| … | |
… | |
| 64 | |
64 | |
| 65 | package CBOR::XS; |
65 | package CBOR::XS; |
| 66 | |
66 | |
| 67 | use common::sense; |
67 | use common::sense; |
| 68 | |
68 | |
| 69 | our $VERSION = 1.83; |
69 | our $VERSION = 1.86; |
| 70 | our @ISA = qw(Exporter); |
70 | our @ISA = qw(Exporter); |
| 71 | |
71 | |
| 72 | our @EXPORT = qw(encode_cbor decode_cbor); |
72 | our @EXPORT = qw(encode_cbor decode_cbor); |
| 73 | |
73 | |
| 74 | use Exporter; |
74 | use Exporter; |
| … | |
… | |
| 121 | but configures the coder object to be safe to use with untrusted |
121 | but configures the coder object to be safe to use with untrusted |
| 122 | data. Currently, this is equivalent to: |
122 | data. Currently, this is equivalent to: |
| 123 | |
123 | |
| 124 | my $cbor = CBOR::XS |
124 | my $cbor = CBOR::XS |
| 125 | ->new |
125 | ->new |
|
|
126 | ->validate_utf8 |
| 126 | ->forbid_objects |
127 | ->forbid_objects |
| 127 | ->filter (\&CBOR::XS::safe_filter) |
128 | ->filter (\&CBOR::XS::safe_filter) |
| 128 | ->max_size (1e8); |
129 | ->max_size (1e8); |
| 129 | |
130 | |
| 130 | But is more future proof (it is better to crash because of a change than |
131 | But is more future proof (it is better to crash because of a change than |
| … | |
… | |
| 133 | =cut |
134 | =cut |
| 134 | |
135 | |
| 135 | sub new_safe { |
136 | sub new_safe { |
| 136 | CBOR::XS |
137 | CBOR::XS |
| 137 | ->new |
138 | ->new |
|
|
139 | ->validate_utf8 |
| 138 | ->forbid_objects |
140 | ->forbid_objects |
| 139 | ->filter (\&CBOR::XS::safe_filter) |
141 | ->filter (\&CBOR::XS::safe_filter) |
| 140 | ->max_size (1e8) |
142 | ->max_size (1e8) |
| 141 | } |
143 | } |
| 142 | |
144 | |
| … | |
… | |
| 471 | Perl data structure in memory at one time, it does allow you to parse a |
473 | Perl data structure in memory at one time, it does allow you to parse a |
| 472 | CBOR stream incrementally, using a similar to using "decode_prefix" to see |
474 | CBOR stream incrementally, using a similar to using "decode_prefix" to see |
| 473 | if a full CBOR object is available, but is much more efficient. |
475 | if a full CBOR object is available, but is much more efficient. |
| 474 | |
476 | |
| 475 | It basically works by parsing as much of a CBOR string as possible - if |
477 | It basically works by parsing as much of a CBOR string as possible - if |
| 476 | the CBOR data is not complete yet, the pasrer will remember where it was, |
478 | the CBOR data is not complete yet, the parser will remember where it was, |
| 477 | to be able to restart when more data has been accumulated. Once enough |
479 | to be able to restart when more data has been accumulated. Once enough |
| 478 | data is available to either decode a complete CBOR value or raise an |
480 | data is available to either decode a complete CBOR value or raise an |
| 479 | error, a real decode will be attempted. |
481 | error, a real decode will be attempted. |
| 480 | |
482 | |
| 481 | A typical use case would be a network protocol that consists of sending |
483 | A typical use case would be a network protocol that consists of sending |
