Version française
Home     About     Download     Resources     Contact us    
Browse thread
dynamic loading of Caml bytecode
[ Home ] [ Index: by date | by threads ]
[ Search: ]

[ Message by date: previous | next ] [ Message in thread: previous | next ] [ Thread: previous | next ]
Date: -- (:)
From: Xavier Leroy <Xavier.Leroy@i...>
Subject: Re: dynamic loading of Caml bytecode
> I wonder if anyone could elaborate for me on the safety of dynamically
> loaded Ocaml bytecode?  Is it possible to load bytecode that is not
> well-formed or type-correct (thus resulting in a core-dump or other
> misbehavior at runtime)?  I understand that interfaces are checked for
> consistency using MD5 hashes, but I'm curious about the internal consistency
> of the bytecode file itself.

Essentially no consistency checks are performed by the dynamic loader.
Just like the MD5-based interface consistency mechanism that you
mention, the whole dynamic loader assumes that its input has been
produced by a correct OCaml compiler and not modified since.  That's
why in the MMM design we had to rely on cryptographic signatures to
ensure the well-formedness of applet code.

- Xavier Leroy