Начало Каталог Помощ
Вход
hongwenjun
/
musl
огледало от https://git.musl-libc.org/git/musl
1
0
Разклонения 0
Файлове Задачи 0 Уики
Преглед на файлове

fix regcomp handling of backslash followed by high byte

the regex parser handles the (undefined) case of an unexpected byte
following a backslash as a literal. however, instead of correctly
decoding a character, it was treating the byte value itself as a
character. this was not only semantically unjustified, but turned out
to be dangerous on archs where plain char is signed: bytes in the
range 252-255 alias the internal codes -4 through -1 used for special
types of literal nodes in the AST.

analogous to commit 39dfd58417ef642307d90306e1c7e50aaec5a35c in
mainline. it's unclear whether the same crash that affected mainline
is possible in the older regcomp code in 1.0.x, but conceptually the
bug is the same.
Rich Felker преди 10 години
родител
7987653d57
ревизия
ee6f8114df
променени са 1 файла, в които са добавени 1 реда и са изтрити 4 реда
Разделен изглед Покажи статистика за разликите
  1. 1 4
      src/regex/regcomp.c

+ 1 - 4
src/regex/regcomp.c
Целия файл 

@@ -1298,10 +1298,7 @@ tre_parse(tre_parse_ctx_t *ctx)
 
 		  else
 
 		    {
 
 		      /* Escaped character. */
 
-		      result = tre_ast_new_literal(ctx->mem, *ctx->re, *ctx->re,
 
-						   ctx->position);
 
-		      ctx->position++;
 
-		      ctx->re++;
 
+		      goto parse_literal;
 
 		    }
 
 		  break;
 
 		}