Request 1365 - SailfishOS Open Build Service

SailfishOS Open Build Service > Request 1365

Overview

Request 1365 (accepted)

No description set

Created by nephros over 2 years ago
In state accepted
1 package maintainer (show who)

Submit inotify-tools

Submit package home:nephros / inotify-tools to package sailfishos:chum:testing / inotify-tools

[-] [+]	Added	inotify-tools.spec
@@ -0,0 +1,92 @@ +Name: inotify-tools +Version: 3.14 +Release: 0 +Summary: Command line utilities for inotify + +Group: Applications/System +License: GPLv2 +URL: http://inotify-tools.sourceforge.net/ +Source0: http://download.sf.net/inotify-tools/%{name}-%{version}.tar.gz +Patch1: 0005-Fix-segfault-with-csv-output-when-filename-contains-.patch +Patch2: 0006-Fix-buffer-overrun-in-inotifytools.c.patch +#BuildRoot: %%{_tmppath}/%%{name}-%%{version}-%%{release}-root-%%(%%{__id_u} -n) + +BuildRequires: autoconf +#BuildRequires: doxygen + +%description +inotify-tools is a set of command-line programs for Linux providing +a simple interface to inotify. These programs can be used to monitor +and act upon filesystem events. + + +%package devel +Summary: Headers and libraries for building apps that use libinotifytools +Group: Development/Libraries +Requires: %{name} = %{version}-%{release} + +%package doc +Summary: Documentation for %{name} +Group: Development/Libraries + +%description devel +This package contains headers and libraries required to build applications +that use the libinotifytools library. + +%description doc +%summary + +%prep +%setup -q +%patch1 -p1 +%patch2 -p1 + + +%build +%configure \ + --disable-dependency-tracking \ + --disable-static \ + --disable-doxygen +make %{?_smp_mflags} + + +%install +rm -rf %{buildroot} +make install DESTDIR=%{buildroot} + +find %{buildroot} -type f -name ".la" -exec rm -f {} ';' +# We'll install documentation in the proper place +rm -rf %{buildroot}/%{_datadir}/doc/ + + +%clean +rm -rf %{buildroot} + + +%post -p /sbin/ldconfig + +%postun -p /sbin/ldconfig + + +%files +%defattr(-,root,root,-) +%{_bindir}/inotifywait +%{_bindir}/inotifywatch +%{_libdir}/libinotifytools.so. + +%files doc +%defattr(-,root,root,-) +#%%doc AUTHORS COPYING ChangeLog NEWS README +%doc AUTHORS COPYING NEWS README +%{_mandir}/man1/inotifywait.1* +%{_mandir}/man1/inotifywatch.1* + +%files devel +%defattr(-,root,root,-) +#%%doc libinotifytools/src/doc/html/* +%dir %{_includedir}/inotifytools/ +%{_includedir}/inotifytools/inotify.h +%{_includedir}/inotifytools/inotify-nosys.h +%{_includedir}/inotifytools/inotifytools.h +%{_libdir}/libinotifytools.so +
[-] [+]	Added	0005-Fix-segfault-with-csv-output-when-filename-contains-.patch ^
@@ -0,0 +1,24 @@ +From: Dmitry Bogatov <KAction@gnu.org> +Date: Sat, 4 Mar 2017 21:13:38 +0300 +Subject: [PATCH] Fix segfault with csv output when filename contains comma + +Double `csv_escape()'ing filename is logic error, but root of the +problem was that passing `csv' buffer back into `csv_escape()' caused +endless loop over `static char csv[MAXLEN]', and buffer overflow. +--- + src/inotifywait.c \| 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/src/inotifywait.c b/src/inotifywait.c +index 98aadd4..6e17007 100644 +--- a/src/inotifywait.c ++++ b/src/inotifywait.c +@@ -119,7 +119,7 @@ void validate_format( char * fmt ) { + void output_event_csv( struct inotify_event * event ) { + char *filename = csv_escape(inotifytools_filename_from_wd(event->wd)); + if (filename != NULL) +- printf("%s,", csv_escape(filename)); ++ printf("%s,", filename); + + printf("%s,", csv_escape( inotifytools_event_to_str( event->mask ) ) ); + if ( event->len > 0 )
[-] [+]	Added	0006-Fix-buffer-overrun-in-inotifytools.c.patch ^
@@ -0,0 +1,33 @@ +From: Dmitry Bogatov <KAction@debian.org> +Date: Tue, 6 Aug 2019 16:36:24 +0000 +Subject: Fix buffer overrun in inotifytools.c + +The following code + + char names[2+sizeof(int)/sizeof(char)]; + +was supposed to allocate enough space on stack to fit two `char ' and one +`int'. Problem is that when sizeof(int) < sizeof(char ), which is likely on +64-bit systems, it caused expression `sizeof(int)/sizeof(char)' evaluate to 0, +resulting in buffer overrun. + +Detected by GCC-9 new diagnostics. + +Closes: #925717 +--- + libinotifytools/src/inotifytools.c \| 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/libinotifytools/src/inotifytools.c b/libinotifytools/src/inotifytools.c +index b3feca3..ce4ccd5 100644 +--- a/libinotifytools/src/inotifytools.c ++++ b/libinotifytools/src/inotifytools.c +@@ -859,7 +859,7 @@ void inotifytools_set_filename_by_filename( char const oldname, + void inotifytools_replace_filename( char const * oldname, + char const * newname ) { + if ( !oldname \|\| !newname ) return; +- char names[2+sizeof(int)/sizeof(char)]; ++ char names[2+sizeof(int)/sizeof(char) + 1]; + names[0] = (char)oldname; + names[1] = (char)newname; + ((int)&names[2]) = strlen(oldname);
	Added	inotify-tools-3.14.tar.gz ^

Comments for request 1365 (0)

There's nothing to be done right now

Request History

nephros	created request	1630934416 over 2 years ago

rinigus	Request got accepted	1630938471 over 2 years ago