diff options
| author | xenoxeno <[email protected]> | 2025-10-14 13:58:50 +0300 |
|---|---|---|
| committer | xenoxeno <[email protected]> | 2025-10-14 14:31:38 +0300 |
| commit | c7c3f1788b1e232b3a59ff5f1bc69cd15edd8519 (patch) | |
| tree | 8e1148e243941a8237610e689946f7832786a0ad /library/cpp/string_utils/quote/quote.cpp | |
| parent | 09cc5fe0eb0747ac9ce1444c9acc944838a8cfa2 (diff) | |
fix buffer overrun
commit_hash:013178051e5e4c0a99ded31893069fb928ba18f9
Diffstat (limited to 'library/cpp/string_utils/quote/quote.cpp')
| -rw-r--r-- | library/cpp/string_utils/quote/quote.cpp | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/library/cpp/string_utils/quote/quote.cpp b/library/cpp/string_utils/quote/quote.cpp index 6a117c424af..9559132ae6f 100644 --- a/library/cpp/string_utils/quote/quote.cpp +++ b/library/cpp/string_utils/quote/quote.cpp @@ -274,12 +274,11 @@ TString UrlUnescapeRet(const TStringBuf from) { return to; } -char* UrlEscape(char* to, const char* from, bool forceEscape) { - from = FixZero(from); - - while (*from) { +char* UrlEscape(char* to, TStringBuf src, bool forceEscape) { + for (auto from = src.begin(); from != src.end(); ++from) { const bool escapePercent = (*from == '%') && - (forceEscape || !((*(from + 1) && IsAsciiHex(*(from + 1)) && *(from + 2) && IsAsciiHex(*(from + 2))))); + (forceEscape || !((std::next(from) != src.end() && IsAsciiHex(*(std::next(from))) + && std::next(from, 2) != src.end() && IsAsciiHex(*(std::next(from, 2)))))); if (escapePercent || (unsigned char)*from <= ' ' || (unsigned char)*from > '~') { *to++ = '%'; @@ -287,7 +286,6 @@ char* UrlEscape(char* to, const char* from, bool forceEscape) { *to++ = d2x((unsigned char)*from & 0xF); } else *to++ = *from; - ++from; } *to = 0; @@ -298,12 +296,12 @@ char* UrlEscape(char* to, const char* from, bool forceEscape) { void UrlEscape(TString& url, bool forceEscape) { TTempBuf tempBuf(CgiEscapeBufLen(url.size())); char* to = tempBuf.Data(); - url.AssignNoAlias(to, UrlEscape(to, url.data(), forceEscape)); + url.AssignNoAlias(to, UrlEscape(to, url, forceEscape)); } TString UrlEscapeRet(const TStringBuf from, bool forceEscape) { TString to; to.ReserveAndResize(CgiEscapeBufLen(from.size())); - to.resize(UrlEscape(to.begin(), from.begin(), forceEscape) - to.data()); + to.resize(UrlEscape(to.begin(), from, forceEscape) - to.data()); return to; } |