This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

classification
Title: Undocumented side effect of eval
Type: Stage:
Components: Documentation Versions: Python 2.2
process
Status: closed Resolution: fixed
Dependencies: Superseder:
Assigned To: nnorwitz Nosy List: hdima, mwh, nnorwitz, terry.reedy, tim.peters
Priority: normal Keywords:

Created on 2002-11-20 08:54 by hdima, last changed 2022-04-10 16:05 by admin. This issue is now closed.

Messages (8)
msg13403 - (view) Author: Dmitry Vasiliev (hdima) Date: 2002-11-20 08:54 
Dictionary passed to eval as global name space is
filled up with global variables:

>>> m = {}
>>> m == {}
1
>>> eval("1", m)
1
>>> m == {}
0
msg13404 - (view) Author: Tim Peters (tim.peters) * (Python committer) Date: 2002-11-21 01:57 
Logged In: YES 
user_id=31435

Well, yes.  That's what "global name space" means.  Why 
would you assume it's limited to read-only?  Where would 
you *expect* global bindings to be made, if not in the global 
namespace?
msg13405 - (view) Author: Dmitry Vasiliev (hdima) Date: 2002-11-21 08:55 
Logged In: YES 
user_id=388573

I gues that a function don't have a side effect if the
effect not documented. Why is dictionary passed as local
name space  not filled up with local variables? I think docs
should say anything about this.
msg13406 - (view) Author: Tim Peters (tim.peters) * (Python committer) Date: 2002-11-21 16:51 
Logged In: YES 
user_id=31435

Changed category to Doc and assigned to Fred, since there's 
no chance the implementation will change.  I don't find the 
docs unclear, but this is deep stuff and it's certainly 
understanble that others may not.
msg13407 - (view) Author: Terry J. Reedy (terry.reedy) * (Python committer) Date: 2002-11-24 22:42 
Logged In: YES 
user_id=593130

Suggestion: in Library Manual 2.1 eval() entry,
after the second sentence, ending in 'local name space.', 
add

If one give a *globals* dictionary that lacks a  '__builtins__' 
entry, a copy from the current globals is added before 
*expession* is parsed.  This means that *expression* 
normally has full access to the standard __builtins__ 
module, while restricted environments get propagated.

This description is based on the tested behavior in 2.2.1.  I 
don't know what, if any, is subject to change.  (*Asterisks* 
indicate italics.)

The 'surprise' of this side-effect has come up at least once 
on c.l.p.  The issue of eval() and security is more frequent.  
The details are not obvious and occasionally important.  I 
thus think it reasonable to add two short lines to 
document what happens.
msg13408 - (view) Author: Michael Hudson (mwh) (Python committer) Date: 2002-11-25 15:06 
Logged In: YES 
user_id=6656

Make a patch & I'll check it in...
msg13409 - (view) Author: Terry J. Reedy (terry.reedy) * (Python committer) Date: 2002-11-29 20:30 
Logged In: YES 
user_id=593130

Without (cvs,) latex, and diff, I think cut-and-paste paste is 
about best I can do.
msg13410 - (view) Author: Neal Norwitz (nnorwitz) * (Python committer) Date: 2002-12-17 01:09 
Logged In: YES 
user_id=33168

Checked in with minor adjustments as Doc/lib/libfuncs.tex 1.125.
I'm not sure if my slight rewording helped or hurt,
hopefully someone will fix that.
History
Date User Action Args
2022-04-10 16:05:55adminsetgithub: 37505
2002-11-20 08:54:35hdimacreate