Bug 303342 – new PARSER_NO_DISK_ACCESS constant

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 303342 - new PARSER_NO_DISK_ACCESS constant


Summary:	new PARSER_NO_DISK_ACCESS constant


Status:	VERIFIED INCOMPLETE

Product:	libxml2
Classification:	Platform
Component:	general
Version:	git master
Hardware:	Other All

Importance:	Normal enhancement
Target Milestone:	---
Assigned To:	Daniel Veillard
QA Contact:	libxml QA maintainers

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2005-05-07 08:53 UTC by Nuno Lopes
Modified:	2009-08-15 18:40 UTC

See Also:
GNOME target:	---
GNOME version:	---

Description Nuno Lopes 2005-05-07 08:53:53 UTC

It would be good to have a new PARSER_NO_DISK_ACCESS that would block accesses 
to hard disk, like PARSER_NO_NET.

Comment 1 Daniel Veillard 2005-05-08 11:19:28 UTC

It's more complex than you seems to think. What about catalogs for example.
I'm sympathetic to any request toward adding security to libxml2 but
like any good security framework design this has to be done globally and
discussed with all parties involved. Joing the mailing and raise the
issue there with explanations of your rationale for this. Nothing would
be worse than an option giving a feeling of security when in fact the
framework doesn't provide it. As such the request is incomplete. And I ask
this to be discussed on the mailing-list, using bugzilla to request just
one bit of it without even an use case is not proper IMHO.

Daniel