lua-users home
lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

On 07/03/2008, Mark Hamburg <> wrote:
>  The downside to Lua is that it doesn't provide any way to guarantee that it
>  is executing "straight line" code -- i.e., that there aren't loops that
>  could result in a denial of service attack.

You could potentially write code to check that loaded code is
"straight line" by dumping the loaded code and quickly looking over
the opcodes. If there are any JMP by a negative offset, FOR or TFOR,
then it isn't straight line.