diff options
| author | jvoisin | 2018-01-04 15:59:59 +0100 |
|---|---|---|
| committer | GitHub | 2018-01-04 15:59:59 +0100 |
| commit | 3b113be573cdbca20ce9ec9c0a6efb25ccf51db5 (patch) | |
| tree | 5fabbd1da7cd740f26354ffbd2234eba71ffdead /doc/source/config.rst | |
| parent | 84e423300c440e96c34ada2620e0f78f827592e8 (diff) | |
Eval blacklist
Add support for eval filtering, only blacklist for now
Diffstat (limited to 'doc/source/config.rst')
| -rw-r--r-- | doc/source/config.rst | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/doc/source/config.rst b/doc/source/config.rst index e42cb99..d16474f 100644 --- a/doc/source/config.rst +++ b/doc/source/config.rst | |||
| @@ -246,6 +246,20 @@ disable_xxe | |||
| 246 | sp.disable_xxe.enable(); | 246 | sp.disable_xxe.enable(); |
| 247 | 247 | ||
| 248 | 248 | ||
| 249 | Eval white and blacklist | ||
| 250 | ^^^^^^^^^^^^^^^^^^^^^^^^ | ||
| 251 | * `default: disabled` | ||
| 252 | * :ref:`more <eval-feature>` | ||
| 253 | |||
| 254 | ``eval_filter`` allows to specify white and blacklist of functions allowed and | ||
| 255 | forbidden from being called inside ``eval``. The functions names are comma-separated. | ||
| 256 | |||
| 257 | :: | ||
| 258 | |||
| 259 | sp.eval_filter.blacklist("system,exec,shell_exec"); | ||
| 260 | sp.eval_filter.whitelist("strlen,strcmp").simulation(); | ||
| 261 | |||
| 262 | |||
| 249 | Virtual-patching | 263 | Virtual-patching |
| 250 | ---------------- | 264 | ---------------- |
| 251 | 265 | ||