Re: [PATCH] Smackv10: Smack rules grammar + their stateful parser | KernelTrap

Re: [PATCH] Smackv10: Smack rules grammar + their stateful parser

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Tetsuo Handa <penguin-kernel@...>

To: <pavel@...>, <torvalds@...>

Cc: <darwish.07@...>, <casey@...>, <akpm@...>, <linux-security-module@...>, <linux-kernel@...>, <viro@...>

Subject: Re: [PATCH] Smackv10: Smack rules grammar + their stateful parser

Date: Monday, November 5, 2007 - 5:56 pm

Linus Torvalds wrote:
quoted text> I personally think string parsers are *much* better than the alternatives 
> (which basically boil down to nasty binary interfaces)
Me too.

quoted text> Binary structures and ioctl's are *much* worse. They are totally 
> undebuggable with generic tools (think "echo" or "strace"), and they are a 
> total nightmare to parse across architectures and pointer sizes.
Not only pointer sizes bugs, but also checking pointer address costs.
For binary policy, we have to examine ->next pointer is valid or not.
We can't blindly use address supplied from userland.

I have encountered mismatch of kernel version and AppArmor's policy parser version
when I just updated only kernel. As a result, the segmentation faults rushed toward me.
 From this experience, TOMOYO still uses string parser in the kernel.
If a parser doesn't consume much stack (i.e. call functions recursively), I think it is no problem.

Thanks.

-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] Version 10 (2.6.24-rc1) Smack: Simplified Mandatory ..., Casey Schaufler, (Fri Nov 2, 4:50 pm)

[PATCH] Smackv10: Smack rules grammar + their stateful parser, Ahmed S. Darwish, (Sat Nov 3, 12:43 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 2:33 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Kyle Moffett, (Tue Nov 6, 4:26 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 4:56 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Tue Nov 6, 7:34 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 7:47 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Tue Nov 6, 8:23 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Kyle Moffett, (Tue Nov 6, 8:49 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Tue Nov 6, 11:53 am)

[PATCH] Fix isspace() and other ctype.h functions to ignore ..., Kyle Moffett, (Wed Nov 7, 6:56 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 9:34 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Tue Nov 6, 10:05 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 10:10 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Tue Nov 6, 10:30 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Alan Cox, (Tue Nov 6, 7:02 am)

[PATCH] Smackv10: Smack rules grammar + their stateful parse..., Ahmed S. Darwish, (Sun Nov 4, 8:56 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Pavel Machek, (Sun Nov 11, 8:44 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Sun Nov 11, 2:37 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Jakob Oestergaard, (Sat Nov 10, 1:05 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Sat Nov 10, 3:45 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Sun Nov 4, 4:06 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Pavel Machek, (Sun Nov 4, 8:28 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Mon Nov 5, 5:41 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Mon Nov 5, 12:21 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 4:06 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Tue Nov 6, 11:39 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 7:00 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Tue Nov 6, 7:08 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 8:07 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Tue Nov 6, 8:27 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 8:43 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Tue Nov 6, 9:06 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 9:59 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Alan Cox, (Wed Nov 7, 11:08 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Linus Torvalds, (Wed Nov 7, 12:09 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Tetsuo Handa, (Tue Nov 6, 9:03 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Mon Nov 5, 7:38 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Tetsuo Handa, (Mon Nov 5, 5:56 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 6:00 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Tetsuo Handa, (Tue Nov 6, 8:27 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 9:58 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Tetsuo Handa, (Tue Nov 6, 10:32 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 10:59 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Tetsuo Handa, (Tue Nov 6, 11:27 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Adrian Bunk, (Tue Nov 6, 6:42 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Sun Nov 4, 9:23 am)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Casey Schaufler, (Sun Nov 4, 12:37 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Kyle Moffett, (Sat Nov 3, 2:30 pm)

Re: [PATCH] Smackv10: Smack rules grammar + their stateful p..., Ahmed S. Darwish, (Sat Nov 3, 6:12 pm)

Navigation

Popular discussions


linux-kernel:
Tarkan Erimer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Greg KH	[GIT PATCH] driver core patches against 2.6.24
James Bottomley	Re: Announce: Linux-next (Or Andrew's dream :-))
Trent Piepho	Re: [PATCH] fakephp: Allocate PCI resources before adding the device
linux-netdev:
Antonio Almeida	HTB accuracy for high speed
David Miller	[GIT]: Networking
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
git:

openbsd-misc:

Colocation donated by:

Who's online

There are currently 2 users and 714 guests online.

Online users

Syndicate