From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: "Demetrios Obenour" Newsgroups: gmane.emacs.bugs Subject: bug#18410: Use SAFE_ALLOCA etc. to avoid unbounded stack allocation. Date: Sun, 7 Sep 2014 23:20:47 -0400 Message-ID: <022901cfcb13$e2785db0$a7691910$@gmail.com> References: <5409536B.5090201@cs.ucla.edu> <540C0741.8090900@cs.ucla.edu> <83bnqrcq7u.fsf@gnu.org> <540CC106.8040705@cs.ucla.edu> <540D1699.2030903@cs.ucla.edu> <020201cfcb13$6d851890$488f49b0$@gmail.com> <540D2054.4000909@dancol.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Trace: ger.gmane.org 1410146485 19664 80.91.229.3 (8 Sep 2014 03:21:25 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Mon, 8 Sep 2014 03:21:25 +0000 (UTC) Cc: 18410@debbugs.gnu.org To: "'Daniel Colascione'" , "'Paul Eggert'" , "'Stefan Monnier'" Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Mon Sep 08 05:21:17 2014 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1XQpW1-0006Uh-DG for geb-bug-gnu-emacs@m.gmane.org; Mon, 08 Sep 2014 05:21:17 +0200 Original-Received: from localhost ([::1]:40405 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XQpW0-0002oD-Vx for geb-bug-gnu-emacs@m.gmane.org; Sun, 07 Sep 2014 23:21:16 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:52165) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XQpVt-0002nL-0s for bug-gnu-emacs@gnu.org; Sun, 07 Sep 2014 23:21:14 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XQpVn-0007x5-55 for bug-gnu-emacs@gnu.org; Sun, 07 Sep 2014 23:21:08 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:41589) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XQpVn-0007x1-1i for bug-gnu-emacs@gnu.org; Sun, 07 Sep 2014 23:21:03 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1XQpVm-0003DX-Iq for bug-gnu-emacs@gnu.org; Sun, 07 Sep 2014 23:21:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: "Demetrios Obenour" Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Mon, 08 Sep 2014 03:21:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 18410 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: patch Original-Received: via spool by 18410-submit@debbugs.gnu.org id=B18410.141014645712343 (code B ref 18410); Mon, 08 Sep 2014 03:21:02 +0000 Original-Received: (at 18410) by debbugs.gnu.org; 8 Sep 2014 03:20:57 +0000 Original-Received: from localhost ([127.0.0.1]:33153 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XQpVg-0003D0-NX for submit@debbugs.gnu.org; Sun, 07 Sep 2014 23:20:57 -0400 Original-Received: from mail-yk0-f180.google.com ([209.85.160.180]:49895) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XQpVd-0003Cm-K2 for 18410@debbugs.gnu.org; Sun, 07 Sep 2014 23:20:54 -0400 Original-Received: by mail-yk0-f180.google.com with SMTP id q9so893179ykb.11 for <18410@debbugs.gnu.org>; Sun, 07 Sep 2014 20:20:48 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:to:cc:references:in-reply-to:subject:date:message-id :mime-version:content-type:content-transfer-encoding:thread-index :content-language; bh=+Un9K74gQ2l2i7cuhvDnmcf0Gsxwtdu+UmSjxMuWnHc=; b=gXpxU7OMoXrH6dR+/k2Qzm5Au1IaMf+JZjUVIYVuog2udb3Cjtx03jcSC3MW7oDhcy Gzm70DWW90bLLa5QkAwoix9W8zwXAcG/Hc8I/zJPRbMGDCHhysbYMDG1sbF1GUeMoRXV +NoZGz6r1gN9PH52z/UL/bUYxT2IlkpZYg7ENk+hnPsngWUW0AWvkhs/ipyCxLv9B+YT rBDoN2nLvGARdlWQhn1poECDK+8NKQLv4Aih495R0Q0Zi3FbsGmd3VLzFP+h0h5Dris/ HW50xBotEuDEyBdgGTs/IUI733DeeHfoCUEC43kQOR5N9nx6ust9Dnabe3M6TvGpXO3L wxAA== X-Received: by 10.236.45.33 with SMTP id o21mr885997yhb.109.1410146448106; Sun, 07 Sep 2014 20:20:48 -0700 (PDT) Original-Received: from admin (c-71-236-63-161.hsd1.tn.comcast.net. [71.236.63.161]) by mx.google.com with ESMTPSA id t3sm3924789yhp.19.2014.09.07.20.20.47 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Sun, 07 Sep 2014 20:20:47 -0700 (PDT) In-Reply-To: <540D2054.4000909@dancol.org> X-Mailer: Microsoft Outlook 15.0 Thread-Index: AQIbHmv0S5k5dv+xo5sOLfqUvwXvlgE5FuACAoMkd9MCPkb5hQLifywuAnFZF4ICM09JqgKtaNkJmt5yPVA= Content-Language: en-us X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:93137 Archived-At: That would work also, and is probably the best approach. -----Original Message----- From: Daniel Colascione [mailto:dancol@dancol.org]=20 Sent: Sunday, September 7, 2014 11:20 PM To: Demetrios Obenour; 'Paul Eggert'; 'Stefan Monnier' Cc: 18410@debbugs.gnu.org Subject: Re: bug#18410: Use SAFE_ALLOCA etc. to avoid unbounded stack = allocation. On 09/07/2014 08:17 PM, Demetrios Obenour wrote: > This is crucial. Otherwise, a security vulnerability could result. >=20 > MAX_ALLOCA should not be larger than the page size for the target = architecture. You could just touch every page inside a large alloca.