Ur/Web: src/sidecheck.sml comparison

comparison src/sidecheck.sml @ 2116:ebfaab689570

The 2nd half of proper CSRF protection related to environment variables

author	Adam Chlipala <adam@chlipala.net>
date	Thu, 12 Feb 2015 15:09:26 -0500
parents	7bb8c560f23d
children

comparison

equal deleted inserted replaced

-:3dc020fb2aa1
+:ebfaab689570
 open Mono
 structure E = ErrorMsg
+structure SK = struct
+type ord_key = string
+val compare = String.compare
+end
+structure SS = BinarySetFn(SK)
+val envVars = ref SS.empty
 fun check ds =
-(MonoUtil.File.appLoc (fn (e, loc) =>
+let
-let
+val alreadyWarned = ref false
-fun error (k as (k1, k2)) =
+in
-if Settings.isClientOnly k then
+envVars := SS.empty;
-let
+MonoUtil.File.appLoc (fn (e, loc) =>
-val k2 = case k1 of
+let
-"Basis" =>
+fun error (k as (k1, k2)) =
-(case k2 of
+if Settings.isClientOnly k then
-"get_client_source" => "get"
+let
-| _ => k2)
+val k2 = case k1 of
-| _ => k2
+"Basis" =>
-in
+(case k2 of
-E.errorAt loc ("Server-side code uses client-side-only identifier \"" ^ k1 ^ "." ^ k2 ^ "\"")
+"get_client_source" => "get"
-end
+| _ => k2)
-else
+| _ => k2
-()
+in
-in
+E.errorAt loc ("Server-side code uses client-side-only identifier \"" ^ k1 ^ "." ^ k2 ^ "\"")
-case e of
+end
-EFfi k => error k
+else
-| EFfiApp (k1, k2, _) => error (k1, k2)
+()
-| _ => ()
+in
-end) ds;
+case e of
-ds)
+EFfi k => error k
+| EFfiApp ("Basis", "getenv", [(e, _)]) =>
+(case #1 e of
+EPrim (Prim.String (_, s)) =>
+envVars := SS.add (!envVars, s)
+| _ => if !alreadyWarned then
+()
+else
+(alreadyWarned := true;
+TextIO.output (TextIO.stdErr, "WARNING: " ^ ErrorMsg.spanToString loc ^ ": reading from an environment variable not determined at compile time, which can confuse CSRF protection")))
+| EFfiApp (k1, k2, _) => error (k1, k2)
+| _ => ()
+end) ds;
+ds
+end
+fun readEnvVars () = SS.listItems (!envVars)
 end

Mercurial > urweb

comparison src/sidecheck.sml @ 2116:ebfaab689570