Re^3: UTF8 related proof of concept exploit released at T-DOSE


"be consistent"
	PerlMonks

Re^3: UTF8 related proof of concept exploit released at T-DOSE

by graff (Chancellor)

on Oct 15, 2007 at 08:57 UTC ( [id://644867]=note: print w/replies, xml )

Need Help??

in reply to Re^2: UTF8 related proof of concept exploit released at T-DOSE
in thread UTF8 related proof of concept exploit released at T-DOSE

Why go through that trouble if ":encoding(UTF-8)" does exactly the same thing, the same safe way, only with less code?

If it is sufficient that the app simply never gets to see a malformed byte sequence (or anything following a malformed character) when reading from a source that is expected to be utf8, you're right -- better to handle it via the ":encoding(utf8)" layer in PerlIO.

But if there's any need to diagnose the nature of the malformedness, or to recover any amount of usable data following a bad byte sequence within a given input record, then the extra steps involving "decode('utf8',$string,...)" are the only way to do that, I think.

Comment on Re^3: UTF8 related proof of concept exploit released at T-DOSE

Replies are listed 'Best First'.
Re^4: UTF8 related proof of concept exploit released at T-DOSE by Juerd (Abbot) on Oct 15, 2007 at 16:09 UTC
Using warnings takes care of most, but indeed if you want to catch it and do anything special with it, the extra step is the easiest way. Good point.	[reply]

In Section Perl News

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://644867]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others goofing around in the Monastery: (4)

As of 2024-04-25 12:15 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found