From: Phillip Wood <phillip.wood123@gmail.com>
To: "Antti Keränen" <detegr@rbx.email>, git@vger.kernel.org
Cc: "Jussi Keränen" <jussike@gmail.com>,
"Alban Gruin" <alban.gruin@gmail.com>,
"Phillip Wood" <phillip.wood@dunelm.org.uk>,
"Junio C Hamano" <gitster@pobox.com>,
"Johannes Schindelin" <Johannes.Schindelin@gmx.de>
Subject: Re: [PATCH] rebase -i: Fix possibly wrong onto hash in todo
Date: Tue, 11 Aug 2020 16:32:37 +0100 [thread overview]
Message-ID: <ebdc0bc7-f48e-9f38-328d-b1181ac974d7@gmail.com> (raw)
In-Reply-To: <20200811131313.3349582-1-detegr@rbx.email>
Hi Antti
On 11/08/2020 14:13, Antti Keränen wrote:
> 'todo_list_write_to_file' may overwrite the static buffer, originating
> from 'find_unique_abbrev', that was used to store the short commit hash
> 'c' for "# Rebase a..b onto c" message in the todo editor.
> Fix by duplicating the string before usage, so subsequent calls to
> 'find_unique_abbrev' or other functions calling 'hash_to_hex_algop_r'
> can't overwrite the buffer.
>
> Found-by: Jussi Keränen <jussike@gmail.com>
> Signed-off-by: Antti Keränen <detegr@rbx.email>
Thanks for working on this
> ---
> sequencer.c | 7 ++++---
> t/t3404-rebase-interactive.sh | 13 +++++++++++++
> 2 files changed, 17 insertions(+), 3 deletions(-)
>
> diff --git a/sequencer.c b/sequencer.c
> index fd7701c88a..0679adb639 100644
> --- a/sequencer.c
> +++ b/sequencer.c
> @@ -5178,13 +5178,12 @@ int complete_action(struct repository *r, struct replay_opts *opts, unsigned fla
> struct string_list *commands, unsigned autosquash,
> struct todo_list *todo_list)
> {
> - const char *shortonto, *todo_file = rebase_path_todo();
> + const char *todo_file = rebase_path_todo();
I'm not sure it's worth rearranging these lines. It probably does not
matter but we could do
+ char shortonto[GIT_MAX_HEXSZ + 1];
and then later call find_unique_abbrev_r() instead so we don't have to
worry about freeing shortonto.
> struct todo_list new_todo = TODO_LIST_INIT;
> struct strbuf *buf = &todo_list->buf, buf2 = STRBUF_INIT;
> struct object_id oid = onto->object.oid;
> int res;
> -
> - shortonto = find_unique_abbrev(&oid, DEFAULT_ABBREV);
> + char *shortonto;
>
> if (buf->len == 0) {
> struct todo_item *item = append_new_todo(todo_list);
> @@ -5206,8 +5205,10 @@ int complete_action(struct repository *r, struct replay_opts *opts, unsigned fla
> return error(_("nothing to do"));
> }
>
> + shortonto = xstrdup(find_unique_abbrev(&oid, DEFAULT_ABBREV));
> res = edit_todo_list(r, todo_list, &new_todo, shortrevisions,
> shortonto, flags);
> + free(shortonto);
> if (res == -1)
> return -1;
> else if (res == -2) {
> diff --git a/t/t3404-rebase-interactive.sh b/t/t3404-rebase-interactive.sh
> index 4a7d21f898..09af16753c 100755
> --- a/t/t3404-rebase-interactive.sh
> +++ b/t/t3404-rebase-interactive.sh
> @@ -1760,6 +1760,19 @@ test_expect_success 'correct error message for commit --amend after empty pick'
> test_i18ngrep "middle of a rebase -- cannot amend." err
> '
>
> +test_expect_success 'todo has correct onto hash' '
> + write_script dump-raw.sh <<-\EOF &&
> + cat "$1"
> + EOF
> + git checkout branch1 &&
> + (
> + test_set_editor "$(pwd)/dump-raw.sh" &&
> + git rebase -i HEAD~5 >actual
> + ) &&
Thanks for taking the trouble to add a test, I think all the lines above
could be simplified to
GIT_SEQUENCE_EDITOR=cat git rebase -i HEAD~5 branch1 >actual
> + onto=$(git rev-parse --short HEAD~5) &&
> + test_i18ngrep "^# Rebase ..* onto $onto .*" actual
we could lose the final .*
Many Thanks and Best Wishes
Phillip
> +'
> +
> # This must be the last test in this file
> test_expect_success '$EDITOR and friends are unchanged' '
> test_editor_unchanged
>
next prev parent reply other threads:[~2020-08-11 15:32 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-08-11 13:13 [PATCH] rebase -i: Fix possibly wrong onto hash in todo Antti Keränen
2020-08-11 15:28 ` Taylor Blau
2020-08-11 18:10 ` Antti Keränen
2020-08-11 18:24 ` Taylor Blau
2020-08-11 15:32 ` Phillip Wood [this message]
2020-08-11 15:36 ` Taylor Blau
2020-08-11 18:15 ` Antti Keränen
2020-08-11 18:58 ` Junio C Hamano
2020-08-11 19:01 ` Taylor Blau
2020-08-11 19:05 ` Junio C Hamano
2020-08-12 14:03 ` Taylor Blau
2020-08-12 19:40 ` Junio C Hamano
2020-08-12 13:59 ` Phillip Wood
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: http://vger.kernel.org/majordomo-info.html
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ebdc0bc7-f48e-9f38-328d-b1181ac974d7@gmail.com \
--to=phillip.wood123@gmail.com \
--cc=Johannes.Schindelin@gmx.de \
--cc=alban.gruin@gmail.com \
--cc=detegr@rbx.email \
--cc=git@vger.kernel.org \
--cc=gitster@pobox.com \
--cc=jussike@gmail.com \
--cc=phillip.wood@dunelm.org.uk \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://80x24.org/mirrors/git.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).