[PATCH v5 07/12] insert: add --folder option
On Sun, 28 Apr 2013 00:32:47 +0300, Jani Nikula wrote: > > +notmuch_opt_desc_t options[] = { > > + { NOTMUCH_OPT_STRING, , "folder", 0, 0 }, > > + { NOTMUCH_OPT_END, 0, 0, 0, 0 } > > +}; > > + > > +opt_index = parse_arguments (argc, argv, options, 1); > > + > > +if (opt_index < 0) { > > + fprintf (stderr, "Error: bad argument to notmuch insert: %s\n", > > +argv[-opt_index]); > > I'm too tired to check what's correct, but argv[-opt_index] isn't. Nice catch. I'll just delete that message as parse_arguments already prints a message, like other callers. Peter
[PATCH v5 07/12] insert: add --folder option
On Wed, 03 Apr 2013, Peter Wang wrote: > Allow the new message to be inserted into a folder within the Maildir > hierarchy instead of the top-level folder. > --- > notmuch-insert.c | 47 +-- > 1 file changed, 45 insertions(+), 2 deletions(-) > > diff --git a/notmuch-insert.c b/notmuch-insert.c > index 19b1cf9..778ac04 100644 > --- a/notmuch-insert.c > +++ b/notmuch-insert.c > @@ -83,6 +83,23 @@ sync_dir (const char *dir) > return ret; > } > > +/* Check the specified folder name does not contain a directory > + * component ".." to prevent writes outside of the Maildir hierarchy. */ > +static notmuch_bool_t > +check_folder_name (const char *folder) > +{ > +const char *p = folder; > + > +for (;;) { > + if ((p[0] == '.') && (p[1] == '.') && (p[2] == '\0' || p[2] == '/')) > + return FALSE; > + p = strchr (p, '/'); > + if (!p) > + return TRUE; > + p++; > +} > +} > + > /* Open a unique file in the Maildir 'tmp' directory. > * Returns the file descriptor on success, or -1 on failure. > * On success, file paths for the message in the 'tmp' and 'new' > @@ -287,11 +304,25 @@ notmuch_insert_command (notmuch_config_t *config, int > argc, char *argv[]) > size_t new_tags_length; > tag_op_list_t *tag_ops; > char *query_string = NULL; > +const char *folder = NULL; > const char *maildir; > -int opt_index = 1; > +int opt_index; > unsigned int i; > notmuch_bool_t ret; > > +notmuch_opt_desc_t options[] = { > + { NOTMUCH_OPT_STRING, , "folder", 0, 0 }, > + { NOTMUCH_OPT_END, 0, 0, 0, 0 } > +}; > + > +opt_index = parse_arguments (argc, argv, options, 1); > + > +if (opt_index < 0) { > + fprintf (stderr, "Error: bad argument to notmuch insert: %s\n", > + argv[-opt_index]); I'm too tired to check what's correct, but argv[-opt_index] isn't. J. > + return 1; > +} > + > db_path = notmuch_config_get_database_path (config); > new_tags = notmuch_config_get_new_tags (config, _tags_length); > > @@ -314,7 +345,19 @@ notmuch_insert_command (notmuch_config_t *config, int > argc, char *argv[]) > return 1; > } > > -maildir = db_path; > +if (folder == NULL) { > + maildir = db_path; > +} else { > + if (! check_folder_name (folder)) { > + fprintf (stderr, "Error: bad folder name: %s\n", folder); > + return 1; > + } > + maildir = talloc_asprintf (config, "%s/%s", db_path, folder); > + if (! maildir) { > + fprintf (stderr, "Out of memory\n"); > + return 1; > + } > +} > > /* Setup our handler for SIGINT. We do not set SA_RESTART so that copying > * from standard input may be interrupted. */ > -- > 1.7.12.1 > > ___ > notmuch mailing list > notmuch at notmuchmail.org > http://notmuchmail.org/mailman/listinfo/notmuch
Re: [PATCH v5 07/12] insert: add --folder option
On Wed, 03 Apr 2013, Peter Wang noval...@gmail.com wrote: Allow the new message to be inserted into a folder within the Maildir hierarchy instead of the top-level folder. --- notmuch-insert.c | 47 +-- 1 file changed, 45 insertions(+), 2 deletions(-) diff --git a/notmuch-insert.c b/notmuch-insert.c index 19b1cf9..778ac04 100644 --- a/notmuch-insert.c +++ b/notmuch-insert.c @@ -83,6 +83,23 @@ sync_dir (const char *dir) return ret; } +/* Check the specified folder name does not contain a directory + * component .. to prevent writes outside of the Maildir hierarchy. */ +static notmuch_bool_t +check_folder_name (const char *folder) +{ +const char *p = folder; + +for (;;) { + if ((p[0] == '.') (p[1] == '.') (p[2] == '\0' || p[2] == '/')) + return FALSE; + p = strchr (p, '/'); + if (!p) + return TRUE; + p++; +} +} + /* Open a unique file in the Maildir 'tmp' directory. * Returns the file descriptor on success, or -1 on failure. * On success, file paths for the message in the 'tmp' and 'new' @@ -287,11 +304,25 @@ notmuch_insert_command (notmuch_config_t *config, int argc, char *argv[]) size_t new_tags_length; tag_op_list_t *tag_ops; char *query_string = NULL; +const char *folder = NULL; const char *maildir; -int opt_index = 1; +int opt_index; unsigned int i; notmuch_bool_t ret; +notmuch_opt_desc_t options[] = { + { NOTMUCH_OPT_STRING, folder, folder, 0, 0 }, + { NOTMUCH_OPT_END, 0, 0, 0, 0 } +}; + +opt_index = parse_arguments (argc, argv, options, 1); + +if (opt_index 0) { + fprintf (stderr, Error: bad argument to notmuch insert: %s\n, + argv[-opt_index]); I'm too tired to check what's correct, but argv[-opt_index] isn't. J. + return 1; +} + db_path = notmuch_config_get_database_path (config); new_tags = notmuch_config_get_new_tags (config, new_tags_length); @@ -314,7 +345,19 @@ notmuch_insert_command (notmuch_config_t *config, int argc, char *argv[]) return 1; } -maildir = db_path; +if (folder == NULL) { + maildir = db_path; +} else { + if (! check_folder_name (folder)) { + fprintf (stderr, Error: bad folder name: %s\n, folder); + return 1; + } + maildir = talloc_asprintf (config, %s/%s, db_path, folder); + if (! maildir) { + fprintf (stderr, Out of memory\n); + return 1; + } +} /* Setup our handler for SIGINT. We do not set SA_RESTART so that copying * from standard input may be interrupted. */ -- 1.7.12.1 ___ notmuch mailing list notmuch@notmuchmail.org http://notmuchmail.org/mailman/listinfo/notmuch ___ notmuch mailing list notmuch@notmuchmail.org http://notmuchmail.org/mailman/listinfo/notmuch
Re: [PATCH v5 07/12] insert: add --folder option
On Sun, 28 Apr 2013 00:32:47 +0300, Jani Nikula j...@nikula.org wrote: +notmuch_opt_desc_t options[] = { + { NOTMUCH_OPT_STRING, folder, folder, 0, 0 }, + { NOTMUCH_OPT_END, 0, 0, 0, 0 } +}; + +opt_index = parse_arguments (argc, argv, options, 1); + +if (opt_index 0) { + fprintf (stderr, Error: bad argument to notmuch insert: %s\n, +argv[-opt_index]); I'm too tired to check what's correct, but argv[-opt_index] isn't. Nice catch. I'll just delete that message as parse_arguments already prints a message, like other callers. Peter ___ notmuch mailing list notmuch@notmuchmail.org http://notmuchmail.org/mailman/listinfo/notmuch
[PATCH v5 07/12] insert: add --folder option
Allow the new message to be inserted into a folder within the Maildir hierarchy instead of the top-level folder. --- notmuch-insert.c | 47 +-- 1 file changed, 45 insertions(+), 2 deletions(-) diff --git a/notmuch-insert.c b/notmuch-insert.c index 19b1cf9..778ac04 100644 --- a/notmuch-insert.c +++ b/notmuch-insert.c @@ -83,6 +83,23 @@ sync_dir (const char *dir) return ret; } +/* Check the specified folder name does not contain a directory + * component ".." to prevent writes outside of the Maildir hierarchy. */ +static notmuch_bool_t +check_folder_name (const char *folder) +{ +const char *p = folder; + +for (;;) { + if ((p[0] == '.') && (p[1] == '.') && (p[2] == '\0' || p[2] == '/')) + return FALSE; + p = strchr (p, '/'); + if (!p) + return TRUE; + p++; +} +} + /* Open a unique file in the Maildir 'tmp' directory. * Returns the file descriptor on success, or -1 on failure. * On success, file paths for the message in the 'tmp' and 'new' @@ -287,11 +304,25 @@ notmuch_insert_command (notmuch_config_t *config, int argc, char *argv[]) size_t new_tags_length; tag_op_list_t *tag_ops; char *query_string = NULL; +const char *folder = NULL; const char *maildir; -int opt_index = 1; +int opt_index; unsigned int i; notmuch_bool_t ret; +notmuch_opt_desc_t options[] = { + { NOTMUCH_OPT_STRING, , "folder", 0, 0 }, + { NOTMUCH_OPT_END, 0, 0, 0, 0 } +}; + +opt_index = parse_arguments (argc, argv, options, 1); + +if (opt_index < 0) { + fprintf (stderr, "Error: bad argument to notmuch insert: %s\n", +argv[-opt_index]); + return 1; +} + db_path = notmuch_config_get_database_path (config); new_tags = notmuch_config_get_new_tags (config, _tags_length); @@ -314,7 +345,19 @@ notmuch_insert_command (notmuch_config_t *config, int argc, char *argv[]) return 1; } -maildir = db_path; +if (folder == NULL) { + maildir = db_path; +} else { + if (! check_folder_name (folder)) { + fprintf (stderr, "Error: bad folder name: %s\n", folder); + return 1; + } + maildir = talloc_asprintf (config, "%s/%s", db_path, folder); + if (! maildir) { + fprintf (stderr, "Out of memory\n"); + return 1; + } +} /* Setup our handler for SIGINT. We do not set SA_RESTART so that copying * from standard input may be interrupted. */ -- 1.7.12.1
[PATCH v5 07/12] insert: add --folder option
Allow the new message to be inserted into a folder within the Maildir hierarchy instead of the top-level folder. --- notmuch-insert.c | 47 +-- 1 file changed, 45 insertions(+), 2 deletions(-) diff --git a/notmuch-insert.c b/notmuch-insert.c index 19b1cf9..778ac04 100644 --- a/notmuch-insert.c +++ b/notmuch-insert.c @@ -83,6 +83,23 @@ sync_dir (const char *dir) return ret; } +/* Check the specified folder name does not contain a directory + * component .. to prevent writes outside of the Maildir hierarchy. */ +static notmuch_bool_t +check_folder_name (const char *folder) +{ +const char *p = folder; + +for (;;) { + if ((p[0] == '.') (p[1] == '.') (p[2] == '\0' || p[2] == '/')) + return FALSE; + p = strchr (p, '/'); + if (!p) + return TRUE; + p++; +} +} + /* Open a unique file in the Maildir 'tmp' directory. * Returns the file descriptor on success, or -1 on failure. * On success, file paths for the message in the 'tmp' and 'new' @@ -287,11 +304,25 @@ notmuch_insert_command (notmuch_config_t *config, int argc, char *argv[]) size_t new_tags_length; tag_op_list_t *tag_ops; char *query_string = NULL; +const char *folder = NULL; const char *maildir; -int opt_index = 1; +int opt_index; unsigned int i; notmuch_bool_t ret; +notmuch_opt_desc_t options[] = { + { NOTMUCH_OPT_STRING, folder, folder, 0, 0 }, + { NOTMUCH_OPT_END, 0, 0, 0, 0 } +}; + +opt_index = parse_arguments (argc, argv, options, 1); + +if (opt_index 0) { + fprintf (stderr, Error: bad argument to notmuch insert: %s\n, +argv[-opt_index]); + return 1; +} + db_path = notmuch_config_get_database_path (config); new_tags = notmuch_config_get_new_tags (config, new_tags_length); @@ -314,7 +345,19 @@ notmuch_insert_command (notmuch_config_t *config, int argc, char *argv[]) return 1; } -maildir = db_path; +if (folder == NULL) { + maildir = db_path; +} else { + if (! check_folder_name (folder)) { + fprintf (stderr, Error: bad folder name: %s\n, folder); + return 1; + } + maildir = talloc_asprintf (config, %s/%s, db_path, folder); + if (! maildir) { + fprintf (stderr, Out of memory\n); + return 1; + } +} /* Setup our handler for SIGINT. We do not set SA_RESTART so that copying * from standard input may be interrupted. */ -- 1.7.12.1 ___ notmuch mailing list notmuch@notmuchmail.org http://notmuchmail.org/mailman/listinfo/notmuch