ruby-changes:1879
From: ko1@a...
Date: 7 Sep 2007 14:28:58 +0900
Subject: [ruby-changes:1879] shyouhei - Ruby:r13369 (ruby_1_8_5): * eval.c (mnew): should preserve noex as safe_level.
shyouhei 2007-09-07 14:28:26 +0900 (Fri, 07 Sep 2007)
New Revision: 13369
Modified files:
branches/ruby_1_8_5/ChangeLog
branches/ruby_1_8_5/eval.c
branches/ruby_1_8_5/version.h
Log:
* eval.c (mnew): should preserve noex as safe_level.
* eval.c (rb_call0): tighten security check condition..
http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/branches/ruby_1_8_5/version.h?r1=13369&r2=13368
http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/branches/ruby_1_8_5/ChangeLog?r1=13369&r2=13368
http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/branches/ruby_1_8_5/eval.c?r1=13369&r2=13368
Index: ruby_1_8_5/ChangeLog
===================================================================
--- ruby_1_8_5/ChangeLog (revision 13368)
+++ ruby_1_8_5/ChangeLog (revision 13369)
@@ -1,3 +1,9 @@
+Fri Sep 7 14:27:33 2007 Yukihiro Matsumoto <matz@r...>
+
+ * eval.c (mnew): should preserve noex as safe_level.
+
+ * eval.c (rb_call0): tighten security check condition..
+
Fri Sep 7 14:19:16 2007 Nobuyoshi Nakada <nobu@r...>
* configure.in (group_member): check if presents.
Index: ruby_1_8_5/version.h
===================================================================
--- ruby_1_8_5/version.h (revision 13368)
+++ ruby_1_8_5/version.h (revision 13369)
@@ -2,7 +2,7 @@
#define RUBY_RELEASE_DATE "2007-09-07"
#define RUBY_VERSION_CODE 185
#define RUBY_RELEASE_CODE 20070907
-#define RUBY_PATCHLEVEL 104
+#define RUBY_PATCHLEVEL 105
#define RUBY_VERSION_MAJOR 1
#define RUBY_VERSION_MINOR 8
Index: ruby_1_8_5/eval.c
===================================================================
--- ruby_1_8_5/eval.c (revision 13368)
+++ ruby_1_8_5/eval.c (revision 13369)
@@ -5743,7 +5743,7 @@
volatile int safe = -1;
if (NOEX_SAFE(flags) > ruby_safe_level &&
- !(flags&NOEX_TAINTED) && ruby_safe_level == 0 && NOEX_SAFE(flags) > 2) {
+ ruby_safe_level == 0 && NOEX_SAFE(flags) > 2) {
rb_raise(rb_eSecurityError, "calling insecure method: %s",
rb_id2name(id));
}
@@ -8912,7 +8912,7 @@
data->body = body;
data->rklass = rklass;
data->oid = oid;
- data->safe_level = NOEX_WITH_SAFE(0);
+ data->safe_level = NOEX_WITH_SAFE(noex);
OBJ_INFECT(method, klass);
return method;
--
ML: ruby-changes@q...
Info: http://www.atdot.net/~ko1/quickml