File: 19-untaint.t

package info (click to toggle)
libparams-validate-perl 0.91-2
  • links: PTS, VCS
  • area: main
  • in suites: lenny
  • size: 524 kB
  • ctags: 729
  • sloc: perl: 2,596; makefile: 52
file content (80 lines) | stat: -rw-r--r-- 1,842 bytes parent folder | download | duplicates (3)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
#!/usr/bin/perl -Tw

use strict;

use Params::Validate qw(validate validate_pos);
use Test::More;

eval "use Test::Taint 0.02";
if ($@)
{
    plan skip_all => 'These tests require Test::Taint 0.02+ to run';
}
else
{
    plan tests => 9;
}

taint_checking_ok( 'These tests are meaningless unless we are in taint mode.' );

{
    my $value = 7;
    taint($value);

    tainted_ok( $value, 'make sure $value is tainted' );

    my @p = ( value => $value );
    my %p = validate( @p, { value => { regex   => qr/^\d+$/,
                                       untaint => 1,
                                     },
                          },
                    );

    untainted_ok( $p{value}, 'value is untainted after validation' );
}

{
    my $value = 'foo';

    taint($value);

    tainted_ok( $value, 'make sure $value is tainted' );

    my @p = ( $value );
    my ($new_value) = validate_pos( @p, { regex   => qr/foo/,
                                          untaint => 1,
                                        },
                                  );

    untainted_ok( $new_value, 'value is untainted after validation' );
}

{
    my $value = 7;
    taint($value);

    tainted_ok( $value, 'make sure $value is tainted' );

    my @p = ( value => $value );
    my %p = validate( @p, { value => { regex   => qr/^\d+$/,
                                     },
                          },
                    );

    tainted_ok( $p{value}, 'value is still tainted after validation' );
}

{
    my $value = 'foo';

    taint($value);

    tainted_ok( $value, 'make sure $value is tainted' );

    my @p = ( $value );
    my ($new_value) = validate_pos( @p, { regex   => qr/foo/,
                                        },
                                  );

    tainted_ok( $new_value, 'value is still tainted after validation' );
}