[perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks

Attached is the revised patch

Check for the nul char in pathnames and string arguments to
syscalls, return undef and set errno to ENOENT.
Added to the default severe warnings category syscalls.
    
Strings with embedded \0 chars were prev. ignored in the syscall but
kept in perl. The hidden payloads in these invalid string args may cause
unnoticed security problems, as they are hard to detect, ignored by
the syscalls but kept around in perl PVs.
Allow an ending \0 though, as several modules add a \0 to
such strings without adjusting the length.
Ignored on WinCE since this uses the wide char API.

-- 
Reini Urban

---
via perlbug:  queue: perl5 status: open
https://rt.perl.org:443/rt3/Ticket/Display.html?id=117265

• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Lukas Mai
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Ricardo Signes
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Reini Urban
• [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Father Chrysostomos via RT
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Ricardo Signes
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Reini Urban
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by demerphq
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Leon Timmermans
• RE: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Steve Hay
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by demerphq
• RE: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Steve Hay
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by demerphq
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Leon Timmermans
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Reini Urban
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Reini Urban
• [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Tony Cook via RT
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Leon Timmermans
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Reini Urban
• [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Reini Urban via RT
• [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Tony Cook via RT
• [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Reini Urban via RT
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Dave Mitchell
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Reini Urban
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by Tom Christiansen
• Re: [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatalnul checks by Dave Mitchell
• [perl #117265] [PATCH] e213661 no warnings 'safesyscalls', fatal nul checks by rurban @ cpanel . net