[Rpm-maint] [PATCH] Fixed buffer problems in doShellEscape
Alexey Tourbin
alexey.tourbin at gmail.com
Thu Feb 7 04:22:55 UTC 2013
When the output from a command is empty, nothing stops doShellEscape from
chopping newlines past the beginning of the buffer. This problem was first
identified by Dmitry V. Levin in July 2009.
Also, there is an off-by-one error in replacing trailing '\n' with '\0'.
This problem, however, escaped the attention of Dmitry V. Levin in July 2009.
---
rpmio/macro.c | 8 +++++---
1 file changed, 5 insertions(+), 3 deletions(-)
diff --git a/rpmio/macro.c b/rpmio/macro.c
index 0b1aacb..c3695f2 100644
--- a/rpmio/macro.c
+++ b/rpmio/macro.c
@@ -414,14 +414,16 @@ doShellEscape(MacroBuf mb, const char * cmd, size_t clen)
rc = 1;
goto exit;
}
+
+ size_t tpos = mb->tpos;
while((c = fgetc(shf)) != EOF) {
mbAppend(mb, c);
}
(void) pclose(shf);
- /* XXX delete trailing \r \n */
- while (iseol(mb->buf[mb->tpos-1])) {
- mb->buf[mb->tpos--] = '\0';
+ /* Delete trailing \r \n */
+ while (mb->tpos > tpos && iseol(mb->buf[mb->tpos-1])) {
+ mb->buf[--mb->tpos] = '\0';
mb->nb++;
}
--
1.8.1
More information about the Rpm-maint
mailing list