This is the mail archive of the gcc@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: Signed int overflow behaviour in the security context

From: kenner at vlsi1 dot ultra dot nyu dot edu (Richard Kenner)
To: Joe dot Buck at synopsys dot com
Cc: gcc at gcc dot gnu dot org, jdennett at acm dot org
Date: Wed, 24 Jan 2007 19:09:24 EST
Subject: Re: Signed int overflow behaviour in the security context
References: <45B585D1.1080202@andreas.org> <m3ejpm8hk0.fsf@localhost.localdomain> <45B5C12C.4030003@andreas.org> <4aca3dc20701230845l48940calc762194cd5f029c8@mail.gmail.com> <45B64108.9020603@andreas.org> <m3ac097iy6.fsf@localhost.localdomain> <45B68F80.5080701@andreas.org> <10701240158.AA23895@vlsi1.ultra.nyu.edu> <ep70gd$ftg$1@sea.gmane.org> <10701241251.AA00849@vlsi1.ultra.nyu.edu> <20070124184618.GA6607@synopsys.com>

> Suddenly rejecting all that code, or making it generate a different
> result, would not serve the community/society.

Sure, but that wasn't the issue I was addressing.

I was addressing the claim that we allegedly have people writing security-
and/or safety-critical software who don't understand the semantics of that
language as they relate to safety and security (namely, what overflows do).
That's a serious problem.  Of course, there's not a whole lot that we
as compiler writers can do with it (hence my smiley).

Follow-Ups:
- Re: Signed int overflow behaviour in the security context
  - From: Andreas Bogk

References:
- Re: Signed int overflow behaviour in the security context
  - From: Andreas Bogk
- Re: Signed int overflow behaviour in the security context
  - From: Ian Lance Taylor
- Re: Signed int overflow behaviour in the security context
  - From: Andreas Bogk
- Re: Signed int overflow behaviour in the security context
  - From: Daniel Berlin
- Re: Signed int overflow behaviour in the security context
  - From: Andreas Bogk
- Re: Signed int overflow behaviour in the security context
  - From: Ian Lance Taylor
- Re: Signed int overflow behaviour in the security context
  - From: Andreas Bogk
- Re: Signed int overflow behaviour in the security context
  - From: Richard Kenner
- Re: Signed int overflow behaviour in the security context
  - From: James Dennett
- Re: Signed int overflow behaviour in the security context
  - From: Richard Kenner
- Re: Signed int overflow behaviour in the security context
  - From: Joe Buck

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]