Re: Plan C (was Re: Plan B for fixing 5.8.2 binary API)

To: Nicholas Clark <nick@ccl4.org>
Cc: Chip Salzenberg <chip@debian.org>, Perl 5 Porters <perl5-porters@perl.org>, debian-perl@lists.debian.org
Subject: Re: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
From: Yitzchak Scott-Thoennes <sthoenna@efn.org>
Date: Tue, 14 Oct 2003 13:37:43 -0700
Message-id: <[🔎] 20031014203743.GA3104@efn.org>
Mail-followup-to: Yitzchak Scott-Thoennes <sthoenna@efn.org>, Nicholas Clark <nick@ccl4.org>, Chip Salzenberg <chip@debian.org>, Perl 5 Porters <perl5-porters@perl.org>, debian-perl@lists.debian.org
In-reply-to: <[🔎] 20031014200805.GS89417@plum.flirble.org>
References: <[🔎] 20031010024134.GE2004@perlsupport.com> <[🔎] 20031011092906.GV14030@plum.flirble.org> <[🔎] 20031013161232.GG22897@perlsupport.com> <[🔎] 20031013204953.GJ89417@plum.flirble.org> <[🔎] 20031014200805.GS89417@plum.flirble.org>

On Tue, Oct 14, 2003 at 09:08:05PM +0100, Nicholas Clark <nick@ccl4.org> wrote:
> 
> I'm working on a variant of plans A and B. I need 1 more HV flag. Is
> 
> #define SVf_AMAGIC	0x10000000      /* has magical overloaded methods */
> 
> ever set on an HV?

I think only on RVs.  Though there is an odd commented out line in hv.c
magic_setamagic:    /* HV_badAMAGIC_on(Sv_STASH(sv)); */

> hsplit is modified to count the length of the longest linked lists as it
> splits a hash. If it finds that the longest is over some threshold (eg 50%
> of all hash values are in one list after splitting) then the data is
> pathological, and *that hash* switches strategy.

I don't know if that's good enough.  I didn't read the exploit paper,
but wouldn't they just have to have N+1 random keys before the N evil
keys to defeat your check?  It would make the attack only twice as much
data (or even much less, since the random keys could be shorter.)

Good out-of-the-box thinking, though.

Reply to:

Follow-Ups:
- Re: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
  - From: Yitzchak Scott-Thoennes <sthoenna@efn.org>
- Re: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
  - From: Nicholas Clark <nick@ccl4.org>

References:
- Hash seed breaks 5.8.1 binary API; fix suggested
  - From: Chip Salzenberg <chip@pobox.com>
- Re: Hash seed breaks 5.8.1 binary API; fix suggested
  - From: Nicholas Clark <nick@ccl4.org>
- Plan B for fixing 5.8.2 binary API
  - From: Chip Salzenberg <chip@debian.org>
- Re: Plan B for fixing 5.8.2 binary API
  - From: Nicholas Clark <nick@ccl4.org>
- Plan C (was Re: Plan B for fixing 5.8.2 binary API)
  - From: Nicholas Clark <nick@ccl4.org>

Prev by Date: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
Next by Date: Re: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
Previous by thread: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
Next by thread: Re: Plan C (was Re: Plan B for fixing 5.8.2 binary API)
Index(es):
- Date
- Thread