summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authornobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>2009-01-31 10:07:49 +0000
committernobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>2009-01-31 10:07:49 +0000
commit6fac84119def5a8e02d2ca892e004b9d5b96640e (patch)
tree730debbd8d81a2218e9b0380c8547786978e6759
parentf0536ac8641776268ce8c2ee4e78700c9eaad97c (diff)
downloadruby-6fac84119def5a8e02d2ca892e004b9d5b96640e.tar.gz
ruby-6fac84119def5a8e02d2ca892e004b9d5b96640e.tar.xz
ruby-6fac84119def5a8e02d2ca892e004b9d5b96640e.zip
* load.c (rb_require_safe): raises when the path to be loaded is
tainted. [ruby-dev:37843] git-svn-id: http://svn.ruby-lang.org/repos/ruby/trunk@21917 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat
-rw-r--r--ChangeLog5
-rw-r--r--load.c6
2 files changed, 10 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index 8f344af23..6302efe59 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+Sat Jan 31 19:09:30 2009 Nobuyoshi Nakada <nobu@ruby-lang.org>
+
+ * load.c (rb_require_safe): raises when the path to be loaded is
+ tainted. [ruby-dev:37843]
+
Sat Jan 31 18:08:59 2009 Nobuyoshi Nakada <nobu@ruby-lang.org>
* configure.in (optflags): defaulted to -O3 to get rid of slug of
diff --git a/load.c b/load.c
index 8e66a7571..8e533771f 100644
--- a/load.c
+++ b/load.c
@@ -554,13 +554,17 @@ rb_require_safe(VALUE fname, int safe)
rb_set_safe_level_force(safe);
FilePathValue(fname);
RB_GC_GUARD(fname) = rb_str_new4(fname);
+ rb_set_safe_level_force(0);
found = search_required(fname, &path);
if (found) {
if (!path || !(ftptr = load_lock(RSTRING_PTR(path)))) {
result = Qfalse;
}
else {
- rb_set_safe_level_force(0);
+ if (safe > 0 && OBJ_TAINTED(path)) {
+ rb_raise(rb_eSecurityError, "cannot load from insecure path - %s",
+ RSTRING_PTR(path));
+ }
switch (found) {
case 'r':
rb_load(path, 0);
generated by cgit (git 2.34.1) at 2026-01-05 23:20:16 +0000