in reply to Flocking in advance

Does Simple Locking do what you want? :-)

Replies are listed 'Best First'.
RE: RE: Flocking in advance
by larsen (Parson) on Aug 11, 2000 at 21:03 UTC
    Thank you very much. I'll try to explain something more about my application. The application is interfaced to a database containing a lot of exercises and solutions. An exercise consists in a description of the problem (a .ps file), an input file (exercise_code.in) and a output file (exercise_code.out). A solution is called correct iff, provided (exercise_code.in) as input, output produced by the program equals verbatim (exercise_code.out). If a solution is correct, it will be inserted in the database. So a student can see other solutions and learn. Or practice, in order to participate to ACM International Collegiate Programming Contest. As you can see, the entire process is automatizable. So far so good.

    Here's a pseudo code description of my submit script.
    get solution's source code from web form
get a valid temp file and store solution in it

# Here's my rudimental flocking system
while ( -e "exercise_code.in" ) {}

get from the database exercise_code.in and exercise_code.out
compile solution's source code (using gcc)
run the solution (it will produce executable_filename.out)
File::Compare executable_filename.out and exercise_code.out
if they are the same
        insert solution in the database
else
        wrong answer!

    [download]

    I feel I could do something better. Now, I am going to examine your Simple Locking code
    See you
[reply]
[d/l]
[select]
      Be very, very, careful. You don't want someone submitting a rootkit as a sample solution! Were I you I would do some very serious studying of ways of executing untrusted code. Note that there are well-known ways of breaking chroot jails, that is not enough. On many *nix systems you have something called POSIX capabilities (a marketing misnaming since they have essentially nothing to do with real capabilities) that might be able to give you enough protection to sleep at night.

      Other ideas are to use OpenBSD for the test, run the code inside of VMWare (from a stock image that you throw away afterwards) or examine user-mode Linux.

      Personally I like the VMWare and user-mode Linux ideas the best, but YMMV. It is your system after all...

[reply]

In Section Seekers of Perl Wisdom