User: Password:
|
|
Subscribe / Log in / New account

Make the stack less fragile

Make the stack less fragile

Posted Feb 2, 2012 12:53 UTC (Thu) by etienne (guest, #25256)
In reply to: Make the stack less fragile by epa
Parent article: Format string vulnerabilities

You can have a lot of different and incompatible calling conventions, like pushing the number of parameters (as a 32 or 64 bits number), pushing the size of the parameter area in bytes, telling which parameters are const pointers and which are pointers to variables, ...
That will often result in more security, but also slower software; and in C the simplest system has been chosen, which allows you to "bolt-on" more complex ones if you wish.


(Log in to post comments)

Make the stack less fragile

Posted Feb 2, 2012 16:50 UTC (Thu) by epa (subscriber, #39769) [Link]

I think that the C standard doesn't specify any particular calling convention? Implementers are free to implement stack frames and function calls however they like.

Make the stack less fragile

Posted Feb 3, 2012 20:15 UTC (Fri) by nix (subscriber, #2304) [Link]

Yes, but in practice for existing platforms such things are frozen by the needs of interoperability.


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds