gstvalue: don't write to const char *

Our various deserializing functions require NULL terminators
to not over consume substrings (eg fields of an array). Instead
of writing a NULL terminator to the passed-in string, which may
result in segfaults, make a copy of the substring we're interested
in.

Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/446

Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/674>
This commit is contained in:
Mathieu Duponchelle 2020-10-13 01:19:47 +02:00 committed by Tim-Philipp Müller
parent fa2f853013
commit e846ef2221

View file

@ -2577,8 +2577,7 @@ _priv_gst_value_parse_value (gchar * str,
if (G_UNLIKELY (!_priv_gst_value_parse_string (s, &value_end, &s, TRUE))) if (G_UNLIKELY (!_priv_gst_value_parse_string (s, &value_end, &s, TRUE)))
return FALSE; return FALSE;
/* Set NULL terminator for deserialization */ /* Set NULL terminator for deserialization */
c = *value_end; value_s = g_strndup (value_s, value_end - value_s);
*value_end = '\0';
for (i = 0; i < G_N_ELEMENTS (try_types); i++) { for (i = 0; i < G_N_ELEMENTS (try_types); i++) {
g_value_init (value, try_types[i]); g_value_init (value, try_types[i]);
@ -2594,14 +2593,13 @@ _priv_gst_value_parse_value (gchar * str,
(type != G_TYPE_STRING)))) (type != G_TYPE_STRING))))
return FALSE; return FALSE;
/* Set NULL terminator for deserialization */ /* Set NULL terminator for deserialization */
c = *value_end; value_s = g_strndup (value_s, value_end - value_s);
*value_end = '\0';
ret = gst_value_deserialize (value, value_s); ret = gst_value_deserialize (value, value_s);
if (G_UNLIKELY (!ret)) if (G_UNLIKELY (!ret))
g_value_unset (value); g_value_unset (value);
} }
*value_end = c; g_free (value_s);
} }
*after = s; *after = s;