da/d2d/safe_8c_source.html

 /**********************************************************************

   safe.c -

   $Author$
   created at: Tue Sep 23 09:44:32 JST 2008

   Copyright (C) 2008 Yukihiro Matsumoto

 **********************************************************************/

 /* safe-level:
    0 - strings from streams/environment/ARGV are tainted (default)
    1 - no dangerous operation by tainted value
 */

 #define SAFE_LEVEL_MAX RUBY_SAFE_LEVEL_MAX

 #include "ruby/ruby.h"
 #include "vm_core.h"

 /* $SAFE accessor */

 #undef rb_secure
 #undef rb_set_safe_level
 #undef ruby_safe_level_2_warning

 int
 ruby_safe_level_2_warning(void)
 {
     return 2;
 }

 int
 rb_safe_level(void)
 {
     return GET_THREAD()->ec.safe_level;
 }

 void
 rb_set_safe_level_force(int safe)
 {
     GET_THREAD()->ec.safe_level = safe;
 }

 void
 rb_set_safe_level(int level)
 {
     rb_thread_t *th = GET_THREAD();

     if (level > th->ec.safe_level) {
         if (level > SAFE_LEVEL_MAX) {
             rb_raise(rb_eArgError, "$SAFE=2 to 4 are obsolete");
         }
         th->ec.safe_level = level;
     }
 }

 static VALUE
 safe_getter(void)
 {
     return INT2NUM(rb_safe_level());
 }

 static void
 safe_setter(VALUE val)
 {
     int level = NUM2INT(val);
     rb_thread_t *th = GET_THREAD();

     if (level < th->ec.safe_level) {
         rb_raise(rb_eSecurityError,
                  "tried to downgrade safe level from %d to %d",
                  th->ec.safe_level, level);
     }
     if (level > SAFE_LEVEL_MAX) {
         rb_raise(rb_eArgError, "$SAFE=2 to 4 are obsolete");
     }
     th->ec.safe_level = level;
 }

 void
 rb_secure(int level)
 {
     if (level <= rb_safe_level()) {
         ID caller_name = rb_frame_callee();
         if (caller_name) {
             rb_raise(rb_eSecurityError, "Insecure operation `%"PRIsVALUE"' at level %d",
                      rb_id2str(caller_name), rb_safe_level());
         }
         else {
             rb_raise(rb_eSecurityError, "Insecure operation at level %d",
                      rb_safe_level());
         }
     }
 }

 void
 rb_secure_update(VALUE obj)
 {
 }

 void
 rb_insecure_operation(void)
 {
     ID caller_name = rb_frame_callee();
     if (caller_name) {
         rb_raise(rb_eSecurityError, "Insecure operation - %"PRIsVALUE,
                  rb_id2str(caller_name));
     }
     else {
         rb_raise(rb_eSecurityError, "Insecure operation: -r");
     }
 }

 void
 rb_check_safe_obj(VALUE x)
 {
     if (rb_safe_level() > 0 && OBJ_TAINTED(x)) {
         rb_insecure_operation();
     }
 }

 void
 Init_safe(void)
 {
     rb_define_virtual_variable("$SAFE", safe_getter, safe_setter);
 }
rb_check_safe_obj
void rb_check_safe_obj(VALUE x)
Definition: safe.c:117

INT2NUM
#define INT2NUM(x)
Definition: ruby.h:1538

rb_define_virtual_variable
void rb_define_virtual_variable(const char *, VALUE(*)(ANYARGS), void(*)(ANYARGS))
Definition: variable.c:648

NUM2INT
#define NUM2INT(x)
Definition: ruby.h:684

ruby.h

rb_raise
void rb_raise(VALUE exc, const char *fmt,...)
Definition: error.c:2284

rb_id2str
#define rb_id2str(id)
Definition: vm_backtrace.c:29

rb_secure_update
void rb_secure_update(VALUE obj)
Definition: safe.c:99

rb_set_safe_level_force
void rb_set_safe_level_force(int safe)
Definition: safe.c:41

rb_thread_struct
Definition: vm_core.h:785

Init_safe
void Init_safe(void)
Definition: safe.c:125

GET_THREAD
#define GET_THREAD()
Definition: vm_core.h:1583

rb_eArgError
VALUE rb_eArgError
Definition: error.c:802

level
#define level

SAFE_LEVEL_MAX
#define SAFE_LEVEL_MAX
Definition: safe.c:17

PRIsVALUE
#define PRIsVALUE
Definition: ruby.h:135

ID
unsigned long ID
Definition: ruby.h:86

vm_core.h

VALUE
unsigned long VALUE
Definition: ruby.h:85

OBJ_TAINTED
#define OBJ_TAINTED(x)
Definition: ruby.h:1296

rb_eSecurityError
VALUE rb_eSecurityError
Definition: error.c:810

rb_insecure_operation
void rb_insecure_operation(void)
Definition: safe.c:104

rb_frame_callee
ID rb_frame_callee(void)
The name of the current method.
Definition: eval.c:1120

rb_safe_level
int rb_safe_level(void)
Definition: safe.c:35

ruby_safe_level_2_warning
int ruby_safe_level_2_warning(void)
Definition: safe.c:29

rb_set_safe_level
void rb_set_safe_level(int level)
Definition: safe.c:47

rb_thread_struct::ec
rb_execution_context_t ec
Definition: vm_core.h:790

rb_execution_context_struct::safe_level
int safe_level
Definition: vm_core.h:748

rb_secure
void rb_secure(int level)
Definition: safe.c:83