NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit0ed7864

committed

Well, after persuading cvsup and cvs that it _is_ possible to have local

modifiable repositories, I have a clean untrusted plperl patch to offeryou :)Highlights:* There's one perl interpreter used for both trusted and untrustedprocedures. I do think its unnecessary to keep two perlinterpreters around. If someone can break out from trusted "Safe" perlmode, well, they can do what they want already. If someone disagrees, Ican change this.* Opcode is not statically loaded anymore. Instead, we load Dynaloader,which then can grab Opcode (and anything else you can 'use') on its own.* Checked to work on FreeBSD 4.3 + perl 5.5.3 , OpenBSD 2.8 + perl5.6.1,RedHat 6.2 + perl 5.5.3* Uses ExtUtils::Embed to find what options are necessary to link withperl shared libraries* createlang is also updated, it can create untrusted perl using 'plperlu'* Example script (assuming you have Mail::Sendmail installed):create function foo() returns text as ' use Mail::Sendmail; %mail = ( To => q(you@yourname.com), From => q(me@here.com), Message => "This is a very short message" ); sendmail(%mail) or die $Mail::Sendmail::error;return "OK. Log says:\n", $Mail::Sendmail::log;' language 'plperlu';Alex Pilosov

1 parent558fae1 commit0ed7864Copy full SHA for 0ed7864

File tree

3 files changed

+54

-49

lines changed

src
- bin/scripts
  - createlang.sh
- pl/plperl
  - Makefile.PL
  - plperl.c

3 files changed

+54

-49

lines changed

`‎src/bin/scripts/createlang.sh`

Lines changed: 7 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,7 @@`
`7`	`7`	`# Portions Copyright (c) 1996-2001, PostgreSQL Global Development Group`
`8`	`8`	`# Portions Copyright (c) 1994, Regents of the University of California`
`9`	`9`	`#`
`10`		`-# $Header: /cvsroot/pgsql/src/bin/scripts/Attic/createlang.sh,v 1.27 2001/05/24 00:13:13 petere Exp $`
	`10`	`+# $Header: /cvsroot/pgsql/src/bin/scripts/Attic/createlang.sh,v 1.28 2001/06/18 21:40:06 momjian Exp $`
`11`	`11`	`#`
`12`	`12`	`#-------------------------------------------------------------------------`
`13`	`13`
`@@ -210,6 +210,12 @@ case "$langname" in`
`210`	`210`	`handler="plperl_call_handler"`
`211`	`211`	`object="plperl"`
`212`	`212`	`;;`
	`213`	`+plperlu)`
	`214`	`+lancomp="PL/Perl (untrusted)"`
	`215`	`+trusted=""`
	`216`	`+handler="plperl_call_handler"`
	`217`	`+object="plperl"`
	`218`	`+;;`
`213`	`219`	`plpython)`
`214`	`220`	`lancomp="PL/Python"`
`215`	`221`	`trusted="TRUSTED"`

`‎src/pl/plperl/Makefile.PL`

Lines changed: 1 addition & 26 deletions

Original file line number	Diff line number	Diff line change
`@@ -29,33 +29,8 @@ EndOfMakefile`
`29`	`29`	`exit(0);`
`30`	`30`	`}`
`31`	`31`
`32`		`-`
`33`		`-#`
`34`		`-# get the location of the Opcode module`
`35`		`-#`
`36`		`-my$opcode ='';`
`37`		`-{`
`38`		`-`
`39`		`-$modname ='Opcode';`
`40`		`-`
`41`		`-my$dir;`
`42`		`-foreach (@INC) {`
`43`		`-if (-d"$_/auto/$modname") {`
`44`		`-$dir ="$_/auto/$modname";`
`45`		`-last;`
`46`		`-}`
`47`		`-}`
`48`		`-`
`49`		`-if (defined$dir) {`
`50`		`-$opcode = DynaLoader::dl_findfile("-L$dir",$modname);`
`51`		`-}`
`52`		`-`
`53`		`-}`
`54`		`-`
`55`		`-my$perllib ="-L$Config{archlibexp}/CORE -lperl";`
`56`		`-`
`57`	`32`	`WriteMakefile('NAME'=>'plperl',`
`58`		`-dynamic_lib=> {'OTHERLDFLAGS'=>"$opcode$perllib" } ,`
	`33`	`+dynamic_lib=> {'OTHERLDFLAGS'=> ldopts() } ,`
`59`	`34`	`INC=>"$ENV{EXTRA_INCLUDES}",`
`60`	`35`	`XS=> {'SPI.xs'=>'SPI.c' },`
`61`	`36`	`OBJECT=>'plperl.o eloglvl.o SPI.o',`

`‎src/pl/plperl/plperl.c`

Lines changed: 46 additions & 22 deletions

Original file line number	Diff line number	Diff line change
`@@ -33,7 +33,7 @@`
`33`	`33`	`* ENHANCEMENTS, OR MODIFICATIONS.`
`34`	`34`	`*`
`35`	`35`	`* IDENTIFICATION`
`36`		`- * $Header: /cvsroot/pgsql/src/pl/plperl/plperl.c,v 1.21 2001/06/09 02:19:07 tgl Exp $`
	`36`	`+ * $Header: /cvsroot/pgsql/src/pl/plperl/plperl.c,v 1.22 2001/06/18 21:40:06 momjian Exp $`
`37`	`37`	`*`
`38`	`38`	`**********************************************************************/`
`39`	`39`
`@@ -95,6 +95,7 @@ typedef struct plperl_proc_desc`
`95`	`95`	`Oidarg_out_elem[FUNC_MAX_ARGS];`
`96`	`96`	`intarg_out_len[FUNC_MAX_ARGS];`
`97`	`97`	`intarg_is_rel[FUNC_MAX_ARGS];`
	`98`	`+boollanpltrusted;`
`98`	`99`	`SV*reference;`
`99`	`100`	`}plperl_proc_desc;`
`100`	`101`
`@@ -121,7 +122,7 @@ typedef struct plperl_query_desc`
`121`	`122`	`staticintplperl_firstcall=1;`
`122`	`123`	`staticintplperl_call_level=0;`
`123`	`124`	`staticintplperl_restart_in_progress=0;`
`124`		`-staticPerlInterpreter*plperl_safe_interp=NULL;`
	`125`	`+staticPerlInterpreter*plperl_interp=NULL;`
`125`	`126`	`staticHV*plperl_proc_hash=NULL;`
`126`	`127`
`127`	`128`	`#ifREALLYHAVEITONTHEBALL`
`@@ -133,7 +134,7 @@ static Tcl_HashTable *plperl_query_hash = NULL;`
`133`	`134`	`* Forward declarations`
`134`	`135`	`**********************************************************************/`
`135`	`136`	`staticvoidplperl_init_all(void);`
`136`		`-staticvoidplperl_init_safe_interp(void);`
	`137`	`+staticvoidplperl_init_interp(void);`
`137`	`138`
`138`	`139`	`Datumplperl_call_handler(PG_FUNCTION_ARGS);`
`139`	`140`
`@@ -201,11 +202,11 @@ plperl_init_all(void)`
`201`	`202`	`/************************************************************`
`202`	`203`	`* Destroy the existing safe interpreter`
`203`	`204`	`************************************************************/`
`204`		`-if (plperl_safe_interp!=NULL)`
	`205`	`+if (plperl_interp!=NULL)`
`205`	`206`	`{`
`206`		`-perl_destruct(plperl_safe_interp);`
`207`		`-perl_free(plperl_safe_interp);`
`208`		`-plperl_safe_interp=NULL;`
	`207`	`+perl_destruct(plperl_interp);`
	`208`	`+perl_free(plperl_interp);`
	`209`	`+plperl_interp=NULL;`
`209`	`210`	`}`
`210`	`211`
`211`	`212`	`/************************************************************`
`@@ -229,40 +230,41 @@ plperl_init_all(void)`
`229`	`230`	`/************************************************************`
`230`	`231`	`* Now recreate a new safe interpreter`
`231`	`232`	`************************************************************/`
`232`		`-plperl_init_safe_interp();`
	`233`	`+plperl_init_interp();`
`233`	`234`
`234`	`235`	`plperl_firstcall=0;`
`235`	`236`	`return;`
`236`	`237`	`}`
`237`	`238`
`238`	`239`
`239`	`240`	`/**********************************************************************`
`240`		`- *plperl_init_safe_interp() - Create the safe Perl interpreter`
	`241`	`+ *plperl_init_interp() - Create the safe Perl interpreter`
`241`	`242`	`**********************************************************************/`
`242`	`243`	`staticvoid`
`243`		`-plperl_init_safe_interp(void)`
	`244`	`+plperl_init_interp(void)`
`244`	`245`	`{`
`245`	`246`
`246`	`247`	`char*embedding[3]= {`
`247`	`248`	`"","-e",`
`248`	`249`
`249`	`250`	`/*`
`250`		`- * no commas between the next4 please. They are supposed to be`
	`251`	`+ * no commas between the next5 please. They are supposed to be`
`251`	`252`	`* one string`
`252`	`253`	`*/`
`253`	`254`	`"require Safe; SPI::bootstrap();"`
`254`	`255`	`"sub ::mksafefunc { my $x = new Safe; $x->permit_only(':default');$x->permit(':base_math');"`
`255`	`256`	`"$x->share(qw[&elog &DEBUG &NOTICE &ERROR]);"`
`256`	`257`	`" return $x->reval(qq[sub { $_[0] }]); }"`
	`258`	`+"sub ::mkunsafefunc {return eval(qq[ sub { $_[0] } ]); }"`
`257`	`259`	`};`
`258`	`260`
`259`		`-plperl_safe_interp=perl_alloc();`
`260`		`-if (!plperl_safe_interp)`
`261`		`-elog(ERROR,"plperl_init_safe_interp(): could not allocate perl interpreter");`
	`261`	`+plperl_interp=perl_alloc();`
	`262`	`+if (!plperl_interp)`
	`263`	`+elog(ERROR,"plperl_init_interp(): could not allocate perl interpreter");`
`262`	`264`
`263`		`-perl_construct(plperl_safe_interp);`
`264`		`-perl_parse(plperl_safe_interp,plperl_init_shared_libs,3,embedding,NULL);`
`265`		`-perl_run(plperl_safe_interp);`
	`265`	`+perl_construct(plperl_interp);`
	`266`	`+perl_parse(plperl_interp,plperl_init_shared_libs,3,embedding,NULL);`
	`267`	`+perl_run(plperl_interp);`
`266`	`268`
`267`	`269`
`268`	`270`
`@@ -336,7 +338,7 @@ plperl_call_handler(PG_FUNCTION_ARGS)`
`336`	`338`	`**********************************************************************/`
`337`	`339`	`static`
`338`	`340`	`SV*`
`339`		`-plperl_create_sub(char*s)`
	`341`	`+plperl_create_sub(char*s,booltrusted)`
`340`	`342`	`{`
`341`	`343`	`dSP;`
`342`	`344`
`@@ -348,7 +350,8 @@ plperl_create_sub(char *s)`
`348`	`350`	`PUSHMARK(SP);`
`349`	`351`	`XPUSHs(sv_2mortal(newSVpv(s,0)));`
`350`	`352`	`PUTBACK;`
`351`		`-count=perl_call_pv("mksafefunc",G_SCALAR \|G_EVAL \|G_KEEPERR);`
	`353`	`+count=perl_call_pv( (trusted?"mksafefunc":"mkunsafefunc"),`
	`354`	`+G_SCALAR \|G_EVAL \|G_KEEPERR);`
`352`	`355`	`SPAGAIN;`
`353`	`356`
`354`	`357`	`if (SvTRUE(ERRSV))`
`@@ -397,15 +400,15 @@ plperl_create_sub(char *s)`
`397`	`400`	`*`
`398`	`401`	`**********************************************************************/`
`399`	`402`
`400`		`-externvoidboot_Opcode_((CV*cv));`
	`403`	`+externvoidboot_DynaLoader_((CV*cv));`
`401`	`404`	`externvoidboot_SPI_((CV*cv));`
`402`	`405`
`403`	`406`	`staticvoid`
`404`	`407`	`plperl_init_shared_libs(void)`
`405`	`408`	`{`
`406`	`409`	`char*file=__FILE__;`
`407`	`410`
`408`		`-newXS("Opcode::bootstrap",boot_Opcode,file);`
	`411`	`+newXS("DynaLoader::boot_DynaLoader",boot_DynaLoader,file);`
`409`	`412`	`newXS("SPI::bootstrap",boot_SPI,file);`
`410`	`413`	`}`
`411`	`414`
`@@ -529,8 +532,10 @@ plperl_func_handler(PG_FUNCTION_ARGS)`
`529`	`532`	`* Then we load the procedure into the safe interpreter.`
`530`	`533`	`************************************************************/`
`531`	`534`	`HeapTupleprocTup;`
	`535`	`+HeapTuplelangTup;`
`532`	`536`	`HeapTupletypeTup;`
`533`	`537`	`Form_pg_procprocStruct;`
	`538`	`+Form_pg_languagelangStruct;`
`534`	`539`	`Form_pg_typetypeStruct;`
`535`	`540`	`char*proc_source;`
`536`	`541`
`@@ -541,6 +546,7 @@ plperl_func_handler(PG_FUNCTION_ARGS)`
`541`	`546`	`prodesc->proname=malloc(strlen(internal_proname)+1);`
`542`	`547`	`strcpy(prodesc->proname,internal_proname);`
`543`	`548`
	`549`	`+`
`544`	`550`	`/************************************************************`
`545`	`551`	`* Lookup the pg_proc tuple by Oid`
`546`	`552`	`************************************************************/`
`@@ -556,6 +562,24 @@ plperl_func_handler(PG_FUNCTION_ARGS)`
`556`	`562`	`}`
`557`	`563`	`procStruct= (Form_pg_proc)GETSTRUCT(procTup);`
`558`	`564`
	`565`	`+/************************************************************`
	`566`	`+* Lookup the pg_language tuple by Oid`
	`567`	`+************************************************************/`
	`568`	`+langTup=SearchSysCache(LANGOID,`
	`569`	`+ObjectIdGetDatum(procStruct->prolang),`
	`570`	`+0,0,0);`
	`571`	`+if (!HeapTupleIsValid(langTup))`
	`572`	`+{`
	`573`	`+free(prodesc->proname);`
	`574`	`+free(prodesc);`
	`575`	`+elog(ERROR,"plperl: cache lookup for language %u failed",`
	`576`	`+procStruct->prolang);`
	`577`	`+}`
	`578`	`+langStruct= (Form_pg_language)GETSTRUCT(langTup);`
	`579`	`+`
	`580`	`+prodesc->lanpltrusted=langStruct->lanpltrusted;`
	`581`	`+ReleaseSysCache(langTup);`
	`582`	`+`
`559`	`583`	`/************************************************************`
`560`	`584`	`* Get the required information for input conversion of the`
`561`	`585`	`* return value.`
`@@ -634,7 +658,7 @@ plperl_func_handler(PG_FUNCTION_ARGS)`
`634`	`658`	`/************************************************************`
`635`	`659`	`* Create the procedure in the interpreter`
`636`	`660`	`************************************************************/`
`637`		`-prodesc->reference=plperl_create_sub(proc_source);`
	`661`	`+prodesc->reference=plperl_create_sub(proc_source,prodesc->lanpltrusted);`
`638`	`662`	`pfree(proc_source);`
`639`	`663`	`if (!prodesc->reference)`
`640`	`664`	`{`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit0ed7864

File tree

3 files changed

3 files changed

`‎src/bin/scripts/createlang.sh`

`‎src/pl/plperl/Makefile.PL`

`‎src/pl/plperl/plperl.c`

0 commit comments