Re: 64-bit clean code

Previous Topic Next Topic
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

Re: 64-bit clean code

Andrew S. Townley-3


I just tried to build Amaya9.54 on amd64 (opensuse-10.2) and had the
same problem.  I know from a google search that this was considered an
exploitable buffer overflow problem on 21-April-2006 by the debian team

I'm not sure that the code should stay as-is, but I do know that if
you're going to try to cast pointer contents for arithmetic, you should
at least do so with the proper size, e.g. long as Chris suggested.

It would be nice to not have to hack the code just to get it to
compile... ;)  Is there an ETA to getting this issue fixed one or

Thanks in advance,


> From: Laurent Carcone <[hidden email]>
> Date: Fri, 21 Jul 2006 17:44:07 +0200
> To: Chris Hodapp <[hidden email]>
> Cc: [hidden email]
> Message-Id: <[hidden email]>
> Hello Chris,
> We'll test yours patches as soon as possible.
> Thanks,
> Laurent Carcone
> On Wed, 19 Jul 2006 18:19:56 -0400
> Chris Hodapp <[hidden email]> wrote:
> >
> > Hello,
> > I'm on pure64 Debian right now (etch, GCC 4.0.4), and no AMD64 packages
> > existed, so I tried to build the source. Two errors occurred, and I'm pretty
> > sure it's because an assumption was made that the hardware was 32-bit:
> >
> > .../../thotlib/dialogue/AmayaXMLPanel.cpp: In member function ___virtual void
> > AmayaXMLPanel::SendDataToPanel(AmayaParams&)___:
> > .../../thotlib/dialogue/AmayaXMLPanel.cpp:105: error: cast from ___void*___
> > to ___int___ loses precision
> >
> > .../../amaya/MENUconf.c: In function ___void PreferenceCallbackDialog(int, int,
> > char*)___:
> > .../../amaya/MENUconf.c:4655: error: cast from ___char*___ to ___int___ loses precision
> >
> > In both cases, I used a 'long' instead of an 'int' and then the code compiled.
> > Everything seems to run well, but I don't know if I broke something in a
> > subtle way.
> >
> >
> > Here are the changes I tried; hopefully they make sense
Andrew S. Townley <[hidden email]>