This is the mail archive of the libstdc++@gcc.gnu.org mailing list for the libstdc++ project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [Patch, PR 61061] Add state limit for regex NFA

From: Jonathan Wakely <jwakely at redhat dot com>
To: Maksymilian A <max at cert dot cx>
Cc: timshen at google dot com, libstdc++ at gcc dot gnu dot org, paolo dot carlini at oracle dot com
Date: Thu, 17 Jul 2014 11:38:19 +0100
Subject: Re: [Patch, PR 61061] Add state limit for regex NFA
Authentication-results: sourceware.org; auth=none
References: <CABLZJbw193qGxH7nZYe3fegmH38sEwRBps0E6QDax21zGJPTJQ at mail dot gmail dot com> <20140717093404 dot GQ4871 at redhat dot com> <20140717093842 dot GR4871 at redhat dot com> <CABLZJbxahXqQ1Ef7jS4FT9pEaw_zGKhJxsYQfBUJf2NNR-SA8w at mail dot gmail dot com>

On 17/07/14 12:24 +0200, Maksymilian A wrote:

Hi Jonathan,

The default value for mentioned 'pre set level' isn't specified. I


Of course not. The standard does not know how an implementation works
or what is considered too complex for every system. A single value
would not make sense for all systems, from embedded microcontrollers
to supercomputers.

think that we need new safe and extended RE type or user should
determine security level of complexity.


I don't think that's a good idea.

References:
- Re: [Patch, PR 61061] Add state limit for regex NFA
  - From: Jonathan Wakely
- Re: [Patch, PR 61061] Add state limit for regex NFA
  - From: Jonathan Wakely
- Re: [Patch, PR 61061] Add state limit for regex NFA
  - From: Maksymilian A

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]