/src/tinysparql/subprojects/glib-2.80.3/glib/gshell.c

Source (jump to first uncovered line)
/* gshell.c - Shell-related utilities
 *
 *  Copyright 2000 Red Hat, Inc.
 *  g_execvpe implementation based on GNU libc execvp:
 *   Copyright 1991, 92, 95, 96, 97, 98, 99 Free Software Foundation, Inc.
 *
 * SPDX-License-Identifier: LGPL-2.1-or-later
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2.1 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this library; if not, see <http://www.gnu.org/licenses/>.
 */

#include "config.h"

#include <string.h>

#include "gshell.h"

#include "gslist.h"
#include "gstrfuncs.h"
#include "gstring.h"
#include "gtestutils.h"
#include "glibintl.h"
#include "gthread.h"

/**
 * G_SHELL_ERROR:
 *
 * Error domain for shell functions.
 *
 * Errors in this domain will be from the #GShellError enumeration.
 *
 * See #GError for information on error domains.
 **/

/**
 * GShellError:
 * @G_SHELL_ERROR_BAD_QUOTING: Mismatched or otherwise mangled quoting.
 * @G_SHELL_ERROR_EMPTY_STRING: String to be parsed was empty.
 * @G_SHELL_ERROR_FAILED: Some other error.
 *
 * Error codes returned by shell functions.
 **/
G_DEFINE_QUARK (g-shell-error-quark, g_shell_error)

/* Single quotes preserve the literal string exactly. escape
 * sequences are not allowed; not even \' - if you want a '
 * in the quoted text, you have to do something like 'foo'\''bar'
 *
 * Double quotes allow $ ` " \ and newline to be escaped with backslash.
 * Otherwise double quotes preserve things literally.
 */

static gboolean 
unquote_string_inplace (gchar* str, gchar** end, GError** err)
{
  gchar* dest;
  gchar* s;
  gchar quote_char;
  
  g_return_val_if_fail(end != NULL, FALSE);
  g_return_val_if_fail(err == NULL || *err == NULL, FALSE);
  g_return_val_if_fail(str != NULL, FALSE);
  
  dest = s = str;

  quote_char = *s;
  
  if (!(*s == '"' || *s == '\''))
    {
      g_set_error_literal (err,
                           G_SHELL_ERROR,
                           G_SHELL_ERROR_BAD_QUOTING,
                           _("Quoted text doesn’t begin with a quotation mark"));
      *end = str;
      return FALSE;
    }

  /* Skip the initial quote mark */
  ++s;

  if (quote_char == '"')
    {
      while (*s)
        {
          g_assert(s > dest); /* loop invariant */
      
          switch (*s)
            {
            case '"':
              /* End of the string, return now */
              *dest = '\0';
              ++s;
              *end = s;
              return TRUE;
              break;

            case '\\':
              /* Possible escaped quote or \ */
              ++s;
              switch (*s)
                {
                case '"':
                case '\\':
                case '`':
                case '$':
                case '\n':
                  *dest = *s;
                  ++s;
                  ++dest;
                  break;

                default:
                  /* not an escaped char */
                  *dest = '\\';
                  ++dest;
                  /* ++s already done. */
                  break;
                }
              break;

            default:
              *dest = *s;
              ++dest;
              ++s;
              break;
            }

          g_assert(s > dest); /* loop invariant */
        }
    }
  else
    {
      while (*s)
        {
          g_assert(s > dest); /* loop invariant */
          
          if (*s == '\'')
            {
              /* End of the string, return now */
              *dest = '\0';
              ++s;
              *end = s;
              return TRUE;
            }
          else
            {
              *dest = *s;
              ++dest;
              ++s;
            }

          g_assert(s > dest); /* loop invariant */
        }
    }
  
  /* If we reach here this means the close quote was never encountered */

  *dest = '\0';
  
  g_set_error_literal (err,
                       G_SHELL_ERROR,
                       G_SHELL_ERROR_BAD_QUOTING,
                       _("Unmatched quotation mark in command line or other shell-quoted text"));
  *end = s;
  return FALSE;
}

/**
 * g_shell_quote:
 * @unquoted_string: (type filename): a literal string
 * 
 * Quotes a string so that the shell (/bin/sh) will interpret the
 * quoted string to mean @unquoted_string.
 *
 * If you pass a filename to the shell, for example, you should first
 * quote it with this function.
 *
 * The return value must be freed with g_free().
 *
 * The quoting style used is undefined (single or double quotes may be
 * used).
 * 
 * Returns: (type filename) (transfer full): quoted string
 **/
gchar*
g_shell_quote (const gchar *unquoted_string)
{
  /* We always use single quotes, because the algorithm is cheesier.
   * We could use double if we felt like it, that might be more
   * human-readable.
   */

  const gchar *p;
  GString *dest;

  g_return_val_if_fail (unquoted_string != NULL, NULL);
  
  dest = g_string_new ("'");

  p = unquoted_string;

  /* could speed this up a lot by appending chunks of text at a
   * time.
   */
  while (*p)
    {
      /* Replace literal ' with a close ', a \', and an open ' */
      if (*p == '\'')
        g_string_append (dest, "'\\''");
      else
        g_string_append_c (dest, *p);

      ++p;
    }

  /* close the quote */
  g_string_append_c (dest, '\'');
  
  return g_string_free (dest, FALSE);
}

/**
 * g_shell_unquote:
 * @quoted_string: (type filename): shell-quoted string
 * @error: error return location or NULL
 * 
 * Unquotes a string as the shell (/bin/sh) would.
 *
 * This function only handles quotes; if a string contains file globs,
 * arithmetic operators, variables, backticks, redirections, or other
 * special-to-the-shell features, the result will be different from the
 * result a real shell would produce (the variables, backticks, etc.
 * will be passed through literally instead of being expanded).
 *
 * This function is guaranteed to succeed if applied to the result of
 * g_shell_quote(). If it fails, it returns %NULL and sets the
 * error.
 *
 * The @quoted_string need not actually contain quoted or escaped text;
 * g_shell_unquote() simply goes through the string and unquotes/unescapes
 * anything that the shell would. Both single and double quotes are
 * handled, as are escapes including escaped newlines.
 *
 * The return value must be freed with g_free().
 *
 * Possible errors are in the %G_SHELL_ERROR domain.
 * 
 * Shell quoting rules are a bit strange. Single quotes preserve the
 * literal string exactly. escape sequences are not allowed; not even
 * `\'` - if you want a `'` in the quoted text, you have to do something
 * like `'foo'\''bar'`. Double quotes allow `$`, ```, `"`, `\`, and
 * newline to be escaped with backslash. Otherwise double quotes
 * preserve things literally.
 *
 * Returns: (type filename): an unquoted string
 **/
gchar*
g_shell_unquote (const gchar *quoted_string,
                 GError     **error)
{
  gchar *unquoted;
  gchar *end;
  gchar *start;
  GString *retval;
  
  g_return_val_if_fail (quoted_string != NULL, NULL);
  
  unquoted = g_strdup (quoted_string);

  start = unquoted;
  end = unquoted;
  retval = g_string_new (NULL);

  /* The loop allows cases such as
   * "foo"blah blah'bar'woo foo"baz"la la la\'\''foo'
   */
  while (*start)
    {
      /* Append all non-quoted chars, honoring backslash escape
       */
      
      while (*start && !(*start == '"' || *start == '\''))
        {
          if (*start == '\\')
            {
              /* all characters can get escaped by backslash,
               * except newline, which is removed if it follows
               * a backslash outside of quotes
               */
              
              ++start;
              if (*start)
                {
                  if (*start != '\n')
                    g_string_append_c (retval, *start);
                  ++start;
                }
            }
          else
            {
              g_string_append_c (retval, *start);
              ++start;
            }
        }

      if (*start)
        {
          if (!unquote_string_inplace (start, &end, error))
            {
              goto error;
            }
          else
            {
              g_string_append (retval, start);
              start = end;
            }
        }
    }

  g_free (unquoted);
  return g_string_free (retval, FALSE);
  
 error:
  g_assert (error == NULL || *error != NULL);
  
  g_free (unquoted);
  g_string_free (retval, TRUE);
  return NULL;
}

/* g_parse_argv() does a semi-arbitrary weird subset of the way
 * the shell parses a command line. We don't do variable expansion,
 * don't understand that operators are tokens, don't do tilde expansion,
 * don't do command substitution, no arithmetic expansion, IFS gets ignored,
 * don't do filename globs, don't remove redirection stuff, etc.
 *
 * READ THE UNIX98 SPEC on "Shell Command Language" before changing
 * the behavior of this code.
 *
 * Steps to parsing the argv string:
 *
 *  - tokenize the string (but since we ignore operators,
 *    our tokenization may diverge from what the shell would do)
 *    note that tokenization ignores the internals of a quoted
 *    word and it always splits on spaces, not on IFS even
 *    if we used IFS. We also ignore "end of input indicator"
 *    (I guess this is control-D?)
 *
 *    Tokenization steps, from UNIX98 with operator stuff removed,
 *    are:
 * 
 *    1) "If the current character is backslash, single-quote or
 *        double-quote (\, ' or ") and it is not quoted, it will affect
 *        quoting for subsequent characters up to the end of the quoted
 *        text. The rules for quoting are as described in Quoting
 *        . During token recognition no substitutions will be actually
 *        performed, and the result token will contain exactly the
 *        characters that appear in the input (except for newline
 *        character joining), unmodified, including any embedded or
 *        enclosing quotes or substitution operators, between the quote
 *        mark and the end of the quoted text. The token will not be
 *        delimited by the end of the quoted field."
 *
 *    2) "If the current character is an unquoted newline character,
 *        the current token will be delimited."
 *
 *    3) "If the current character is an unquoted blank character, any
 *        token containing the previous character is delimited and the
 *        current character will be discarded."
 *
 *    4) "If the previous character was part of a word, the current
 *        character will be appended to that word."
 *
 *    5) "If the current character is a "#", it and all subsequent
 *        characters up to, but excluding, the next newline character
 *        will be discarded as a comment. The newline character that
 *        ends the line is not considered part of the comment. The
 *        "#" starts a comment only when it is at the beginning of a
 *        token. Since the search for the end-of-comment does not
 *        consider an escaped newline character specially, a comment
 *        cannot be continued to the next line."
 *
 *    6) "The current character will be used as the start of a new word."
 *
 *
 *  - for each token (word), perform portions of word expansion, namely
 *    field splitting (using default whitespace IFS) and quote
 *    removal.  Field splitting may increase the number of words.
 *    Quote removal does not increase the number of words.
 *
 *   "If the complete expansion appropriate for a word results in an
 *   empty field, that empty field will be deleted from the list of
 *   fields that form the completely expanded command, unless the
 *   original word contained single-quote or double-quote characters."
 *    - UNIX98 spec
 *
 *
 */

static inline void
ensure_token (GString **token)
{
  if (*token == NULL)
    *token = g_string_new (NULL);
}

static void
delimit_token (GString **token,
               GSList **retval)
{
  if (*token == NULL)
    return;

  *retval = g_slist_prepend (*retval, g_string_free (*token, FALSE));

  *token = NULL;
}

static GSList*
tokenize_command_line (const gchar *command_line,
                       GError **error)
{
  gchar current_quote;
  const gchar *p;
  GString *current_token = NULL;
  GSList *retval = NULL;
  gboolean quoted;

  current_quote = '\0';
  quoted = FALSE;
  p = command_line;
 
  while (*p)
    {
      if (current_quote == '\\')
        {
          if (*p == '\n')
            {
              /* we append nothing; backslash-newline become nothing */
            }
          else
            {
              /* we append the backslash and the current char,
               * to be interpreted later after tokenization
               */
              ensure_token (&current_token);
              g_string_append_c (current_token, '\\');
              g_string_append_c (current_token, *p);
            }

          current_quote = '\0';
        }
      else if (current_quote == '#')
        {
          /* Discard up to and including next newline */
          while (*p && *p != '\n')
            ++p;

          current_quote = '\0';
          
          if (*p == '\0')
            break;
        }
      else if (current_quote)
        {
          if (*p == current_quote &&
              /* check that it isn't an escaped double quote */
              !(current_quote == '"' && quoted))
            {
              /* close the quote */
              current_quote = '\0';
            }

          /* Everything inside quotes, and the close quote,
           * gets appended literally.
           */

          ensure_token (&current_token);
          g_string_append_c (current_token, *p);
        }
      else
        {
          switch (*p)
            {
            case '\n':
              delimit_token (&current_token, &retval);
              break;

            case ' ':
            case '\t':
              /* If the current token contains the previous char, delimit
               * the current token. A nonzero length
               * token should always contain the previous char.
               */
              if (current_token &&
                  current_token->len > 0)
                {
                  delimit_token (&current_token, &retval);
                }
              
              /* discard all unquoted blanks (don't add them to a token) */
              break;


              /* single/double quotes are appended to the token,
               * escapes are maybe appended next time through the loop,
               * comment chars are never appended.
               */
              
            case '\'':
            case '"':
              ensure_token (&current_token);
              g_string_append_c (current_token, *p);

              G_GNUC_FALLTHROUGH;
            case '\\':
              current_quote = *p;
              break;

            case '#':
              if (p == command_line)
          { /* '#' was the first char */
                  current_quote = *p;
                  break;
                }
              switch(*(p-1))
                {
                  case ' ':
                  case '\n':
                  case '\0':
                    current_quote = *p;
                    break;
                  default:
                    ensure_token (&current_token);
                    g_string_append_c (current_token, *p);
        break;
                }
              break;

            default:
              /* Combines rules 4) and 6) - if we have a token, append to it,
               * otherwise create a new token.
               */
              ensure_token (&current_token);
              g_string_append_c (current_token, *p);
              break;
            }
        }

      /* We need to count consecutive backslashes mod 2, 
       * to detect escaped doublequotes.
       */
      if (*p != '\\')
  quoted = FALSE;
      else
  quoted = !quoted;

      ++p;
    }

  delimit_token (&current_token, &retval);

  if (current_quote)
    {
      if (current_quote == '\\')
        g_set_error (error,
                     G_SHELL_ERROR,
                     G_SHELL_ERROR_BAD_QUOTING,
                     _("Text ended just after a “\\” character."
                       " (The text was “%s”)"),
                     command_line);
      else
        g_set_error (error,
                     G_SHELL_ERROR,
                     G_SHELL_ERROR_BAD_QUOTING,
                     _("Text ended before matching quote was found for %c."
                       " (The text was “%s”)"),
                     current_quote, command_line);
      
      goto error;
    }

  if (retval == NULL)
    {
      g_set_error_literal (error,
                           G_SHELL_ERROR,
                           G_SHELL_ERROR_EMPTY_STRING,
                           _("Text was empty (or contained only whitespace)"));

      goto error;
    }
  
  /* we appended backward */
  retval = g_slist_reverse (retval);

  return retval;

 error:
  g_assert (error == NULL || *error != NULL);

  g_slist_free_full (retval, g_free);

  return NULL;
}

/**
 * g_shell_parse_argv:
 * @command_line: (type filename): command line to parse
 * @argcp: (out) (optional): return location for number of args
 * @argvp: (out) (optional) (array length=argcp zero-terminated=1) (element-type filename):
 *   return location for array of args
 * @error: (optional): return location for error
 * 
 * Parses a command line into an argument vector, in much the same way
 * the shell would, but without many of the expansions the shell would
 * perform (variable expansion, globs, operators, filename expansion,
 * etc. are not supported).
 *
 * The results are defined to be the same as those you would get from
 * a UNIX98 `/bin/sh`, as long as the input contains none of the
 * unsupported shell expansions. If the input does contain such expansions,
 * they are passed through literally.
 *
 * Possible errors are those from the %G_SHELL_ERROR domain.
 *
 * In particular, if @command_line is an empty string (or a string containing
 * only whitespace), %G_SHELL_ERROR_EMPTY_STRING will be returned. It’s
 * guaranteed that @argvp will be a non-empty array if this function returns
 * successfully.
 *
 * Free the returned vector with g_strfreev().
 * 
 * Returns: %TRUE on success, %FALSE if error set
 **/
gboolean
g_shell_parse_argv (const gchar *command_line,
                    gint        *argcp,
                    gchar     ***argvp,
                    GError     **error)
{
  /* Code based on poptParseArgvString() from libpopt */
  gint argc = 0;
  gchar **argv = NULL;
  GSList *tokens = NULL;
  gint i;
  GSList *tmp_list;
  
  g_return_val_if_fail (command_line != NULL, FALSE);

  tokens = tokenize_command_line (command_line, error);
  if (tokens == NULL)
    return FALSE;

  /* Because we can't have introduced any new blank space into the
   * tokens (we didn't do any new expansions), we don't need to
   * perform field splitting. If we were going to honor IFS or do any
   * expansions, we would have to do field splitting on each word
   * here. Also, if we were going to do any expansion we would need to
   * remove any zero-length words that didn't contain quotes
   * originally; but since there's no expansion we know all words have
   * nonzero length, unless they contain quotes.
   * 
   * So, we simply remove quotes, and don't do any field splitting or
   * empty word removal, since we know there was no way to introduce
   * such things.
   */

  argc = g_slist_length (tokens);
  argv = g_new0 (gchar*, argc + 1);
  i = 0;
  tmp_list = tokens;
  while (tmp_list)
    {
      argv[i] = g_shell_unquote (tmp_list->data, error);

      /* Since we already checked that quotes matched up in the
       * tokenizer, this shouldn't be possible to reach I guess.
       */
      if (argv[i] == NULL)
        goto failed;

      tmp_list = g_slist_next (tmp_list);
      ++i;
    }
  
  g_slist_free_full (tokens, g_free);

  g_assert (argc > 0);
  g_assert (argv != NULL && argv[0] != NULL);

  if (argcp)
    *argcp = argc;

  if (argvp)
    *argvp = argv;
  else
    g_strfreev (argv);

  return TRUE;

 failed:

  g_assert (error == NULL || *error != NULL);
  g_strfreev (argv);
  g_slist_free_full (tokens, g_free);
  
  return FALSE;
}

Coverage Report

Created: 2025-07-18 06:08

Line	Count	Source (jump to first uncovered line)
1		/* gshell.c - Shell-related utilities
2		*
3		* Copyright 2000 Red Hat, Inc.
4		* g_execvpe implementation based on GNU libc execvp:
5		* Copyright 1991, 92, 95, 96, 97, 98, 99 Free Software Foundation, Inc.
6		*
7		* SPDX-License-Identifier: LGPL-2.1-or-later
8		*
9		* This library is free software; you can redistribute it and/or
10		* modify it under the terms of the GNU Lesser General Public
11		* License as published by the Free Software Foundation; either
12		* version 2.1 of the License, or (at your option) any later version.
13		*
14		* This library is distributed in the hope that it will be useful,
15		* but WITHOUT ANY WARRANTY; without even the implied warranty of
16		* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17		* Lesser General Public License for more details.
18		*
19		* You should have received a copy of the GNU Lesser General Public License
20		* along with this library; if not, see <http://www.gnu.org/licenses/>.
21		*/
22
23		#include "config.h"
24
25		#include <string.h>
26
27		#include "gshell.h"
28
29		#include "gslist.h"
30		#include "gstrfuncs.h"
31		#include "gstring.h"
32		#include "gtestutils.h"
33		#include "glibintl.h"
34		#include "gthread.h"
35
36		/**
37		* G_SHELL_ERROR:
38		*
39		* Error domain for shell functions.
40		*
41		* Errors in this domain will be from the #GShellError enumeration.
42		*
43		* See #GError for information on error domains.
44		**/
45
46		/**
47		* GShellError:
48		* @G_SHELL_ERROR_BAD_QUOTING: Mismatched or otherwise mangled quoting.
49		* @G_SHELL_ERROR_EMPTY_STRING: String to be parsed was empty.
50		* @G_SHELL_ERROR_FAILED: Some other error.
51		*
52		* Error codes returned by shell functions.
53		**/
54		G_DEFINE_QUARK (g-shell-error-quark, g_shell_error)
55
56		/* Single quotes preserve the literal string exactly. escape
57		* sequences are not allowed; not even \' - if you want a '
58		* in the quoted text, you have to do something like 'foo'\''bar'
59		*
60		* Double quotes allow $ ` " \ and newline to be escaped with backslash.
61		* Otherwise double quotes preserve things literally.
62		*/
63
64		static gboolean
65		unquote_string_inplace (gchar* str, gchar end, GError err)
66	0	{
67	0	gchar* dest;
68	0	gchar* s;
69	0	gchar quote_char;
70
71	0	g_return_val_if_fail(end != NULL, FALSE);
72	0	g_return_val_if_fail(err == NULL \|\| *err == NULL, FALSE);
73	0	g_return_val_if_fail(str != NULL, FALSE);
74
75	0	dest = s = str;
76
77	0	quote_char = *s;
78
79	0	if (!(s == '"' \|\| s == '\''))
80	0	{
81	0	g_set_error_literal (err,
82	0	G_SHELL_ERROR,
83	0	G_SHELL_ERROR_BAD_QUOTING,
84	0	_("Quoted text doesn’t begin with a quotation mark"));
85	0	*end = str;
86	0	return FALSE;
87	0	}
88
89		/* Skip the initial quote mark */
90	0	++s;
91
92	0	if (quote_char == '"')
93	0	{
94	0	while (*s)
95	0	{
96	0	g_assert(s > dest); /* loop invariant */
97
98	0	switch (*s)
99	0	{
100	0	case '"':
101		/* End of the string, return now */
102	0	*dest = '\0';
103	0	++s;
104	0	*end = s;
105	0	return TRUE;
106	0	break;
107
108	0	case '\\':
109		/* Possible escaped quote or \ */
110	0	++s;
111	0	switch (*s)
112	0	{
113	0	case '"':
114	0	case '\\':
115	0	case '`':
116	0	case '$':
117	0	case '\n':
118	0	dest = s;
119	0	++s;
120	0	++dest;
121	0	break;
122
123	0	default:
124		/* not an escaped char */
125	0	*dest = '\\';
126	0	++dest;
127		/* ++s already done. */
128	0	break;
129	0	}
130	0	break;
131
132	0	default:
133	0	dest = s;
134	0	++dest;
135	0	++s;
136	0	break;
137	0	}
138
139	0	g_assert(s > dest); /* loop invariant */
140	0	}
141	0	}
142	0	else
143	0	{
144	0	while (*s)
145	0	{
146	0	g_assert(s > dest); /* loop invariant */
147
148	0	if (*s == '\'')
149	0	{
150		/* End of the string, return now */
151	0	*dest = '\0';
152	0	++s;
153	0	*end = s;
154	0	return TRUE;
155	0	}
156	0	else
157	0	{
158	0	dest = s;
159	0	++dest;
160	0	++s;
161	0	}
162
163	0	g_assert(s > dest); /* loop invariant */
164	0	}
165	0	}
166
167		/* If we reach here this means the close quote was never encountered */
168
169	0	*dest = '\0';
170
171	0	g_set_error_literal (err,
172	0	G_SHELL_ERROR,
173	0	G_SHELL_ERROR_BAD_QUOTING,
174	0	_("Unmatched quotation mark in command line or other shell-quoted text"));
175	0	*end = s;
176	0	return FALSE;
177	0	}
178
179		/**
180		* g_shell_quote:
181		* @unquoted_string: (type filename): a literal string
182		*
183		* Quotes a string so that the shell (/bin/sh) will interpret the
184		* quoted string to mean @unquoted_string.
185		*
186		* If you pass a filename to the shell, for example, you should first
187		* quote it with this function.
188		*
189		* The return value must be freed with g_free().
190		*
191		* The quoting style used is undefined (single or double quotes may be
192		* used).
193		*
194		* Returns: (type filename) (transfer full): quoted string
195		**/
196		gchar*
197		g_shell_quote (const gchar *unquoted_string)
198	0	{
199		/* We always use single quotes, because the algorithm is cheesier.
200		* We could use double if we felt like it, that might be more
201		* human-readable.
202		*/
203
204	0	const gchar *p;
205	0	GString *dest;
206
207	0	g_return_val_if_fail (unquoted_string != NULL, NULL);
208
209	0	dest = g_string_new ("'");
210
211	0	p = unquoted_string;
212
213		/* could speed this up a lot by appending chunks of text at a
214		* time.
215		*/
216	0	while (*p)
217	0	{
218		/* Replace literal ' with a close ', a \', and an open ' */
219	0	if (*p == '\'')
220	0	g_string_append (dest, "'\\''");
221	0	else
222	0	g_string_append_c (dest, *p);
223
224	0	++p;
225	0	}
226
227		/* close the quote */
228	0	g_string_append_c (dest, '\'');
229
230	0	return g_string_free (dest, FALSE);
231	0	}
232
233		/**
234		* g_shell_unquote:
235		* @quoted_string: (type filename): shell-quoted string
236		* @error: error return location or NULL
237		*
238		* Unquotes a string as the shell (/bin/sh) would.
239		*
240		* This function only handles quotes; if a string contains file globs,
241		* arithmetic operators, variables, backticks, redirections, or other
242		* special-to-the-shell features, the result will be different from the
243		* result a real shell would produce (the variables, backticks, etc.
244		* will be passed through literally instead of being expanded).
245		*
246		* This function is guaranteed to succeed if applied to the result of
247		* g_shell_quote(). If it fails, it returns %NULL and sets the
248		* error.
249		*
250		* The @quoted_string need not actually contain quoted or escaped text;
251		* g_shell_unquote() simply goes through the string and unquotes/unescapes
252		* anything that the shell would. Both single and double quotes are
253		* handled, as are escapes including escaped newlines.
254		*
255		* The return value must be freed with g_free().
256		*
257		* Possible errors are in the %G_SHELL_ERROR domain.
258		*
259		* Shell quoting rules are a bit strange. Single quotes preserve the
260		* literal string exactly. escape sequences are not allowed; not even
261		* `\'` - if you want a `'` in the quoted text, you have to do something
262		* like `'foo'\''bar'`. Double quotes allow `$`, ```, `"`, `\`, and
263		* newline to be escaped with backslash. Otherwise double quotes
264		* preserve things literally.
265		*
266		* Returns: (type filename): an unquoted string
267		**/
268		gchar*
269		g_shell_unquote (const gchar *quoted_string,
270		GError **error)
271	0	{
272	0	gchar *unquoted;
273	0	gchar *end;
274	0	gchar *start;
275	0	GString *retval;
276
277	0	g_return_val_if_fail (quoted_string != NULL, NULL);
278
279	0	unquoted = g_strdup (quoted_string);
280
281	0	start = unquoted;
282	0	end = unquoted;
283	0	retval = g_string_new (NULL);
284
285		/* The loop allows cases such as
286		* "foo"blah blah'bar'woo foo"baz"la la la\'\''foo'
287		*/
288	0	while (*start)
289	0	{
290		/* Append all non-quoted chars, honoring backslash escape
291		*/
292
293	0	while (start && !(start == '"' \|\| *start == '\''))
294	0	{
295	0	if (*start == '\\')
296	0	{
297		/* all characters can get escaped by backslash,
298		* except newline, which is removed if it follows
299		* a backslash outside of quotes
300		*/
301
302	0	++start;
303	0	if (*start)
304	0	{
305	0	if (*start != '\n')
306	0	g_string_append_c (retval, *start);
307	0	++start;
308	0	}
309	0	}
310	0	else
311	0	{
312	0	g_string_append_c (retval, *start);
313	0	++start;
314	0	}
315	0	}
316
317	0	if (*start)
318	0	{
319	0	if (!unquote_string_inplace (start, &end, error))
320	0	{
321	0	goto error;
322	0	}
323	0	else
324	0	{
325	0	g_string_append (retval, start);
326	0	start = end;
327	0	}
328	0	}
329	0	}
330
331	0	g_free (unquoted);
332	0	return g_string_free (retval, FALSE);
333
334	0	error:
335	0	g_assert (error == NULL \|\| *error != NULL);
336
337	0	g_free (unquoted);
338	0	g_string_free (retval, TRUE);
339	0	return NULL;
340	0	}
341
342		/* g_parse_argv() does a semi-arbitrary weird subset of the way
343		* the shell parses a command line. We don't do variable expansion,
344		* don't understand that operators are tokens, don't do tilde expansion,
345		* don't do command substitution, no arithmetic expansion, IFS gets ignored,
346		* don't do filename globs, don't remove redirection stuff, etc.
347		*
348		* READ THE UNIX98 SPEC on "Shell Command Language" before changing
349		* the behavior of this code.
350		*
351		* Steps to parsing the argv string:
352		*
353		* - tokenize the string (but since we ignore operators,
354		* our tokenization may diverge from what the shell would do)
355		* note that tokenization ignores the internals of a quoted
356		* word and it always splits on spaces, not on IFS even
357		* if we used IFS. We also ignore "end of input indicator"
358		* (I guess this is control-D?)
359		*
360		* Tokenization steps, from UNIX98 with operator stuff removed,
361		* are:
362		*
363		* 1) "If the current character is backslash, single-quote or
364		* double-quote (\, ' or ") and it is not quoted, it will affect
365		* quoting for subsequent characters up to the end of the quoted
366		* text. The rules for quoting are as described in Quoting
367		* . During token recognition no substitutions will be actually
368		* performed, and the result token will contain exactly the
369		* characters that appear in the input (except for newline
370		* character joining), unmodified, including any embedded or
371		* enclosing quotes or substitution operators, between the quote
372		* mark and the end of the quoted text. The token will not be
373		* delimited by the end of the quoted field."
374		*
375		* 2) "If the current character is an unquoted newline character,
376		* the current token will be delimited."
377		*
378		* 3) "If the current character is an unquoted blank character, any
379		* token containing the previous character is delimited and the
380		* current character will be discarded."
381		*
382		* 4) "If the previous character was part of a word, the current
383		* character will be appended to that word."
384		*
385		* 5) "If the current character is a "#", it and all subsequent
386		* characters up to, but excluding, the next newline character
387		* will be discarded as a comment. The newline character that
388		* ends the line is not considered part of the comment. The
389		* "#" starts a comment only when it is at the beginning of a
390		* token. Since the search for the end-of-comment does not
391		* consider an escaped newline character specially, a comment
392		* cannot be continued to the next line."
393		*
394		* 6) "The current character will be used as the start of a new word."
395		*
396		*
397		* - for each token (word), perform portions of word expansion, namely
398		* field splitting (using default whitespace IFS) and quote
399		* removal. Field splitting may increase the number of words.
400		* Quote removal does not increase the number of words.
401		*
402		* "If the complete expansion appropriate for a word results in an
403		* empty field, that empty field will be deleted from the list of
404		* fields that form the completely expanded command, unless the
405		* original word contained single-quote or double-quote characters."
406		* - UNIX98 spec
407		*
408		*
409		*/
410
411		static inline void
412		ensure_token (GString **token)
413	0	{
414	0	if (*token == NULL)
415	0	*token = g_string_new (NULL);
416	0	}
417
418		static void
419		delimit_token (GString **token,
420		GSList **retval)
421	0	{
422	0	if (*token == NULL)
423	0	return;
424
425	0	retval = g_slist_prepend (retval, g_string_free (*token, FALSE));
426
427	0	*token = NULL;
428	0	}
429
430		static GSList*
431		tokenize_command_line (const gchar *command_line,
432		GError **error)
433	0	{
434	0	gchar current_quote;
435	0	const gchar *p;
436	0	GString *current_token = NULL;
437	0	GSList *retval = NULL;
438	0	gboolean quoted;
439
440	0	current_quote = '\0';
441	0	quoted = FALSE;
442	0	p = command_line;
443
444	0	while (*p)
445	0	{
446	0	if (current_quote == '\\')
447	0	{
448	0	if (*p == '\n')
449	0	{
450		/* we append nothing; backslash-newline become nothing */
451	0	}
452	0	else
453	0	{
454		/* we append the backslash and the current char,
455		* to be interpreted later after tokenization
456		*/
457	0	ensure_token (&current_token);
458	0	g_string_append_c (current_token, '\\');
459	0	g_string_append_c (current_token, *p);
460	0	}
461
462	0	current_quote = '\0';
463	0	}
464	0	else if (current_quote == '#')
465	0	{
466		/* Discard up to and including next newline */
467	0	while (p && p != '\n')
468	0	++p;
469
470	0	current_quote = '\0';
471
472	0	if (*p == '\0')
473	0	break;
474	0	}
475	0	else if (current_quote)
476	0	{
477	0	if (*p == current_quote &&
478		/* check that it isn't an escaped double quote */
479	0	!(current_quote == '"' && quoted))
480	0	{
481		/* close the quote */
482	0	current_quote = '\0';
483	0	}
484
485		/* Everything inside quotes, and the close quote,
486		* gets appended literally.
487		*/
488
489	0	ensure_token (&current_token);
490	0	g_string_append_c (current_token, *p);
491	0	}
492	0	else
493	0	{
494	0	switch (*p)
495	0	{
496	0	case '\n':
497	0	delimit_token (&current_token, &retval);
498	0	break;
499
500	0	case ' ':
501	0	case '\t':
502		/* If the current token contains the previous char, delimit
503		* the current token. A nonzero length
504		* token should always contain the previous char.
505		*/
506	0	if (current_token &&
507	0	current_token->len > 0)
508	0	{
509	0	delimit_token (&current_token, &retval);
510	0	}
511
512		/* discard all unquoted blanks (don't add them to a token) */
513	0	break;
514
515
516		/* single/double quotes are appended to the token,
517		* escapes are maybe appended next time through the loop,
518		* comment chars are never appended.
519		*/
520
521	0	case '\'':
522	0	case '"':
523	0	ensure_token (&current_token);
524	0	g_string_append_c (current_token, *p);
525
526	0	G_GNUC_FALLTHROUGH;
527	0	case '\\':
528	0	current_quote = *p;
529	0	break;
530
531	0	case '#':
532	0	if (p == command_line)
533	0	{ /* '#' was the first char */
534	0	current_quote = *p;
535	0	break;
536	0	}
537	0	switch(*(p-1))
538	0	{
539	0	case ' ':
540	0	case '\n':
541	0	case '\0':
542	0	current_quote = *p;
543	0	break;
544	0	default:
545	0	ensure_token (&current_token);
546	0	g_string_append_c (current_token, *p);
547	0	break;
548	0	}
549	0	break;
550
551	0	default:
552		/* Combines rules 4) and 6) - if we have a token, append to it,
553		* otherwise create a new token.
554		*/
555	0	ensure_token (&current_token);
556	0	g_string_append_c (current_token, *p);
557	0	break;
558	0	}
559	0	}
560
561		/* We need to count consecutive backslashes mod 2,
562		* to detect escaped doublequotes.
563		*/
564	0	if (*p != '\\')
565	0	quoted = FALSE;
566	0	else
567	0	quoted = !quoted;
568
569	0	++p;
570	0	}
571
572	0	delimit_token (&current_token, &retval);
573
574	0	if (current_quote)
575	0	{
576	0	if (current_quote == '\\')
577	0	g_set_error (error,
578	0	G_SHELL_ERROR,
579	0	G_SHELL_ERROR_BAD_QUOTING,
580	0	_("Text ended just after a “\\” character."
581	0	" (The text was “%s”)"),
582	0	command_line);
583	0	else
584	0	g_set_error (error,
585	0	G_SHELL_ERROR,
586	0	G_SHELL_ERROR_BAD_QUOTING,
587	0	_("Text ended before matching quote was found for %c."
588	0	" (The text was “%s”)"),
589	0	current_quote, command_line);
590
591	0	goto error;
592	0	}
593
594	0	if (retval == NULL)
595	0	{
596	0	g_set_error_literal (error,
597	0	G_SHELL_ERROR,
598	0	G_SHELL_ERROR_EMPTY_STRING,
599	0	_("Text was empty (or contained only whitespace)"));
600
601	0	goto error;
602	0	}
603
604		/* we appended backward */
605	0	retval = g_slist_reverse (retval);
606
607	0	return retval;
608
609	0	error:
610	0	g_assert (error == NULL \|\| *error != NULL);
611
612	0	g_slist_free_full (retval, g_free);
613
614	0	return NULL;
615	0	}
616
617		/**
618		* g_shell_parse_argv:
619		* @command_line: (type filename): command line to parse
620		* @argcp: (out) (optional): return location for number of args
621		* @argvp: (out) (optional) (array length=argcp zero-terminated=1) (element-type filename):
622		* return location for array of args
623		* @error: (optional): return location for error
624		*
625		* Parses a command line into an argument vector, in much the same way
626		* the shell would, but without many of the expansions the shell would
627		* perform (variable expansion, globs, operators, filename expansion,
628		* etc. are not supported).
629		*
630		* The results are defined to be the same as those you would get from
631		* a UNIX98 `/bin/sh`, as long as the input contains none of the
632		* unsupported shell expansions. If the input does contain such expansions,
633		* they are passed through literally.
634		*
635		* Possible errors are those from the %G_SHELL_ERROR domain.
636		*
637		* In particular, if @command_line is an empty string (or a string containing
638		* only whitespace), %G_SHELL_ERROR_EMPTY_STRING will be returned. It’s
639		* guaranteed that @argvp will be a non-empty array if this function returns
640		* successfully.
641		*
642		* Free the returned vector with g_strfreev().
643		*
644		* Returns: %TRUE on success, %FALSE if error set
645		**/
646		gboolean
647		g_shell_parse_argv (const gchar *command_line,
648		gint *argcp,
649		gchar ***argvp,
650		GError **error)
651	0	{
652		/* Code based on poptParseArgvString() from libpopt */
653	0	gint argc = 0;
654	0	gchar **argv = NULL;
655	0	GSList *tokens = NULL;
656	0	gint i;
657	0	GSList *tmp_list;
658
659	0	g_return_val_if_fail (command_line != NULL, FALSE);
660
661	0	tokens = tokenize_command_line (command_line, error);
662	0	if (tokens == NULL)
663	0	return FALSE;
664
665		/* Because we can't have introduced any new blank space into the
666		* tokens (we didn't do any new expansions), we don't need to
667		* perform field splitting. If we were going to honor IFS or do any
668		* expansions, we would have to do field splitting on each word
669		* here. Also, if we were going to do any expansion we would need to
670		* remove any zero-length words that didn't contain quotes
671		* originally; but since there's no expansion we know all words have
672		* nonzero length, unless they contain quotes.
673		*
674		* So, we simply remove quotes, and don't do any field splitting or
675		* empty word removal, since we know there was no way to introduce
676		* such things.
677		*/
678
679	0	argc = g_slist_length (tokens);
680	0	argv = g_new0 (gchar*, argc + 1);
681	0	i = 0;
682	0	tmp_list = tokens;
683	0	while (tmp_list)
684	0	{
685	0	argv[i] = g_shell_unquote (tmp_list->data, error);
686
687		/* Since we already checked that quotes matched up in the
688		* tokenizer, this shouldn't be possible to reach I guess.
689		*/
690	0	if (argv[i] == NULL)
691	0	goto failed;
692
693	0	tmp_list = g_slist_next (tmp_list);
694	0	++i;
695	0	}
696
697	0	g_slist_free_full (tokens, g_free);
698
699	0	g_assert (argc > 0);
700	0	g_assert (argv != NULL && argv[0] != NULL);
701
702	0	if (argcp)
703	0	*argcp = argc;
704
705	0	if (argvp)
706	0	*argvp = argv;
707	0	else
708	0	g_strfreev (argv);
709
710	0	return TRUE;
711
712	0	failed:
713
714	0	g_assert (error == NULL \|\| *error != NULL);
715	0	g_strfreev (argv);
716	0	g_slist_free_full (tokens, g_free);
717
718	0	return FALSE;
719	0	}