Blame SOURCES/0014-common-include-Add-ASCII-only-ctype-header-and-ascii.patch

538efe
From cb3d83d0606d5267752895151bb3c229c48d6fb6 Mon Sep 17 00:00:00 2001
538efe
From: "Richard W.M. Jones" <rjones@redhat.com>
538efe
Date: Tue, 19 May 2020 12:03:23 +0100
538efe
Subject: [PATCH 14/19] common/include: Add ASCII-only ctype header and
538efe
 ascii_is* functions.
538efe
538efe
Our existing uses of <ctype.h> were not necessarily safe if the locale
538efe
was changed.
538efe
538efe
Also I removed the unnecessary use of isascii, deprecated by POSIX.1-2008.
538efe
538efe
(cherry picked from commit 9f34db74786fdc92b290a7d47e4b003bd84fec69)
538efe
---
538efe
 .gitignore                           |  1 +
538efe
 common/include/Makefile.am           |  6 +++
538efe
 common/include/ascii-ctype.h         | 60 ++++++++++++++++++++++++++
538efe
 common/include/test-ascii-ctype.c    | 63 ++++++++++++++++++++++++++++
538efe
 plugins/partitioning/partition-gpt.c | 12 +++---
538efe
 plugins/sh/Makefile.am               |  1 +
538efe
 plugins/sh/call.c                    |  6 +--
538efe
 server/backend.c                     |  7 ++--
538efe
 server/public.c                      |  4 +-
538efe
 9 files changed, 146 insertions(+), 14 deletions(-)
538efe
 create mode 100644 common/include/ascii-ctype.h
538efe
 create mode 100644 common/include/test-ascii-ctype.c
538efe
538efe
diff --git a/.gitignore b/.gitignore
538efe
index e25bd99b..523894b7 100644
538efe
--- a/.gitignore
538efe
+++ b/.gitignore
538efe
@@ -26,6 +26,7 @@ Makefile.in
538efe
 /aclocal.m4
538efe
 /autom4te.cache
538efe
 /common/bitmap/test-bitmap
538efe
+/common/include/test-ascii-ctype
538efe
 /common/include/test-byte-swapping
538efe
 /common/include/test-current-dir-name
538efe
 /common/include/test-isaligned
538efe
diff --git a/common/include/Makefile.am b/common/include/Makefile.am
538efe
index 4482de37..d7b0d7a8 100644
538efe
--- a/common/include/Makefile.am
538efe
+++ b/common/include/Makefile.am
538efe
@@ -34,6 +34,7 @@ include $(top_srcdir)/common-rules.mk
538efe
 # These headers contain only common code shared by the core server,
538efe
 # plugins and/or filters.  They are not installed.
538efe
 EXTRA_DIST = \
538efe
+	ascii-ctype.h \
538efe
 	byte-swapping.h \
538efe
 	exit-with-parent.h \
538efe
 	get-current-dir-name.h \
538efe
@@ -50,6 +51,7 @@ EXTRA_DIST = \
538efe
 # Unit tests.
538efe
 
538efe
 TESTS = \
538efe
+	test-ascii-ctype \
538efe
 	test-byte-swapping \
538efe
 	test-current-dir-name \
538efe
 	test-isaligned \
538efe
@@ -62,6 +64,10 @@ TESTS = \
538efe
 	$(NULL)
538efe
 check_PROGRAMS = $(TESTS)
538efe
 
538efe
+test_ascii_ctype_SOURCES = test-ascii-ctype.c ascii-ctype.h
538efe
+test_ascii_ctype_CPPFLAGS = -I$(srcdir)
538efe
+test_ascii_ctype_CFLAGS = $(WARNINGS_CFLAGS)
538efe
+
538efe
 test_byte_swapping_SOURCES = test-byte-swapping.c byte-swapping.h
538efe
 test_byte_swapping_CPPFLAGS = -I$(srcdir)
538efe
 test_byte_swapping_CFLAGS = $(WARNINGS_CFLAGS)
538efe
diff --git a/common/include/ascii-ctype.h b/common/include/ascii-ctype.h
538efe
new file mode 100644
538efe
index 00000000..5e8bf237
538efe
--- /dev/null
538efe
+++ b/common/include/ascii-ctype.h
538efe
@@ -0,0 +1,60 @@
538efe
+/* nbdkit
538efe
+ * Copyright (C) 2013-2020 Red Hat Inc.
538efe
+ *
538efe
+ * Redistribution and use in source and binary forms, with or without
538efe
+ * modification, are permitted provided that the following conditions are
538efe
+ * met:
538efe
+ *
538efe
+ * * Redistributions of source code must retain the above copyright
538efe
+ * notice, this list of conditions and the following disclaimer.
538efe
+ *
538efe
+ * * Redistributions in binary form must reproduce the above copyright
538efe
+ * notice, this list of conditions and the following disclaimer in the
538efe
+ * documentation and/or other materials provided with the distribution.
538efe
+ *
538efe
+ * * Neither the name of Red Hat nor the names of its contributors may be
538efe
+ * used to endorse or promote products derived from this software without
538efe
+ * specific prior written permission.
538efe
+ *
538efe
+ * THIS SOFTWARE IS PROVIDED BY RED HAT AND CONTRIBUTORS ''AS IS'' AND
538efe
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
538efe
+ * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
538efe
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL RED HAT OR
538efe
+ * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
538efe
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
538efe
+ * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
538efe
+ * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
538efe
+ * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
538efe
+ * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
538efe
+ * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
538efe
+ * SUCH DAMAGE.
538efe
+ */
538efe
+
538efe
+/* Normal ctype functions are affected by the current locale.  For
538efe
+ * example isupper() might recognize Ä in some but not all locales.
538efe
+ * These functions match only 7 bit ASCII characters.
538efe
+ */
538efe
+
538efe
+#ifndef NBDKIT_ASCII_CTYPE_H
538efe
+#define NBDKIT_ASCII_CTYPE_H
538efe
+
538efe
+#define ascii_isalnum(c) (ascii_isalpha (c) || ascii_isdigit (c))
538efe
+
538efe
+#define ascii_isalpha(c)                                        \
538efe
+  (((c) >= 'a' && (c) <= 'z') || ((c) >= 'A' && (c) <= 'Z'))
538efe
+
538efe
+#define ascii_isdigit(c)                        \
538efe
+  ((c) >= '0' && (c) <= '9')
538efe
+
538efe
+#define ascii_isspace(c)                                                \
538efe
+  ((c) == '\t' || (c) == '\n' || (c) == '\f' || (c) == '\r' || (c) == ' ')
538efe
+
538efe
+#define ascii_isxdigit(c)                                               \
538efe
+  ((c) == '0' || (c) == '1' || (c) == '2' || (c) == '3' || (c) == '4' || \
538efe
+   (c) == '5' || (c) == '6' || (c) == '7' || (c) == '8' || (c) == '9' || \
538efe
+   (c) == 'a' || (c) == 'b' || (c) == 'c' ||                            \
538efe
+   (c) == 'd' || (c) == 'e' || (c) == 'f' ||                            \
538efe
+   (c) == 'A' || (c) == 'B' || (c) == 'C' ||                            \
538efe
+   (c) == 'D' || (c) == 'E' || (c) == 'F')
538efe
+
538efe
+#endif /* NBDKIT_ASCII_CTYPE_H */
538efe
diff --git a/common/include/test-ascii-ctype.c b/common/include/test-ascii-ctype.c
538efe
new file mode 100644
538efe
index 00000000..edf27aa6
538efe
--- /dev/null
538efe
+++ b/common/include/test-ascii-ctype.c
538efe
@@ -0,0 +1,63 @@
538efe
+/* nbdkit
538efe
+ * Copyright (C) 2020 Red Hat Inc.
538efe
+ *
538efe
+ * Redistribution and use in source and binary forms, with or without
538efe
+ * modification, are permitted provided that the following conditions are
538efe
+ * met:
538efe
+ *
538efe
+ * * Redistributions of source code must retain the above copyright
538efe
+ * notice, this list of conditions and the following disclaimer.
538efe
+ *
538efe
+ * * Redistributions in binary form must reproduce the above copyright
538efe
+ * notice, this list of conditions and the following disclaimer in the
538efe
+ * documentation and/or other materials provided with the distribution.
538efe
+ *
538efe
+ * * Neither the name of Red Hat nor the names of its contributors may be
538efe
+ * used to endorse or promote products derived from this software without
538efe
+ * specific prior written permission.
538efe
+ *
538efe
+ * THIS SOFTWARE IS PROVIDED BY RED HAT AND CONTRIBUTORS ''AS IS'' AND
538efe
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
538efe
+ * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
538efe
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL RED HAT OR
538efe
+ * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
538efe
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
538efe
+ * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
538efe
+ * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
538efe
+ * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
538efe
+ * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
538efe
+ * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
538efe
+ * SUCH DAMAGE.
538efe
+ */
538efe
+
538efe
+#include <config.h>
538efe
+
538efe
+#include <stdio.h>
538efe
+#include <stdlib.h>
538efe
+#include <assert.h>
538efe
+
538efe
+#include "ascii-ctype.h"
538efe
+
538efe
+int
538efe
+main (void)
538efe
+{
538efe
+  assert (ascii_isspace (' '));
538efe
+  assert (ascii_isspace ('\t'));
538efe
+  assert (ascii_isspace ('\n'));
538efe
+  assert (! ascii_isspace ('a'));
538efe
+
538efe
+  assert (ascii_isalpha ('a'));
538efe
+  assert (ascii_isalpha ('Z'));
538efe
+  assert (ascii_isalpha ('z'));
538efe
+  assert (! ascii_isalpha (' '));
538efe
+  assert (! ascii_isalpha ('0'));
538efe
+  { const char *s = "Ä"; assert (! ascii_isalpha (s[0])); }
538efe
+  { const char *s = "®"; assert (! ascii_isalpha (s[0])); }
538efe
+
538efe
+  assert (ascii_isdigit ('0'));
538efe
+  assert (ascii_isdigit ('9'));
538efe
+  { const char *s = "Ø"; assert (! ascii_isdigit (s[0])); } /* U+00D8 */
538efe
+  { const char *s = "9"; assert (! ascii_isdigit (s[0])); } /* U+FF19 */
538efe
+
538efe
+  exit (EXIT_SUCCESS);
538efe
+}
538efe
diff --git a/plugins/partitioning/partition-gpt.c b/plugins/partitioning/partition-gpt.c
538efe
index 75b4643a..819e9abe 100644
538efe
--- a/plugins/partitioning/partition-gpt.c
538efe
+++ b/plugins/partitioning/partition-gpt.c
538efe
@@ -36,12 +36,12 @@
538efe
 #include <stdlib.h>
538efe
 #include <stdbool.h>
538efe
 #include <string.h>
538efe
-#include <ctype.h>
538efe
 #include <inttypes.h>
538efe
 #include <assert.h>
538efe
 
538efe
 #include <nbdkit-plugin.h>
538efe
 
538efe
+#include "ascii-ctype.h"
538efe
 #include "byte-swapping.h"
538efe
 
538efe
 #include "efi-crc32.h"
538efe
@@ -244,19 +244,19 @@ parse_guid (const char *str, char *out)
538efe
     return -1;
538efe
 
538efe
   for (i = 0; i < 8; ++i)
538efe
-    if (!isxdigit (str[i]))
538efe
+    if (!ascii_isxdigit (str[i]))
538efe
       return -1;
538efe
   for (i = 9; i < 13; ++i)
538efe
-    if (!isxdigit (str[i]))
538efe
+    if (!ascii_isxdigit (str[i]))
538efe
       return -1;
538efe
   for (i = 14; i < 18; ++i)
538efe
-    if (!isxdigit (str[i]))
538efe
+    if (!ascii_isxdigit (str[i]))
538efe
       return -1;
538efe
   for (i = 19; i < 23; ++i)
538efe
-    if (!isxdigit (str[i]))
538efe
+    if (!ascii_isxdigit (str[i]))
538efe
       return -1;
538efe
   for (i = 24; i < 36; ++i)
538efe
-    if (!isxdigit (str[i]))
538efe
+    if (!ascii_isxdigit (str[i]))
538efe
       return -1;
538efe
 
538efe
   /* The first, second and third blocks are parsed as little endian,
538efe
diff --git a/plugins/sh/Makefile.am b/plugins/sh/Makefile.am
538efe
index 445cdcd5..1f42b64c 100644
538efe
--- a/plugins/sh/Makefile.am
538efe
+++ b/plugins/sh/Makefile.am
538efe
@@ -48,6 +48,7 @@ nbdkit_sh_plugin_la_SOURCES = \
538efe
 
538efe
 nbdkit_sh_plugin_la_CPPFLAGS = \
538efe
 	-I$(top_srcdir)/include \
538efe
+	-I$(top_srcdir)/common/include \
538efe
 	-I$(top_srcdir)/common/utils \
538efe
 	$(NULL)
538efe
 nbdkit_sh_plugin_la_CFLAGS = $(WARNINGS_CFLAGS)
538efe
diff --git a/plugins/sh/call.c b/plugins/sh/call.c
538efe
index 2d99a120..ae0cc0ac 100644
538efe
--- a/plugins/sh/call.c
538efe
+++ b/plugins/sh/call.c
538efe
@@ -44,10 +44,10 @@
538efe
 #include <poll.h>
538efe
 #include <sys/types.h>
538efe
 #include <sys/wait.h>
538efe
-#include <ctype.h>
538efe
 
538efe
 #include <nbdkit-plugin.h>
538efe
 
538efe
+#include "ascii-ctype.h"
538efe
 #include "cleanup.h"
538efe
 #include "utils.h"
538efe
 
538efe
@@ -392,7 +392,7 @@ handle_script_error (const char *argv0, char *ebuf, size_t len)
538efe
   }
538efe
 
538efe
   if (skip && ebuf[skip]) {
538efe
-    if (!isspace ((unsigned char) ebuf[skip])) {
538efe
+    if (!ascii_isspace ((unsigned char) ebuf[skip])) {
538efe
       /* Treat 'EINVALID' as EIO, not EINVAL */
538efe
       err = EIO;
538efe
       skip = 0;
538efe
@@ -400,7 +400,7 @@ handle_script_error (const char *argv0, char *ebuf, size_t len)
538efe
     else
538efe
       do
538efe
         skip++;
538efe
-      while (isspace ((unsigned char) ebuf[skip]));
538efe
+      while (ascii_isspace ((unsigned char) ebuf[skip]));
538efe
   }
538efe
 
538efe
   while (len > 0 && ebuf[len-1] == '\n')
538efe
diff --git a/server/backend.c b/server/backend.c
538efe
index 208c07b1..9add341f 100644
538efe
--- a/server/backend.c
538efe
+++ b/server/backend.c
538efe
@@ -37,13 +37,14 @@
538efe
 #include <inttypes.h>
538efe
 #include <string.h>
538efe
 #include <assert.h>
538efe
-#include <ctype.h>
538efe
 
538efe
 #include <dlfcn.h>
538efe
 
538efe
-#include "internal.h"
538efe
+#include "ascii-ctype.h"
538efe
 #include "minmax.h"
538efe
 
538efe
+#include "internal.h"
538efe
+
538efe
 /* Helpers for registering a new backend. */
538efe
 
538efe
 /* Use:
538efe
@@ -100,7 +101,7 @@ backend_load (struct backend *b, const char *name, void (*load) (void))
538efe
   for (i = 0; i < len; ++i) {
538efe
     unsigned char c = name[i];
538efe
 
538efe
-    if (!(isascii (c) && isalnum (c))) {
538efe
+    if (! ascii_isalnum (c)) {
538efe
       fprintf (stderr,
538efe
                "%s: %s: %s.name ('%s') field "
538efe
                "must contain only ASCII alphanumeric characters\n",
538efe
diff --git a/server/public.c b/server/public.c
538efe
index 418945fe..98b78482 100644
538efe
--- a/server/public.c
538efe
+++ b/server/public.c
538efe
@@ -45,13 +45,13 @@
538efe
 #include <string.h>
538efe
 #include <unistd.h>
538efe
 #include <limits.h>
538efe
-#include <ctype.h>
538efe
 #include <termios.h>
538efe
 #include <errno.h>
538efe
 #include <poll.h>
538efe
 #include <signal.h>
538efe
 #include <sys/socket.h>
538efe
 
538efe
+#include "ascii-ctype.h"
538efe
 #include "get-current-dir-name.h"
538efe
 
538efe
 #include "internal.h"
538efe
@@ -210,7 +210,7 @@ nbdkit_parse_int64_t (const char *what, const char *str, int64_t *rp)
538efe
  */
538efe
 #define PARSE_ERROR_IF_NEGATIVE                                         \
538efe
   do {                                                                  \
538efe
-    while (isspace (*str))                                              \
538efe
+    while (ascii_isspace (*str))                                        \
538efe
       str++;                                                            \
538efe
     if (*str == '-') {                                                  \
538efe
       nbdkit_error ("%s: negative numbers are not allowed", what);      \
538efe
-- 
538efe
2.18.2
538efe