ruby-changes:1879
From: ko1@a...
Date: 7 Sep 2007 14:28:58 +0900
Subject: [ruby-changes:1879] shyouhei - Ruby:r13369 (ruby_1_8_5): * eval.c (mnew): should preserve noex as safe_level.
shyouhei 2007-09-07 14:28:26 +0900 (Fri, 07 Sep 2007) New Revision: 13369 Modified files: branches/ruby_1_8_5/ChangeLog branches/ruby_1_8_5/eval.c branches/ruby_1_8_5/version.h Log: * eval.c (mnew): should preserve noex as safe_level. * eval.c (rb_call0): tighten security check condition.. http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/branches/ruby_1_8_5/version.h?r1=13369&r2=13368 http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/branches/ruby_1_8_5/ChangeLog?r1=13369&r2=13368 http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/branches/ruby_1_8_5/eval.c?r1=13369&r2=13368 Index: ruby_1_8_5/ChangeLog =================================================================== --- ruby_1_8_5/ChangeLog (revision 13368) +++ ruby_1_8_5/ChangeLog (revision 13369) @@ -1,3 +1,9 @@ +Fri Sep 7 14:27:33 2007 Yukihiro Matsumoto <matz@r...> + + * eval.c (mnew): should preserve noex as safe_level. + + * eval.c (rb_call0): tighten security check condition.. + Fri Sep 7 14:19:16 2007 Nobuyoshi Nakada <nobu@r...> * configure.in (group_member): check if presents. Index: ruby_1_8_5/version.h =================================================================== --- ruby_1_8_5/version.h (revision 13368) +++ ruby_1_8_5/version.h (revision 13369) @@ -2,7 +2,7 @@ #define RUBY_RELEASE_DATE "2007-09-07" #define RUBY_VERSION_CODE 185 #define RUBY_RELEASE_CODE 20070907 -#define RUBY_PATCHLEVEL 104 +#define RUBY_PATCHLEVEL 105 #define RUBY_VERSION_MAJOR 1 #define RUBY_VERSION_MINOR 8 Index: ruby_1_8_5/eval.c =================================================================== --- ruby_1_8_5/eval.c (revision 13368) +++ ruby_1_8_5/eval.c (revision 13369) @@ -5743,7 +5743,7 @@ volatile int safe = -1; if (NOEX_SAFE(flags) > ruby_safe_level && - !(flags&NOEX_TAINTED) && ruby_safe_level == 0 && NOEX_SAFE(flags) > 2) { + ruby_safe_level == 0 && NOEX_SAFE(flags) > 2) { rb_raise(rb_eSecurityError, "calling insecure method: %s", rb_id2name(id)); } @@ -8912,7 +8912,7 @@ data->body = body; data->rklass = rklass; data->oid = oid; - data->safe_level = NOEX_WITH_SAFE(0); + data->safe_level = NOEX_WITH_SAFE(noex); OBJ_INFECT(method, klass); return method; -- ML: ruby-changes@q... Info: http://www.atdot.net/~ko1/quickml