[e-lang] Joe-E Doc

Karp, Alan H alan.karp at hp.com
Wed Mar 12 13:01:56 EDT 2008


David Wagner wrote:
>
> Our approach is dangerous: if we overlook a single case where the Java
> compiler implicitly introduces method calls or field
> accesses, Joe-E code
> may be able to bypass the taming checks.  We're essentially
> blacklisting,
> and that's always risky.
>
The last time I looked, the .class file lists the imported methods as text strings.  That means you can use grep to check for untamed methods to see how well you've done.  I don't know about field accesses.

________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp




More information about the e-lang mailing list