Message240594
> The patch doesn't contain tests because I can't test them. But they should be simple, just pass a path with null character to os function.
IMO this issue is a bug, so you must write an unit test to test for non regression. One test for FileIO, another for the os module should be enough, and you can test them on UNIX since the behaviour now must be the same.
Except of the test, path_converter_null_char.patch looks good to me.
Do you want to fix Python 2.7 and 3.4? A filename with an embedded null character can be a security vulnerability, so it's good to fix these versions too. |
|
Date |
User |
Action |
Args |
2015-04-13 07:29:38 | vstinner | set | recipients:
+ vstinner, tim.golden, zach.ware, serhiy.storchaka, steve.dower |
2015-04-13 07:29:38 | vstinner | set | messageid: <1428910178.22.0.113359488774.issue23908@psf.upfronthosting.co.za> |
2015-04-13 07:29:38 | vstinner | link | issue23908 messages |
2015-04-13 07:29:37 | vstinner | create | |
|