Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#4810 Can't expose file command in safe interp

obsolete: 8.6b1
closed-fixed
9
2011-09-26
2011-03-14
Bruce A. Johnson
No

Using ActiveTcl 8.6b5 on Ubuntu Linux

I'm having the following problem:
% set i [interp create -safe]
interp0
% interp expose $i file
::tcl::mathfunc::maxunknown hidden command "file"
%

Discussion

  • Jeffrey Hobbs
    Jeffrey Hobbs
    2011-03-15

    • priority: 5 --> 7
     
  • Jeffrey Hobbs
    Jeffrey Hobbs
    2011-03-15

    This regression needs addressing before 8.6 final.

     
  • [file] is exposed, but its unsafe subcommands fail.

     
  • Don Porter
    Don Porter
    2011-09-23

    • priority: 7 --> 9
     
  • I've made [file] be hidden in safe interpreters, but I don't think it's a very good idea all the same. The change to having it be an ensemble changes the way you are best advised to write a security policy (i.e., [file] should be there, but only with safe operations in it).

     
    • status: open --> closed-fixed