diff options
author | glass <glass@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2015-05-10 02:49:01 +0000 |
---|---|---|
committer | glass <glass@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2015-05-10 02:49:01 +0000 |
commit | f64ac5d4cd1b96fb71da0955ea9f322e8feac290 (patch) | |
tree | 6cddc121ed20437e4a81e00428258601b7c5e77f | |
parent | d90818016436a069590277c5fb07a4f50c2feb87 (diff) | |
download | ruby-f64ac5d4cd1b96fb71da0955ea9f322e8feac290.tar.gz |
* string.c (rb_str_crypt): Raise ArgumentError when
string passed to String#crypt contains null.
the patch is from jrusnack <jrusnack at redhat.com>.
[Bug #10988] [fix GH-853]
* test/ruby/test_string.rb: test for above.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@50458 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
-rw-r--r-- | ChangeLog | 9 | ||||
-rw-r--r-- | string.c | 3 | ||||
-rw-r--r-- | test/ruby/test_string.rb | 1 |
3 files changed, 11 insertions, 2 deletions
@@ -1,3 +1,12 @@ +Sun May 10 11:44:37 2015 Masaki Matsushita <glass.saga@gmail.com> + + * string.c (rb_str_crypt): Raise ArgumentError when + string passed to String#crypt contains null. + the patch is from jrusnack <jrusnack at redhat.com>. + [Bug #10988] [fix GH-853] + + * test/ruby/test_string.rb: test for above. + Sun May 10 11:23:03 2015 Masaki Matsushita <glass.saga@gmail.com> * enum.c (enum_to_a): Use size to set array capa when possible. @@ -7711,8 +7711,7 @@ rb_str_crypt(VALUE str, VALUE salt) rb_raise(rb_eArgError, "salt too short (need >=2 bytes)"); } - s = RSTRING_PTR(str); - if (!s) s = ""; + s = StringValueCStr(str); saltp = RSTRING_PTR(salt); if (!saltp[0] || !saltp[1]) goto short_salt; #ifdef BROKEN_CRYPT diff --git a/test/ruby/test_string.rb b/test/ruby/test_string.rb index 4cd6afdd80..2768a65441 100644 --- a/test/ruby/test_string.rb +++ b/test/ruby/test_string.rb @@ -507,6 +507,7 @@ class TestString < Test::Unit::TestCase assert_raise(ArgumentError) {S("mypassword").crypt(S(""))} assert_raise(ArgumentError) {S("mypassword").crypt(S("\0a"))} assert_raise(ArgumentError) {S("mypassword").crypt(S("a\0"))} + assert_raise(ArgumentError) {S("poison\u0000null").crypt(S("aa"))} [Encoding::UTF_16BE, Encoding::UTF_16LE, Encoding::UTF_32BE, Encoding::UTF_32LE].each do |enc| assert_raise(ArgumentError) {S("mypassword").crypt(S("aa".encode(enc)))} |