]> granicus.if.org Git - gc/commit
projects / gc / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8946b12) | patch
Suppress 'tainted string passed to vulnerable operation' false defects
authorIvan Maidanski <ivmai@mail.ru>
Tue, 15 Nov 2016 07:48:31 +0000 (10:48 +0300)
committerIvan Maidanski <ivmai@mail.ru>
Tue, 15 Nov 2016 07:48:31 +0000 (10:48 +0300)
commitf9948563d80a4b9da069b10eac46852763aacaec
tree1e611ca9640f43e1b56d1333b3bac9eeae3fde40tree | snapshot
parent8946b1289b4ab976588274fb850e0afa1626b678commit | diff
Suppress 'tainted string passed to vulnerable operation' false defects

* include/private/gc_priv.h (TRUSTED_STRING): New tagging macro; add
comment.
* misc.c (GC_init): Process the result of GETENV("GC_LOG_FILE") by
TRUSTED_STRING.
* tools/if_mach.c (main): Process argv[3] by TRUSTED_STRING (before
passing the string to execvp).
* tools/if_not_there.c (main): Declare "fname" local variable;
process argv[1] and argv[2] by TRUSTED_STRING (before passing the
strings to fopen/opendir and execvp, respectively).
include/private/gc_priv.h diff | blob | history
misc.c diff | blob | history
tools/if_mach.c diff | blob | history
tools/if_not_there.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.