Re: [PATCH] 'data' mode for loadfile

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: [PATCH] 'data' mode for loadfile
From: Jay Carlson <nop@...>
Date: Wed, 19 Mar 2014 10:23:16 -0400

On Mar 17, 2014, at 3:34 PM, steve donovan <steve.j.donovan@gmail.com> wrote:

> On Mon, Mar 17, 2014 at 8:41 PM, Thijs Schreijer
> <thijs@thijsschreijer.nl> wrote:
>> Solutions are nice, but is there some list of potential problems? What I mean is; what should I consider to protect against when sandboxing?

> But the Billion Laughs attack, that's a nasty one.  The problem with
> dynamic solutions (restricting memory, restricting instruction count)
> is that they are going to slow Lua down, which is an issue with
> reading big data files.

If you don't care if the result of large/malicious output is abnormal termination--and everybody who writes "#define malloc(x) assert(malloc(x))" doesn't--alarm(3) and setitimer(2) are pretty cheap. A problem with using timers as a proxy for "you're paging too much" is indeterminacy of environment; it may not be the fault (heh heh) of the process which had to wait for liblua to get paged back in.

Jay

References:
- [PATCH] 'data' mode for loadfile, steve donovan
- Re: [PATCH] 'data' mode for loadfile, Ashwin Hirschi
- Re: [PATCH] 'data' mode for loadfile, Roberto Ierusalimschy
- Re: [PATCH] 'data' mode for loadfile, steve donovan
- RE: [PATCH] 'data' mode for loadfile, Thijs Schreijer
- Re: [PATCH] 'data' mode for loadfile, steve donovan

Prev by Date: Re: Maybe a bug in lundump.c
Next by Date: Re: C++ religious war (was: llua Higher-level C API for Lua)
Previous by thread: Re: [PATCH] 'data' mode for loadfile
Next by thread: Re: [PATCH] 'data' mode for loadfile
Index(es):
- Date
- Thread