mod_perl/mod_perl-1.26/t/net/perl/taint.pl


            
              1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
              #!/usr/local/bin/perl -w
use Apache ();
use strict;
my $r = Apache->request;
local $ENV{PATH} = "/bin";
$r->content_type("text/plain");
$r->send_http_header;
#with perl 5.003_96 and hpux10.10, trapping an "...insecure dependency..."
#more than once during the same perl_call_sv core dumps
#we get by with one at a time for now.
my $sub = $r->args;
$sub =~ s/\W+//g;
my $tests = {
    args => sub {
        eval { system $r->args };
        die "TaintCheck failed, I can `system \$r->args'" unless $@;
        #warn "TRAPPED: `system \$r->args' '$@'\n";
    },
    env => sub {
        eval { system $ENV{SERVER_SOFTWARE} };
        die "TaintCheck failed, I can `system $ENV{SERVER_SOFTWARE}'" 
            unless $@;
        #warn "TRAPPED: `system \$ENV{SERVER_SOFTWARE}' '$@'\n";
    },
    header_in => sub {
        eval { system $r->header_in('User-Agent') };
        die "TaintCheck failed, I can `system \$r->header_in('User-Agent')'"
            unless $@;
        #warn "TRAPPED: `system \$r->header_in('User-Agent')' '$@'\n";
    },
    content => sub {
        my $content = $r->content;
        eval { system $content };
        die "TaintCheck failed, I can `system $content'" unless $@;
        #warn "TRAPPED: `system \$r->content' '$@'\n";
    },
};
&{ $tests->{$sub} };
$r->print("OK");

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)