Página inicial Explorar contacts
Entrar
LDA010
/
bug_ebuild
Observar 0
Favorito 0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: 96cec4cf63
Branches Tags
bug_ebuild
/
gentoo
/
sci-mathematics
/
axiom
/
files
/
noweb-2.9-insecure-tmp-file.patch.input

noweb-2.9-insecure-tmp-file.patch.input 4.7 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169 
  1. --- awkname
    2. 

  2. +++ awkname
    3. 

  3. @@ -5,7 +5,7 @@
    4. 

  4.  esac
    5. 

  5.  
    6. 

  6.  rc=0
    7. 

  7. -new=/tmp/$$.new; old=/tmp/$$.old
    8. 

  8. +new=$(tempfile -p new); old=$(tempfile -p old)
    9. 

  9.  
    10. 

  10.  for file in lib/emptydefn lib/unmarkup lib/toascii \
    11. 

  11.                          awk/noidx awk/totex awk/tohtml awk/noindex \
    12. 

  12. --- awk/totex.nw
    13. 

  13. +++ awk/totex.nw
    14. 

  14. @@ -24,7 +24,7 @@
    15. 

  15.  @
    16. 

  16.  On an ugly system, we have to put it in a file.
    17. 

  17.  <<invoke awk program using file>>=
    18. 

  18. -awkfile=/tmp/totex$$.awk
    19. 

  19. +awkfile=$(tempfile -p totex)
    20. 

  20.  trap 'rm -f $awkfile; exit 1' 0 1 2 15	# clean up files
    21. 

  21.  cat > $awkfile << 'EOF'
    22. 

  22.  <<awk program for conversion to {\TeX}>>
    23. 

  23. --- lib/toascii
    24. 

  24. +++ lib/toascii
    25. 

  25. @@ -7,9 +7,9 @@
    26. 

  26.                  *)      echo "This can't happen -- $i passed to toascii" 1>&2 ; exit 1 ;;
    27. 

  27.          esac
    28. 

  28.  done
    29. 

  29. -awkfile="tmp/awk$$.tmp"
    30. 

  30. -textfile="/tmp/text$$.tmp"
    31. 

  31. -tagsfile="/tmp/tags$$.tmp"
    32. 

  32. +awkfile=$(tempfile -p awk -s .tmp)
    33. 

  33. +textfile=$(tempfile -p text -s .tmp)
    34. 

  34. +tagsfile=$(tempfile -p tags -s .tmp)
    35. 

  35.  export awkfile textfile tagsfile
    36. 

  36.  trap 'rm -f $awkfile $textfile $tagsfile' 0 1 2 10 14 15
    37. 

  37.  nawk 'BEGIN { textfile=ENVIRON["textfile"]
    38. 

  38. --- shell/cpif
    39. 

  39. +++ shell/cpif
    40. 

  40. @@ -17,7 +17,7 @@
    41. 

  41.  0)		echo 'Usage: '`basename $0`' [ -eq -ne ] file...' 1>&2; exit 2
    42. 

  42.  esac
    43. 

  43.  
    44. 

  44. -new=/tmp/$$
    45. 

  45. +new=$(tempfile)
    46. 

  46.  trap 'rm -f $new; exit 1' 1 2 15	# clean up files
    47. 

  47.  
    48. 

  48.  cat >$new
    49. 

  49. --- shell/nonu
    50. 

  50. +++ shell/nonu
    51. 

  51. @@ -2,7 +2,7 @@
    52. 

  52.  LIB=/usr/public/pkg/noweb/lib
    53. 

  53.  # attempt to convert nuweb to noweb using sam
    54. 

  54.  
    55. 

  55. -tmp=/tmp/nonu$$
    56. 

  56. +tmp=$(tempfile -p nonu)
    57. 

  57.  trap '/bin/rm -f $tmp; exit 1' 1 2 15	# clean up files
    58. 

  58.  cp $1 $tmp || exit 1
    59. 

  59.  
    60. 

  60. --- shell/roff.nw
    61. 

  61. +++ shell/roff.nw
    62. 

  62. @@ -80,7 +80,7 @@
    63. 

  63.  other, and quoting each quote is ugly.  The pragmatic solution is to
    64. 

  64.  copy the awk program into a temporary file, using a shell here-document.
    65. 

  65.  <<invoke awk program>>=
    66. 

  66. -awkfile="/tmp/noweb$$.awk"
    67. 

  67. +awkfile=$(tempfile -p noweb -s .awk)
    68. 

  68.  trap 'rm -f $awkfile' 0 1 2 10 14 15
    69. 

  69.  cat > $awkfile << 'EOF'
    70. 

  70.  <<awk program>>
    71. 

  71. @@ -662,12 +662,13 @@
    72. 

  72.  
    73. 

  73.  base="`basename $1 | sed '/\./s/\.[^.]*$//'`"
    74. 

  74.  tagsfile="$base.nwt"
    75. 

  75. +tmpfile=$(tempfile -p tags)
    76. 

  76.  (echo ".so $macrodir/tmac.w"
    77. 

  77.  if [ -r "$tagsfile" ]; then 
    78. 

  78. -   cp $tagsfile /tmp/tags.$$
    79. 

  79. +   cp $tagsfile $tmpfile
    80. 

  80.     $AWK '<<action for [[tags]] line>>
    81. 

  81. -         <<functions>>' /tmp/tags.$$
    82. 

  82. -   rm -f /tmp/tags.$$
    83. 

  83. +         <<functions>>' $tmpfile
    84. 

  84. +   rm -f $tmpfile
    85. 

  85.   fi
    86. 

  86.   cat "$@") |
    87. 

  87.  ($ROFF $opts 2>$tagsfile)
    88. 

  88. --- shell/noroff
    89. 

  89. +++ shell/noroff
    90. 

  90. @@ -35,9 +35,10 @@
    91. 

  91.  
    92. 

  92.  base="`basename $1 | sed '/\./s/\.[^.]*$//'`"
    93. 

  93.  tagsfile="$base.nwt"
    94. 

  94. +tmpfile=$(tempfile -p tags)
    95. 

  95.  (echo ".so $macrodir/tmac.w"
    96. 

  96.  if [ -r "$tagsfile" ]; then 
    97. 

  97. -   cp $tagsfile /tmp/tags.$$
    98. 

  98. +   cp $tagsfile $tmpfile
    99. 

  99.     $AWK '{
    100. 

  100.  	     if      (sub(/^###TAG### /       , "")) tags[$1] = $2
    101. 

  101.  	     else if (sub(/^###BEGINCHUNKS###/, "")) printf ".de CLIST\n.CLISTBEGIN\n"
    102. 

  102. @@ -88,8 +89,8 @@
    103. 

  103.  	 #	print str3
    104. 

  104.  	 #	print convquote(str3)
    105. 

  105.  	 # }
    106. 

  106. -	 function tag(s) { if (s in tags) return tags[s]; else return "???" }' /tmp/tags.$$
    107. 

  107. -   rm -f /tmp/tags.$$
    108. 

  108. +	 function tag(s) { if (s in tags) return tags[s]; else return "???" }' $tmpfile
    109. 

  109. +   rm -f $tmpfile
    110. 

  110.   fi
    111. 

  111.   cat "$@") |
    112. 

  112.  ($ROFF $opts 2>$tagsfile)
    113. 

  113. --- shell/toroff
    114. 

  114. +++ shell/toroff
    115. 

  115. @@ -9,7 +9,7 @@
    116. 

  116.             exit 1;;
    117. 

  117.      esac
    118. 

  118.  done
    119. 

  119. -awkfile="/tmp/noweb$$.awk"
    120. 

  120. +awkfile=$(tempfile -p noweb -s .awk)
    121. 

  121.  trap 'rm -f $awkfile' 0 1 2 10 14 15
    122. 

  122.  cat > $awkfile << 'EOF'
    123. 

  123.  /^@begin docs 0$/ { if (delay) next }
    124. 

  124. --- lib/toascii.nw
    125. 

  125. +++ lib/toascii.nw
    126. 

  126. @@ -28,9 +28,9 @@
    127. 

  127.  Also arranged here is a temporary file for storage of the awk program on an
    128. 

  128.  ugly system, as discussed below.
    129. 

  129.  <<arrange temporary files>>=
    130. 

  130. -awkfile="tmp/awk$$.tmp"
    131. 

  131. -textfile="/tmp/text$$.tmp"
    132. 

  132. -tagsfile="/tmp/tags$$.tmp"
    133. 

  133. +awkfile=$(tempfile -p awk -s .tmp) || { echo "$0: Cannot create temporary file" >&2; exit 1;  }
    134. 

  134. +textfile=$(tempfile -p text -s .tmp) || { echo "$0: Cannot create temporary file" >&2; exit 1;  }
    135. 

  135. +tagsfile=$(tempfile -p tags -s .tmp) || { echo "$0: Cannot create temporary file" >&2; exit 1;  }
    136. 

  136.  export awkfile textfile tagsfile
    137. 

  137.  trap 'rm -f $awkfile $textfile $tagsfile' 0 1 2 10 14 15
    138. 

  138.  @ %def textfile tagsfile awkfile
    139. 

  139. --- shell/roff.mm
    140. 

  140. +++ shell/roff.mm
    141. 

  141. @@ -214,7 +214,7 @@
    142. 

  142.  .ADDLIST 1a
    143. 

  143.  .PRINTLIST
    144. 

  144.  
    145. 

  145. -awkfile="/tmp/noweb$$.awk"
    146. 

  146. +awkfile=$(tempfile -p noweb -s .awk) || { echo "$0: Cannot create temporary file" >&2; exit 1;  }
    147. 

  147.  trap 'rm -f $awkfile' 0 1 2 10 14 15
    148. 

  148.  cat > $awkfile \&<< 'EOF'
    149. 

  149.  \c
    150. 

  150. @@ -1628,14 +1628,15 @@
    151. 

  151.  tagsfile="$base.nwt"
    152. 

  152.  (echo ".so $macrodir/tmac.w"
    153. 

  153.  if [ -r "$tagsfile" ]; then 
    154. 

  154. -   cp $tagsfile /tmp/tags.$$
    155. 

  155. +   tagstemp=$(tempfile -p tags) || { echo "$0: Cannot create temporary file" >&2; exit 1;  }
    156. 

  156. +   cp $tagsfile $tagstemp
    157. 

  157.     $AWK '\c
    158. 

  158.  .USE "action for \*[BEGINCONVQUOTE]tags\*[ENDCONVQUOTE] line" 11c
    159. 

  159.  \&
    160. 

  160.           \c
    161. 

  161.  .USE "functions" 8a
    162. 

  162. -\&' /tmp/tags.$$
    163. 

  163. -   rm -f /tmp/tags.$$
    164. 

  164. +\&' $tagstemp
    165. 

  165. +   rm -f $tagstemp
    166. 

  166.   fi
    167. 

  167.   cat "$@") |
    168. 

  168.  ($ROFF $opts 2>$tagsfile)
    169. 

  169.