In perl.git, the branch maint-5.10 has been updated <http://perl5.git.perl.org/perl.git/commitdiff/e6f206a927f1792dc2a15d45dcfbffcab55a1e3b?hp=10651633c958ecc4c75e4c2d4e90d79fc13b5af7>
- Log ----------------------------------------------------------------- commit e6f206a927f1792dc2a15d45dcfbffcab55a1e3b Author: Offer Kaye <[email protected]> Date: Mon Jul 27 13:23:09 2009 +0300 missing "to" in perlxs (cherry picked from commit 174830c759611b7e2c36d109e8a5529e95868eb0) M pod/perlxs.pod commit 396aab66839370ecf222ae7a619f91c6f9f66819 Author: David Mitchell <[email protected]> Date: Mon Jul 27 23:11:02 2009 +0100 backout test part of 4ba71d51f7 for now (its broken on Windows; its been subsequently fixed, but for 5.10.1 lets just skip it completely and add at back later) M t/run/switchC.t commit 555c8ab60a0bbc65db10296defb059072aafd695 Author: David Golden <[email protected]> Date: Sat Jul 25 18:56:58 2009 -0400 Add security contact information to perlsec This patch inserts a short paragraph with security contact information near the top of the "Perl Security" documentation page. This would seem a likely place someone would look for such information (rather than INSTALL or perldelta where it lives today). I've put it at the top, not the bottom to make it easier to find. (cherry picked from commit 89f530a6b8371ad5f6cfa4a07a2a5d27e42a388e) M pod/perlsec.pod commit 012f18e75c9247a8b7a5130c3a3785ea31ff7d33 Author: Yves Orton <demer...@gemini.(none)> Date: Mon Jul 27 00:44:23 2009 +0200 needed something to change to test patch mailing list (cherry picked from commit 1784bd3e6b92cb1a7ca22884ab34a333c2b251bd) M AUTHORS commit a99464f304d6266922183b3e969b458851acd9d2 Author: Yves Orton <demer...@gemini.(none)> Date: Wed Jul 22 22:29:20 2009 +0200 fix vim highlighting problem (cherry picked from commit bd54d59dd6a665482e3984318596e9a54427f810) M t/op/pat.t commit 17df4d865f2a51a5b494413f7fe711246a2af218 Author: Nicholas Clark <[email protected]> Date: Sun Jul 26 19:53:53 2009 +0100 Suggest using Inline as a pre-uploading test for a distribution. (cherry picked from commit 9db5571e8d73e2a2ec3f2848dbd0fe8b71572e59) M Porting/release_managers_guide.pod ----------------------------------------------------------------------- Summary of changes: AUTHORS | 2 +- Porting/release_managers_guide.pod | 7 +++++++ pod/perlsec.pod | 12 ++++++++++++ pod/perlxs.pod | 2 +- t/op/pat.t | 2 +- t/run/switchC.t | 6 +----- 6 files changed, 23 insertions(+), 8 deletions(-) diff --git a/AUTHORS b/AUTHORS index da4dbf4..47a4090 100644 --- a/AUTHORS +++ b/AUTHORS @@ -942,7 +942,7 @@ Yitzchak Scott-Thoennes <[email protected]> Yutaka OIWA <[email protected]> Yutao Feng Yuval Kogman -Yves Orton <[email protected]> +Yves J. Orton <[email protected]> Zachary Miller <[email protected]> Zefram <[email protected]> Ævar Arnfjörð Bjarmason <[email protected]> diff --git a/Porting/release_managers_guide.pod b/Porting/release_managers_guide.pod index 1c11a87..3a91c9e 100644 --- a/Porting/release_managers_guide.pod +++ b/Porting/release_managers_guide.pod @@ -148,6 +148,13 @@ Bootstrap the CPAN client on the clean install. Install CPANPLUS. XXX pick something new; this is now bundled +=begin suggestion + +How about Inline. Install it, and then check that your perl can run this: + perl -lwe 'use Inline C => "int answer() { return 42;} "; print answer' + +=end + =item * Bootstrap the CPANPLUS client. diff --git a/pod/perlsec.pod b/pod/perlsec.pod index c9d2da6..c117eeb 100644 --- a/pod/perlsec.pod +++ b/pod/perlsec.pod @@ -12,6 +12,18 @@ with fewer hidden snags. Additionally, because the language has more builtin functionality, it can rely less upon external (and possibly untrustworthy) programs to accomplish its purposes. +=head1 SECURITY VULNERABILITY CONTACT INFORMATION + +If you believe you have found a security vulnerability in Perl, please email [email protected] with details. This points to a closed +subscription, unarchived mailing list. Please only use this address for +security issues in the Perl core, not for modules independently distributed on +CPAN. + +=head1 SECURITY MECHANISMS AND CONCERNS + +=head2 Taint mode + Perl automatically enables a set of special security checks, called I<taint mode>, when it detects its program running with differing real and effective user or group IDs. The setuid bit in Unix permissions is mode 04000, the diff --git a/pod/perlxs.pod b/pod/perlxs.pod index a6e21a3..5ad24d8 100644 --- a/pod/perlxs.pod +++ b/pod/perlxs.pod @@ -319,7 +319,7 @@ CPAN modules) in the typemap file, the reference count of the C<AV *> is not properly decremented. Thus, the above XSUB would leak memory whenever it is being called. The same problem exists for C<HV *>. -When you're returning an C<AV *> or a C<HV *>, you have make sure +When you're returning an C<AV *> or a C<HV *>, you have to make sure their reference count is decremented by making the AV or HV mortal: AV * diff --git a/t/op/pat.t b/t/op/pat.t index 3ee799d..0b2c729 100644 --- a/t/op/pat.t +++ b/t/op/pat.t @@ -4161,7 +4161,7 @@ sub run_tests { [ 1, qr#^((??{"(?:|<(/?bla)>)"}))((??{$nested_tags}))\1$#, "bla blubb <bla><blubb></blubb></bla>", "a b <bla><blubb></blubb></bla>" ], [ 0, qr#^((??{"(?!)"}))?((??{$nested_tags}))(?!)$#, "bla blubb undef", "a b undef" ], - ) { + ) { #"#silence vim highlighting $c++; @ctl_n = (); @plus = (); diff --git a/t/run/switchC.t b/t/run/switchC.t index 9e52ad3..41dba49 100644 --- a/t/run/switchC.t +++ b/t/run/switchC.t @@ -13,7 +13,7 @@ BEGIN { BEGIN { require "./test.pl"; } -plan(tests => 7); +plan(tests => 6); my $r; @@ -59,7 +59,3 @@ $r = runperl( switches => [ '-CA', '-w' ], args => [ chr(256) ] ); like( $r, qr/^256(?:\r?\n)?$/s, '-CA: @ARGV' ); -$r = runperl( switches => [ '-CS', '-w' ], - prog => "#!perl -CS\nprint chr(256)", - stderr => 1, ); -like( $r, qr/^$b(?:\r?\n)?$/s, '#!perl -C' ); -- Perl5 Master Repository
