This is a live mirror of the Perl 5 development currently hosted at https://github.com/perl/perl5
https://perl5.git.perl.org / perl5.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (from parent 1: af25b33)
Remove "." from default @INC when default_inc_excludes_dot is set
authorH.Merijn Brand <h.m.brand@xs4all.nl>
Sat, 22 Oct 2016 11:46:08 +0000 (13:46 +0200)
committerH.Merijn Brand <h.m.brand@xs4all.nl>
Fri, 11 Nov 2016 15:27:20 +0000 (16:27 +0100)
Perl now provides a way to build perl without . in @INC by default. If you want
this feature, you can build with -Ddefault_inc_excludes_dot

Because the testing / make process for perl modules do not function well
with . missing from @INC, Perl now supports the environment variable
PERL_USE_UNSAFE_INC=1 which makes Perl behave as it previously did,
returning . to @INC in all child processes.

WARNING: PERL_USE_UNSAFE_INC has been provided during the perl 5.25 development
cycle and is not guaranteed to function in perl 5.26.

Update unit tests and default value files to work with the new %Config
variable "default_inc_excludes_dot"

15 files changed:
Configure patch | blob | blame | history
Cross/config.sh-arm-linux patch | blob | blame | history
NetWare/config.wc patch | blob | blame | history
Porting/Glossary patch | blob | blame | history
Porting/config.sh patch | blob | blame | history
config_h.SH patch | blob | blame | history
configure.com patch | blob | blame | history
plan9/config_sh.sample patch | blob | blame | history
symbian/config.sh patch | blob | blame | history
uconfig.h patch | blob | blame | history
uconfig.sh patch | blob | blame | history
uconfig64.sh patch | blob | blame | history
win32/config.ce patch | blob | blame | history
win32/config.gc patch | blob | blame | history
win32/config.vc patch | blob | blame | history

diff --git a/Configure b/Configure
index 4492020..84a34bf 100755 (executable)
--- a/Configure
+++ b/Configure
@@ -937,6 +937,7 @@ d_wcstombs=''
 d_wcsxfrm=''
 d_wctomb=''
 d_writev=''
+default_inc_excludes_dot=''
 dlext=''
 bin_ELF=''
 cccdlflags=''
@@ -20625,6 +20626,28 @@ EOCP
        ;;
 esac
 
+: Include . in @INC
+$cat <<EOM
+
+Historically Perl has provided a final fallback of the current working
+directory '.' when searching for a library. This, however, can lead to
+problems when a Perl program which loads optional modules is called from
+a shared directory. This can lead to executing unexpected code.
+
+EOM
+
+case "$default_inc_excludes_dot" in
+    $define|true|[yY]*) dflt="n" ;;
+    *)                  dflt='y' ;;
+esac
+
+rp='Provide '.' in @INC by default? '
+. ./myread
+case "$ans" in
+    [nN]*|define) default_inc_excludes_dot="$define" ;;
+    *)            default_inc_excludes_dot="$undef"  ;;
+esac
+
 : Check what kind of inf/nan your system has
 $echo "Checking the kind of infinities and nans you have..." >&4
 $echo "(The following tests may crash.  That's okay.)" >&4
@@ -24913,6 +24936,7 @@ db_prefixtype='$db_prefixtype'
 db_version_major='$db_version_major'
 db_version_minor='$db_version_minor'
 db_version_patch='$db_version_patch'
+default_inc_excludes_dot='$default_inc_excludes_dot'
 direntrytype='$direntrytype'
 dlext='$dlext'
 dlsrc='$dlsrc'
diff --git a/Cross/config.sh-arm-linux b/Cross/config.sh-arm-linux
index 2626400..a20d723 100644 (file)
--- a/Cross/config.sh-arm-linux
+++ b/Cross/config.sh-arm-linux
@@ -637,6 +637,7 @@ db_prefixtype='size_t'
 db_version_major=''
 db_version_minor=''
 db_version_patch=''
+default_inc_excludes_dot=''
 direntrytype='struct dirent'
 dlext='so'
 dlsrc='dl_dlopen.xs'
diff --git a/NetWare/config.wc b/NetWare/config.wc
index 176a865..8535885 100644 (file)
--- a/NetWare/config.wc
+++ b/NetWare/config.wc
@@ -628,6 +628,7 @@ db_version_minor='0'
 db_version_patch='0'
 def_perlroot='sys:\perl\scripts'
 def_temp='sys:\perl\temp'
+default_inc_excludes_dot=''
 direntrytype='DIR'
 dlext='nlm'
 dlsrc='dl_netware.xs'
diff --git a/Porting/Glossary b/Porting/Glossary
index 522d356..1d2a6ea 100644 (file)
--- a/Porting/Glossary
+++ b/Porting/Glossary
@@ -2959,6 +2959,9 @@ db_version_patch (i_db.U):
        Berkeley DB found in the <db.h> header file.
        For DB version 1 this is always 0.
 
+default_inc_excludes_dot (defaultincdot.U):
+       When defined, remove the legacy '.' from @INC
+
 direntrytype (i_dirent.U):
        This symbol is set to 'struct direct' or 'struct dirent' depending on
        whether dirent is available or not. You should use this pseudo type to
diff --git a/Porting/config.sh b/Porting/config.sh
index ff6a5fe..c9aa2c2 100644 (file)
--- a/Porting/config.sh
+++ b/Porting/config.sh
@@ -650,6 +650,7 @@ db_prefixtype='int'
 db_version_major='1'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct dirent'
 dlext='bundle'
 dlsrc='dl_dlopen.xs'
diff --git a/config_h.SH b/config_h.SH
index c722657..e9b144f 100755 (executable)
--- a/config_h.SH
+++ b/config_h.SH
@@ -3736,6 +3736,12 @@ sed <<!GROK!THIS! >$CONFIG_H -e 's!^#undef\(.*/\)\*!/\*#define\1 \*!' -e 's!^#un
  */
 #$d_writev HAS_WRITEV          /**/
 
+/* DEFAULT_INC_EXCLUDES_DOT:
+ *     This symbol, if defined, removes the legacy default behavior of
+ *     including '.' at the end of @INC.
+ */
+#$default_inc_excludes_dot DEFAULT_INC_EXCLUDES_DOT    /**/
+
 /* USE_DYNAMIC_LOADING:
  *     This symbol, if defined, indicates that dynamic loading of
  *     some sort is available.
diff --git a/configure.com b/configure.com
index 888d2d0..090d2ef 100644 (file)
--- a/configure.com
+++ b/configure.com
@@ -6452,6 +6452,7 @@ $ WC "db_version_minor='" + "'"
 $ WC "db_version_patch='" + "'"
 $ WC "dbgprefix='" + dbgprefix + "'"
 $ WC "devtype='" + devtype + "'"
+$ WC "default_inc_excludes_dot=''"
 $ WC "direntrytype='struct dirent'"
 $ WC "dlext='" + dlext + "'"
 $ WC "dlobj='" + dlobj + "'"
diff --git a/plan9/config_sh.sample b/plan9/config_sh.sample
index 9851e22..e7078a0 100644 (file)
--- a/plan9/config_sh.sample
+++ b/plan9/config_sh.sample
@@ -636,6 +636,7 @@ db_prefixtype='size_t'
 db_version_major=''
 db_version_minor=''
 db_version_patch=''
+default_inc_excludes_dot=''
 direntrytype='struct dirent'
 dlext='none'
 dlsrc='dl_none.xs'
diff --git a/symbian/config.sh b/symbian/config.sh
index 1c08bd3..e6ca7fb 100644 (file)
--- a/symbian/config.sh
+++ b/symbian/config.sh
@@ -583,6 +583,7 @@ db_prefixtype='size_t'
 db_version_major='0'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct dirent'
 dlext='dll'
 dlsrc='dl_symbian.xs'
diff --git a/uconfig.h b/uconfig.h
index d2c6a48..1540513 100644 (file)
--- a/uconfig.h
+++ b/uconfig.h
@@ -3701,6 +3701,12 @@
  */
 /*#define HAS_WRITEV           / **/
 
+/* DEFAULT_INC_EXCLUDES_DOT:
+ *     This symbol, if defined, removes the legacy default behavior of
+ *     including '.' at the end of @INC.
+ */
+# DEFAULT_INC_EXCLUDES_DOT     /**/
+
 /* USE_DYNAMIC_LOADING:
  *     This symbol, if defined, indicates that dynamic loading of
  *     some sort is available.
diff --git a/uconfig.sh b/uconfig.sh
index 3174bba..a7b2615 100644 (file)
--- a/uconfig.sh
+++ b/uconfig.sh
@@ -574,6 +574,7 @@ db_prefixtype='size_t'
 db_version_major='0'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct dirent'
 doubleinfbytes='0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xf0, 0x7f'
 doublekind='3'
diff --git a/uconfig64.sh b/uconfig64.sh
index 1eb7eac..27d4a18 100644 (file)
--- a/uconfig64.sh
+++ b/uconfig64.sh
@@ -575,6 +575,7 @@ db_prefixtype='size_t'
 db_version_major='0'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct dirent'
 doubleinfbytes='0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xf0, 0x7f'
 doublekind='3'
diff --git a/win32/config.ce b/win32/config.ce
index 47042d8..3005086 100644 (file)
--- a/win32/config.ce
+++ b/win32/config.ce
@@ -624,6 +624,7 @@ db_prefixtype='int'
 db_version_major='0'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct direct'
 dlext='dll'
 dlsrc='dl_win32.xs'
diff --git a/win32/config.gc b/win32/config.gc
index 34b670e..b726e7d 100644 (file)
--- a/win32/config.gc
+++ b/win32/config.gc
@@ -625,6 +625,7 @@ db_prefixtype='int'
 db_version_major='0'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct direct'
 dlext='dll'
 dlltool='~ARCHPREFIX~dlltool'
diff --git a/win32/config.vc b/win32/config.vc
index cfac6e7..5731b88 100644 (file)
--- a/win32/config.vc
+++ b/win32/config.vc
@@ -625,6 +625,7 @@ db_prefixtype='int'
 db_version_major='0'
 db_version_minor='0'
 db_version_patch='0'
+default_inc_excludes_dot=''
 direntrytype='struct direct'
 dlext='dll'
 dlsrc='dl_win32.xs'
Unnamed repository; edit this file 'description' to name the repository.