diff options
| author | Johannes Sixt <j6t@kdbg.org> | 2025-04-26 18:46:06 +0200 |
|---|---|---|
| committer | Taylor Blau <me@ttaylorr.com> | 2025-05-23 17:04:23 -0400 |
| commit | e883ceb1222c29f8a2325e1b4c2778b5259a3725 (patch) | |
| tree | f4bf56b7c777407e8b9d62771841234f58057e7c | |
| parent | git-gui: sanitize 'exec' arguments: simple cases (diff) | |
| download | git-e883ceb1222c29f8a2325e1b4c2778b5259a3725.tar.gz git-e883ceb1222c29f8a2325e1b4c2778b5259a3725.zip | |
git-gui: sanitize 'exec' arguments: background
As in the previous commits, introduce a function that sanitizes
arguments intended for the process, but runs the process in the
background. Convert 'exec' calls to use this new function.
Signed-off-by: Johannes Sixt <j6t@kdbg.org>
Signed-off-by: Taylor Blau <me@ttaylorr.com>
| -rwxr-xr-x | git-gui.sh | 28 |
1 files changed, 19 insertions, 9 deletions
diff --git a/git-gui.sh b/git-gui.sh index a6be30e295..6ecddfdd0a 100755 --- a/git-gui.sh +++ b/git-gui.sh @@ -200,6 +200,14 @@ proc safe_exec {cmd} { eval exec [make_arglist_safe $cmd] } +# executes one command in the background +# no redirections or pipelines are possible +# cmd is a list that specifies the command and its arguments +# calls `exec` and returns its value +proc safe_exec_bg {cmd} { + eval exec [make_arglist_safe $cmd] & +} + proc safe_open_file {filename flags} { # a file name starting with "|" would attempt to run a process # but such a file name must be treated as a relative path @@ -2202,7 +2210,7 @@ proc do_gitk {revs {is_submodule false}} { unset env(GIT_DIR) unset env(GIT_WORK_TREE) } - eval exec $cmd $revs "--" "--" & + safe_exec_bg [concat $cmd $revs "--" "--"] set env(GIT_DIR) $_gitdir set env(GIT_WORK_TREE) $_gitworktree @@ -2239,7 +2247,7 @@ proc do_git_gui {} { set pwd [pwd] cd $current_diff_path - eval exec $exe gui & + safe_exec_bg [concat $exe gui] set env(GIT_DIR) $_gitdir set env(GIT_WORK_TREE) $_gitworktree @@ -2270,16 +2278,18 @@ proc get_explorer {} { proc do_explore {} { global _gitworktree - set explorer [get_explorer] - eval exec $explorer [list [file nativename $_gitworktree]] & + set cmd [get_explorer] + lappend cmd [file nativename $_gitworktree] + safe_exec_bg $cmd } # Open file relative to the working tree by the default associated app. proc do_file_open {file} { global _gitworktree - set explorer [get_explorer] + set cmd [get_explorer] set full_file_path [file join $_gitworktree $file] - exec $explorer [file nativename $full_file_path] & + lappend cmd [file nativename $full_file_path] + safe_exec_bg $cmd } set is_quitting 0 @@ -2761,13 +2771,13 @@ if {[is_Windows]} { regsub "/mingw../libexec/git-core/git-gui$" \ $normalized "/git-bash.exe" cmdLine if {$cmdLine != $normalized && [file exists $cmdLine]} { - set cmdLine [list "Git Bash" $cmdLine &] + set cmdLine [list "Git Bash" $cmdLine] } else { - set cmdLine [list "Git Bash" bash --login -l &] + set cmdLine [list "Git Bash" bash --login -l] } .mbar.repository add command \ -label [mc "Git Bash"] \ - -command {eval exec [auto_execok start] $cmdLine} + -command {safe_exec_bg [concat [list [auto_execok start]] $cmdLine]} } if {[is_Windows] || ![is_bare]} { |