lua-users home
lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]


On Friday 13 June 2003 19:35, RLake@oxfam.org.pe wrote:
> I think what he's saying is that someone might *extend* the io library
> in an upwards-compatible way which results in the addition of more
> unsafe methods. For example, I might have an io library which adds
> io.opendir(d); this will not interfere with any code using the
> existing io library, except that the guardian doesn't know to delete
> it.

That's what I meant. I was thinking of a user installing, say, Lua 5.2 with a 
new file function (e.g. the io.opendir you mentioned). The program, having 
been written when io.opendir did not yet exist, could not protect against it 
being called from the 'sandboxed' script.

  Enrico