Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:37183
Return-Path: <ioplex@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 48346 invoked from network); 22 Apr 2008 18:29:29 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 22 Apr 2008 18:29:29 -0000
Authentication-Results: pb1.pair.com header.from=ioplex@gmail.com; sender-id=pass; domainkeys=bad
Authentication-Results: pb1.pair.com smtp.mail=ioplex@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.142.191 as permitted sender)
DomainKey-Status: bad
X-DomainKeys: Ecelerity dk_validate implementing draft-delany-domainkeys-base-01
X-PHP-List-Original-Sender: ioplex@gmail.com
X-Host-Fingerprint: 209.85.142.191 ti-out-0910.google.com  
Received: from [209.85.142.191] ([209.85.142.191:52424] helo=ti-out-0910.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 0C/18-09668-88E2E084 for <internals@lists.php.net>; Tue, 22 Apr 2008 14:29:28 -0400
Received: by ti-out-0910.google.com with SMTP id a21so876266tia.17
        for <internals@lists.php.net>; Tue, 22 Apr 2008 11:29:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
        bh=vuFDvDlfWwEgVz/5V40Fxz2Qk+Gn2ukYv/yWpVpqFuY=;
        b=TFpi9azoKnAJVXABsTAv7g13FMjIvbLKaHti/ZxWX1I60vkMkTjRM+xVRYflVQCvMWEmmsu1115lm/fKF0oO6d7lRw2gm5P3LzwJqXlhhy+Y3q4BEZ6ji9Hz8kUD1VwL9gPjyrrarLSoM8cHxKX6LCrwWmryKyHFO0i5aO4A1pQ=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
        b=prXTlMKUrGbIqiIuLUt3Xogk3Oi/2jEYdnLXWAVGX4jDioo7bUqLljZ3GtStzP8VGfbi9uHcC0b969VLCQ8jMDeZ+BtnmYN/KOLixBiF5Fyhkh6Hdx4pnYp7P50VZ1hQ59cFusO6w9XsCzX/c6/LBFtxLu/h2X5eHXMdYxSWCbk=
Received: by 10.150.219.16 with SMTP id r16mr645086ybg.198.1208888963562;
        Tue, 22 Apr 2008 11:29:23 -0700 (PDT)
Received: by 10.151.154.1 with HTTP; Tue, 22 Apr 2008 11:29:23 -0700 (PDT)
Message-ID: <78c6bd860804221129u19803acaw26e2cb02c6cfc660@mail.gmail.com>
Date: Tue, 22 Apr 2008 14:29:23 -0400
To: internals@lists.php.net
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Subject: zval taint bits
From: ioplex@gmail.com ("Michael B Allen")

Hi,

I saw Wietse's taint presentation at nyphp last night and I just
wanted to express my support for the feature.

It seems to me OR-ing bits together between zval fields is relatively
harmless. Clearly it will not catch everything as extensions can
introduce clean zvals that are in fact tainted (or visa versa) but I
foresee that this feature would amount to adding a very informative
warning for developers. Just as you would get a warning for trying to
call a function with the wrong parameters or divide by zero, the taint
bits can be used to teach developers as to how to properly process
their data.

Mike

PS: I am strongly against the idea of filters - the application should
output what I tell it to output and nothing else.