Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
G
git2
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
lvzhengyang
git2
Commits
3a63e8c2
Commit
3a63e8c2
authored
Apr 21, 2015
by
Carlos Martín Nieto
Browse files
Options
Browse Files
Download
Plain Diff
Merge pull request #3060 from ethomson/2851
Handle invalid multiline configuration
parents
08c45213
e009a705
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
93 additions
and
62 deletions
+93
-62
src/config_file.c
+48
-56
tests/config/read.c
+45
-6
No files found.
src/config_file.c
View file @
3a63e8c2
...
@@ -1162,17 +1162,24 @@ static int skip_bom(struct reader *reader)
...
@@ -1162,17 +1162,24 @@ static int skip_bom(struct reader *reader)
static
int
strip_comments
(
char
*
line
,
int
in_quotes
)
static
int
strip_comments
(
char
*
line
,
int
in_quotes
)
{
{
int
quote_count
=
in_quotes
;
int
quote_count
=
in_quotes
,
backslash_count
=
0
;
char
*
ptr
;
char
*
ptr
;
for
(
ptr
=
line
;
*
ptr
;
++
ptr
)
{
for
(
ptr
=
line
;
*
ptr
;
++
ptr
)
{
if
(
ptr
[
0
]
==
'"'
&&
ptr
>
line
&&
ptr
[
-
1
]
!=
'\\'
)
if
(
ptr
[
0
]
==
'"'
&&
ptr
>
line
&&
ptr
[
-
1
]
!=
'\\'
)
quote_count
++
;
quote_count
++
;
if
((
ptr
[
0
]
==
';'
||
ptr
[
0
]
==
'#'
)
&&
(
quote_count
%
2
)
==
0
)
{
if
((
ptr
[
0
]
==
';'
||
ptr
[
0
]
==
'#'
)
&&
(
quote_count
%
2
)
==
0
&&
(
backslash_count
%
2
)
==
0
)
{
ptr
[
0
]
=
'\0'
;
ptr
[
0
]
=
'\0'
;
break
;
break
;
}
}
if
(
ptr
[
0
]
==
'\\'
)
backslash_count
++
;
else
backslash_count
=
0
;
}
}
/* skip any space at the end */
/* skip any space at the end */
...
@@ -1619,76 +1626,69 @@ static char *escape_value(const char *ptr)
...
@@ -1619,76 +1626,69 @@ static char *escape_value(const char *ptr)
}
}
/* '\"' -> '"' etc */
/* '\"' -> '"' etc */
static
char
*
fixup_line
(
const
char
*
ptr
,
int
quote_count
)
static
int
unescape_line
(
char
**
out
,
bool
*
is_multi
,
const
char
*
ptr
,
int
quote_count
)
{
{
char
*
str
,
*
out
,
*
esc
;
char
*
str
,
*
fixed
,
*
esc
;
size_t
ptr_len
=
strlen
(
ptr
),
alloc_len
;
size_t
ptr_len
=
strlen
(
ptr
),
alloc_len
;
*
is_multi
=
false
;
if
(
GIT_ADD_SIZET_OVERFLOW
(
&
alloc_len
,
ptr_len
,
1
)
||
if
(
GIT_ADD_SIZET_OVERFLOW
(
&
alloc_len
,
ptr_len
,
1
)
||
(
str
=
git__malloc
(
alloc_len
))
==
NULL
)
{
(
str
=
git__malloc
(
alloc_len
))
==
NULL
)
{
return
NULL
;
return
-
1
;
}
}
out
=
str
;
fixed
=
str
;
while
(
*
ptr
!=
'\0'
)
{
while
(
*
ptr
!=
'\0'
)
{
if
(
*
ptr
==
'"'
)
{
if
(
*
ptr
==
'"'
)
{
quote_count
++
;
quote_count
++
;
}
else
if
(
*
ptr
!=
'\\'
)
{
}
else
if
(
*
ptr
!=
'\\'
)
{
*
out
++
=
*
ptr
;
*
fixed
++
=
*
ptr
;
}
else
{
}
else
{
/* backslash, check the next char */
/* backslash, check the next char */
ptr
++
;
ptr
++
;
/* if we're at the end, it's a multiline, so keep the backslash */
/* if we're at the end, it's a multiline, so keep the backslash */
if
(
*
ptr
==
'\0'
)
{
if
(
*
ptr
==
'\0'
)
{
*
out
++
=
'\\'
;
*
is_multi
=
true
;
goto
out
;
goto
done
;
}
}
if
((
esc
=
strchr
(
escapes
,
*
ptr
))
!=
NULL
)
{
if
((
esc
=
strchr
(
escapes
,
*
ptr
))
!=
NULL
)
{
*
out
++
=
escaped
[
esc
-
escapes
];
*
fixed
++
=
escaped
[
esc
-
escapes
];
}
else
{
}
else
{
git__free
(
str
);
git__free
(
str
);
giterr_set
(
GITERR_CONFIG
,
"Invalid escape at %s"
,
ptr
);
giterr_set
(
GITERR_CONFIG
,
"Invalid escape at %s"
,
ptr
);
return
NULL
;
return
-
1
;
}
}
}
}
ptr
++
;
ptr
++
;
}
}
out:
done:
*
out
=
'\0'
;
*
fixed
=
'\0'
;
*
out
=
str
;
return
str
;
}
static
int
is_multiline_var
(
const
char
*
str
)
{
int
count
=
0
;
const
char
*
end
=
str
+
strlen
(
str
);
while
(
end
>
str
&&
end
[
-
1
]
==
'\\'
)
{
count
++
;
end
--
;
}
/* An odd number means last backslash wasn't escaped, so it's multiline */
return
0
;
return
count
&
1
;
}
}
static
int
parse_multiline_variable
(
struct
reader
*
reader
,
git_buf
*
value
,
int
in_quotes
)
static
int
parse_multiline_variable
(
struct
reader
*
reader
,
git_buf
*
value
,
int
in_quotes
)
{
{
char
*
line
=
NULL
,
*
proc_line
=
NULL
;
char
*
line
=
NULL
,
*
proc_line
=
NULL
;
int
quote_count
;
int
quote_count
;
bool
multiline
;
/* Check that the next line exists */
/* Check that the next line exists */
line
=
reader_readline
(
reader
,
false
);
line
=
reader_readline
(
reader
,
false
);
if
(
line
==
NULL
)
if
(
line
==
NULL
)
return
-
1
;
return
-
1
;
/* We've reached the end of the file, there is input missing */
/* We've reached the end of the file, there is no continuation.
* (this is not an error).
*/
if
(
line
[
0
]
==
'\0'
)
{
if
(
line
[
0
]
==
'\0'
)
{
set_parse_error
(
reader
,
0
,
"Unexpected end of file while parsing multine var"
);
git__free
(
line
);
git__free
(
line
);
return
-
1
;
return
0
;
}
}
quote_count
=
strip_comments
(
line
,
!!
in_quotes
);
quote_count
=
strip_comments
(
line
,
!!
in_quotes
);
...
@@ -1700,18 +1700,12 @@ static int parse_multiline_variable(struct reader *reader, git_buf *value, int i
...
@@ -1700,18 +1700,12 @@ static int parse_multiline_variable(struct reader *reader, git_buf *value, int i
/* TODO: unbounded recursion. This **could** be exploitable */
/* TODO: unbounded recursion. This **could** be exploitable */
}
}
/* Drop the continuation character '\': to closely follow the UNIX
if
(
unescape_line
(
&
proc_line
,
&
multiline
,
line
,
in_quotes
)
<
0
)
{
* standard, this character **has** to be last one in the buf, with
* no whitespace after it */
assert
(
is_multiline_var
(
value
->
ptr
));
git_buf_shorten
(
value
,
1
);
proc_line
=
fixup_line
(
line
,
in_quotes
);
if
(
proc_line
==
NULL
)
{
git__free
(
line
);
git__free
(
line
);
return
-
1
;
return
-
1
;
}
}
/* add this line to the multiline var */
/* add this line to the multiline var */
git_buf_puts
(
value
,
proc_line
);
git_buf_puts
(
value
,
proc_line
);
git__free
(
line
);
git__free
(
line
);
git__free
(
proc_line
);
git__free
(
proc_line
);
...
@@ -1720,7 +1714,7 @@ static int parse_multiline_variable(struct reader *reader, git_buf *value, int i
...
@@ -1720,7 +1714,7 @@ static int parse_multiline_variable(struct reader *reader, git_buf *value, int i
* If we need to continue reading the next line, let's just
* If we need to continue reading the next line, let's just
* keep putting stuff in the buffer
* keep putting stuff in the buffer
*/
*/
if
(
is_multiline_var
(
value
->
ptr
)
)
if
(
multiline
)
return
parse_multiline_variable
(
reader
,
value
,
quote_count
);
return
parse_multiline_variable
(
reader
,
value
,
quote_count
);
return
0
;
return
0
;
...
@@ -1732,6 +1726,7 @@ static int parse_variable(struct reader *reader, char **var_name, char **var_val
...
@@ -1732,6 +1726,7 @@ static int parse_variable(struct reader *reader, char **var_name, char **var_val
const
char
*
value_start
=
NULL
;
const
char
*
value_start
=
NULL
;
char
*
line
;
char
*
line
;
int
quote_count
;
int
quote_count
;
bool
multiline
;
line
=
reader_readline
(
reader
,
true
);
line
=
reader_readline
(
reader
,
true
);
if
(
line
==
NULL
)
if
(
line
==
NULL
)
...
@@ -1762,31 +1757,28 @@ static int parse_variable(struct reader *reader, char **var_name, char **var_val
...
@@ -1762,31 +1757,28 @@ static int parse_variable(struct reader *reader, char **var_name, char **var_val
while
(
git__isspace
(
value_start
[
0
]))
while
(
git__isspace
(
value_start
[
0
]))
value_start
++
;
value_start
++
;
if
(
is_multiline_var
(
value_start
))
{
if
(
unescape_line
(
var_value
,
&
multiline
,
value_start
,
0
)
<
0
)
goto
on_error
;
if
(
multiline
)
{
git_buf
multi_value
=
GIT_BUF_INIT
;
git_buf
multi_value
=
GIT_BUF_INIT
;
char
*
proc_line
=
fixup_line
(
value_start
,
0
);
git_buf_attach
(
&
multi_value
,
*
var_value
,
0
);
GITERR_CHECK_ALLOC
(
proc_line
);
git_buf_puts
(
&
multi_value
,
proc_line
);
if
(
parse_multiline_variable
(
reader
,
&
multi_value
,
quote_count
)
<
0
||
git__free
(
proc_line
);
git_buf_oom
(
&
multi_value
))
{
if
(
parse_multiline_variable
(
reader
,
&
multi_value
,
quote_count
)
<
0
||
git_buf_oom
(
&
multi_value
))
{
git__free
(
*
var_name
);
git__free
(
line
);
git_buf_free
(
&
multi_value
);
git_buf_free
(
&
multi_value
);
return
-
1
;
goto
on_error
;
}
}
*
var_value
=
git_buf_detach
(
&
multi_value
);
*
var_value
=
git_buf_detach
(
&
multi_value
);
}
else
if
(
value_start
[
0
]
!=
'\0'
)
{
*
var_value
=
fixup_line
(
value_start
,
0
);
GITERR_CHECK_ALLOC
(
*
var_value
);
}
else
{
/* equals sign but missing rhs */
*
var_value
=
git__strdup
(
""
);
GITERR_CHECK_ALLOC
(
*
var_value
);
}
}
}
}
git__free
(
line
);
git__free
(
line
);
return
0
;
return
0
;
on_error:
git__free
(
*
var_name
);
git__free
(
line
);
return
-
1
;
}
}
tests/config/read.c
View file @
3a63e8c2
...
@@ -69,6 +69,40 @@ void test_config_read__multiline_value(void)
...
@@ -69,6 +69,40 @@ void test_config_read__multiline_value(void)
git_config_free
(
cfg
);
git_config_free
(
cfg
);
}
}
static
void
clean_test_config
(
void
*
unused
)
{
GIT_UNUSED
(
unused
);
cl_fixture_cleanup
(
"./testconfig"
);
}
void
test_config_read__multiline_value_and_eof
(
void
)
{
git_config
*
cfg
;
cl_set_cleanup
(
&
clean_test_config
,
NULL
);
cl_git_mkfile
(
"./testconfig"
,
"[header]
\n
key1 = foo
\\\n
"
);
cl_git_pass
(
git_config_open_ondisk
(
&
cfg
,
"./testconfig"
));
cl_git_pass
(
git_config_get_string_buf
(
&
buf
,
cfg
,
"header.key1"
));
cl_assert_equal_s
(
"foo"
,
git_buf_cstr
(
&
buf
));
git_config_free
(
cfg
);
}
void
test_config_read__multiline_eof
(
void
)
{
git_config
*
cfg
;
cl_set_cleanup
(
&
clean_test_config
,
NULL
);
cl_git_mkfile
(
"./testconfig"
,
"[header]
\n
key1 =
\\\n
"
);
cl_git_pass
(
git_config_open_ondisk
(
&
cfg
,
"./testconfig"
));
cl_git_pass
(
git_config_get_string_buf
(
&
buf
,
cfg
,
"header.key1"
));
cl_assert_equal_s
(
""
,
git_buf_cstr
(
&
buf
));
git_config_free
(
cfg
);
}
/*
/*
* This kind of subsection declaration is case-insensitive
* This kind of subsection declaration is case-insensitive
*/
*/
...
@@ -213,6 +247,17 @@ void test_config_read__escaping_quotes(void)
...
@@ -213,6 +247,17 @@ void test_config_read__escaping_quotes(void)
git_config_free
(
cfg
);
git_config_free
(
cfg
);
}
}
void
test_config_read__invalid_escape_sequence
(
void
)
{
git_config
*
cfg
;
cl_set_cleanup
(
&
clean_test_config
,
NULL
);
cl_git_mkfile
(
"./testconfig"
,
"[header]
\n
key1 =
\\\\\\
;
\n
key2 = value2
\n
"
);
cl_git_fail
(
git_config_open_ondisk
(
&
cfg
,
"./testconfig"
));
git_config_free
(
cfg
);
}
static
int
count_cfg_entries_and_compare_levels
(
static
int
count_cfg_entries_and_compare_levels
(
const
git_config_entry
*
entry
,
void
*
payload
)
const
git_config_entry
*
entry
,
void
*
payload
)
{
{
...
@@ -520,12 +565,6 @@ void test_config_read__simple_read_from_specific_level(void)
...
@@ -520,12 +565,6 @@ void test_config_read__simple_read_from_specific_level(void)
git_config_free
(
cfg
);
git_config_free
(
cfg
);
}
}
static
void
clean_test_config
(
void
*
unused
)
{
GIT_UNUSED
(
unused
);
cl_fixture_cleanup
(
"./testconfig"
);
}
void
test_config_read__can_load_and_parse_an_empty_config_file
(
void
)
void
test_config_read__can_load_and_parse_an_empty_config_file
(
void
)
{
{
git_config
*
cfg
;
git_config
*
cfg
;
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment