From b3a3969897930eeda308113acbbb3f98069ee1ab Mon Sep 17 00:00:00 2001 From: Havoc Pennington Date: Tue, 22 Apr 2003 19:34:33 +0000 Subject: 2003-04-22 Havoc Pennington * test/data/valid-messages/opposite-endian.message: fix test to use proper type for rply field * test/data/invalid-messages: add tests for below validation * dbus/dbus-message.c (decode_header_data): validate field types, and validate that named fields are valid names (decode_name_field): consider messages in the org.freedesktop.Local. namespace to be invalid. * dbus/dbus-string.c (_dbus_string_validate_name): new --- doc/TODO | 16 ---------------- 1 file changed, 16 deletions(-) (limited to 'doc') diff --git a/doc/TODO b/doc/TODO index a02804a1..2cd7e44d 100644 --- a/doc/TODO +++ b/doc/TODO @@ -1,17 +1,4 @@ - - Service and message names should be more carefully restricted; - they should have a max length, may not be an empty string, - and perhaps should not be allowed to be a glob such as "*" since - the config file could conveniently use such notation. - - Suggest requiring length > 0, length < max, - name contains at least one ".", no initial ".", and valid UTF-8. - That would prohibit plain "*" but not "foo.bar.baz.operator*" - - For maximum convenience from all programming languages, we could go - further and just categorically ban nearly all non-alphanumeric - characters. - - Message matching rules (so broadcasts can be filtered) need sorting out. @@ -74,6 +61,3 @@ - We have a limit on the number of messages a connection can send, but not on how many can be buffered for a given connection. - - - other apps can send you a fake DBUS_MESSAGE_LOCAL_DISCONNECT; need to - check for that and disallow it. -- cgit