Carsten Bormann <[email protected]> wrote: >> Or, if it is supported by the language then is it reasonable that >> implementation SHOULD support it? In which case I think that we might >> need a second encoding of bits that supports this pathological case. >> Perhaps an array of 'set' bit positions, or alternatively the union >> string encoding of bits could be used.
> This could reduce the attack vector by malicious YANG specification,
> but I think an arbitrary limit (such as the 256 mentioned above) should
> work, too. (Except that arbitrary limits always come back to bite you,
> but that’s what we have software maintenance contracts for.)
I think that the YANG knows what the maximum value is.
So I think that anyone generating code from specific YANG definitions could
size their array based upon that value.
If it's a generic decoder for YANG encoded content, then it might need
a hint from the application, or it could have a compile-time arbitrary limit.
--
Michael Richardson <[email protected]>, Sandelman Software Works
-= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ netmod mailing list [email protected] https://www.ietf.org/mailman/listinfo/netmod
