mirror of
https://github.com/NixOS/nix.git
synced 2024-11-25 08:12:29 +00:00
Merge pull request #11111 from NixOS/grep-safety-AGAIN
Grep newline safety
This commit is contained in:
commit
76f04b4146
@ -236,7 +236,8 @@ expect() {
|
|||||||
expected="$1"
|
expected="$1"
|
||||||
shift
|
shift
|
||||||
"$@" && res=0 || res="$?"
|
"$@" && res=0 || res="$?"
|
||||||
if [[ $res -ne $expected ]]; then
|
# also match "negative" codes, which wrap around to >127
|
||||||
|
if [[ $res -ne $expected && $res -ne $[256 + expected] ]]; then
|
||||||
echo "Expected exit code '$expected' but got '$res' from command ${*@Q}" >&2
|
echo "Expected exit code '$expected' but got '$res' from command ${*@Q}" >&2
|
||||||
return 1
|
return 1
|
||||||
fi
|
fi
|
||||||
@ -250,7 +251,8 @@ expectStderr() {
|
|||||||
expected="$1"
|
expected="$1"
|
||||||
shift
|
shift
|
||||||
"$@" 2>&1 && res=0 || res="$?"
|
"$@" 2>&1 && res=0 || res="$?"
|
||||||
if [[ $res -ne $expected ]]; then
|
# also match "negative" codes, which wrap around to >127
|
||||||
|
if [[ $res -ne $expected && $res -ne $[256 + expected] ]]; then
|
||||||
echo "Expected exit code '$expected' but got '$res' from command ${*@Q}" >&2
|
echo "Expected exit code '$expected' but got '$res' from command ${*@Q}" >&2
|
||||||
return 1
|
return 1
|
||||||
fi
|
fi
|
||||||
@ -295,13 +297,67 @@ onError() {
|
|||||||
done
|
done
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# Prints an error message prefix referring to the last call into this file.
|
||||||
|
# Ignores `expect` and `expectStderr` calls.
|
||||||
|
# Set a special exit code when test suite functions are misused, so that
|
||||||
|
# functions like expectStderr won't mistake them for expected Nix CLI errors.
|
||||||
|
# Suggestion: -101 (negative to indicate very abnormal, and beyond the normal
|
||||||
|
# range of signals)
|
||||||
|
# Example (showns as string): 'repl.sh:123: in call to grepQuiet: '
|
||||||
|
# This function is inefficient, so it should only be used in error messages.
|
||||||
|
callerPrefix() {
|
||||||
|
# Find the closest caller that's not from this file
|
||||||
|
# using the bash `caller` builtin.
|
||||||
|
local i file line fn savedFn
|
||||||
|
# Use `caller`
|
||||||
|
for i in $(seq 0 100); do
|
||||||
|
caller $i > /dev/null || {
|
||||||
|
if [[ -n "${file:-}" ]]; then
|
||||||
|
echo "$file:$line: ${savedFn+in call to $savedFn: }"
|
||||||
|
fi
|
||||||
|
break
|
||||||
|
}
|
||||||
|
line="$(caller $i | cut -d' ' -f1)"
|
||||||
|
fn="$(caller $i | cut -d' ' -f2)"
|
||||||
|
file="$(caller $i | cut -d' ' -f3)"
|
||||||
|
if [[ $file != "${BASH_SOURCE[0]}" ]]; then
|
||||||
|
echo "$file:$line: ${savedFn+in call to $savedFn: }"
|
||||||
|
return
|
||||||
|
fi
|
||||||
|
case "$fn" in
|
||||||
|
# Ignore higher order functions that don't report any misuse of themselves
|
||||||
|
# This way a misuse of a foo in `expectStderr 1 foo` will be reported as
|
||||||
|
# calling foo, not expectStderr.
|
||||||
|
expect|expectStderr|callerPrefix)
|
||||||
|
;;
|
||||||
|
*)
|
||||||
|
savedFn="$fn"
|
||||||
|
;;
|
||||||
|
esac
|
||||||
|
done
|
||||||
|
}
|
||||||
|
|
||||||
|
checkGrepArgs() {
|
||||||
|
local arg
|
||||||
|
for arg in "$@"; do
|
||||||
|
if [[ "$arg" != "${arg//$'\n'/_}" ]]; then
|
||||||
|
echo "$(callerPrefix)newline not allowed in arguments; grep would try each line individually as if connected by an OR operator" >&2
|
||||||
|
return -101
|
||||||
|
fi
|
||||||
|
done
|
||||||
|
}
|
||||||
|
|
||||||
# `grep -v` doesn't work well for exit codes. We want `!(exist line l. l
|
# `grep -v` doesn't work well for exit codes. We want `!(exist line l. l
|
||||||
# matches)`. It gives us `exist line l. !(l matches)`.
|
# matches)`. It gives us `exist line l. !(l matches)`.
|
||||||
#
|
#
|
||||||
# `!` normally doesn't work well with `set -e`, but when we wrap in a
|
# `!` normally doesn't work well with `set -e`, but when we wrap in a
|
||||||
# function it *does*.
|
# function it *does*.
|
||||||
|
#
|
||||||
|
# `command grep` lets us avoid re-checking the args by going directly to the
|
||||||
|
# executable.
|
||||||
grepInverse() {
|
grepInverse() {
|
||||||
! grep "$@"
|
checkGrepArgs "$@" && \
|
||||||
|
! command grep "$@"
|
||||||
}
|
}
|
||||||
|
|
||||||
# A shorthand, `> /dev/null` is a bit noisy.
|
# A shorthand, `> /dev/null` is a bit noisy.
|
||||||
@ -315,13 +371,26 @@ grepInverse() {
|
|||||||
# the closing of the pipe, the buffering of the pipe, and the speed of
|
# the closing of the pipe, the buffering of the pipe, and the speed of
|
||||||
# the producer into the pipe. But rest assured we've seen it happen in
|
# the producer into the pipe. But rest assured we've seen it happen in
|
||||||
# CI reliably.
|
# CI reliably.
|
||||||
|
#
|
||||||
|
# `command grep` lets us avoid re-checking the args by going directly to the
|
||||||
|
# executable.
|
||||||
grepQuiet() {
|
grepQuiet() {
|
||||||
grep "$@" > /dev/null
|
checkGrepArgs "$@" && \
|
||||||
|
command grep "$@" > /dev/null
|
||||||
}
|
}
|
||||||
|
|
||||||
# The previous two, combined
|
# The previous two, combined
|
||||||
grepQuietInverse() {
|
grepQuietInverse() {
|
||||||
! grep "$@" > /dev/null
|
checkGrepArgs "$@" && \
|
||||||
|
! command grep "$@" > /dev/null
|
||||||
|
}
|
||||||
|
|
||||||
|
# Wrap grep to remove its newline footgun; see checkGrepArgs.
|
||||||
|
# Note that we keep the checkGrepArgs calls in the other helpers, because some
|
||||||
|
# of them are negated and that would defeat this check.
|
||||||
|
grep() {
|
||||||
|
checkGrepArgs "$@" && \
|
||||||
|
command grep "$@"
|
||||||
}
|
}
|
||||||
|
|
||||||
# Return the number of arguments
|
# Return the number of arguments
|
||||||
|
@ -13,6 +13,25 @@ expect 1 false
|
|||||||
# `expect` will fail when we get it wrong
|
# `expect` will fail when we get it wrong
|
||||||
expect 1 expect 0 false
|
expect 1 expect 0 false
|
||||||
|
|
||||||
|
function ret() {
|
||||||
|
return $1
|
||||||
|
}
|
||||||
|
|
||||||
|
# `expect` can call functions, not just executables
|
||||||
|
expect 0 ret 0
|
||||||
|
expect 1 ret 1
|
||||||
|
|
||||||
|
# `expect` supports negative exit codes
|
||||||
|
expect -1 ret -1
|
||||||
|
|
||||||
|
# or high positive ones, equivalent to negative ones
|
||||||
|
expect 255 ret 255
|
||||||
|
expect 255 ret -1
|
||||||
|
expect -1 ret 255
|
||||||
|
|
||||||
|
# but it doesn't confuse negative exit codes with positive ones
|
||||||
|
expect 1 expect -10 ret 10
|
||||||
|
|
||||||
noisyTrue () {
|
noisyTrue () {
|
||||||
echo YAY! >&2
|
echo YAY! >&2
|
||||||
true
|
true
|
||||||
@ -69,6 +88,10 @@ funBang () {
|
|||||||
expect 1 funBang
|
expect 1 funBang
|
||||||
unset funBang
|
unset funBang
|
||||||
|
|
||||||
|
# callerPrefix can be used by the test framework to improve error messages
|
||||||
|
# it reports about our call site here
|
||||||
|
echo "<[$(callerPrefix)]>" | grepQuiet -F "<[test-infra.sh:$LINENO: ]>"
|
||||||
|
|
||||||
# `grep -v -q` is not what we want for exit codes, but `grepInverse` is
|
# `grep -v -q` is not what we want for exit codes, but `grepInverse` is
|
||||||
# Avoid `grep -v -q`. The following line proves the point, and if it fails,
|
# Avoid `grep -v -q`. The following line proves the point, and if it fails,
|
||||||
# we'll know that `grep` had a breaking change or `-v -q` may not be portable.
|
# we'll know that `grep` had a breaking change or `-v -q` may not be portable.
|
||||||
@ -85,3 +108,12 @@ unset res
|
|||||||
res=$(set -eu -o pipefail; echo foo | expect 1 grepQuietInverse foo | wc -c)
|
res=$(set -eu -o pipefail; echo foo | expect 1 grepQuietInverse foo | wc -c)
|
||||||
(( res == 0 ))
|
(( res == 0 ))
|
||||||
unset res
|
unset res
|
||||||
|
|
||||||
|
# `grepQuiet` does not allow newlines in its arguments, because grep quietly
|
||||||
|
# treats them as multiple queries.
|
||||||
|
{ echo foo; echo bar; } | expectStderr -101 grepQuiet $'foo\nbar' \
|
||||||
|
| grepQuiet -E 'test-infra\.sh:[0-9]+: in call to grepQuiet: newline not allowed in arguments; grep would try each line individually as if connected by an OR operator'
|
||||||
|
|
||||||
|
# We took the blue pill and woke up in a world where `grep` is moderately safe.
|
||||||
|
expectStderr -101 grep $'foo\nbar' \
|
||||||
|
| grepQuiet -E 'test-infra\.sh:[0-9]+: in call to grep: newline not allowed in arguments; grep would try each line individually as if connected by an OR operator'
|
||||||
|
Loading…
Reference in New Issue
Block a user