[#18042] Re: New array methods cycle, choice, shuffle (plus bug in cycle) — gdefty@...
Hi,
3 messages
2008/08/01
[#18052] Enumerators that know about a block — "David A. Black" <dblack@...>
Hi --
8 messages
2008/08/01
[#18086] Suggestion to change Time#to_s format to an official standard — Dirkjan Bussink <d.bussink@...>
Hello people,
5 messages
2008/08/02
[#18110] [Ruby 1.9 - Feature #403] (Open) Add support to Haiku — Anonymous <redmine@...>
Issue #403 has been reported by Anonymous.
7 messages
2008/08/03
[#18121] [Ruby 1.8.7 - Bug #405] (Open) ssl.rb:31: [BUG] Bus Error — Anonymous <redmine@...>
Issue #405 has been reported by Anonymous.
14 messages
2008/08/04
[#18130] Re: New array methods cycle, choice, shuffle (plus bug in cycle) — Brian Candler <B.Candler@...>
> Seriously though... Array.first is a noun.
10 messages
2008/08/05
[#18145] [PATCH] error.c (Init_Exception): Rename class "fatal" to "Fatal" — Otto Hilska <otto.hilska@...>
Hi,
9 messages
2008/08/06
[#18146] Re: [PATCH] error.c (Init_Exception): Rename class "fatal" to "Fatal"
— Nobuyoshi Nakada <nobu@...>
2008/08/06
Hi,
[#18148] Re: [PATCH] error.c (Init_Exception): Rename class "fatal" to "Fatal"
— Otto Hilska <otto.hilska@...>
2008/08/06
Nobuyoshi Nakada wrote:
[#18162] Re: [PATCH] error.c (Init_Exception): Rename class "fatal" to "Fatal"
— Nobuyoshi Nakada <nobu@...>
2008/08/07
Hi,
[#18174] Re: [PATCH] error.c (Init_Exception): Rename class "fatal" to "Fatal"
— "Jeremy Kemper" <jeremy@...>
2008/08/07
On Thu, Aug 7, 2008 at 1:37 AM, Nobuyoshi Nakada <nobu@ruby-lang.org> wrote:
[#18180] Re: [PATCH] error.c (Init_Exception): Rename class "fatal" to "Fatal"
— "Daniel Luz" <dev@...>
2008/08/07
On Thu, Aug 7, 2008 at 15:48, Jeremy Kemper <jeremy@bitsweat.net> wrote:
[#18164] Re: New array methods cycle, choice, shuffle (plus bug in cycle) — gdefty@...
In message "Re: [ruby-core:18133] Re: New array
6 messages
2008/08/07
[#18237] Severe problem with garbage collection — Bertram Scharpf <lists@...>
Hi,
5 messages
2008/08/11
[#18247] Thread#priority(=) will be obsolete — SASADA Koichi <ko1@...>
Hi,
4 messages
2008/08/12
[#18252] Re: result for mget [last:10 MIME/multipart] (1/1) (ruby-core ML) — "Giuseppe Bilotta" <giuseppe.bilotta@...>
>> We are planning to make Thread#priority(=) method as obsolete method
5 messages
2008/08/12
[#18255] Re: result for mget [last:10 MIME/multipart] (1/1) (ruby-core ML)
— SASADA Koichi <ko1@...>
2008/08/13
Hi,
[#18257] Definition of "Support levels", 1.9.1 supported platforms and recruitment for platform maintainers — "Yugui (Yuki Sonoda)" <yugui@...>
Hi, all.
7 messages
2008/08/13
[#18266] Re: Definition of "Support levels", 1.9.1 supported platforms and recruitment for platform maintainers
— Mohit SIndhwani <rcore_ml@...>
2008/08/13
HI! This answers the question that I asked a few days ago, thank you!
[#18267] Re: Definition of "Support levels", 1.9.1 supported platforms and recruitment for platform maintainers
— Yukihiro Matsumoto <matz@...>
2008/08/13
Hi,
[#18270] Re: Definition of "Support levels", 1.9.1 supported platforms and recruitment for platform maintainers
— Mohit SIndhwani <rcore_ml@...>
2008/08/13
Yukihiro Matsumoto wrote:
[#18263] Am I right that this is wrong? — "David A. Black" <dblack@...>
Hi --
13 messages
2008/08/13
[#18272] Re: Am I right that this is wrong?
— Yukihiro Matsumoto <matz@...>
2008/08/13
Hi,
[#18275] Re: Am I right that this is wrong?
— "David A. Black" <dblack@...>
2008/08/13
Hi --
[#18276] Re: Am I right that this is wrong?
— "Gregory Brown" <gregory.t.brown@...>
2008/08/13
On Wed, Aug 13, 2008 at 3:04 PM, David A. Black <dblack@rubypal.com> wrote:
[#18303] Ruby 1.8.6 yields 50%-100% performance gain when compiled at full optimization — kevin nolan <kpnolan@...>
After compiling Ruby 1.8.6 with '-O3 -mtune=K8 -march=K8' on an AMD 4800
7 messages
2008/08/14
[#18313] Re: Ruby 1.8.6 yields 50%-100% performance gain when compiled at full optimization
— "Shot (Piotr Szotkowski)" <shot@...>
2008/08/15
kevin nolan:
[#18316] Re: Ruby 1.8.6 yields 50%-100% performance gain when compiled at full optimization
— "M. Edward (Ed) Borasky" <znmeb@...>
2008/08/16
On Sat, 2008-08-16 at 03:39 +0900, Shot (Piotr Szotkowski) wrote:
[#18314] [Bug #449] File.zero? returns true when given a directory on Windows — Anonymous <redmine@...>
Bug #449: File.zero? returns true when given a directory on Windows
8 messages
2008/08/15
[#18315] Re: [Bug #449] File.zero? returns true when given a directory on Windows
— Nobuyoshi Nakada <nobu@...>
2008/08/16
Hi,
[#18325] Re: [Bug #449] File.zero? returns true when given a directory on Windows
— "John Lam (IRONRUBY)" <jflam@...>
2008/08/18
I submitted that original bug (first time using redmine :)). Here's some mo=
[#18326] Re: [Bug #449] File.zero? returns true when given a directory on Windows
— Yukihiro Matsumoto <matz@...>
2008/08/18
Hi,
[#18327] Re: [Bug #449] File.zero? returns true when given a directory on Windows
— "John Lam (IRONRUBY)" <jflam@...>
2008/08/18
Not at all - it means we're now free to do the right thing :)
[#18328] Re: [Bug #449] File.zero? returns true when given a directory on Windows
— "Luis Lavena" <luislavena@...>
2008/08/18
On Mon, Aug 18, 2008 at 6:45 PM, John Lam (IRONRUBY)
[#18319] NEW Command: absolute_path() -- — "C.E. Thornton" <admin@...>
Core,
14 messages
2008/08/16
[#18321] Re: NEW Command: absolute_path() --
— Yukihiro Matsumoto <matz@...>
2008/08/18
Hi,
[#18322] Re: NEW Command: absolute_path() --
— Trans <transfire@...>
2008/08/18
[#18323] Re: NEW Command: absolute_path() --
— "michael greenly" <mgreenly@...>
2008/08/18
Are you sure you didn't mean to use "~/oracle/bin"
[#18332] Re: NEW Command: absolute_path() --
— "C.E. Thornton" <admin@...>
2008/08/19
Trans wrote:
[#18349] [Feature:1.9] autoload with a block — Nobuyoshi Nakada <nobu@...>
Hi,
2 messages
2008/08/20
[#18354] Retrieving bytecode for method — Michael Neumann <mneumann@...>
Hi,
4 messages
2008/08/20
[#18381] [Bug #496] DRb.start_service(nil) is very slow — Hongli Lai <redmine@...>
Bug #496: DRb.start_service(nil) is very slow
11 messages
2008/08/25
[#18387] [Bug:1.9] rubygems fails to cache spec file — "Yusuke ENDOH" <mame@...>
Hi,
6 messages
2008/08/26
[#18396] problems with test_io.rb on cygwin — Martin Duerst <duerst@...>
I have run into problems with test_io.rb on cygwin.
6 messages
2008/08/27
[#18397] Re: problems with test_io.rb on cygwin
— "U.Nakamura" <usa@...>
2008/08/27
Hello,
[#18405] [Bug #512] String#% behavior — Federico Builes <redmine@...>
Bug #512: String#% behavior
7 messages
2008/08/27
[#18409] ruby-lang.org has old download links — Nate_Wiger@...
The download links here:
3 messages
2008/08/27
[#18414] DoS vulnerability in REXML — "Shugo Maeda" <shugo@...>
Hi,
5 messages
2008/08/28
[#18424] [Bug #528] Several ruby-mode.el improvements — Nathan Weizenbaum <redmine@...>
Bug #528: Several ruby-mode.el improvements
8 messages
2008/08/31
[ruby-core:18375] Stack "Overflow" Patch
From:
Jonathan deWerd <jjoonathan@...>
Date:
2008-08-23 19:24:23 UTC
List:
ruby-core #18375
In my spare time, I've been working on a OSX InputManager that =20 automatically injects a ruby console into every application (inspired =20= by FScript). I noticed several crashes in ruby code, and I think one =20 of them might be a bug in ruby itself. There are a couple more in =20 rubycocoa, but that's a subject for another list. I should also =20 mention that I am not a ruby guru, so my understanding here may be =20 flawed. Please correct anything I get wrong :) Ruby apparently integrates its own stack with the C stack, so it looks =20= for overflows by measuring the C stack at certain points and making =20 sure it never gets too large. Unfortunately, when writing code that re-=20= enters ruby, this mechanism can become confused. For instance, if I =20 have a 10k stack when I first call into ruby, rb_gc_stack_start is set =20= to C_STACK_START - 10k if my stack grows down. Ruby's stack usage is =20 computed (in pseudocode again) by STACK_END - rb_gc_stack_start. If I =20= then re-enter from a 1k stack in C, however, STACK_END - =20 rb_gc_stack_start becomes negative. Since pointers aren't signed, the =20= stack size looks huge and ruby reports a stack overflow. The least intrusive solution I could think of was to effectively take =20= the absolute value of the stack length result. It isn't elegant =96 with = =20 a hugely varying pre-entry stack, the same problem could occur =96 but =20= it solves my immediate problem without adding any code to what seems =20 like a security sensitive part of ruby. This patch is =20 stack_check_1.patch, attached below. A more proper solution would be to cut off the stack length computation at 0. It seems risky, and I'd love to hear from the more security-minded denizens of this list, but I can't really think of a situation where a "negative" stack length could be exploited. This is stack_check_2.patch. Although it isn't really a bug in ruby, I wanted to include a third patch for IRB that adds an option in its @CONF to turn off the automatic SIGINT trapping it does. It isn't too difficult to work around, but it seems More Proper to have an actual configuration option for it. All patches are against the 1.8 branch, revision 18781. There is another problem when calling into ruby from multiple threads (bad, I know, but sometimes unavoidable, and it really ought to work within a mutex): each thread has its own stack, which predictably confuses the stack length computation. Before I make a patch that uses pthread thread-specific variables or stores ruby's stack in the heap, what would its chances be of actually being used (and which strategy would be preferable)? Thanks, Jonathan
Attachments (4)
stack_check_1.patch
(659 Bytes, text/x-diff)
Index: gc.c
===================================================================
--- gc.c (revision 18781)
+++ gc.c (working copy)
@@ -515,14 +515,8 @@
# endif
# define STACK_END (stack_end)
#endif
-#if STACK_GROW_DIRECTION < 0
-# define STACK_LENGTH (rb_gc_stack_start - STACK_END)
-#elif STACK_GROW_DIRECTION > 0
-# define STACK_LENGTH (STACK_END - rb_gc_stack_start + 1)
-#else
# define STACK_LENGTH ((STACK_END < rb_gc_stack_start) ? rb_gc_stack_start - STACK_END\
: STACK_END - rb_gc_stack_start + 1)
-#endif
#if STACK_GROW_DIRECTION > 0
# define STACK_UPPER(x, a, b) a
#elif STACK_GROW_DIRECTION < 0
stack_check_2.patch
(742 Bytes, text/x-diff)
Index: gc.c
===================================================================
--- gc.c (revision 18781)
+++ gc.c (working copy)
@@ -516,9 +516,9 @@
# define STACK_END (stack_end)
#endif
#if STACK_GROW_DIRECTION < 0
-# define STACK_LENGTH (rb_gc_stack_start - STACK_END)
+# define STACK_LENGTH ((STACK_END > rb_gc_stack_start) ? 0 : (rb_gc_stack_start - STACK_END))
#elif STACK_GROW_DIRECTION > 0
-# define STACK_LENGTH (STACK_END - rb_gc_stack_start + 1)
+# define STACK_LENGTH ((rb_gc_stack_start > STACK_END) ? 0 : (STACK_END - rb_gc_stack_start + 1))
#else
# define STACK_LENGTH ((STACK_END < rb_gc_stack_start) ? rb_gc_stack_start - STACK_END\
: STACK_END - rb_gc_stack_start + 1)
irb_notrap.patch
(896 Bytes, text/x-diff)
Index: lib/irb/ext/multi-irb.rb
===================================================================
--- lib/irb/ext/multi-irb.rb (revision 18781)
+++ lib/irb/ext/multi-irb.rb (working copy)
@@ -233,9 +233,10 @@
end
end
- trap("SIGINT") do
- @JobManager.current_job.signal_handle
- Thread.stop
+ if !@CONF[:NOTRAP] do
+ trap("SIGINT") do
+ @JobManager.current_job.signal_handle
+ Thread.stop
+ end
end
-
end
Index: lib/irb.rb
===================================================================
--- lib/irb.rb (revision 18781)
+++ lib/irb.rb (working copy)
@@ -61,9 +61,11 @@
@CONF[:IRB_RC].call(irb.context) if @CONF[:IRB_RC]
@CONF[:MAIN_CONTEXT] = irb.context
-
- trap("SIGINT") do
- irb.signal_handle
+
+ if !@CONF[:NOTRAP] do
+ trap("SIGINT") do
+ irb.signal_handle
+ end
end
catch(:IRB_EXIT) do
smime.p7s
(1.61 KB, application/pkcs7-signature)