PEP 3131: Supporting Non-ASCII Identifiers

Re: PEP 3131: Supporting Non-ASCII Identifiers

Michael Torrie wrote:Transliteration makes people choose bad variable names, I see it all the time
with Danish programmers. Say e.g. the most descriptive name for a process is
"kør forlæns" (run forward). But "koer_forla ens" is ugly, so instead he'll
write "run_fremad ", combining an English word with a slightly less appropriate
Danish word. Sprinkle in some English spelling errors and badly-chosen English
words, and you have the sorry state of the art that is today.

- Anders

Re: PEP 3131: Supporting Non-ASCII Identifiers

On Sun, 13 May 2007 15:35:15 -0700, Alex Martelli wrote:
....
How is that different from misreading "disk_burnt = True" as "disk_bumt =
True"? In the right (or perhaps wrong) font, like the ever-popular Arial,
the two can be visually indistinguishab le. Or "call" versus "cal1"?

Surely the correct solution is something like pylint or pychecker? Or
banning the use of lower-case L and digit 1 in identifiers. I'm good with
both.


--
Steven.

Re: PEP 3131: Supporting Non-ASCII Identifiers

Alex Martelli wrote:There's any number of things to be done about that.
1. # -*- encoding: ascii -*-
(I'd like to see you sneak those homoglyphic characters past *that*.)
2. pychecker and pylint - I'm sure you realise what they could do for you.
3. Use a font that doesn't have those characters or deliberately makes them
distinct (that could help web browsing safety too).

I'm not discounting the problem, I just dont believe it's a big one. Can we
chose a codepoint subset that doesn't have these dupes?

- Anders

Re: PEP 3131: Supporting Non-ASCII Identifiers

Alexander Schmolck <a.schmolck@gma il.comwrites:Could you name a few? Thanks.

Re: PEP 3131: Supporting Non-ASCII Identifiers

On Sun, 13 May 2007 10:52:12 -0700, Paul Rubin wrote:
Not to me, I'm afraid. Can you explain how it works? A phisher might be
able to fool a casual reader, but how does he fool the compiler into
executing the wrong code?

As for project maintainers, surely a patch using some unexpected Unicode
locale would fail the "looks reasonable" test? That could even be
automated -- if the patch uses an unexpected "#-*- coding: blah" line, or
includes characters outside of a pre-defined range, ring alarm bells.
("Why is somebody patching my Turkish module in Korean?")



--
Steven

Re: PEP 3131: Supporting Non-ASCII Identifiers

In <mailman.7627.1 179086416.32031 .python-list@python.org >, Michael Torrie
wrote:
You find it in the sources by the line number from the traceback and the
letters can be copy'n'pasted if you don't know how to input them with your
keymap or keyboard layout.

Ciao,
Marc 'BlackJack' Rintsch

Re: PEP 3131: Supporting Non-ASCII Identifiers

Thus spake "Martin v. Löwis" (martin@v.loewi s.de):
No! I believe that:

- The security implications have not been sufficiently explored. I don't
want to be in a situation where I need to mechanically "clean" code (say,
from a submitted patch) with a tool because I can't reliably verify it by
eye. We should learn from the plethora of Unicode-related security
problems that have cropped up in the last few years.
- Non-ASCII identifiers would be a barrier to code exchange. If I know
Python I should be able to easily read any piece of code written in it,
regardless of the linguistic origin of the author. If PEP 3131 is
accepted, this will no longer be the case. A Python project that uses
Urdu identifiers throughout is just as useless to me, from a
code-exchange point of view, as one written in Perl.
- Unicode is harder to work with than ASCII in ways that are more important
in code than in human-language text. Humans eyes don't care if two
visually indistinguishab le characters are used interchangeably .
Interpreters do. There is no doubt that people will accidentally
introduce mistakes into their code because of this.

No.




Regards,



Aldo



--
Aldo Cortesi
aldo@nullcube.c om

Mob: 0419 492 863

Re: PEP 3131: Supporting Non-ASCII Identifiers

Steven D'Aprano <steve@REMOVE.T HIS.cybersource .com.auwrites:The compiler wouldn't execute the wrong code; it would execute the code
that the phisher intended it to execute. That might be different from
what it looked like to the reviewer.

Re: PEP 3131: Supporting Non-ASCII Identifiers


"Alan Franzoni" <alan.franzoni_ invalid@geemail .invalidwrote in message
news:1u9kz7l2gc z1p.1e0kxqeikfp 97.dlg@40tude.n et...
Il Sun, 13 May 2007 17:44:39 +0200, "Martin v. Löwis" ha scritto:
|Also, there should be a way to convert source files in any 'exotic'
encoding to a pseudo-intellegibile encoding for any reader, a kind of
translittering (is that a proper english word) system out-of-the-box, not
requiring any other tool that's not included in the Python distro. This
will let people to retain their usual working environments even though
they're dealing with source code with identifiers in a really different
charset.
=============== ==============

When I proposed that PEP3131 include transliteration support, Martin
rejected the idea.

tjr

Re: PEP 3131: Supporting Non-ASCII Identifiers

Paul Rubin wrote:C#, Java, Ecmascript, Visual Basic.

Neil

Re: PEP 3131: Supporting Non-ASCII Identifiers

On Mon, 14 May 2007 09:42:13 +1000, Aldo Cortesi wrote:
But you can't reliably verify by eye. That's orders of magnitude more
difficult than debugging by eye, and we all know that you can't reliably
debug anything but the most trivial programs by eye.

If you're relying on cursory visual inspection to recognize harmful code,
you're already vulnerable to trojans.


Of course we should. And one of the things we should learn is when and
how Unicode is a risk, and not imagine that Unicode is some sort of
mystical contamination that creates security problems just by being used.


But it isn't the case now, so that's no different. Code exchange
regardless of human language is a nice principle, but it doesn't work in
practice. How do you use "any piece of code ... regardless of the
linguistic origin of the author" when you don't know what the functions
and classes and arguments _mean_?

Here's a tiny doc string from one of the functions in the standard
library, translated (more or less) to Portuguese. If you can't read
Portuguese at least well enough to get by, how could you possibly use
this function? What would you use it for? What does it do? What arguments
does it take?

def dirsorteinserca o(a, x, baixo=0, elevado=None):
"""da o artigo x insercao na lista a, e mantem-na a
supondo classificado e classificado. Se x estiver ja em a,
introduza-o a direita do x direita mais. Os args opcionais
baixos (defeito 0) e elevados (len(a) do defeito) limitam
a fatia de a a ser procurarado.
"""
# not a non-ASCII character in sight (unless I missed one...)

[Apologies to Portuguese speakers for the dogs-breakfast I'm sure Babel-
fish and I made of the translation.]

The particular function I chose is probably small enough and obvious
enough that you could work out what it does just by following the
algorithm. You might even be able to guess what it is, because Portuguese
is similar enough to other Latin languages that most people can guess
what some of the words might mean (elevados could be height, maybe?). Now
multiply this difficulty by a thousand for a non-trivial module with
multiple classes and dozens of methods and functions. And you might not
even know what language it is in.

No, code exchange regardless of natural language is a nice principle, but
it doesn't exist except in very special circumstances.


That's because you can't read it, not because it uses Unicode. It could
be written entirely in ASCII, and still be unreadable and impossible to
understand.


That's no different from typos in ASCII. There's no doubt that we'll give
the same answer we've always given for this problem: unit tests, pylint
and pychecker.



--
Steven.

Re: PEP 3131: Supporting Non-ASCII Identifiers

On Sun, 13 May 2007 17:59:23 -0700, Paul Rubin wrote:
How? Just repeating in more words your original claim doesn't explain a
thing.

It seems to me that your argument is, only slightly exaggerated, akin to
the following:

"Unicode identifiers are bad because phishers will no longer need to
write call_evil_func( ) but can write call_ƎvĬľ_fu nc() instead."

Maybe I'm naive, but I don't see how giving phishers the ability to
insert a call to Æ’unction() in some module is any more dangerous than
them inserting a call to function() instead.

If I'm mistaken, please explain why I'm mistaken, not just repeat your
claim in different words.


--
Steven.

Re: PEP 3131: Supporting Non-ASCII Identifiers

Neil Hodgson <nyamatongwe+th under@gmail.com writes:Java (and C#?) have mandatory declarations so homoglyphic identifiers aren't
nearly as bad a problem. Ecmascript is a horrible bug-prone language and
we want Python to move away from resembling it, not towards it. VB: well,
same as Ecmascript, I guess.

Re: PEP 3131: Supporting Non-ASCII Identifiers

Steven D'Aprano <steven@REMOVE. THIS.cybersourc e.com.auwrites:if user_entered_pa ssword != stored_password _from_database:
password_is_cor rect = False
...
if password_is_cor rect:
log_user_in()

Does "password_is_co rrect" refer to the same variable in both places?

Re: PEP 3131: Supporting Non-ASCII Identifiers

On Sun, 13 May 2007 20:12:23 -0700, Paul Rubin wrote:
No way of telling without a detailed code inspection. Who knows what
happens in the ... ? If a black hat has access to the code, he could
insert anything he liked in there, ASCII or non-ASCII.

How is this a problem with non-ASCII identifiers? password_is_cor rect is
all ASCII. How can you justify saying that non-ASCII identifiers
introduce a security hole that already exists in all-ASCII Python?


--
Steven.