RE: PATCH: Add Type Checking in op

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: RE: PATCH: Add Type Checking in op_bitwiseK
From: Tatsuhiro Aoshima <tatsuhiro.aoshima.md@...>
Date: Thu, 22 Apr 2021 14:12:25 +0900

Thank you for your reply.

> As the comments in 'lopcodes.h' indicate, the compiler ensures that these constants are always integers. (Your patch assumes they
are always numbers).

Of course, I know.
Already, op_arithK checks both operands because it calls op_arith_aux.
Hence, I proposed op_bitwiseK should check also.

I wonder how the developers think this inconsistent and unclear implementation.
I think some attacks in the future may use this code in order to leak some pointers as integers,
as exploiting another bugs.

。:+* ゜ ゜゜ *+:。:+* ゜ ゜゜ *+:。:+* ゜ ゜゜ *+:。
Tatsuhiro Aoshima
NTT Secure Platform Laboratories
Phone: +81 422 59 3261 [JPN: (0422) 59 3261]

Follow-Ups:
- Re: PATCH: Add Type Checking in op_bitwiseK, Roberto Ierusalimschy

References:
- PATCH: Add Type Checking in op_bitwiseK, Tatsuhiro Aoshima
- Re: PATCH: Add Type Checking in op_bitwiseK, Roberto Ierusalimschy

Prev by Date: Re: PATCH: How to handle CallInfo func field safely?
Next by Date: RE: PATCH: How to handle CallInfo func field safely?
Previous by thread: Re: PATCH: Add Type Checking in op_bitwiseK
Next by thread: Re: PATCH: Add Type Checking in op_bitwiseK
Index(es):
- Date
- Thread