diff options
| author | nobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2017-01-31 12:54:59 +0000 |
|---|---|---|
| committer | nobu <nobu@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2017-01-31 12:54:59 +0000 |
| commit | 3408e3b460bed5814aac2e3f5db11c0e6fb288dd (patch) | |
| tree | 7597f879f2bf357923498343d7f758e001c65c45 /ruby.c | |
| parent | 94e8932575a9ef7a1c58f0c1662b6fce0eca93e5 (diff) | |
ruby.c: forbid options
* ruby.c (forbid_setid): constified.
* ruby.c (process_options): forbid if setid earlier.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@57484 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'ruby.c')
| -rw-r--r-- | ruby.c | 14 |
1 files changed, 6 insertions, 8 deletions
@@ -176,7 +176,7 @@ cmdline_options_init(ruby_cmdline_options_t *opt) } static NODE *load_file(VALUE, VALUE, int, ruby_cmdline_options_t *); -static void forbid_setid(const char *, ruby_cmdline_options_t *); +static void forbid_setid(const char *, const ruby_cmdline_options_t *); #define forbid_setid(s) forbid_setid((s), opt) static struct { @@ -1050,6 +1050,7 @@ proc_options(long argc, char **argv, ruby_cmdline_options_t *opt, int envopt) case 'x': if (envopt) goto noenvopt; + forbid_setid("-x"); opt->xflag = TRUE; s++; if (*s && chdir(s) < 0) { @@ -1514,6 +1515,9 @@ process_options(int argc, char **argv, ruby_cmdline_options_t *opt) argc--; argv++; } + if (opt->script[0] == '-' && !opt->script[1]) { + forbid_setid("program input from stdin"); + } } opt->script_name = rb_str_new_cstr(opt->script); @@ -1641,10 +1645,6 @@ process_options(int argc, char **argv, ruby_cmdline_options_t *opt) tree = rb_parser_compile_string(parser, opt->script, opt->e_script, 1); } else { - if (opt->script[0] == '-' && !opt->script[1]) { - forbid_setid("program input from stdin"); - } - base_block = toplevel_context(toplevel_binding); rb_parser_set_context(parser, base_block, TRUE); tree = load_file(parser, opt->script_name, 1, opt); @@ -1780,8 +1780,6 @@ load_file_internal(VALUE argp_v) if (xflag || opt->xflag) { line_start--; search_shebang: - forbid_setid("-x"); - opt->xflag = FALSE; while (!NIL_P(line = rb_io_gets(f))) { line_start++; RSTRING_GETMEM(line, str, len); @@ -2117,7 +2115,7 @@ init_ids(ruby_cmdline_options_t *opt) #undef forbid_setid static void -forbid_setid(const char *s, ruby_cmdline_options_t *opt) +forbid_setid(const char *s, const ruby_cmdline_options_t *opt) { if (opt->setids & 1) rb_raise(rb_eSecurityError, "no %s allowed while running setuid", s); |