develooper Front page | perl.perl5.changes | Postings from September 2019

[perl.git] branch tonyc/perlsecpolicy created.v5.31.3-159-gd280c9f5b3

From:
Tony Cook
Date:
September 10, 2019 05:47
Subject:
[perl.git] branch tonyc/perlsecpolicy created.v5.31.3-159-gd280c9f5b3
Message ID:
E1i7Yzj-0006QY-Su@git.dc.perl.space
In perl.git, the branch tonyc/perlsecpolicy has been created

<https://perl5.git.perl.org/perl.git/commitdiff/d280c9f5b3bd1172091fdc56fdabe879709c9b50?hp=0000000000000000000000000000000000000000>

        at  d280c9f5b3bd1172091fdc56fdabe879709c9b50 (commit)

- Log -----------------------------------------------------------------
commit d280c9f5b3bd1172091fdc56fdabe879709c9b50
Author: Tony Cook <tony@develop-help.com>
Date:   Tue Sep 10 15:46:12 2019 +1000

    some backports aren't worth the time
    
    For example around the 5.28 timeframe we had someone who wanted
    backports to 5.18, and the codebase had changed enough that the
    patch needed to be re-done from scratch.

commit 311b8fd2ce6a7d965395d69210a21129ff5ef9a0
Author: Tony Cook <tony@develop-help.com>
Date:   Tue Sep 10 15:45:24 2019 +1000

    timeliness
    
    Some parts of the system have limited poeple with knowledge of
    the component, and it might take time before they have the free
    time to work on a fix.

commit 7a4e4ae7be164ceec90f54a9672bf310de2d6c72
Author: Tony Cook <tony@develop-help.com>
Date:   Tue Sep 10 15:43:48 2019 +1000

    make this more general
    
    an example of another resources might be shm segments.

commit 4e031a2969b5436d93986c376efa05475e2211b3
Author: Tony Cook <tony@develop-help.com>
Date:   Tue Sep 10 15:41:03 2019 +1000

    make this more general

commit cf44b6fb9ea8924efc011fce3bce40e895ab843c
Author: Tony Cook <tony@develop-help.com>
Date:   Tue Sep 10 15:40:14 2019 +1000

    pack() will die in 5.32 and you can set limits on regcomp recursion

commit 647360fb71903eefe9ef4d302f27203970cf6120
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Feb 18 15:32:03 2019 +1100

    try to add more categories of security issues

commit 9fe1c3b1312a83b6e84d18e9cbf5dad160bf967c
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Feb 18 14:27:19 2019 +1100

    grammar fix

commit dbc3c8d36bc021038b262e9507c713d7ebc028a1
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Feb 18 14:27:05 2019 +1100

    I like Hugo's warning here

commit 56c785451a04a38ef68af41a63adcd459b4409d4
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Feb 18 14:26:45 2019 +1100

    the comma isn't needed

commit fcbb974f8ff47ead3d20c12cd1532f142e774c9c
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Feb 18 13:49:41 2019 +1100

    remove hyphen from pre-condition, ie. to i.e.

commit 8470c263a44cb82b7ab6b3b5ce2e819e504a153e
Author: Tony Cook <tony@develop-help.com>
Date:   Thu Feb 14 15:16:01 2019 +1100

    remove humour

commit 16250aa2e5b5b9748810ee6fe30ad1f9704cd71b
Author: Tony Cook <tony@develop-help.com>
Date:   Thu Feb 14 15:15:45 2019 +1100

    remove parentheses as suggested by jhi

commit 299b31804b1e5f7d6b91df6111025bf99fea31c7
Author: Tony Cook <tony@develop-help.com>
Date:   Thu Feb 14 15:15:23 2019 +1100

    spell check

commit bf54018253402080b68343acaaf5d131628370d8
Author: Tony Cook <tony@develop-help.com>
Date:   Wed Feb 13 11:13:29 2019 +1100

    fill out the procedure a bit

commit 7721d0a4ffe1fb03ca941aaa2a36c2692ff66838
Author: Tony Cook <tony@develop-help.com>
Date:   Wed Feb 13 11:13:06 2019 +1100

    list form of pipe on Win32?

commit ec225ea62a1f408c84baba46dd057b27497c6077
Author: Tony Cook <tony@develop-help.com>
Date:   Wed Feb 13 11:11:56 2019 +1100

    I don't believe reporters can see the ticket in the security queue

commit 76789c3db5387f3d80f0916e0fd9f0c06d10e2d8
Author: Tony Cook <tony@develop-help.com>
Date:   Wed Feb 13 10:48:40 2019 +1100

    pack can do this too as suggested by Nicholas
    
    for example
    
    $ perl -MDevel::Peek -e 'Dump(pack("UXC", 0x100, 1))'
    SV = PV(0x5601c7e0cb80) at 0x5601c7e2a0f0
      REFCNT = 1
      FLAGS = (PADTMP,POK,READONLY,PROTECT,pPOK,UTF8)
      PV = 0x5601c7e34180 "\304\1"\0Malformed UTF-8 character (unexpected non-continuation byte 0x01, immediately after start byte 0xc4) in Dump at -e line 1.
     [UTF8 "\x{0}"]
      CUR = 2
      LEN = 32

commit f09e4fe0844794e70da6692a6c2441291a98a16d
Author: Tony Cook <tony@develop-help.com>
Date:   Wed Feb 13 10:47:33 2019 +1100

    wording change suggested by Nicholas

commit c0a3153d3532ee3fad6609c2cc6d7537acd16b05
Author: Tony Cook <tony@develop-help.com>
Date:   Wed Feb 13 10:47:09 2019 +1100

    steal Nicholas's better wording for this

commit c2f74e28967ebfb22c8283a8513f451385d49f82
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Feb 11 14:23:47 2019 +1100

    give a hint about how to make it known to buildtoc

commit 8fac9f6fecc217a9d9591beb61585887adc9de2a
Author: Tony Cook <tony@develop-help.com>
Date:   Mon Apr 16 11:09:00 2018 +1000

    WIP perlsecpolicy

-----------------------------------------------------------------------

-- 
Perl5 Master Repository



nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About