Ticket #1479 (closed defect: fixed)

Opened 23 months ago

Last modified 2 months ago

OnEvent and Pathnames with spaces or other special characters

Reported by: foren@… Owned by:
Priority: low Milestone: 1.3.6
Component: licq daemon Version: devel
Keywords: Cc:

Description

See some code from onevent.cpp: 

  if (m_nCommandType == ON_EVENT_RUN)
  {
    char *szParam = m_aszParameters[_nEvent];
    char *szFullParam;
    if (u != NULL)
      szFullParam = u->usprintf(szParam, USPRINTF_LINEISCMD);
    else
      szFullParam = strdup(szParam);

    if (strlen(szFullParam))
    {
      char szCmd[strlen(m_szCommand) + strlen(szFullParam) + 8];
      sprintf(szCmd, "%s %s &", m_szCommand, szFullParam);
      free(szFullParam);
      system(szCmd);
    }

First: The user's parameter is passed through system, and is evaluated by the shell. Problem when using pathes like "/mnt/c/Sound Files/From Movies/foobar.wav" and so on. Workaround for user is to escape such characters (like I actually did).

Second: You check szFullParam for beeing '\0' (with strlen), not for beeing 0. strdup may fail, and return NULL, which isn't handled.

Third: If not checked somewhere else, User may provide empty string. This is strduped, but never freed. Memory leak (small one, but every time an event occurs).

Hope this helps,

Felix

Change History

Changed 13 months ago by erijo

  • version set to devel
  • milestone changed from 1.3.5 to 1.3.6

Changed 2 months ago by flynd

  • status changed from new to closed
  • resolution set to fixed
  • component changed from system to licq daemon

Not quoting or escaping the parameter allows users to provide multiple parameters so I don't think we should change this even though I see the problem with paths containing spaces.

String handling in onevent class has been revised in r6521 to use std::string so we no longer need to care about null values.

Note: See TracTickets for help on using tickets.