Home Explore Help
Register Sign In
PUBLIC_REPOS
/
buildroot
mirror of git://git.buildroot.net/buildroot
2
1
Fork 0
Files
Browse Source

toolchain/wrapper: check unsafe paths earlier

We currently check for unsafe paths right between adding our arguments,
and adding the one passed from the command line. This not very
consistent.

Unsafe paths can only come from the command line, as we are not adding
any of our own (hopefully, we know better!), so we can run the check as
early as possible.

Move the check very early, but not before we handle --help.

Signed-off-by: Yann E. MORIN <yann.morin@orange.com>
Cc: Romain Naour <romain.naour@gmail.com>
Cc: Giulio Benetti <giulio.benetti@benettiengineering.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 53e1772682d86ed681ce41b4027bd34163023871)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
Yann E. MORIN 11 months ago
parent
49d043172d
commit
7d36300aad
1 changed files with 22 additions and 22 deletions
Unified View Show Diff Stats
  1. 22 22
      toolchain/toolchain-wrapper.c

+ 22 - 22
toolchain/toolchain-wrapper.c
View File 

@@ -319,6 +319,28 @@ int main(int argc, char **argv)
 
 		}
 
 		}
 
 	}
 
 	}
 
 
 
+	/* Check for unsafe library and header paths */
 
+	for (i = 1; i < argc; i++) {
 
+		const struct str_len_s *opt;
 
+		for (opt=unsafe_opts; opt->str; opt++ ) {
 
+			/* Skip any non-unsafe option. */
 
+			if (strncmp(argv[i], opt->str, opt->len))
 
+				continue;
 
+
 
+			/* Handle both cases:
 
+			 *  - path is a separate argument,
 
+			 *  - path is concatenated with option.
 
+			 */
 
+			if (argv[i][opt->len] == '\0') {
 
+				i++;
 
+				if (i == argc)
 
+					break;
 
+				check_unsafe_path(argv[i-1], argv[i], 0);
 
+			} else
 
+				check_unsafe_path(argv[i], argv[i] + opt->len, 1);
 
+		}
 
+	}
 
+
 
 #ifdef BR_CCACHE
 
 #ifdef BR_CCACHE
 
 	ret = snprintf(ccache_path, sizeof(ccache_path), "%s/bin/ccache", absbasedir);
 
 	ret = snprintf(ccache_path, sizeof(ccache_path), "%s/bin/ccache", absbasedir);
 
 	if (ret >= sizeof(ccache_path)) {
 
 	if (ret >= sizeof(ccache_path)) {
 
@@ -475,28 +497,6 @@ int main(int argc, char **argv)
 
 #endif
 
 #endif
 
 	}
 
 	}
 
 
 
-	/* Check for unsafe library and header paths */
 
-	for (i = 1; i < argc; i++) {
 
-		const struct str_len_s *opt;
 
-		for (opt=unsafe_opts; opt->str; opt++ ) {
 
-			/* Skip any non-unsafe option. */
 
-			if (strncmp(argv[i], opt->str, opt->len))
 
-				continue;
 
-
 
-			/* Handle both cases:
 
-			 *  - path is a separate argument,
 
-			 *  - path is concatenated with option.
 
-			 */
 
-			if (argv[i][opt->len] == '\0') {
 
-				i++;
 
-				if (i == argc)
 
-					break;
 
-				check_unsafe_path(argv[i-1], argv[i], 0);
 
-			} else
 
-				check_unsafe_path(argv[i], argv[i] + opt->len, 1);
 
-		}
 
-	}
 
-
 
 	/* append forward args */
 
 	/* append forward args */
 
 	memcpy(cur, &argv[1], sizeof(char *) * (argc - 1));
 
 	memcpy(cur, &argv[1], sizeof(char *) * (argc - 1));
 
 	cur += argc - 1;
 
 	cur += argc - 1;