Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > gnu.bash.bug > #14658 > unrolled thread

Re: bash sockets: printf \x0a does TCP fragmentation

Started byGreg Wooledge <wooledg@eeg.ccf.org>
First post2018-09-25 08:25 -0400
Last post2018-09-25 08:25 -0400
Articles 1 — 1 participant

Back to article view | Back to gnu.bash.bug

This discussion starts older than the indexed window; earlier articles aren't shown. The article labeled Started by below is the oldest one visible, not the original post.

Contents

  Re: bash sockets: printf \x0a does TCP fragmentation Greg Wooledge <wooledg@eeg.ccf.org> - 2018-09-25 08:25 -0400

#14658 — Re: bash sockets: printf \x0a does TCP fragmentation

FromGreg Wooledge <wooledg@eeg.ccf.org>
Date2018-09-25 08:25 -0400
SubjectRe: bash sockets: printf \x0a does TCP fragmentation
Message-ID<mailman.1293.1537878350.1284.bug-bash@gnu.org>
On Tue, Sep 25, 2018 at 05:15:02AM -0700, L A Walsh wrote:
> On 9/24/2018 6:05 AM, Greg Wooledge wrote:
> > On Sat, Sep 22, 2018 at 11:50:17AM +0200, dirk+bash@testssl.sh wrote:
> > > On 9/22/18 7:30 AM, Bob Proulx wrote:
> > > > dirk+bash@testssl.sh wrote:
> > > > > printf -- "$data" >&5 2>/dev/null
> > > > What happens if $data contains % format strings?  What happens if the
> > > > format contains a sequence such as \c?  This looks problematic.  This
> > > > is not a safe programming proctice.
> > 
> > Looking ONLY at this one line, there is an obvious bug, which Bob has
> > pointed out.  It should be
> > 
> > printf %s "$data" >&5 2>/dev/null
> ----
>    This brings to mind a consideration:
> As %s says to print a string of data (presumably not
> including a NUL byte), then what happens if "$data" is
> a paragraph of text with embedded newlines.  In that case,
> it sounds like bash might break apart the single printf
> output into smaller packets rather than transmitting the
> entirety of "$data" in 1 write (presuming it is less than
> the maximum data size for a network packet).

Yes, I'm sure it does.  In fact, bash's printf and echo builtins are
already known to use multiple calls to write() even when sockets and
newlines are not involved.

For example (from <https://mywiki.wooledge.org/BashPitfalls#pf51>):

$ perl -e 'print "a"x2000, "\n"' > foo
$ strace -e write bash -c 'read -r foo < foo; echo "$foo"' >/dev/null
write(1, "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"..., 1008) = 1008
write(1, "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"..., 993) = 993
+++ exited with 0 +++

There is no guarantee that the entire payload will be sent with a single
write() command.  If you need that kind of low-level control, bash is
not the right language for this project.

[toc] | [standalone]

Back to top | Article view | gnu.bash.bug

csiph-web