Beefy Boxes and Bandwidth Generously Provided by pair Networks
Perl Monk, Perl Meditation
 
PerlMonks  

Re: User regexps

by Abigail-II (Bishop)
on Jan 14, 2004 at 15:07 UTC ( [id://321269]=note: print w/replies, xml ) Need Help??


in reply to User regexps

If the regexps come from users, will I have a taint problem?
Unless you explicitely enable use re 'eval'; you won't have problems where tainting can help you prevent getting damaged - the user can't inject arbitrary code.
I am worried about intentional or unintentional ill-effects beyond an error.
And you should! No tainting is going to protect you from a regexp that will run "forever", or that's going to exhaust your memory or stack size in a quick fashion. There's no easy defensive against this.
Would qr help with this? Or how about Safe ?
No, and no. Read the manual page of Safe.pm about things Safe doesn't protect you from - the first things mentioned are "Memory" and "CPU".
How could a user specify a regexp meaning, "Any string that does not have the phrase 'foo' in it?" 
/^(?:(?!foo).)*$/s;

[download]

Abigail

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://321269]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others scrutinizing the Monastery: (2)
As of 2024-04-19 01:01 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found