This is the mail archive of the gcc-patches@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: 4.2 Project: "@file" support

From: Alexandre Oliva <aoliva at redhat dot com>
To: DJ Delorie <dj at redhat dot com>
Cc: ian at airs dot com, mark at codesourcery dot com, gcc-patches at gcc dot gnu dot org, gcc at gcc dot gnu dot org
Date: 27 Aug 2005 19:05:19 -0300
Subject: Re: 4.2 Project: "@file" support
References: <200508250450.j7P4oWkW029722@sparrowhawk.codesourcery.com><m3acj66i6n.fsf@gossamer.airs.com><200508251738.j7PHcwAZ022225@greed.delorie.com>

On Aug 25, 2005, DJ Delorie <dj@redhat.com> wrote:

> If "@string" is seen, but "string" does not represent an existing
> file, the string "@string" is passed to the program as-is.

With the terrible side effect of letting people think their
applications will just work, but introducing the very serious risk of
security problems, leading to, say:

gcc: dj:yourpassword:1234:567:DJ: invalid argument

instead of 

gcc: @/etc/passwd: invalid argument

Sure this is probably not so much of an issue for GCC (although remote
compile servers are not totally unheard of), but it could easily
become a very serious problem for other applications that might take
filenames from the network and worry about quoting - but not @; those
would then need fixing.

-- 
Alexandre Oliva         http://www.lsd.ic.unicamp.br/~oliva/
Red Hat Compiler Engineer   aoliva@{redhat.com, gcc.gnu.org}
Free Software Evangelist  oliva@{lsd.ic.unicamp.br, gnu.org}

References:
- 4.2 Project: "@file" support
  - From: Mark Mitchell
- Re: 4.2 Project: "@file" support
  - From: Ian Lance Taylor
- Re: 4.2 Project: "@file" support
  - From: DJ Delorie

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]