Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
SELinux Mailing ListRe: policyrep questions
From: Stephen Smalley <sds_at_tycho.nsa.gov>
Date: Wed, 09 May 2007 11:29:15 -0400
Not a problem (.so version has already changed in -policyrep and we have already made other incompatible changes). OTOH, what could/would a caller do if a free function failed? At that point, it will leak memory unless it aborts altogether, right? So possibly we gain nothing from returning an error status to the caller? What do other libraries do under similar conditions? Or do they avoid it through different data structure and API design?
> 2) The general form of the free functions will be: Only if you plan to generate an error message from within the function.
> 3) The existing objects copy the passed in strings where I was hoping to Yes, I think copying the data and managing its lifecycle within the library is safer.
> 4) We assume NULL-terminated strings all over the place - should we be I'm not clear that tracking length separately is advantageous for these APIs. What specific advantages would accrue to libsepol from using vstr? What is the cost (incl. dependencies)? -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.Received on Wed 9 May 2007 - 11:29:16 EDT |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15, 2009 |