fdo-mirrors/NetworkManager
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/NetworkManager/NetworkManager.git synced 2026-01-09 17:00:40 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

ifcfg: ANSIC escape non-UTF-8 "strings" and preserve valid unicode

Browse source 
Note that previously the check

    if (s[slen] < ' ') {
        ...
        return (*to_free = _escape_ansic(s));
    }

would be TRUE for all UTF-8 characters if `char` is signed. That means,
depending on the compiler, we would always ANSI escape all UTF-8
characters. With this patch, we no longer do that!
Instead, valid unicode gets now preserved (albeit quoted).

On the other hand, always ANSIC escape invalid UTF-8 (regardless of the
compiler). ifcfg-rh is really a text based format. If a caller wants to store
binary data, they need to escape it first, for example with some own escaping
scheme, base64 or bin2hexstr.

A caller passing a non-text to svEscape() is likely a bug already and
they should have not done that.

Still, let svEscape() handle that by using ANSIC escaping. That works
as far as escaping is concerned, but likely later will be a problem
during unescaping, when the reader expects a valid UTF-8 string.
svEscape() is in no place to signal a sensible error, so proceed the
best it can, by escaping.
This commit is contained in:
Thomas Haller 2021-07-09 09:11:40 +02:00
parent b15dfe0365
commit 5877928b46
No known key found for this signature in database
GPG key ID: 29C2366E4DFC5728
1 changed files with 17 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
src/core/settings/plugins/ifcfg-rh/shvar.c
View file

@ -255,20 +255,36 @@ svEscape(const char *s, char **to_free)
gsize slen;
gsize i;
gsize j;
gboolean all_ascii = TRUE;
for (slen = 0; s[slen]; slen++) {
if (_char_req_escape(s[slen]))
mangle++;
else if (_char_req_quotes(s[slen]))
requires_quotes = TRUE;
else if (s[slen] < ' ') {
else if (((guchar) s[slen]) < ' ') {
/* if the string contains newline we can only express it using ANSI C quotation
* (as we don't support line continuation).
* Additionally, ANSI control characters look odd with regular quotation, so handle
* them too. */
return (*to_free = _escape_ansic(s));
} else if (((guchar) s[slen]) >= 0177) {
all_ascii = FALSE;
requires_quotes = TRUE;
}
}
if (!all_ascii && !g_utf8_validate(s, -1, NULL)) {
/* The string is not valid ASCII/UTF-8. We can escape that via
* _escape_ansic(), however the reader might have a problem to
* do something sensible with the blob later.
*
* This is really a bug of the caller, which should not present us with
* non-text in the first place. But at this place, we cannot handle the
* error better, so just escape it. */
return (*to_free = _escape_ansic(s));
}
if (!mangle && !requires_quotes) {
*to_free = NULL;
return s;