We need to use '-I' switch to explicitly append Perl module include path to invoke some Perl scripts such like following: > COMMAND ${PERL_EXECUTABLE} -I${WEBCORE_DIR}/bindings/scripts ${NAMES_GENERATOR} --input ${_infile} --outputDir ${DERIVED_SOURCES_WEBCORE_DIR} This can be solved by using 'use lib'. > use lib $FindBin::Bin Documentation: http://perldoc.perl.org/lib.html Some scripts already do this. For example, build-webkit do that. https://trac.webkit.org/browser/trunk/Tools/Scripts/build-webkit?rev=204444#L41 I'd like to change following script files: Source/WebCore/bindings/scripts/generate-bindings.pl Source/WebCore/bindings/scripts/preprocess-idls.pl Source/WebCore/css/makegrammar.pl Source/WebCore/css/makeprop.pl Source/WebCore/css/makevalues.pl Source/WebCore/dom/make_dom_exceptions.pl Source/WebCore/dom/make_event_factory.pl Source/WebCore/dom/make_names.pl Source/WebCore/page/make_settings.pl
We need this because in some systems, like Debian, perl is configured to no longer include '.' in @INC by default for security reasons, see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1238
(In reply to comment #1) > We need this because in some systems, like Debian, perl is configured to no > longer include '.' in @INC by default for security reasons, see > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1238 I'm just to change how to append include paths in this bug. There aren't differences in security perspective. One should not execute WebKit's build scripts in an untrusted directory.
Created attachment 289333 [details] Patch
Created attachment 289659 [details] Patch
This is a simple patch. Is there any problem in this patch to review, Reviewers?
Comment on attachment 289659 [details] Patch Clearing flags on attachment: 289659 Committed r206904: <http://trac.webkit.org/changeset/206904>
All reviewed patches have been landed. Closing bug.