Perl ã§ã® secure ãªä¸€æ™‚ãƒ•ã‚¡ã‚¤ãƒ«ã®å–ã‚Šæ‰±ã„

Perl ã§ (ã¨ã„ã†ã‹ Unix ã§) ãƒ•ã‚¡ã‚¤ãƒ«ã‚’ open ã—ãŸå¾Œã« unlink ã—ã¦ã‚‚ write, read ã¯å‡ºæ¥ã‚‹ã€‚ã¨ã„ã†ãƒ†ã‚¹ãƒˆã€‚

#!/usr/local/bin/perl

use strict;
use warnings;
use IO::File;

my $file = "/var/tmp/test.$$";
print "file = $file\n";

die "$file is symlink\n"     if -l $file;
die "$file already exists\n" if -e _;
umask(066);

# my $result = open my $fh, "+>" . $file;
# my $result = open my $fh, "+>", $file;
my $result = sysopen my $fh, $file, O_RDWR|O_CREAT|O_EXCL;
print "sysopen : $result\n";

$result = unlink $file;
print "unlink  : $result\n";

$result = print $fh "hoge\n";
print "print   : $result\n";

$result = seek $fh, 0, SEEK_SET;
print "seek    : $result\n";

$result = read $fh, my $str, 4096;
print "read    : $result\n";
print "str     : $str";

close $fh;

å®Ÿè¡Œã™ã‚‹ã¨

% ./test.pl
file = /var/tmp/test.1545
sysopen : 1
unlink  : 1
print   : 1
seek    : 1
read    : 5
str     : hoge

ã“ã‚“ãªé¢¨ã«ãªã‚‹ã€‚
é«˜ã„ Security Level ã‚’è¦æ±‚ã•ã‚Œã‚‹ãƒ—ãƒã‚°ãƒ©ãƒ (Unix ä¸Šã®) ã ã¨ã€ä¸€æ™‚ãƒ•ã‚¡ã‚¤ãƒ«ã¯ open ã—ã¦ã‹ã‚‰ã™ã unlink ã—ã¦ä»–ã®ãƒ—ãƒã‚»ã‚¹ã‹ã‚‰ã¯ã‚¢ã‚¯ã‚»ã‚¹å‡ºæ¥ãªã„ã‚ˆã†ã«ã™ã‚‹ã®ãŒåŸºæœ¬ã ã‚ˆãã€‚ã¨ã‹è¨€ã‚ã‚Œã¦ã€ãã‚“ãªã“ã¨ã¯å…¨ãçŸ¥ã‚‰ãªã‹ã£ãŸã®ã§ãƒ†ã‚¹ãƒˆã—ã¦ã¿ãŸæ¬¡ç¬¬ã§ã™ã€‚
CPAN module ã§åŒã˜ã‚ˆã†ãªã“ã¨å‡ºæ¥ãªã„ã®ã‹ãªã€‚ã¨æ€ã£ã¦èª¿ã¹ãŸã‚‰ã€æ¨™æº–æ·»ä»˜ã® File::Temp ãŒã‚¤ã‚±ãƒ«ã€‚

#!/usr/local/bin/perl

use strict;
use warnings;
use File::Temp qw /tempfile/;
File::Temp->safe_level( File::Temp::HIGH );
use Fcntl ':seek';

my $fh = tempfile();

my $result = print $fh "hoge\n";
print "print  : $result\n";

$result = seek $fh, 0, SEEK_SET;
print "seek   : $result\n";

$result = read $fh, my $str, 4096;
print "read   : $result\n";
print "str    : $str";

close $fh;

å®Ÿè¡Œã€‚

% ./test.pl
print  : 1
seek   : 1
read   : 5
str    : hoge

ãŸã File::Temp ã«ã¯ã¡ã‚‡ã£ã¨ç™–ãŒã‚ã£ã¦ã€tempfile() ã‚’ filename ã‚’æ±‚ã‚ãªã„å½¢ã§å‘¼ã³å‡ºã•ãªã„ã¨ã„ã‘ãªã„ã€‚è¦ã™ã‚‹ã«ã€

# ok
my $fh = tempfile();

# ng
my( $fh, $filename ) = tempfile();

# also ng
my $fh       = new File::Temp;
my $filename = $fh->filename;

ãªæ„Ÿã˜ã€‚ã“ã‚ŒãŒãªãœã‹ source ã‚’æŠœç²‹ã—ã¦è§£èª¬ã—ã¦ã¿ã¾ã—ã‚‡ã†ã‹ã€‚

source from File::Temp::tempfile

# Return
if (wantarray()) {

    if ($options{'OPEN'}) {
        return ($fh, $path);
    } else {
        return (undef, $path);
    }

} else {

    # Unlink the file. It is up to unlink0 to decide what to do with
    # this (whether to unlink now or to defer until later)
    unlink0($fh, $path) or croak "Error unlinking file $path using unlink0";

    # Return just the filehandle.
    return $fh;
}

File::Temp::tempfile() ã¯ wantarray ãªå½¢ã§å‘¼ã³å‡ºã™ã¨ unlink0 (unlink ã® OS ã®é•ã„ã‚’å¸åŽã—ã¦ã‚‹ subroutine) ã‚’å‘¼ã³å‡ºã•ãªã„ã‚ˆã†ã«ãªã£ã¦ã‚‹ã€‚ã‚ˆã£ã¦ã€

my( $fh, $filename ) = tempfile();

source from File::Temp::new

# Open the file and retain file handle and file name
my ($fh, $path) = tempfile( @template, %args );

ãªã®ã§ã“ã‚Œã‚‚ NGã€‚
ä»–ã«ã‚‚ File::Temp::_can_unlink_opened_file ã‚’è¦‹ã‚‹ã¨ã€open å¾Œã« unlink å‡ºæ¥ã‚‹ OS ãŒã‚ã‹ã‚‹ã‚ˆã†ã ã€‚æœ€è¿‘ã® Unix ç³»ã® OS ã¯å•é¡Œãªã„ãªã€‚
æ›¸ãæ–¹ã«ã‚ˆã£ã¦å¾®å¦™ã«å‹•ä½œãŒé•ã†ä»•æ§˜ã£ã¦ã©ã†ãªã‚“ã ã‚ã†ï¼Ÿç‰¹ã« OO ã§æ›¸ãã¨(åˆ¥ã«ãã®å¾Œã§ filename ã‚’å‘¼ã³å‡ºã•ãªãã¦ã‚‚)ä¸€æ™‚ãƒ•ã‚¡ã‚¤ãƒ«ãŒæ®‹ã‚‹ãªã‚“ã¦ã€å¾®å¦™ãªä»•æ§˜ã ãª...ã€‚