Project

General

Profile

Actions
Copy link

Feature #14245

closed

Add File.read etc.

Feature #14245: Add File.read etc.

Added by shugo (Shugo Maeda) almost 8 years ago. Updated over 7 years ago.

Status:
Closed
Assignee:
-
Target version:
-
[ruby-core:84495]

Description

Some people use File.open without knowing that it's defined in IO and pipes can be opened.

p File.read("|echo hello") #-> "hello"

How about to add File.read, File.binread, File.foreach etc. (similar version to File.open)?
Code like File.read(filename) is considered to have no intention to open pipes.

Implementation by prelude.rb is suggested by normalperson in #14239:

I like that idea, I've been rewriting some stuff to use
"File.open(filename, &:read)" instead of IO.read.

Now, can we implement these new singleton methods in
prelude.rb instead of writing in C? :)

Files

0001-io.c.patch (2.39 KB) 0001-io.c.patch shugo (Shugo Maeda), 03/17/2018 11:47 AM

Related issues 1 (0 open1 closed)

Related to Ruby - Bug #14239: warn open("|...")ClosedActions

Updated by shugo (Shugo Maeda) almost 8 years ago Actions
Copy link
 #1

Updated by shugo (Shugo Maeda) almost 8 years ago Actions
Copy link
 #2

  • Description updated (diff)

Updated by akr (Akira Tanaka) almost 8 years ago Actions
Copy link
 #3 [ruby-core:84499]

If I understand this proposal correctly,
this proposal means that adding File.read method and
doesn't change IO.read method?
I.e. IO.read("|command") is works as now?.

I think it is possible direction.

Apart from that, we should list all affected methods explicitly (without "etc.").

Updated by shevegen (Robert A. Heiler) almost 8 years ago Actions
Copy link
 #4 [ruby-core:84504]

Code like File.read(filename) is considered to
have no intention to open pipes.

When added, the documentation should also
briefly mention the reference to pipes.

For example, a few months ago I did not even know
about the leading '|' character - I first saw it
on the ruby issue tracker. :)

Current link to File is here:

https://ruby-doc.org/core/File.html

Updated by shugo (Shugo Maeda) over 7 years ago Actions
Copy link
 #5 [ruby-core:85947]

akr (Akira Tanaka) wrote:

If I understand this proposal correctly,
this proposal means that adding File.read method and
doesn't change IO.read method?
I.e. IO.read("|command") is works as now?.

Yes.

Apart from that, we should list all affected methods explicitly (without "etc.").

The following methods will be affected:

  • read
  • binread
  • write
  • binwrite
  • foreach
  • readlines

Updated by matz (Yukihiro Matsumoto) over 7 years ago Actions
Copy link
 #6 [ruby-core:86121]

Agreed for mostly security reasons.

Matz.

Updated by shugo (Shugo Maeda) over 7 years ago Actions
Copy link
 #7 [ruby-core:86132]

matz (Yukihiro Matsumoto) wrote:

Agreed for mostly security reasons.

Is this incompatibility acceptable in Ruby 2.6?

Updated by shugo (Shugo Maeda) over 7 years ago Actions
Copy link
 #8 [ruby-core:86167]

I've made a patch.

Updated by shugo (Shugo Maeda) over 7 years ago Actions
Copy link
 #9

  • Status changed from Open to Closed

Applied in changeset trunk|r62857.

io.c: Methods of File should not invoke external commands

For security reasons, File.read, File.binread, File.write, File.binwrite,
File.foreach, and File.readlines should not invoke external commands even
if the path starts with the pipe character |.
[ruby-core:84495] [Feature #14245]

Actions
Copy link

Also available in: PDF Atom