containers intro- decisions to inform their actions [44]. One solution to supporting duces some overhead which may be unsuitable for applications emerging technologies at the edge lies in serverless computing.
    [Show full text]
  • Toward IFVM Virtual Machine: a Model Driven IFML Interpretation
    Toward IFVM Virtual Machine: A Model Driven IFML Interpretation Sara Gotti and Samir Mbarki MISC Laboratory, Faculty of Sciences, Ibn Tofail University, BP 133, Kenitra, Morocco Keywords: Interaction Flow Modelling Language IFML, Model Execution, Unified Modeling Language (UML), IFML Execution, Model Driven Architecture MDA, Bytecode, Virtual Machine, Model Interpretation, Model Compilation, Platform Independent Model PIM, User Interfaces, Front End. Abstract: UML is the first international modeling language standardized since 1997. It aims at providing a standard way to visualize the design of a system, but it can't model the complex design of user interfaces and interactions. However, according to MDA approach, it is necessary to apply the concept of abstract models to user interfaces too. IFML is the OMG adopted (in March 2013) standard Interaction Flow Modeling Language designed for abstractly expressing the content, user interaction and control behaviour of the software applications front-end. IFML is a platform independent language, it has been designed with an executable semantic and it can be mapped easily into executable applications for various platforms and devices. In this article we present an approach to execute the IFML. We introduce a IFVM virtual machine which translate the IFML models into bytecode that will be interpreted by the java virtual machine. 1 INTRODUCTION a fundamental standard fUML (OMG, 2011), which is a subset of UML that contains the most relevant The software development has been affected by the part of class diagrams for modeling the data apparition of the MDA (OMG, 2015) approach. The structure and activity diagrams to specify system trend of the 21st century (BRAMBILLA et al., behavior; it contains all UML elements that are 2014) which has allowed developers to build their helpful for the execution of the models.
    [Show full text]
  • A Brief History of Just-In-Time Compilation
    A Brief History of Just-In-Time JOHN AYCOCK University of Calgary Software systems have been using “just-in-time” compilation (JIT) techniques since the 1960s. Broadly, JIT compilation includes any translation performed dynamically, after a program has started execution. We examine the motivation behind JIT compilation and constraints imposed on JIT compilation systems, and present a classification scheme for such systems. This classification emerges as we survey forty years of JIT work, from 1960–2000. Categories and Subject Descriptors: D.3.4 [Programming Languages]: Processors; K.2 [History of Computing]: Software General Terms: Languages, Performance Additional Key Words and Phrases: Just-in-time compilation, dynamic compilation 1. INTRODUCTION into a form that is executable on a target platform. Those who cannot remember the past are con- What is translated? The scope and na- demned to repeat it. ture of programming languages that re- George Santayana, 1863–1952 [Bartlett 1992] quire translation into executable form covers a wide spectrum. Traditional pro- This oft-quoted line is all too applicable gramming languages like Ada, C, and in computer science. Ideas are generated, Java are included, as well as little lan- explored, set aside—only to be reinvented guages [Bentley 1988] such as regular years later. Such is the case with what expressions. is now called “just-in-time” (JIT) or dy- Traditionally, there are two approaches namic compilation, which refers to trans- to translation: compilation and interpreta- lation that occurs after a program begins tion. Compilation translates one language execution. into another—C to assembly language, for Strictly speaking, JIT compilation sys- example—with the implication that the tems (“JIT systems” for short) are com- translated form will be more amenable pletely unnecessary.
    [Show full text]
  • A Parallel Program Execution Model Supporting Modular Software Construction
    A Parallel Program Execution Model Supporting Modular Software Construction Jack B. Dennis Laboratory for Computer Science Massachusetts Institute of Technology Cambridge, MA 02139 U.S.A. [email protected] Abstract as a guide for computer system design—follows from basic requirements for supporting modular software construction. A watershed is near in the architecture of computer sys- The fundamental theme of this paper is: tems. There is overwhelming demand for systems that sup- port a universal format for computer programs and software The architecture of computer systems should components so users may benefit from their use on a wide reflect the requirements of the structure of pro- variety of computing platforms. At present this demand is grams. The programming interface provided being met by commodity microprocessors together with stan- should address software engineering issues, in dard operating system interfaces. However, current systems particular, the ability to practice the modular do not offer a standard API (application program interface) construction of software. for parallel programming, and the popular interfaces for parallel computing violate essential principles of modular The positions taken in this presentation are contrary to or component-based software construction. Moreover, mi- much conventional wisdom, so I have included a ques- croprocessor architecture is reaching the limit of what can tion/answer dialog at appropriate places to highlight points be done usefully within the framework of superscalar and of debate. We start with a discussion of the nature and VLIW processor models. The next step is to put several purpose of a program execution model. Our Parallelism processors (or the equivalent) on a single chip.
    [Show full text]
  • CNT6008 Network Programming Module - 11 Objectives
    CNT6008 Network Programming Module - 11 Objectives Skills/Concepts/Assignments Objectives ASP.NET Overview • Learn the Framework • Understand the different platforms • Compare to Java Platform Final Project Define your final project requirements Section 21 – Web App Read Sections 21 and 27, pages 649 to 694 and 854 Development and ASP.NET to 878. Section 27 – Web App Development with ASP.NET Overview of ASP.NET Section Goals Goal Course Presentation Understanding Windows Understanding .NET Framework Foundation Project Concepts Creating a ASP.NET Client and Server Application Understanding the Visual Creating a ASP Project Studio Development Environment .NET – What Is It? • Software platform • Language neutral • In other words: • .NET is not a language (Runtime and a library for writing and executing written programs in any compliant language) What Is .NET • .Net is a new framework for developing web-based and windows-based applications within the Microsoft environment. • The framework offers a fundamental shift in Microsoft strategy: it moves application development from client-centric to server- centric. .NET – What Is It? .NET Application .NET Framework Operating System + Hardware Framework, Languages, And Tools VB VC++ VC# JScript … Common Language Specification Visual Studio.NET Visual ASP.NET: Web Services Windows and Web Forms Forms ADO.NET: Data and XML Base Class Library Common Language Runtime The .NET Framework .NET Framework Services • Common Language Runtime • Windows Communication Framework (WCF) • Windows® Forms • ASP.NET (Active Server Pages) • Web Forms • Web Services • ADO.NET, evolution of ADO • Visual Studio.NET Common Language Runtime (CLR) • CLR works like a virtual machine in executing all languages. • All .NET languages must obey the rules and standards imposed by CLR.
    [Show full text]
  • The CLR's Execution Model
    C01621632.fm Page 3 Thursday, January 12, 2006 3:49 PM Chapter 1 The CLR’s Execution Model In this chapter: Compiling Source Code into Managed Modules . 3 Combining Managed Modules into Assemblies . 6 Loading the Common Language Runtime. 8 Executing Your Assembly’s Code. 11 The Native Code Generator Tool: NGen.exe . 19 Introducing the Framework Class Library . 22 The Common Type System. 24 The Common Language Specification . 26 Interoperability with Unmanaged Code. 30 The Microsoft .NET Framework introduces many new concepts, technologies, and terms. My goal in this chapter is to give you an overview of how the .NET Framework is designed, intro- duce you to some of the new technologies the framework includes, and define many of the terms you’ll be seeing when you start using it. I’ll also take you through the process of build- ing your source code into an application or a set of redistributable components (files) that contain types (classes, structures, etc.) and then explain how your application will execute. Compiling Source Code into Managed Modules OK, so you’ve decided to use the .NET Framework as your development platform. Great! Your first step is to determine what type of application or component you intend to build. Let’s just assume that you’ve completed this minor detail; everything is designed, the specifications are written, and you’re ready to start development. Now you must decide which programming language to use. This task is usually difficult because different languages offer different capabilities. For example, in unmanaged C/C++, you have pretty low-level control of the system.
    [Show full text]
  • Executing UML Models
    Executing UML Models Miguel Pinto Luz1, Alberto Rodrigues da Silva1 1Instituto Superior Técnico Av. Rovisco Pais 1049-001 Lisboa – Portugal {miguelluz, alberto.silva}@acm.org Abstract. Software development evolution is a history of permanent seeks for raising the abstraction level to new limits overcoming new frontiers. Executable UML (xUML) comes this way as the expectation to achieve the next level in abstraction, offering the capability of deploying a xUML model in a variety of software environments and platforms without any changes. This paper comes as a first expedition inside xUML, exploring the main aspects of its specification including the action languages support and the fundamental MDA compliance. In this paper is presented a future new xUML tool called XIS-xModels that gives Microsoft Visio new capabilities of running and debugging xUML models. This paper is an outline of the capabilities and main features of the future application. Keywords: UML, executable UML, Model Debugging, Action Language. 1. Introduction In a dictionary we find that an engineer is a person who uses scientific knowledge to solve practical problems, planning and directing, but an information technology engineer is someone that spends is time on implementing lines of code, instead of being focus on planning and projecting. Processes, meetings, models, documents, or even code are superfluous artifacts for organizations: all they need is well design and fast implemented working system, that moves them towards a new software development paradigm, based on high level executable models. According this new paradigm it should be possible to reduce development time and costs, and to bring new product quality warranties, only reachable by executing, debugging and testing early design stages (models).
    [Show full text]
  • Performance Analyses and Code Transformations for MATLAB Applications Patryk Kiepas
    Performance analyses and code transformations for MATLAB applications Patryk Kiepas To cite this version: Patryk Kiepas. Performance analyses and code transformations for MATLAB applications. Computa- tion and Language [cs.CL]. Université Paris sciences et lettres, 2019. English. NNT : 2019PSLEM063. tel-02516727 HAL Id: tel-02516727 https://pastel.archives-ouvertes.fr/tel-02516727 Submitted on 24 Mar 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Préparée à MINES ParisTech Analyses de performances et transformations de code pour les applications MATLAB Performance analyses and code transformations for MATLAB applications Soutenue par Composition du jury : Patryk KIEPAS Christine EISENBEIS Le 19 decembre 2019 Directrice de recherche, Inria / Paris 11 Présidente du jury João Manuel Paiva CARDOSO Professeur, University of Porto Rapporteur Ecole doctorale n° 621 Erven ROHOU Ingénierie des Systèmes, Directeur de recherche, Inria Rennes Rapporteur Matériaux, Mécanique, Michel BARRETEAU Ingénieur de recherche, THALES Examinateur Énergétique Francois GIERSCH Ingénieur de recherche, THALES Invité Spécialité Claude TADONKI Informatique temps-réel, Chargé de recherche, MINES ParisTech Directeur de thèse robotique et automatique Corinne ANCOURT Maître de recherche, MINES ParisTech Co-directrice de thèse Jarosław KOŹLAK Professeur, AGH UST Co-directeur de thèse 2 Abstract MATLAB is an interactive computing environment with an easy programming language and a vast library of built-in functions.
    [Show full text]
  • An Executable Formal Semantics of PHP with Applications to Program Analysis
    Imperial College London Department of Computing An Executable Formal Semantics of PHP with Applications to Program Analysis Daniele Filaretti Submitted in part fulfilment of the requirements for the degree of Doctor of Philosophy in Computing of the Imperial College London and the Diploma of the Imperial College, 2015 Abstract Nowadays, many important activities in our lives involve the web. However, the software and protocols on which web applications are based were not designed with the appropriate level of security in mind. Many web applications have reached a level of complexity for which testing, code reviews and human inspection are no longer sufficient quality-assurance guarantees. Tools that employ static analysis techniques are needed in order to explore all possible execution paths through an application and guarantee the absence of undesirable behaviours. To make sure that an analysis captures the properties of interest, and to navigate the trade-offs between efficiency and precision, it is necessary to base the design and the development of static analysis tools on a firm understanding of the language to be analysed. When this underlying knowledge is missing or erroneous, tools can’t be trusted no matter what advanced techniques they use to perform their task. In this Thesis, we introduce KPHP, the first executable formal semantics of PHP, one of the most popular languages for server-side web programming. Then, we demonstrate its practical relevance by developing two verification tools, of increasing complexity, on top of it - a simple verifier based on symbolic execution and LTL model checking and a general purpose, fully configurable and extensible static analyser based on Abstract Interpretation.
    [Show full text]
  • CUDA C++ Programming Guide
    CUDA C++ Programming Guide Design Guide PG-02829-001_v11.4 | September 2021 Changes from Version 11.3 ‣ Added Graph Memory Nodes. ‣ Formalized Asynchronous SIMT Programming Model. CUDA C++ Programming Guide PG-02829-001_v11.4 | ii Table of Contents Chapter 1. Introduction........................................................................................................ 1 1.1. The Benefits of Using GPUs.....................................................................................................1 1.2. CUDA®: A General-Purpose Parallel Computing Platform and Programming Model....... 2 1.3. A Scalable Programming Model.............................................................................................. 3 1.4. Document Structure................................................................................................................. 5 Chapter 2. Programming Model.......................................................................................... 7 2.1. Kernels.......................................................................................................................................7 2.2. Thread Hierarchy...................................................................................................................... 8 2.3. Memory Hierarchy...................................................................................................................10 2.4. Heterogeneous Programming................................................................................................11 2.5. Asynchronous
    [Show full text]
  • Programming Languages: Classification, Execution Model, and Errors
    Programming Fundamentals Dr. Raaid Alubady –4th Lecture Programming Languages: Classification, Execution Model, and Errors 4th Lecture 1. Introduction As the involvement of computer, automation and robotics growing in our daily life, programming becomes highly required to control all of them. To control all of these systems and machines and take desired output by them skilled programming languages is necessary. However, the area of programming language becomes how much wide but it will be under one of the two categories of programming languages (i.e., Low-level language and High-level language). In the early days of computing, language design was heavily influenced by the decision to use compiling or interpreting as a mode of execution. Depending on tools such as compilation and interpretation in order to get our written code into a form that the computer can execute. Code can either be executed natively through the operating system after it is converted to machine code (via compilation) or can be evaluated line by line through another program which handles executing the code instead of the operating system itself (via interpretation). 2. Classification of Programming Languages Programming languages are basically classified into two main categories – Low- level language and High-level language. Every programming language belongs to one of these categories and sub-category. 2.1. Low level languages Low-level languages are used to write programs that relate to the specific architecture and hardware of a particular type of computer. They are closer to the native language of a computer (binary), making them harder for programmers to understand. Programs written in low-level languages are fast and memory efficient.
    [Show full text]
  • The Design and Implementation of a Bytecode for Optimization On
    Trinity University Digital Commons @ Trinity Computer Science Honors Theses Computer Science Department 4-20-2012 The esiD gn and Implementation of a Bytecode for Optimization on Heterogeneous Systems Kerry A. Seitz Trinity University, [email protected] Follow this and additional works at: http://digitalcommons.trinity.edu/compsci_honors Part of the Computer Sciences Commons Recommended Citation Seitz, Kerry A., "The eD sign and Implementation of a Bytecode for Optimization on Heterogeneous Systems" (2012). Computer Science Honors Theses. 28. http://digitalcommons.trinity.edu/compsci_honors/28 This Thesis open access is brought to you for free and open access by the Computer Science Department at Digital Commons @ Trinity. It has been accepted for inclusion in Computer Science Honors Theses by an authorized administrator of Digital Commons @ Trinity. For more information, please contact [email protected]. The Design and Implementation of a Bytecode for Optimization on Heterogeneous Systems Kerry Allen Seitz, Jr. Abstract As hardware architectures shift towards more heterogeneous platforms with different vari- eties of multi- and many-core processors and graphics processing units (GPUs) by various manufacturers, programmers need a way to write simple and highly optimized code without worrying about the specifics of the underlying hardware. To meet this need, I have designed a virtual machine and bytecode around the goal of optimized execution on highly variable, heterogeneous hardware, instead of having goals such as small bytecodes as was the ob- jective of the JavaR Virtual Machine. The approach used here is to combine elements of the DalvikR virtual machine with concepts from the OpenCLR heterogeneous computing platform, along with an annotation system so that the results of complex compile time analysis can be available to the Just-In-Time compiler.
    [Show full text]