eval: handle taint of overloaded/tied arg

string eval would check its arg for taint before processing magic, overload etc. If the magic or overload returned a tainted value, it wouldn't be detected. Fixes part of #75716.
author: David Mitchell <davem@iabyn.com> 2010-06-24 00:02:39 +0100
committer: David Mitchell <davem@iabyn.com> 2010-07-03 16:25:58 +0100
commit: 895b760f672897cb301e8900c05743c32f282f42 (patch)
tree: 7cb638db2ce098117e99455bf900d1ab23bfb3ab /lib
parent: 3e5c01898a8b319439f67ce035bfc80fb80b4f3b (diff)
download: perl-895b760f672897cb301e8900c05743c32f282f42.tar.gz
1 files changed, 6 insertions, 2 deletions
diff --git a/lib/overload.t b/lib/overload.t
index 8a632a5c8a..c1d4eaf0c3 100644
--- a/lib/overload.t
+++ b/lib/overload.t
@@ -47,7 +47,7 @@ sub numify { 0 + "${$_[0]}" }	# Not needed, additional overhead
 package main;
 
 $| = 1;
-use Test::More tests => 4826;
+use Test::More tests => 4880;
 
 use Scalar::Util qw(tainted);
 
@@ -1867,6 +1867,11 @@ foreach my $op (qw(<=> == != < <= > >=)) {
 
 	# XXX TODO: '<>'
 
+	# eval should do tie, overload on its arg before checking taint */
+	push @tests, [ '1;', 'eval q(eval %s); $@ =~ /Insecure/',
+		'("")', '("")', [ 1, 2, 0 ], 0 ];
+
+
 	for my $sub (keys %subs) {
 	    my $term = $subs{$sub};
 	    my $t = sprintf $term, '$_[0][0]';
@@ -1990,7 +1995,6 @@ foreach my $op (qw(<=> == != < <= > >=)) {
 		    $res = "$res" if $res_term =~ /\+\+|--/;
 		    is(tainted($res), $exp_taint,
 			    "$desc taint of result return");
-		    #XXX$res = "$res";
 		    is($res, $exp, "$desc return value");
 		    my $fns =($ov_pkg eq 'RT57012_OV_FB')
 				? $exp_fb_funcs : $exp_funcs;
author	David Mitchell <davem@iabyn.com>	2010-06-24 00:02:39 +0100
committer	David Mitchell <davem@iabyn.com>	2010-07-03 16:25:58 +0100
commit	895b760f672897cb301e8900c05743c32f282f42 (patch)
tree	7cb638db2ce098117e99455bf900d1ab23bfb3ab /lib
parent	3e5c01898a8b319439f67ce035bfc80fb80b4f3b (diff)
download	perl-895b760f672897cb301e8900c05743c32f282f42.tar.gz