From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Delivered-To: caml-list@yquem.inria.fr Received: from nez-perce.inria.fr (nez-perce.inria.fr [192.93.2.78]) by yquem.inria.fr (Postfix) with ESMTP id CABB4BC48 for ; Tue, 5 Apr 2005 16:09:29 +0200 (CEST) Received: from pauillac.inria.fr (pauillac.inria.fr [128.93.11.35]) by nez-perce.inria.fr (8.13.0/8.13.0) with ESMTP id j35E9Tpl004761 for ; Tue, 5 Apr 2005 16:09:29 +0200 Received: from nez-perce.inria.fr (nez-perce.inria.fr [192.93.2.78]) by pauillac.inria.fr (8.7.6/8.7.3) with ESMTP id QAA31869 for ; Tue, 5 Apr 2005 16:09:28 +0200 (MET DST) Received: from alex.barettalocal.com (h213-255-109-130.albacom.net [213.255.109.130] (may be forged)) by nez-perce.inria.fr (8.13.0/8.13.0) with ESMTP id j35E9SY1004758 for ; Tue, 5 Apr 2005 16:09:28 +0200 Received: from [127.0.0.1] (localhost.localdomain [127.0.0.1]) by alex.barettalocal.com (Postfix) with ESMTP id 7C6A12BAAD0 for ; Tue, 5 Apr 2005 16:09:26 +0200 (CEST) Message-ID: <42529C16.4070604@barettadeit.com> Date: Tue, 05 Apr 2005 16:09:26 +0200 From: Alex Baretta User-Agent: Debian Thunderbird 1.0 (X11/20050116) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Ocaml Subject: Re: [Caml-list] Securely loading and running untrusted modules References: <20050405121459.GA29378@furbychan.cocan.org> <000f01c539de$c1859fd0$0c05a8c0@PWARP> <20050405131608.GB5103@furbychan.cocan.org> In-Reply-To: <20050405131608.GB5103@furbychan.cocan.org> X-Enigmail-Version: 0.90.0.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Miltered: at nez-perce with ID 42529C19.000 by Joe's j-chkmail (http://j-chkmail.ensmp.fr)! X-Miltered: at nez-perce with ID 42529C18.000 by Joe's j-chkmail (http://j-chkmail.ensmp.fr)! X-Spam: no; 0.00; baretta:01 caml-list:01 untrusted:01 cannasse:01 bytecode:01 bytecode:01 api:01 ocaml:01 baretta:01 securely:98 wrote:01 wrote:01 modules:01 checking:01 segmentation:02 X-Spam-Checker-Version: SpamAssassin 3.0.2 (2004-11-16) on yquem.inria.fr X-Spam-Status: No, score=0.1 required=5.0 tests=FORGED_RCVD_HELO autolearn=disabled version=3.0.2 X-Spam-Level: Richard Jones wrote: > On Tue, Apr 05, 2005 at 09:55:32PM +0900, Nicolas Cannasse wrote: > >>I think that current VM is optimized for speed and doesn't do more bytecode >>checking than strictly necessary. That means that someone could forge some >>bytecode file that would take control of the VM and then can call the whole >>C api. Tricky, but feasible. > > > I'm hoping that by compiling from source I'll avoid any bytecode > attacks. Is there a way to generate faulty bytecode from a source > file? > > Rich. alex@alex:~$ ocaml Objective Caml version 3.08.2 # external pizza : 'a -> 'b = "%identity";; external pizza : 'a -> 'b = "%identity" # pizza 1 = "pasta";; Segmentation fault -- ********************************************************************* http://www.barettadeit.com/ Baretta DE&IT A division of Baretta SRL tel. +39 02 370 111 55 fax. +39 02 370 111 54 Our technology: The Application System/Xcaml (AS/Xcaml) The FreerP Project