https://bugs.ruby-lang.org/https://bugs.ruby-lang.org/favicon.ico?17113305112014-01-30T04:18:10ZRuby Issue Tracking SystemRuby master - Bug #8945: Unmarshaling an Array containing a Bignum from a tainted String returns a frozen, tainted Bignumhttps://bugs.ruby-lang.org/issues/8945?journal_id=447192014-01-30T04:18:10Zhsbt (Hiroshi SHIBATA)hsbt@ruby-lang.org
<ul><li><strong>Target version</strong> changed from <i>2.1.0</i> to <i>2.2.0</i></li></ul> Ruby master - Bug #8945: Unmarshaling an Array containing a Bignum from a tainted String returns a frozen, tainted Bignumhttps://bugs.ruby-lang.org/issues/8945?journal_id=450112014-02-07T12:57:31Znobu (Nobuyoshi Nakada)nobu@ruby-lang.org
<ul><li><strong>Category</strong> set to <i>core</i></li><li><strong>Status</strong> changed from <i>Open</i> to <i>Assigned</i></li><li><strong>Assignee</strong> set to <i>matz (Yukihiro Matsumoto)</i></li></ul><p>As <code>Bignum</code> instances are frozen now, it feels reasonable that they never be tainted, IMO.</p> Ruby master - Bug #8945: Unmarshaling an Array containing a Bignum from a tainted String returns a frozen, tainted Bignumhttps://bugs.ruby-lang.org/issues/8945?journal_id=450252014-02-08T13:05:29Zmatz (Yukihiro Matsumoto)matz@ruby.or.jp
<ul></ul><p>Agreed. It should be consistent here.</p>
<p>Matz.</p> Ruby master - Bug #8945: Unmarshaling an Array containing a Bignum from a tainted String returns a frozen, tainted Bignumhttps://bugs.ruby-lang.org/issues/8945?journal_id=450292014-02-08T17:14:02Znobu (Nobuyoshi Nakada)nobu@ruby-lang.org
<ul><li><strong>Status</strong> changed from <i>Assigned</i> to <i>Closed</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Applied in changeset r44891.</p>
<hr>
<p>marshal.c: Numerics are not tainted</p>
<ul>
<li>include/ruby/ruby.h (OBJ_TAINTABLE, OBJ_TAINT, OBJ_INFECT),<br>
marshal.c (r_entry0): all Numerics never be tainted now.<br>
<a href="/issues/8945">[ruby-core:57346]</a> [Bug <a class="issue tracker-1 status-5 priority-4 priority-default closed" title="Bug: Unmarshaling an Array containing a Bignum from a tainted String returns a frozen, tainted Bignum (Closed)" href="https://bugs.ruby-lang.org/issues/8945">#8945</a>]</li>
</ul> Ruby master - Bug #8945: Unmarshaling an Array containing a Bignum from a tainted String returns a frozen, tainted Bignumhttps://bugs.ruby-lang.org/issues/8945?journal_id=451172014-02-14T04:15:36Zusa (Usaku NAKAMURA)usa@garbagecollect.jp
<ul><li><strong>Backport</strong> changed from <i>1.9.3: UNKNOWN, 2.0.0: UNKNOWN</i> to <i>1.9.3: REJECTED, 2.0.0: UNKNOWN</i></li></ul><p>IMO this is a feature change, although it is close to a bug infinite.<br>
So, I decided this not to backport into 1.9.3.</p>