This is the mail archive of the java@gcc.gnu.org mailing list for the Java project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: gcj-security and some issues

From: Andrew Haley <aph at redhat dot com>
To: Bryce McKinlay <mckinlay at redhat dot com>
Cc: Jakob Praher <jpraher at yahoo dot de>, Tom Tromey <tromey at redhat dot com>, Anthony Green <green at redhat dot com>, Michael Koch <konqueror at gmx dot de>, "java at gcc dot gnu dot org" <java at gcc dot gnu dot org>
Date: Thu, 29 Apr 2004 16:35:44 +0100
Subject: Re: gcj-security and some issues
References: <1083017947.2476.35.camel@jaques2><200404270639.59638.konqueror@gmx.de><1083049885.2355.35.camel@jaques2><200404270926.07357.konqueror@gmx.de><1083164042.3970.10.camel@escape><87zn8whxw5.fsf@fleche.redhat.com><1083186764.2790.43.camel@jaques2><40903625.5090404@redhat.com><16529.5878.20743.292115@cuddles.cambridge.redhat.com><40911AC2.40806@redhat.com>

Bryce McKinlay writes:
 > Andrew Haley wrote:
 > 
 > > > >It would be interesting  if
 > > > >the compiler could put the start and the end adress (pc) (perhaps
 > > > >relative adress, for relocation and so on) of the methods that were
 > > > >written in java in a write protected memory area (in the constant
 > > > >region).
 > > > 
 > > > The compiler already does this, as part of the DWARF2 unwind info. The 
 > > > tricky part is mapping the function to the class it belongs to. 
 > > > Currently this is done with a hash table but possibly we can add 
 > > > something to the FDE (LDSA?) to make it more efficient.
 > >
 > >The unwinder uses a binary search on each PC value in a stack frame to
 > >locate the start of the function.  Going from there to a class is a
 > >relatively small thing.
 > 
 > Well, you'd think so, but this is the reason why my patch is taking so 
 > long - it becomes complicated because of the Linker/PLT messing function 
 > pointers up.

Right, but the unwinder we have already does basically the same thing
and it's fine except for native methods, which are outside the sandbox
anyway.  Sure, it would be nice to have an accurate mapping of
method->class for native methods, but java.security doesn't require
it AFAICS.

 > Besides that, it takes a reasonable amount of code (potentially
 > during startup if a stack trace is needed) and a not insignificant
 > amount of locking and memory use to build up the hash table that is
 > used to do this mapping.

True.  But hash table insertion isn't that expensive as a portion of
all the stuff we do when initializing a class.  I gues...

Andrew.

Follow-Ups:
- Re: gcj-security and some issues
  - From: Bryce McKinlay

References:
- gcj-security and some issues
  - From: Jakob Praher
- Re: gcj-security and some issues
  - From: Michael Koch
- Re: gcj-security and some issues
  - From: Jakob Praher
- Re: gcj-security and some issues
  - From: Michael Koch
- Re: gcj-security and some issues
  - From: Anthony Green
- Re: gcj-security and some issues
  - From: Tom Tromey
- Re: gcj-security and some issues
  - From: Jakob Praher
- Re: gcj-security and some issues
  - From: Bryce McKinlay
- Re: gcj-security and some issues
  - From: Andrew Haley
- Re: gcj-security and some issues
  - From: Bryce McKinlay

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]