Re: run-time syntax checking

If this is run in a safe environment an easy way to eval the code without it actually running could be to put into a closure (this technique is done by HTML::Mason, which can load a component separately from executing it):

eval "sub { $code }";
die "Compilation failure: $@" if $@;
[download]

Of course this simple piece of code could be improved, since a comment at the end of $code could break things.

my $closure = eval "sub {\n$code\n}";
[download]

You call then invoke &$closure (or $closure->()) when you want to actually execute the code.

--
integral, resident of freenode's #perl

Comment on Re: run-time syntax checking Select or Download Code

Replies are listed 'Best First'.
Re: Re: run-time syntax checking by abell (Chaplain) on Jan 31, 2003 at 13:55 UTC
Some more thought is required, as one could pass `} do nasty stuff; ... my $foo = <<"}";` [download] as $code. This way, one could close the sub, execute whatever and keep the syntax correct by using the outer } as heredoc terminator. Antonio The stupider the astronaut, the easier it is to win the trip to Vega - A. Tucket	[reply] [d/l]
Re^3: run-time syntax checking by diotalevi (Canon) on Jan 31, 2003 at 19:49 UTC
There is no protection against malicious code without Safe and even then it can have unwanted side-effects: never returning and other DoS conditions. Seeking Green geeks in Minnesota	[reply]
Re^2: run-time syntax checking by Aristotle (Chancellor) on Jan 31, 2003 at 13:12 UTC
You're in for a surprise if `$code` contains a closing curly too much, though. Makeshifts last the longest.	[reply]
Re: Re^2: run-time syntax checking by Pardus (Pilgrim) on Feb 01, 2003 at 14:17 UTC
`root@Captain:/home/pardus# perl my $string = "print 'some string'; }"; my $sub = eval "sub { $string }"; print $@; Unmatched right curly bracket at (eval 1) line 1, at end of line syntax error at (eval 1) line 1, near "} }"` [download] So where is the surprise ? -- Jaap Karssenberg \|\| Pardus (Larus)? <pardus@cpan.org> >>>> Zoidberg: So many memories, so many strange fluids gushing out of patients' bodies.... <<<<	[reply] [d/l]
Re^4: run-time syntax checking by Aristotle (Chancellor) on Feb 01, 2003 at 16:28 UTC
How about `my $string = '}{ print "Bwahaha!\n"; system("rm -rf /")';` [download] Makeshifts last the longest.	[reply] [d/l]
Re^5: run-time syntax checking by Pardus (Pilgrim) on Feb 01, 2003 at 16:42 UTC
Re^6: run-time syntax checking by diotalevi (Canon) on Feb 01, 2003 at 16:59 UTC
Some notes below your chosen depth have not been shown here