[PATCH 4/4] Update NEWS for user.other_name

[notmuch-archives.git] / 8a / a7a08a5324bfb56770480e977d27872e81e3b2

Return-Path: <cworth@cworth.org>\r
X-Original-To: notmuch@notmuchmail.org\r
Delivered-To: notmuch@notmuchmail.org\r
Received: from localhost (localhost [127.0.0.1])\r
        by olra.theworths.org (Postfix) with ESMTP id 7EA18431FBF;\r
        Tue,  1 Dec 2009 08:08:26 -0800 (PST)\r
X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
Received: from olra.theworths.org ([127.0.0.1])\r
        by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
        with ESMTP id u43OUHOZm-y5; Tue,  1 Dec 2009 08:08:25 -0800 (PST)\r
Received: from yoom.home.cworth.org (localhost [127.0.0.1])\r
        by olra.theworths.org (Postfix) with ESMTP id C96C7431FAE;\r
        Tue,  1 Dec 2009 08:08:25 -0800 (PST)\r
Received: by yoom.home.cworth.org (Postfix, from userid 1000)\r
        id 0317F254419; Tue,  1 Dec 2009 08:08:08 -0800 (PST)\r
From: Carl Worth <cworth@cworth.org>\r
To: djcb@djcbsoftware.nl, "notmuch\@notmuchmail org" <notmuch@notmuchmail.org>\r
In-Reply-To: <87r5rpyd4x.wl%djcb@djcbsoftware.nl>\r
References: <87r5rpyd4x.wl%djcb@djcbsoftware.nl>\r
Date: Tue, 01 Dec 2009 08:08:07 -0800\r
Message-ID: <87k4x6ad94.fsf@yoom.home.cworth.org>\r
MIME-Version: 1.0\r
Content-Type: multipart/signed; boundary="=-=-=";\r
        micalg=pgp-sha1; protocol="application/pgp-signature"\r
Subject: Re: [notmuch] [PATCH 2/2] * avoid gcc 4.4.1 compiler warning due to\r
 ignored 'fflush' return value\r
X-BeenThere: notmuch@notmuchmail.org\r
X-Mailman-Version: 2.1.12\r
Precedence: list\r
List-Id: "Use and development of the notmuch mail system."\r
        <notmuch.notmuchmail.org>\r
List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
        <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
List-Post: <mailto:notmuch@notmuchmail.org>\r
List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
        <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
X-List-Received-Date: Tue, 01 Dec 2009 16:08:26 -0000\r
\r
--=-=-=\r
Content-Transfer-Encoding: quoted-printable\r
\r
On Mon, 23 Nov 2009 08:21:50 +0200, Dirk-Jan C. Binnema <djcb.bulk@gmail.co=\r
m> wrote:\r
> -#define prompt(format, ...)                          \\r
> -    do {                                             \\r
> -     printf (format, ##__VA_ARGS__);                 \\r
> -     fflush (stdout);                                \\r
> -     getline (&response, &response_size, stdin);     \\r
> -     chomp_newline (response);                       \\r
> +#define prompt(format, ...)                                  \\r
> +    do {                                                     \\r
> +     int ignored;                                            \\r
> +     printf (format, ##__VA_ARGS__);                         \\r
> +     fflush (stdout);                                        \\r
> +     ignored =3D getline (&response, &response_size, stdin); \\r
> +     chomp_newline (response);                               \\r
>      } while (0)\r
\r
This patch is incorrect. Ignoring the return value of getline results in\r
the program invoking undefined behavior by reading uninitialized\r
memory. This is easily tested by, for example, typing Control-D to\r
provide EOF to a prompt from "notmuch setup".\r
\r
How about just exiting in case of EOF as in the patch below?\r
\r
I think I'll push it now.\r
\r
=2DCarl\r
\r
commit eb0cf86c7a9d5cda464d4d36a9cac66f26b5529d\r
Author: Carl Worth <cworth@cworth.org>\r
Date:   Tue Dec 1 08:06:09 2009 -0800\r
\r
    notmuch setup: Exit if EOF is encountered at any prompt.\r
=20=20=20=20\r
    If the user is explicitly providing EOF, then terminating the program\r
    is the most likely desired thing to do. This also avoids undefined\r
    behavior from continuing with an uninitialized response after ignoring\r
    the return value of getline().\r
\r
diff --git a/notmuch-setup.c b/notmuch-setup.c\r
index 5ec176d..622bbaa 100644\r
=2D-- a/notmuch-setup.c\r
+++ b/notmuch-setup.c\r
@@ -100,12 +100,15 @@ notmuch_setup_command (unused (void *ctx),\r
     unsigned int i;\r
     int is_new;\r
=20\r
=2D#define prompt(format, ...)                            \\r
=2D    do {                                               \\r
=2D       printf (format, ##__VA_ARGS__);                 \\r
=2D       fflush (stdout);                                \\r
=2D       getline (&response, &response_size, stdin);     \\r
=2D       chomp_newline (response);                       \\r
+#define prompt(format, ...)                                    \\r
+    do {                                                       \\r
+       printf (format, ##__VA_ARGS__);                         \\r
+       fflush (stdout);                                        \\r
+       if (getline (&response, &response_size, stdin) < 0) {   \\r
+           printf ("Exiting.\n");                              \\r
+           exit (1);                                           \\r
+       }                                                       \\r
+       chomp_newline (response);                               \\r
     } while (0)\r
=20\r
     config =3D notmuch_config_open (ctx, NULL, &is_new);\r
\r
--=-=-=\r
Content-Type: application/pgp-signature\r
\r
-----BEGIN PGP SIGNATURE-----\r
Version: GnuPG v1.4.10 (GNU/Linux)\r
\r
iD8DBQFLFT9n6JDdNq8qSWgRAr3qAJ4jTPCWogmUm4kzzN3usjH4+oBBoQCffYvB\r
qznQ5wjkFBpIfsxXDdig8f8=\r
=P2gw\r
-----END PGP SIGNATURE-----\r
--=-=-=--\r