Re: Static validation of Lua String Patterns?

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Static validation of Lua String Patterns?
From: steve donovan <steve.j.donovan@...>
Date: Sat, 22 Apr 2017 13:18:16 +0200

On Sat, Apr 22, 2017 at 11:46 AM, Dirk Laurie <dirk.laurie@gmail.com> wrote:
> I.e. you should do "pcall(string.match,str,pat)" instead of str:match(pat)
> whenever either "str" or "pat" is not under your control.

Well, there is just the original C string matching code (lifted
carefully using a MIT license) and so the Rust equivalent would be
'all matches may fail with an error'. Currently it's just panicking
which is bad, man.  Not too bad really, but if I had static validation
then I _know_ the matcher will not fail - and so you would fail up
front when making the matcher struct, rather than any match on that
struct.

>    https://xkcd.com/327/
Excellent, sir! Required reading for anybody passing around unescaped SQL.

References:
- Static validation of Lua String Patterns?, steve donovan
- Re: Static validation of Lua String Patterns?, Dirk Laurie
- Re: Static validation of Lua String Patterns?, Egor Skriptunoff
- Re: Static validation of Lua String Patterns?, steve donovan
- Re: Static validation of Lua String Patterns?, Dirk Laurie

Prev by Date: Re: Static validation of Lua String Patterns?
Next by Date: Re: Lua Foundation?
Previous by thread: Re: Static validation of Lua String Patterns?
Next by thread: Re: Static validation of Lua String Patterns?
Index(es):
- Date
- Thread