Re: Ancient history

From: Andrew Swallow (am.swallow_at_btopenworld.com)
Date: 06/15/05

• Next message: Jon A. Solworth: "Re: More on garbage"
• Previous message: Brian Ross: "Re: DES implementation questions (FinalPermutation code)"
• In reply to: Douglas A. Gwyn: "Re: Ancient history"
• Next in thread: Nick Maclaren: "Re: Ancient history"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 15 Jun 2005 15:13:03 +0000 (UTC)

Douglas A. Gwyn wrote:

> Nick Maclaren wrote:
>
>> Douglas A. Gwyn <DAGwyn@null.net> wrote:
>>
>>> Nick Maclaren wrote:
>>>
>>>> Andrew Swallow <am.swallow@btopenworld.com> wrote:
>>>>
>>>>> A simple action is to add a statement saying, "Checks for
>>>>> queue/buffer overflows shall be performed and an appropriate
>>>>> recovery action performed."
>>>>
>>>> The problem is that nobody knows when such things are legal and
>>>> when they are not in C.
>>>
>>> That's nonsense. It is easy to check for an
>>> overflow situation before it occurs.
>>
>> Which is orthogonal and irrelevant to my point. If nobody knows where
>> the boundary is between overflowing and access to an extended area
>> (i.e. permitted use), then it is impossible to insert such checking
>> correctly. And that is the case.
>
>
> That's a vacuous "if". When a programmer codes allocation
> of some buffer he knows darn well what its bounds are, and
> can easily use that information to check subsequent access.

Changing from the fixed sized queues implemented using an array
to a variable sized queue - possibly implemented as a linked list.
When an entry is made a buffer is requested from the heap. Pointers
to the next and previous entries are inserted into the buffer
and the pointers in the neighbouring buffers updated.

Queue full is signalled by the memory management refusing to
allocate the buffer. This refusal needs detecting and recovering
from. Possibly by throwing away the new data and reporting the
overflow.

In portable code "undefined" means that using the facility
in that way is *banned*. If the programmer has to have the
C standard on his desk and read the appropriate paragraph for
every line he writes then he has to read the appropriate
paragraph for every line he writes.

Andrew Swallow

---

• Next message: Jon A. Solworth: "Re: More on garbage"
• Previous message: Brian Ross: "Re: DES implementation questions (FinalPermutation code)"
• In reply to: Douglas A. Gwyn: "Re: Ancient history"
• Next in thread: Nick Maclaren: "Re: Ancient history"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Detailed analysis: Buffer overflow in Explorer.exe on Windows XP SP1 ... Actually, I assume the overflowing file, no matter where it is located in ... it assumes the buffer to be as ... We do not know how this bug affects shell32.dll files on other Windows ... unintentionally execute arbitrary code. ... (Bugtraq) Re: DEFCON 16 and Hacking OpenVMS ... SMG is written in BLISS. ... correctly) is not overflowing the buffer because a null is missing. ... code longer than DEFCONs have been around. ... (comp.os.vms) Re: why dosent buffer gets overflowed ... "why dosent buffer gets overflowed" ... What makes you think the buffer isn't being overflowed? ... int main(int argc, char **argv) ... and you don't provide any safeguards against that, so you're overflowing ... (comp.lang.c) Re: classes and using * ... > I've never heard of any city with more than 255 characters, ... Overflowing a buffer is one of the ... (comp.lang.cpp) Re: From Word to comma-delimited files ... the right amount of automation of the low-level tasks. ... These commands can be stored in a buffer, say buffer z, and invoked using @z. ... asdf asdf asdf adf ... Put the cursor on the empty line above the paragraph. ... (comp.lang.lisp)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)