mirror of
https://github.com/ruby/ruby.git
synced 2022-11-09 12:17:21 -05:00
1f828497d1
when $SAFE is set to 4. $SAFE=4 is now obsolete. [ruby-core:55222] [Feature #8468] * object.c (rb_obj_untrusted, rb_obj_untrust, rb_obj_trust): Kernel#untrusted?, untrust, and trust are now deprecated. Their behavior is same as tainted?, taint, and untaint, respectively. * include/ruby/ruby.h (OBJ_UNTRUSTED, OBJ_UNTRUST): OBJ_UNTRUSTED() and OBJ_UNTRUST() are aliases of OBJ_TAINTED() and OBJ_TAINT(), respectively. * array.c, class.c, debug.c, dir.c, encoding.c, error.c, eval.c, ext/curses/curses.c, ext/dbm/dbm.c, ext/dl/cfunc.c, ext/dl/cptr.c, ext/dl/dl.c, ext/etc/etc.c, ext/fiddle/fiddle.c, ext/fiddle/pointer.c, ext/gdbm/gdbm.c, ext/readline/readline.c, ext/sdbm/init.c, ext/socket/ancdata.c, ext/socket/basicsocket.c, ext/socket/socket.c, ext/socket/udpsocket.c, ext/stringio/stringio.c, ext/syslog/syslog.c, ext/tk/tcltklib.c, ext/win32ole/win32ole.c, file.c, gc.c, hash.c, io.c, iseq.c, load.c, marshal.c, object.c, proc.c, process.c, random.c, re.c, safe.c, string.c, thread.c, transcode.c, variable.c, vm_insnhelper.c, vm_method.c, vm_trace.c: remove code for $SAFE=4. * test/dl/test_dl2.rb, test/erb/test_erb.rb, test/readline/test_readline.rb, test/readline/test_readline_history.rb, test/ruby/test_alias.rb, test/ruby/test_array.rb, test/ruby/test_dir.rb, test/ruby/test_encoding.rb, test/ruby/test_env.rb, test/ruby/test_eval.rb, test/ruby/test_exception.rb, test/ruby/test_file_exhaustive.rb, test/ruby/test_hash.rb, test/ruby/test_io.rb, test/ruby/test_method.rb, test/ruby/test_module.rb, test/ruby/test_object.rb, test/ruby/test_pack.rb, test/ruby/test_rand.rb, test/ruby/test_regexp.rb, test/ruby/test_settracefunc.rb, test/ruby/test_struct.rb, test/ruby/test_thread.rb, test/ruby/test_time.rb: remove tests for $SAFE=4. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@41259 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
485 lines
8.9 KiB
Ruby
485 lines
8.9 KiB
Ruby
# -*- coding: us-ascii -*-
|
|
require 'test/unit'
|
|
require 'erb'
|
|
|
|
class TestERB < Test::Unit::TestCase
|
|
class MyError < RuntimeError ; end
|
|
|
|
def test_without_filename
|
|
erb = ERB.new("<% raise ::TestERB::MyError %>")
|
|
e = assert_raise(MyError) {
|
|
erb.result
|
|
}
|
|
assert_match(/\A\(erb\):1\b/, e.backtrace[0])
|
|
end
|
|
|
|
def test_with_filename
|
|
erb = ERB.new("<% raise ::TestERB::MyError %>")
|
|
erb.filename = "test filename"
|
|
e = assert_raise(MyError) {
|
|
erb.result
|
|
}
|
|
assert_match(/\Atest filename:1\b/, e.backtrace[0])
|
|
end
|
|
|
|
def test_without_filename_with_safe_level
|
|
erb = ERB.new("<% raise ::TestERB::MyError %>", 1)
|
|
e = assert_raise(MyError) {
|
|
erb.result
|
|
}
|
|
assert_match(/\A\(erb\):1\b/, e.backtrace[0])
|
|
end
|
|
|
|
def test_with_filename_and_safe_level
|
|
erb = ERB.new("<% raise ::TestERB::MyError %>", 1)
|
|
erb.filename = "test filename"
|
|
e = assert_raise(MyError) {
|
|
erb.result
|
|
}
|
|
assert_match(/\Atest filename:1\b/, e.backtrace[0])
|
|
end
|
|
|
|
def test_html_escape
|
|
assert_equal(" !"\#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~",
|
|
ERB::Util.html_escape(" !\"\#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~"))
|
|
|
|
assert_equal("", ERB::Util.html_escape(""))
|
|
assert_equal("abc", ERB::Util.html_escape("abc"))
|
|
assert_equal("<<", ERB::Util.html_escape("<\<"))
|
|
|
|
assert_equal("", ERB::Util.html_escape(nil))
|
|
assert_equal("123", ERB::Util.html_escape(123))
|
|
end
|
|
|
|
def test_concurrent_default_binding
|
|
template1 = 'one <%= ERB.new(template2).result %>'
|
|
|
|
eval 'template2 = "two"', TOPLEVEL_BINDING
|
|
|
|
bug7046 = '[ruby-core:47638]'
|
|
assert_equal("one two", ERB.new(template1).result, bug7046)
|
|
end
|
|
end
|
|
|
|
class TestERBCore < Test::Unit::TestCase
|
|
def setup
|
|
@erb = ERB
|
|
end
|
|
|
|
def test_core
|
|
_test_core(nil)
|
|
_test_core(0)
|
|
_test_core(1)
|
|
_test_core(2)
|
|
orig = $VERBOSE
|
|
begin
|
|
$VERBOSE = false
|
|
_test_core(3)
|
|
ensure
|
|
$VERBOSE = orig
|
|
end
|
|
end
|
|
|
|
def _test_core(safe)
|
|
erb = @erb.new("hello")
|
|
assert_equal("hello", erb.result)
|
|
|
|
erb = @erb.new("hello", safe, 0)
|
|
assert_equal("hello", erb.result)
|
|
|
|
erb = @erb.new("hello", safe, 1)
|
|
assert_equal("hello", erb.result)
|
|
|
|
erb = @erb.new("hello", safe, 2)
|
|
assert_equal("hello", erb.result)
|
|
|
|
src = <<EOS
|
|
%% hi
|
|
= hello
|
|
<% 3.times do |n| %>
|
|
% n=0
|
|
* <%= n %>
|
|
<% end %>
|
|
EOS
|
|
|
|
ans = <<EOS
|
|
%% hi
|
|
= hello
|
|
|
|
% n=0
|
|
* 0
|
|
|
|
% n=0
|
|
* 1
|
|
|
|
% n=0
|
|
* 2
|
|
|
|
EOS
|
|
erb = @erb.new(src)
|
|
assert_equal(ans, erb.result)
|
|
erb = @erb.new(src, safe, 0)
|
|
assert_equal(ans, erb.result)
|
|
erb = @erb.new(src, safe, '')
|
|
assert_equal(ans, erb.result)
|
|
|
|
ans = <<EOS
|
|
%% hi
|
|
= hello
|
|
% n=0
|
|
* 0% n=0
|
|
* 1% n=0
|
|
* 2
|
|
EOS
|
|
erb = @erb.new(src, safe, 1)
|
|
assert_equal(ans.chomp, erb.result)
|
|
erb = @erb.new(src, safe, '>')
|
|
assert_equal(ans.chomp, erb.result)
|
|
|
|
ans = <<EOS
|
|
%% hi
|
|
= hello
|
|
% n=0
|
|
* 0
|
|
% n=0
|
|
* 1
|
|
% n=0
|
|
* 2
|
|
EOS
|
|
|
|
erb = @erb.new(src, safe, 2)
|
|
assert_equal(ans, erb.result)
|
|
erb = @erb.new(src, safe, '<>')
|
|
assert_equal(ans, erb.result)
|
|
|
|
ans = <<EOS
|
|
% hi
|
|
= hello
|
|
|
|
* 0
|
|
|
|
* 0
|
|
|
|
* 0
|
|
|
|
EOS
|
|
erb = @erb.new(src, safe, '%')
|
|
assert_equal(ans, erb.result)
|
|
|
|
ans = <<EOS
|
|
% hi
|
|
= hello
|
|
* 0* 0* 0
|
|
EOS
|
|
erb = @erb.new(src, safe, '%>')
|
|
assert_equal(ans.chomp, erb.result)
|
|
|
|
ans = <<EOS
|
|
% hi
|
|
= hello
|
|
* 0
|
|
* 0
|
|
* 0
|
|
EOS
|
|
erb = @erb.new(src, safe, '%<>')
|
|
assert_equal(ans, erb.result)
|
|
end
|
|
|
|
class Foo; end
|
|
|
|
def test_def_class
|
|
erb = @erb.new('hello')
|
|
cls = erb.def_class
|
|
assert_equal(Object, cls.superclass)
|
|
assert(cls.new.respond_to?('result'))
|
|
cls = erb.def_class(Foo)
|
|
assert_equal(Foo, cls.superclass)
|
|
assert(cls.new.respond_to?('result'))
|
|
cls = erb.def_class(Object, 'erb')
|
|
assert_equal(Object, cls.superclass)
|
|
assert(cls.new.respond_to?('erb'))
|
|
end
|
|
|
|
def test_percent
|
|
src = <<EOS
|
|
%n = 1
|
|
<%= n%>
|
|
EOS
|
|
assert_equal("1\n", ERB.new(src, nil, '%').result(binding))
|
|
|
|
src = <<EOS
|
|
<%
|
|
%>
|
|
EOS
|
|
ans = "\n"
|
|
assert_equal(ans, ERB.new(src, nil, '%').result(binding))
|
|
|
|
src = "<%\n%>"
|
|
# ans = "\n"
|
|
ans = ""
|
|
assert_equal(ans, ERB.new(src, nil, '%').result(binding))
|
|
|
|
src = <<EOS
|
|
<%
|
|
n = 1
|
|
%><%= n%>
|
|
EOS
|
|
assert_equal("1\n", ERB.new(src, nil, '%').result(binding))
|
|
|
|
src = <<EOS
|
|
%n = 1
|
|
%% <% n = 2
|
|
n.times do |i|%>
|
|
%% %%><%%<%= i%><%
|
|
end%>
|
|
%%%
|
|
EOS
|
|
ans = <<EOS
|
|
%\s
|
|
% %%><%0
|
|
% %%><%1
|
|
%%
|
|
EOS
|
|
assert_equal(ans, ERB.new(src, nil, '%').result(binding))
|
|
end
|
|
|
|
def test_def_erb_method
|
|
klass = Class.new
|
|
klass.module_eval do
|
|
extend ERB::DefMethod
|
|
fname = File.join(File.dirname(File.expand_path(__FILE__)), 'hello.erb')
|
|
def_erb_method('hello', fname)
|
|
end
|
|
assert(klass.new.respond_to?('hello'))
|
|
|
|
assert(! klass.new.respond_to?('hello_world'))
|
|
erb = @erb.new('hello, world')
|
|
klass.module_eval do
|
|
def_erb_method('hello_world', erb)
|
|
end
|
|
assert(klass.new.respond_to?('hello_world'))
|
|
end
|
|
|
|
def test_def_method_without_filename
|
|
klass = Class.new
|
|
erb = ERB.new("<% raise ::TestERB::MyError %>")
|
|
erb.filename = "test filename"
|
|
assert(! klass.new.respond_to?('my_error'))
|
|
erb.def_method(klass, 'my_error')
|
|
e = assert_raise(::TestERB::MyError) {
|
|
klass.new.my_error
|
|
}
|
|
assert_match(/\A\(ERB\):1\b/, e.backtrace[0])
|
|
end
|
|
|
|
def test_def_method_with_fname
|
|
klass = Class.new
|
|
erb = ERB.new("<% raise ::TestERB::MyError %>")
|
|
erb.filename = "test filename"
|
|
assert(! klass.new.respond_to?('my_error'))
|
|
erb.def_method(klass, 'my_error', 'test fname')
|
|
e = assert_raise(::TestERB::MyError) {
|
|
klass.new.my_error
|
|
}
|
|
assert_match(/\Atest fname:1\b/, e.backtrace[0])
|
|
end
|
|
|
|
def test_escape
|
|
src = <<EOS
|
|
1.<%% : <%="<%%"%>
|
|
2.%%> : <%="%%>"%>
|
|
3.
|
|
% x = "foo"
|
|
<%=x%>
|
|
4.
|
|
%% print "foo"
|
|
5.
|
|
%% <%="foo"%>
|
|
6.<%="
|
|
% print 'foo'
|
|
"%>
|
|
7.<%="
|
|
%% print 'foo'
|
|
"%>
|
|
EOS
|
|
ans = <<EOS
|
|
1.<% : <%%
|
|
2.%%> : %>
|
|
3.
|
|
foo
|
|
4.
|
|
% print "foo"
|
|
5.
|
|
% foo
|
|
6.
|
|
% print 'foo'
|
|
|
|
7.
|
|
%% print 'foo'
|
|
|
|
EOS
|
|
assert_equal(ans, ERB.new(src, nil, '%').result)
|
|
end
|
|
|
|
def test_keep_lineno
|
|
src = <<EOS
|
|
Hello,\s
|
|
% x = "World"
|
|
<%= x%>
|
|
% raise("lineno")
|
|
EOS
|
|
|
|
erb = ERB.new(src, nil, '%')
|
|
begin
|
|
erb.result
|
|
assert(false)
|
|
rescue
|
|
assert_match(/\A\(erb\):4\b/, $@[0].to_s)
|
|
end
|
|
|
|
src = <<EOS
|
|
%>
|
|
Hello,\s
|
|
<% x = "World%%>
|
|
"%>
|
|
<%= x%>
|
|
EOS
|
|
|
|
ans = <<EOS
|
|
%>Hello,\s
|
|
World%>
|
|
EOS
|
|
assert_equal(ans, ERB.new(src, nil, '>').result)
|
|
|
|
ans = <<EOS
|
|
%>
|
|
Hello,\s
|
|
|
|
World%>
|
|
EOS
|
|
assert_equal(ans, ERB.new(src, nil, '<>').result)
|
|
|
|
ans = <<EOS
|
|
%>
|
|
Hello,\s
|
|
|
|
World%>
|
|
|
|
EOS
|
|
assert_equal(ans, ERB.new(src).result)
|
|
|
|
src = <<EOS
|
|
Hello,\s
|
|
<% x = "World%%>
|
|
"%>
|
|
<%= x%>
|
|
<% raise("lineno") %>
|
|
EOS
|
|
|
|
erb = ERB.new(src)
|
|
begin
|
|
erb.result
|
|
assert(false)
|
|
rescue
|
|
assert_match(/\A\(erb\):5\b/, $@[0].to_s)
|
|
end
|
|
|
|
erb = ERB.new(src, nil, '>')
|
|
begin
|
|
erb.result
|
|
assert(false)
|
|
rescue
|
|
assert_match(/\A\(erb\):5\b/, $@[0].to_s)
|
|
end
|
|
|
|
erb = ERB.new(src, nil, '<>')
|
|
begin
|
|
erb.result
|
|
assert(false)
|
|
rescue
|
|
assert_match(/\A\(erb\):5\b/, $@[0].to_s)
|
|
end
|
|
|
|
src = <<EOS
|
|
% y = 'Hello'
|
|
<%- x = "World%%>
|
|
"-%>
|
|
<%= x %><%- x = nil -%>\s
|
|
<% raise("lineno") %>
|
|
EOS
|
|
|
|
erb = ERB.new(src, nil, '-')
|
|
begin
|
|
erb.result
|
|
assert(false)
|
|
rescue
|
|
assert_match(/\A\(erb\):5\b/, $@[0].to_s)
|
|
end
|
|
|
|
erb = ERB.new(src, nil, '%-')
|
|
begin
|
|
erb.result
|
|
assert(false)
|
|
rescue
|
|
assert_match(/\A\(erb\):5\b/, $@[0].to_s)
|
|
end
|
|
end
|
|
|
|
def test_explicit
|
|
src = <<EOS
|
|
<% x = %w(hello world) -%>
|
|
NotSkip <%- y = x -%> NotSkip
|
|
<% x.each do |w| -%>
|
|
<%- up = w.upcase -%>
|
|
* <%= up %>
|
|
<% end -%>
|
|
<%- z = nil -%> NotSkip <%- z = x %>
|
|
<%- z.each do |w| -%>
|
|
<%- down = w.downcase -%>
|
|
* <%= down %>
|
|
<%- up = w.upcase -%>
|
|
* <%= up %>
|
|
<%- end -%>
|
|
KeepNewLine <%- z = nil -%>\s
|
|
EOS
|
|
|
|
ans = <<EOS
|
|
NotSkip NotSkip
|
|
* HELLO
|
|
* WORLD
|
|
NotSkip\s
|
|
* hello
|
|
* HELLO
|
|
* world
|
|
* WORLD
|
|
KeepNewLine \s
|
|
EOS
|
|
assert_equal(ans, ERB.new(src, nil, '-').result)
|
|
assert_equal(ans, ERB.new(src, nil, '-%').result)
|
|
end
|
|
|
|
def test_url_encode
|
|
assert_equal("Programming%20Ruby%3A%20%20The%20Pragmatic%20Programmer%27s%20Guide",
|
|
ERB::Util.url_encode("Programming Ruby: The Pragmatic Programmer's Guide"))
|
|
|
|
assert_equal("%A5%B5%A5%F3%A5%D7%A5%EB",
|
|
ERB::Util.url_encode("\xA5\xB5\xA5\xF3\xA5\xD7\xA5\xEB".force_encoding("EUC-JP")))
|
|
end
|
|
|
|
def test_percent_after_etag
|
|
assert_equal("1%", @erb.new("<%= 1 %>%", nil, "%").result)
|
|
end
|
|
end
|
|
|
|
class TestERBCoreWOStrScan < TestERBCore
|
|
def setup
|
|
@save_map = ERB::Compiler::Scanner.instance_variable_get('@scanner_map')
|
|
map = {[nil, false]=>ERB::Compiler::SimpleScanner}
|
|
ERB::Compiler::Scanner.instance_variable_set('@scanner_map', map)
|
|
super
|
|
end
|
|
|
|
def teardown
|
|
ERB::Compiler::Scanner.instance_variable_set('@scanner_map', @save_map)
|
|
end
|
|
end
|