Re: Is there any security risk related to the use of the reader?

guile-user

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Is there any security risk related to the use of the reader?

From:	Matt Wette
Subject:	Re: Is there any security risk related to the use of the reader?
Date:	Sun, 25 Feb 2018 09:29:25 -0800
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0



On 02/25/2018 07:35 AM, Amirouche Boubekki wrote:

I have procedures like that in my program:

(define-public (scm->string scm)
  (call-with-output-string
    (lambda (port)
      (write scm port))))

(define-public (string->scm string)
  (call-with-input-string string read))

Is it safe to pass to this procedures input from third parties?

TIA!

maybe check (ice-9 sandbox), explained in section 6.18.12 of the 2.2.3manual

[Prev in Thread]

Current Thread

[Next in Thread]

Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
- Re: Is there any security risk related to the use of the reader?, Matt Wette <=
  - Re: Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
- Re: Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
- Re: Is there any security risk related to the use of the reader?, Christopher Lemmer Webber, 2018/02/25
  - Re: Is there any security risk related to the use of the reader?, Amirouche Boubekki, 2018/02/25
    - Re: Is there any security risk related to the use of the reader?, Christopher Lemmer Webber, 2018/02/28

Prev by Date: Is there any security risk related to the use of the reader?
Next by Date: Re: Is there any security risk related to the use of the reader?
Previous by thread: Is there any security risk related to the use of the reader?
Next by thread: Re: Is there any security risk related to the use of the reader?
Index(es):
- Date
- Thread