From: Bruno Haible <bruno@clisp.org>
Date: Tue, 16 Dec 2008 11:32:25 +0000 (+0100)
Subject: Fix security problem in test-parse-duration.sh.
X-Git-Url: https://pintos-os.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4f75b1aeb0a9be9ba7dba91435aec7d87f0718cb;p=pspp

Fix security problem in test-parse-duration.sh.
---

diff --git a/ChangeLog b/ChangeLog
index 09a9f2db5b..aa368f8fc4 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+2008-12-16  Bruno Haible  <bruno@clisp.org>
+
+	* tests/test-parse-duration.sh: Fix quoting of $tmp and $tmpf
+	expressions.
+
 2008-12-15  Bruno Haible  <bruno@clisp.org>
 
 	* doc/glibc-functions/fgetxattr.texi: Tweak wording.
diff --git a/tests/test-parse-duration.sh b/tests/test-parse-duration.sh
index e6ebf90645..4c946ac2b1 100755
--- a/tests/test-parse-duration.sh
+++ b/tests/test-parse-duration.sh
@@ -46,10 +46,10 @@ die ()
 }
 
 func_tmpdir
-trap "rm -rf ${tmp}" EXIT
-tmpf=${tmp}/tests.txt
+trap 'rm -rf "${tmp}"' EXIT
+tmpf="${tmp}/tests.txt"
 
-cat > ${tmpf} <<- _EOF_
+cat > "${tmpf}" <<- _EOF_
 	1 Y 2 M 3 W 4 d 5 h 6 m 7 s
 	P 00010225 T 05:06:07
 	P 1Y2M3W4D T 5H6M7S
@@ -59,9 +59,9 @@ cat > ${tmpf} <<- _EOF_
 	P 1-2-25 T 5:6:7
 	_EOF_
 
-ls -l $tmpf
+ls -l "${tmpf}"
 
-exec 3< ${tmpf}
+exec 3< "${tmpf}"
 while read -u3 line
 do
     v=`${exe} "${line}"` || die "Failed: ${exe} '${line}'"