Skip to content

Fix unescaped NUL character in JS #19231

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 21, 2023
Merged

Fix unescaped NUL character in JS #19231

merged 2 commits into from
Apr 21, 2023

Conversation

@RReverser
Copy link
Collaborator

@RReverser RReverser commented Apr 21, 2023

It seems to be the only such occurence, but I might have missed more.

Fixes #19230.

@RReverser
Fix unescaped NUL character in JS
33af00f 
It seems to be the only such occurence, but I might have missed more.

Fixes #19230.
@RReverser RReverser requested a review from sbc100 April 21, 2023 20:32
kripken
kripken approved these changes Apr 21, 2023
View reviewed changes
Copy link
Member

@kripken kripken left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Interesting... I'm not sure what tool turns that into a literal 0, but sgtm to escape it. We could also just write "0" there I guess, which would be human-readable enough.

sbc100
sbc100 reviewed Apr 21, 2023
View reviewed changes
src/library_strings.js Outdated
* @param {number=} maxBytesToRead - An optional length that specifies the
* maximum number of bytes to read. You can omit this parameter to scan the
* string until the first \0 byte. If maxBytesToRead is passed, and the string
* string until the first \\0 byte. If maxBytesToRead is passed, and the string
Copy link
Collaborator

@sbc100 sbc100 Apr 21, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How about null or NULL instead?

Copy link
Collaborator Author

@RReverser RReverser Apr 21, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah that works for me too, just wasn't sure if you'd be open to that. Or, as @kripken says, just "0 byte" also sounds good, I'll probably go with that.

@RReverser
Copy link
Collaborator Author

RReverser commented Apr 21, 2023

I'm not sure what tool turns that into a literal 0

It's literally part of a JS string now and JS strings support escapes, so a string `'something \0 something`` gets nul character unescaped, just like it would be in string literals in most other langs.

@RReverser RReverser enabled auto-merge (squash) April 21, 2023 21:52
@RReverser RReverser merged commit f011b5c into main Apr 21, 2023
@RReverser RReverser deleted the fix-nul-char branch April 21, 2023 23:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sbc100 sbc100 sbc100 left review comments

@kripken kripken kripken approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3.1.35+ contains NUL characters in JS

4 participants

@RReverser @kripken @sbc100