Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How can I escape variables sent to the 'system' command in C++?

Tags:

c++

linux

escaping

This question talks about using the system command and passing variables. Here is an example it gives:

string cmd("curl -b cookie.txt -d test=");
cmd += line;
cmd += "  http://example.com";
system(cmd.c_str());

One of the comments mentions that if line was passed and contained foo & fire_nukes.exe & REM then it's quite possible something bad could happen.

PHP has a great function called escape_shell_args which can be used to escape parameters that are being passed to the program. Does C++ have a way to do that?

like image 800
cwd Avatar asked Dec 16 '11 19:12

cwd

2 Answers

Never pass user input into a system call. Ever.

You can try to escape all the characters that you think are dangerous, but you will get it wrong.

Instead, go at it from the other direction: let the user provide any of a selection of inputs that you define, then do a switch and build your own system call from scratch.

Admittedly this gets a little tricky when the input to the command-line application to invoke is freeform but, well, that's what actual libraries are for. libcurl, anyone?

like image 90
Lightness Races in Orbit Avatar answered Sep 21 '22 01:09

Lightness Races in Orbit

The best way is not to use system() at all. Use fork() and exec() and friends. Here's an example:

#include <string>
#include <unistd.h>
#include <error.h>
#include <sys/types.h>
#include <sys/wait.h>
#include <errno.h>
#include <cstdlib>

int fork_curl(char *line)
{
    std::string linearg("line=");
    linearg += line;

    int pid = fork();
    if(pid != 0) {
        /* We're in the parent process, return the child's pid. */
        return pid;
    }
    /* Otherwise, we're in the child process, so let's exec curl. */

    execlp("curl", "-b", "cookie.txt", "-d", linearg.c_str());  
    /* exec is not supposed to return, so something
       must have gone wrong. */
    exit(100);
    /* Note: You should probably use an exit  status
       that doesn't collide with these used by curl, if possible. */
}

int main(int argc, char* argv[])
{
    int cpid = fork_curl("test");
    if(cpid == -1) {
        /* Failed to fork */
        error(1, errno, "Fork failed");
        return 1;
    }

    /* Optionally, wait for the child to exit and get
       the exit status. */
    int status;
    waitpid(cpid, &status, 0);
    if(! WIFEXITED(status)) {
        error(1, 0, "The child was killed or segfaulted or something\n");
    }

    status = WEXITSTATUS(status);
    /* Status now contains the exit status of the child process. */
}
like image 24
Staven Avatar answered Sep 23 '22 01:09

Staven
Sign in to Comment

Related questions

std::back_inserter needs const_reference on older GCC. Why?
How exactly does the 'reference' typedef behave?
Boost serialization: Linking to libraries
R List of numeric vectors -> C++ 2d array with Rcpp
Deleting an array of pointers to functions?
Declaring nested classes before they are defined
C++ boost.asio server and client connection undersanding
Reading a line with integers and a string with spaces
Code::Blocks WxWidget error - No Target! You should use wx-config program for compilation flags?
clang++ and u16string
How can I instantiate an object knowing only its name? [duplicate]
Calling convention for dynamically created function in (Visual) C++
How does precompiled header reduce compile time
Both socket and file recommended buffer size
How to show testmethod names using cppunit
Error serializing an abstract class with boost
How to make QT produce executable for Windows on Mac?
BASE_OFFSET macro from Essential COM
Does the dot in the end of a float suggest lack of precision?
Asynchronous processing in c++

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!