posix: c_lib_ext: fnmatch: fix escape-oriented regression #99442
Conversation
A regression in 936d027 introduced a subtle bug in the way that escaped expressions were handled. The regression originated with the assumption that test data (originally adapted from a 3rd-party testsuite) was correct when it was in fact flawed. Specifically, `fnmatch("[[?*\\]", "\\", 0)` should fail, since the "\\" sequence (a single backslash after compilation) escapes the following ']' character, thus leaving the bracket expression incomplete. Since the bracket expression (and therefore the whole pattern) is erroneous, the call should return `FNM_NOMATCH` to indicate failure rather than 0 to indicate success. Added new test cases from zephyrproject-rtos#98827 and some commentary for subsequent reviewers. This change does not complete zephyrproject-rtos#55186 but is related to it. Signed-off-by: Chris Friedt <cfriedt@tenstorrent.com> Signed-off-by: Jukka Rissanen <jukka.rissanen@nordicsemi.no> Signed-off-by: Keith Packard <keithp@keithp.com>
cfriedt
force-pushed
the
fix-fnmatch-regression
branch
from
6f09b19 to
462e5af
Compare
cfriedt
added
bug
|
cfriedt
added
area: POSIX
The pattern is not erroneous (which would cause the function to return -FNM_NOMATCH). It is a legitimate pattern equivalent to "[[?*]" and not a bracket expression at all. We might want to add a test to verify that the pattern works in this way. Note that Musl has the same bug, which is why the test was flawed. |
Ok - sorry - I was proceeding based on your comment here, where you wrote that Maybe I was reading-in to your comment too far though, and assumed that if the final In either case, when the pattern is invalid or when it is I can update the PR description and / or commentary as you like, but it would be nice to have a reference to the specification to support it. I've confirmed that Zephyr's implementation recognizes |
|
It would seem that even the glibc agrees with the former interpretation (that there is an incomplete bracket expression). A sample program I wrote to test #include <fnmatch.h>
#include <stdio.h>
int main()
{
const char *pat = "[abc\\]";
const char *in = "a";
int ret;
ret = fnmatch(pat, in, 0);
if (ret == 0) {
printf("fnmatch(\"%s\", \"%s\", 0) -> success!\n", pat, in);
} else {
printf("fnmatch(\"%s\", \"%s\", 0) -> failed! (%d)\n", pat, in, ret);
}
return ret;
}produces the output below. $ /tmp/blah
fnmatch("[abc\]", "a", 0) -> failed! (1)It fails as well with |
I think you've mis-interpreted my comment -- yes, this is an invalid bracket expression, but https://pubs.opengroup.org/onlinepubs/9699919799/utilities/V3_chap02.html#tag_18_13_01 says that you only get a bracket expression when the bracket expression is valid, otherwise you interpret the bytes as not being part of a bracket expression at all. An valid expression which does not match the string returns So, the difference is which return value is expected, in this case the expression is valid (although does not contain a bracket expression), it's just that it doesn't match the string, so it should return FNM_NOMATCH. |
3 participants
A regression in 936d027 introduced a subtle bug in the way that escaped expressions were handled.
The regression originated with the assumption that test data (originally adapted from a 3rd-party testsuite) was correct when it was in fact flawed.
Specifically,
fnmatch("[[?*\\]", "\\", 0)should fail, since the "\" sequence (a single backslash after compilation) escapes the following ']' character, thus leaving the bracket expression incomplete. Since the bracket expression (and therefore the whole pattern) is erroneous, the call should returnFNM_NOMATCHto indicate failure rather than 0 to indicate success.Added new test cases from #98827 and some commentary for subsequent reviewers.
This change does not completely fix #55186 but is related to it.