[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hack Java

To: [email protected] (Rich Salz)
Subject: Re: Hack Java
From: [email protected]
Date: Tue, 23 Jan 1996 10:56:42 -0700 (MST)
Cc: [email protected]
In-Reply-To: <[email protected]> from "Rich Salz" at Jan 23, 96 11:30:01 am
Sender: [email protected]

> 
> This illustrates the difference between a language with no dangerous
> constructs, and one where you must trust the implementation.
> >From some internal OSF email:
> ---------- Begin Forwarded Message ----------
> 
> class Data { // an object storing 16 bytes 
> 	byte word[16];
> }
> 
> 
> class Trick {
> 	Data data;
> 	long tricky_pointer;
> 	}
> 
> 
> Now suppose, I fake a compiler (or I have a malicious compiler)
> and I generate by hand malicious byte code such that
> in the symbol tables, tricky_pointer and data have the same
> offset.
> 

 What offset do you mean? The offset in the struct as in C++?
Java bytecode does not store such information. Fields are
accessed using putfield/getfield, which use an index to a
field reference in the constant pool. (pg. 66, lang spec)

Field references contain a name index (pg. 19) which points
to a name, i.e., a CONSTANT_Utf8 (pg. 18) field.

To my knowledge, the Java, and Java bytecode does not imply
any memory layout. I doubt it makes sense to demand to check
that 'offset do not overlap in memory'.

Could you describe in more detail the manipulation you are
proposing?

 - Godmar

Follow-Ups:
- Re: Hack Java
  - From: Matt Miszewski <[email protected]>

References:
- Hack Java
  - From: Rich Salz <[email protected]>

Prev by Date: [local] Report onPortland Cpunks meeting
Next by Date: Mykotronx sells 68,000 Fortezza cards to Spyrus
Prev by thread: Hack Java
Next by thread: Re: Hack Java
Index(es):
- Date
- Thread