summaryrefslogtreecommitdiff
path: root/ext/Opcode
diff options
context:
space:
mode:
authorRafael Garcia-Suarez <rgarciasuarez@gmail.com>2005-07-20 16:53:16 +0000
committerRafael Garcia-Suarez <rgarciasuarez@gmail.com>2005-07-20 16:53:16 +0000
commite866b74b8651a8d5e0458756533f958fc66fd305 (patch)
treee4aab1cd60d9682b4687e52800f658f1738106f3 /ext/Opcode
parent1e82f5a677c5abc27ea5ffb3546e5db6b8a56b93 (diff)
downloadperl-e866b74b8651a8d5e0458756533f958fc66fd305.tar.gz
Remove :base_io from the set of default "safe" opcodes.
This fixes bug [perl #36213] "Possible flaw in Safe.pm/Opcode.pm that allows access to any file" but introduces a backward compatibility issue. p4raw-id: //depot/perl@25204
Diffstat (limited to 'ext/Opcode')
-rw-r--r--ext/Opcode/Opcode.pm12
1 files changed, 7 insertions, 5 deletions
diff --git a/ext/Opcode/Opcode.pm b/ext/Opcode/Opcode.pm
index 9f426cd882..179da04557 100644
--- a/ext/Opcode/Opcode.pm
+++ b/ext/Opcode/Opcode.pm
@@ -6,7 +6,7 @@ use strict;
our($VERSION, $XS_VERSION, @ISA, @EXPORT_OK);
-$VERSION = "1.06";
+$VERSION = "1.07";
$XS_VERSION = "1.03";
use Carp;
@@ -374,8 +374,9 @@ used to implement a resource attack (e.g., consume all available CPU time).
These ops enable I<filehandle> (rather than filename) based input and
output. These are safe on the assumption that only pre-existing
-filehandles are available for use. To create new filehandles other ops
-such as open would need to be enabled.
+filehandles are available for use. Usually, to create new filehandles
+other ops such as open would need to be enabled, if you don't take into
+account the magical open of ARGV.
readline rcatline getc read
@@ -441,12 +442,13 @@ These ops are related to multi-threading.
A handy tag name for a I<reasonable> default set of ops. (The current ops
allowed are unstable while development continues. It will change.)
- :base_core :base_mem :base_loop :base_io :base_orig :base_thread
+ :base_core :base_mem :base_loop :base_orig :base_thread
+
+This list used to contain :base_io prior to Opcode 1.07.
If safety matters to you (and why else would you be using the Opcode module?)
then you should not rely on the definition of this, or indeed any other, optag!
-
=item :filesys_read
stat lstat readlink