From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 28510 invoked by alias); 19 Dec 2014 21:53:34 -0000 Mailing-List: contact zsh-workers-help@zsh.org; run by ezmlm Precedence: bulk X-No-Archive: yes List-Id: Zsh Workers List List-Post: List-Help: X-Seq: 34015 Received: (qmail 15743 invoked from network); 19 Dec 2014 21:53:30 -0000 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on f.primenet.com.au X-Spam-Level: X-Spam-Status: No, score=-0.6 required=5.0 tests=BAYES_00, RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_DNSWL_NONE autolearn=no version=3.3.2 X-Originating-IP: [86.6.25.230] X-Spam: 0 X-Authority: v=2.1 cv=dY0O3Bne c=1 sm=1 tr=0 a=c0CwWhpM9oUd/BnC3z6Gzg==:117 a=c0CwWhpM9oUd/BnC3z6Gzg==:17 a=kj9zAlcOel0A:10 a=NLZqzBF-AAAA:8 a=QvJ4-cTVUDS5SdsWO_EA:9 a=CjuIK1q_8ugA:10 Date: Fri, 19 Dec 2014 21:21:25 +0000 From: Peter Stephenson To: zsh-workers@zsh.org Subject: Re: [BUG] Unicode variables can be exported and are exported metafied Message-ID: <20141219212125.1e1fea6b@ntlworld.com> In-Reply-To: <20141219181652.GA3996@localhost.mi.fu-berlin.de> References: <1054131418926765@web2o.yandex.ru> <20141218192917.4df5324b@pws-pc.ntlworld.com> <20141218194758.329bd9ef@pws-pc.ntlworld.com> <20141219181652.GA3996@localhost.mi.fu-berlin.de> X-Mailer: Claws Mail 3.11.1 (GTK+ 2.24.25; x86_64-redhat-linux-gnu) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit On Fri, 19 Dec 2014 19:17:37 +0100 "Christoph (Stucki) von Stuckrad" wrote: > On Thu, 18 Dec 2014, Bart Schaefer wrote: > > > Are we sure it's even "legal" to export Unicode variable names? > > Internally we can kinda ignore POSIX as we choose, but the > > environment crosses those boundaries. > > Independend of being 'legal' to me it seems dangerous! Well, this seems to be controversial. But it's not clear how useful such variables are anyway. This backs off yesterday's mess and ignores environment variable names with characters with the top bit set. We'll see if anyone trips over it. pws diff --git a/Src/params.c b/Src/params.c index 1c51afd..b8e0c42 100644 --- a/Src/params.c +++ b/Src/params.c @@ -641,9 +641,17 @@ split_env_string(char *env, char **name, char **value) if (!env || !name || !value) return 0; - tenv = metafy(env, strlen(env), META_HEAPDUP); - for (str = tenv; *str && *str != '='; str++) - ; + tenv = strcpy(zhalloc(strlen(env) + 1), env); + for (str = tenv; *str && *str != '='; str++) { + if (STOUC(*str) >= 128) { + /* + * We'll ignore environment variables with names not + * from the portable character set since we don't + * know of a good reason to accept them. + */ + return 0; + } + } if (str != tenv && *str == '=') { *str = '\0'; *name = tenv; @@ -4357,18 +4365,7 @@ arrfixenv(char *s, char **t) int zputenv(char *str) { - char *ptr; DPUTS(!str, "Attempt to put null string into environment."); - /* - * The environment uses NULL-terminated strings, so just - * unmetafy and ignore the length. - */ - for (ptr = str; *ptr && *ptr != Meta; ptr++) - ; - if (*ptr == Meta) { - str = dupstring(str); - unmetafy(str, NULL); - } #ifdef USE_SET_UNSET_ENV /* * If we are using unsetenv() to remove values from the @@ -4377,11 +4374,21 @@ zputenv(char *str) * Unfortunately this is a slightly different interface * from what zputenv() assumes. */ + char *ptr; int ret; - for (ptr = str; *ptr && *ptr != '='; ptr++) + for (ptr = str; *ptr && STOUC(*ptr) < 128 && *ptr != '='; ptr++) ; - if (*ptr) { + if (STOUC(*ptr) >= 128) { + /* + * Environment variables not in the portable character + * set are non-standard and we don't really know of + * a use for them. + * + * We'll disable until someone complains. + */ + return 1; + } else if (*ptr) { *ptr = '\0'; ret = setenv(str, ptr+1, 1); *ptr = '=';