3rd Edition

ISBN: 8220101459107

Author: O'HALLARON

Publisher: YUZU

See similar textbooks

Videos

Textbook Question

Chapter 2.3, Problem 2.37PP

Practice Problem 2.37 solution page 155

You are given the task of patching the vulnerability in the XDR code shown in the aside on page 100 for the case where both data types int and size_t are 32 bits. You decide to .eliminate the possibility of the multiplication overflowing by computing the number of bytes to allocate using data type unit64_t. You replace

In 2002, it was discovered that code supplied by Sun Microsystems to implement the XDR library, a widely used facility for sharing data structures between programs, had a security vulnerability arising from the fact that multiplication can overflow without any notice being given to the program.

Code similar to that containing the vulnerability is shown below:

Chapter 2.3, Problem 2.37PP, Practice Problem 2.37 solution page 155 You are given the task of patching the vulnerability in the

The function copy_elements is designed to copy ele_cnt data structures, each consisting of ele_ size bytes into a buffer allocated by the function on line 9. The number of bytes required is computed as ele_cnt * ele_size.

Imagine, however, that a malicious programmer calls this function with ele_cnt being 1,048,577 (2²⁰ + 1) and ele_size being 4,096 (2¹²) with the program compiled for 32 bits. Then the multiplication on line 9 will overflow, causing only 4,096 bytes to be allocated, rather than the 4,294,971,392 bytes required to hold that much data. The loop starting at line 15 will attempt to copy all of those bytes, overrunning the end of the allocated buffer, and therefore corrupting other data structures. This could 1 cause the program to crash or otherwise misbehave.

The Sun code was used by almost every operating system and. in such widely used programs as Internet Explorer and the Kerberos authentication system. The Computer Emergency Response Team , (CERT), an organization run by the Carnegie Mellon Software Engineering Institute to track security vulnerabilities and breaches, issued advisory “CA-2002-25,” and many companies rushed to patch their code. Fortunately, there were no reported security breaches caused by this vulnerability.

A similar vulnerability existed in many implementations of the library function calloc. These have since been patched. Unfortunately, many-programmers call allocation functions, such as malloc using arithmetic expressions as arguments, without checking these expressions for overflow. Writing a reliable version of calloc is left as an exercise (Problem 2.76)

the original call to malloc (line 9) as follows:

Expert Solution & Answer

Want to see the full answer?

Check out a sample textbook solution

See solution

Chapter 2.3, Problem 2.36PP

Chapter 2.3, Problem 2.38PP

Students have asked these similar questions

I need help to solve the following case, thank you

hi I would like to get help to resolve the following case

Could you help me to know features of the following concepts: - defragmenting. - dynamic disk. - hardware RAID

Chapter 2 Solutions

EBK COMPUTER SYSTEMS

Ch. 2.1 - Practice Problem 2.1 (solution page 143) Perform...Ch. 2.1 - Prob. 2.2PP Ch. 2.1 - Prob. 2.3PP Ch. 2.1 - Practice Problem 2.4 (solution page 144) Without...Ch. 2.1 - Prob. 2.5PP Ch. 2.1 - Prob. 2.6PP Ch. 2.1 - Prob. 2.7PP Ch. 2.1 - Prob. 2.8PP Ch. 2.1 - Practice Problem 2.9 solution page 146 Computers...Ch. 2.1 - Prob. 2.10PP

Ch. 2.1 - Prob. 2.11PP Ch. 2.1 - Prob. 2.12PP Ch. 2.1 - Prob. 2.13PP Ch. 2.1 - Prob. 2.14PP Ch. 2.1 - Prob. 2.15PP Ch. 2.1 - Prob. 2.16PP Ch. 2.2 - Prob. 2.17PP Ch. 2.2 - Practice Problem 2.18 (solution page 149) In...Ch. 2.2 - Prob. 2.19PP Ch. 2.2 - Prob. 2.20PP Ch. 2.2 - Prob. 2.21PP Ch. 2.2 - Prob. 2.22PP Ch. 2.2 - Prob. 2.23PP Ch. 2.2 - Prob. 2.24PP Ch. 2.2 - Prob. 2.25PP Ch. 2.2 - Practice Problem 2.26 (solution page 151) You are...Ch. 2.3 - Prob. 2.27PP Ch. 2.3 - Prob. 2.28PP Ch. 2.3 - Prob. 2.29PP Ch. 2.3 - Practice Problem 2.30 (solution page 153) Write a...Ch. 2.3 - Prob. 2.31PP Ch. 2.3 - Practice Problem 2.32 (solution page 153) You are...Ch. 2.3 - Prob. 2.33PP Ch. 2.3 - Prob. 2.34PP Ch. 2.3 - Practice Problem 2.35 (solution page 154) You are...Ch. 2.3 - Prob. 2.36PP Ch. 2.3 - Practice Problem 2.37 solution page 155 You are...Ch. 2.3 - Prob. 2.38PP Ch. 2.3 - Prob. 2.39PP Ch. 2.3 - Practice Problem 2.40 (solution page 156) For each...Ch. 2.3 - Prob. 2.41PP Ch. 2.3 - Practice Problem 2.42 (solution page 156) Write a...Ch. 2.3 - Practice Problem 2.43 (solution page 157) In the...Ch. 2.3 - Prob. 2.44PP Ch. 2.4 - Prob. 2.45PP Ch. 2.4 - Prob. 2.46PP Ch. 2.4 - Prob. 2.47PP Ch. 2.4 - Prob. 2.48PP Ch. 2.4 - Prob. 2.49PP Ch. 2.4 - Prob. 2.50PP Ch. 2.4 - Prob. 2.51PP Ch. 2.4 - Prob. 2.52PP Ch. 2.4 - Practice Problem 2.53 (solution page 160) Fill in...Ch. 2.4 - Practice Problem 2.54 (solution page 160) Assume...Ch. 2 - Compile and run the sample code that uses...Ch. 2 - Try running the code for show_bytes for different...Ch. 2 - Prob. 2.57HW Ch. 2 - Write a procedure is_little_endian that will...Ch. 2 - Prob. 2.59HW Ch. 2 - Prob. 2.60HW Ch. 2 - Prob. 2.61HW Ch. 2 - Write a function int_shifts_are_arithmetic() that...Ch. 2 - Fill in code for the following C functions....Ch. 2 - Write code to implement the following function: /...Ch. 2 - Write code to implement the following function: /...Ch. 2 - Write code to implement the following function: / ...Ch. 2 - You are given the task of writing a procedure...Ch. 2 - Prob. 2.68HW Ch. 2 - Write code for a function with the following...Ch. 2 - Write code for the function with the following...Ch. 2 - You just started working for a company that is...Ch. 2 - You are given the task of writing a function that...Ch. 2 - Write code for a function with the following...Ch. 2 - Write a function with the following prototype: /...Ch. 2 - Prob. 2.75HW Ch. 2 - The library function calloc has the following...Ch. 2 - Prob. 2.77HW Ch. 2 - Write code for a function with the following...Ch. 2 - Prob. 2.79HW Ch. 2 - Write code for a function threefourths that, for...Ch. 2 - Prob. 2.81HW Ch. 2 - Prob. 2.82HW Ch. 2 - Prob. 2.83HW Ch. 2 - Prob. 2.84HW Ch. 2 - Prob. 2.85HW Ch. 2 - Intel-compatible processors also support an...Ch. 2 - Prob. 2.87HW Ch. 2 - Prob. 2.88HW Ch. 2 - We are running programs on a machine where values...Ch. 2 - You have been assigned the task of writing a C...Ch. 2 - Prob. 2.91HW Ch. 2 - Prob. 2.92HW Ch. 2 - following the bit-level floating-point coding...Ch. 2 - Following the bit-level floating-point coding...Ch. 2 - Following the bit-level floating-point coding...Ch. 2 - Following the bit-level floating-point coding...Ch. 2 - Prob. 2.97HW

Additional Engineering Textbook Solutions

Find more solutions based on key concepts

What Visual Basic function would you use to get the current time from the system, without the date?

Starting Out With Visual Basic (8th Edition)

This optional Google account security feature sends you a message with a code that you must enter, in addition ...

SURVEY OF OPERATING SYSTEMS

In the following exercises, write a program to carry out the task. The program should use variables for each of...

Introduction To Programming Using Visual Basic (11th Edition)

Comprehension Check 12-5 You have three springs, with stiffness 1,2 and 3 newtons per meter [N/m], respectively...

Thinking Like an Engineer: An Active Learning Approach (4th Edition)

How is the hydrodynamic entry length defined for flow in a pipe? Is the entry length longer in laminar or turbu...

Fluid Mechanics: Fundamentals and Applications

Circumference and Area of a Circle) Heres a peek ahead. In this chapter, you learned about integers and the typ...

Java How to Program, Early Objects (11th Edition) (Deitel: How to Program)

Knowledge Booster

Learn more about

Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-engineering and related others by exploring similar questions and additional content below.