Skip to content
Snippets Groups Projects
Commit 88df0132 authored by Andreas Romeyke's avatar Andreas Romeyke
Browse files

- untaint environment

parent 8a6ca145
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
lib/SLUB/LZA/Rosetta/TA.pm
+ 10
3
View file @ 88df0132
...@@ -19,8 +19,14 @@ our %config; ...@@ -19,8 +19,14 @@ our %config;
our %cache; our %cache;
our $cache_path; our $cache_path;
our $SALT = pack("H16", "There is no security by obscurity!"); our $SALT = pack("H16", "There is no security by obscurity!");
BEGIN{ BEGIN {
my $home = path($ENV{'HOME'}); my $rx_psep = qr{[/\\]};
my $rx_abs = qr{[A-Z]:};
my $rx_sub = qr{([[:print:]]+)};
$ENV{'HOME'} =~ m{^(($rx_abs)?($rx_psep$rx_sub)+)$}m;
# untaint $homestr
my $homestr = $1;
my $home = path($homestr);
if ($home->is_dir() && !$home->is_rootdir) { if ($home->is_dir() && !$home->is_rootdir) {
my $config_path = $home->child('.config')->child('ta-tool.rc'); my $config_path = $home->child('.config')->child('ta-tool.rc');
our $config_file = $config_path; our $config_file = $config_path;
...@@ -32,10 +38,11 @@ BEGIN{ ...@@ -32,10 +38,11 @@ BEGIN{
} }
} }
$cache_path = $home->child('.cache')->child('ta-tool.cache'); $cache_path = $home->child('.cache')->child('ta-tool.cache');
if ($cache_path->is_file and -s $cache_path < 8192*1024) { # if size > 8MB, write new at end, see END{}-block if ($cache_path->is_file and -s $cache_path < 8192 * 1024) { # if size > 8MB, write new at end, see END{}-block
%cache = YAML::LoadFile($cache_path); %cache = YAML::LoadFile($cache_path);
} }
} }
} }
END { END {
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment

DE: Impressum · Datenschutzerklärung | EN: Legal Notice · Privacy Policy