Re: load and upvalues

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: load and upvalues
From: Sean Conner <sean@...>
Date: Tue, 7 May 2019 20:07:31 -0400

It was thus said that the Great Egor Skriptunoff once stated:
> On Wed, May 8, 2019 at 1:07 AM Egor Skriptunoff wrote:
> 
> > This way, untrusted code could successfully dump and load your_function()
> > without being able to extract any info about it.
> >
> 
> 
> I foresee the question: "Isn't it dangerous to allow untrusted code to load
> arbitrary bytecode?"

  That's why from Lua 5.2 onwards, load() has a parameter to restrict
loading of bytecode.  And a sandbox would not include load() (or a
restricted version of it).

  -spc

Follow-Ups:
- Re: load and upvalues, Egor Skriptunoff

References:
- Re: load and upvalues, Egor Skriptunoff
- Re: load and upvalues, Soni "They/Them" L.
- Re: load and upvalues, Egor Skriptunoff
- Re: load and upvalues, Egor Skriptunoff

Prev by Date: Re: load and upvalues
Next by Date: Re: load and upvalues
Previous by thread: Re: load and upvalues
Next by thread: Re: load and upvalues
Index(es):
- Date
- Thread