mirror of
git://git.code.sf.net/p/cdesktopenv/code
synced 2025-03-09 15:50:02 +00:00
b48e5b3365
This commit fixes an arbitrary command execution vulnerability in array subscripts used within the arithmetic subsystem. One of the possible reproducers is: var='1$(echo INJECTION >&2)' ksh -c \ 'typeset -A a; ((a[$var]++)); typeset -p a' Output before this commit: INJECTION typeset -A a=([1]=1) The 'echo' command has been surreptitiously executed from an external environment variable. Output after this commit: typeset -A a=(['1$(echo INJECTION >&2)']=1) The value is correctly used as an array subscript and nothing in it is parsed or executed. This is as it should be, as ksh93 supports arbitrary subscripts for associative arrays. If we think about it logically, the C-style arithmetic subsystem simply has no business messing around with shell expansions or quoting at all, because those don't belong to it. Shell expansions and quotes are properly resolved by the main shell language before the arithmetic subsystem is even invoked. It is particularly important to maintain that separation because the shell expansion mechanism also executes command substitutions. Yet, the arithmetic subsystem subjected array subscripts that contain `$` (and only array subscripts -- how oddly specific) to an additional level of expansion and quote resolution. For some unfathomable reason, there are two lines of code doing specifically this. The vulnerability is fixed by simply removing those. Incredibly, variants of this vulnerability are shared by bash, mksh and zsh. Instead of fixing it, it got listed in Bash Pitfalls! http://mywiki.wooledge.org/BashPitfalls#y.3D.24.28.28_array.5B.24x.5D_.29.29 src/cmd/ksh93/sh/arith.c: - scope(): Remove these two lines that implement the vulnerability. if(strchr(sub,'$')) sub = sh_mactrim(shp,sub,0); - scope(), arith(): Remove the NV_SUBQUOTE flag from two nv_endsubscript() calls. That flag causes the array subscript to retain the current level of shell quoting. The shell quotes everything as in "double quotes" before invoking the arithmetic subsystem, and the bad sh_mactrim() call removed one level of quoting. Since we're no longer doing that, this flag should no longer be passed, or subscripts may get extra backslash escapes. src/cmd/ksh93/include/name.h, src/cmd/ksh93/sh/array.c: - nv_endsubscript(): The NV_SUBQUOTE flag was only passed from arith.c. Since it is now unused, remove it. src/cmd/ksh93/tests/arith.sh: - Tweak some tests: fix typos, report wrong values. - Add 21 tests. Most are based on reproducers contributed by @stephane-chazelas and @hyenias. They verify that this vulnerability is gone and that no quoting bugs were introduced. Resolves: https://github.com/ksh93/ksh/issues/152
569 lines
14 KiB
C
569 lines
14 KiB
C
/***********************************************************************
|
|
* *
|
|
* This software is part of the ast package *
|
|
* Copyright (c) 1982-2012 AT&T Intellectual Property *
|
|
* and is licensed under the *
|
|
* Eclipse Public License, Version 1.0 *
|
|
* by AT&T Intellectual Property *
|
|
* *
|
|
* A copy of the License is available at *
|
|
* http://www.eclipse.org/org/documents/epl-v10.html *
|
|
* (with md5 checksum b35adb5213ca9657e911e9befb180842) *
|
|
* *
|
|
* Information and Software Systems Research *
|
|
* AT&T Research *
|
|
* Florham Park NJ *
|
|
* *
|
|
* David Korn <dgk@research.att.com> *
|
|
* *
|
|
***********************************************************************/
|
|
#pragma prototyped
|
|
/*
|
|
* Shell arithmetic - uses streval library
|
|
* David Korn
|
|
* AT&T Labs
|
|
*/
|
|
|
|
#include "defs.h"
|
|
#include "lexstates.h"
|
|
#include "name.h"
|
|
#include "streval.h"
|
|
#include "variables.h"
|
|
#include "builtins.h"
|
|
|
|
/* POSIX requires error status > 1 if called from test builtin */
|
|
#undef ERROR_exit
|
|
#define ERROR_exit(n) _ERROR_exit_b_test(n)
|
|
|
|
#ifndef LLONG_MAX
|
|
#define LLONG_MAX LONG_MAX
|
|
#endif
|
|
|
|
typedef Sfdouble_t (*Math_f)(Sfdouble_t, ...);
|
|
|
|
extern const Namdisc_t ENUM_disc;
|
|
static Sfdouble_t NaN, Inf, Fun;
|
|
static Namval_t Infnod =
|
|
{
|
|
{ 0 },
|
|
"Inf",
|
|
};
|
|
|
|
static Namval_t NaNnod =
|
|
{
|
|
{ 0 },
|
|
"NaN",
|
|
};
|
|
|
|
static Namval_t FunNode =
|
|
{
|
|
{ 0 },
|
|
"?",
|
|
};
|
|
|
|
static Namval_t *scope(register Namval_t *np,register struct lval *lvalue,int assign)
|
|
{
|
|
register int flag = lvalue->flag;
|
|
register char *sub=0, *cp=(char*)np;
|
|
register Namval_t *mp;
|
|
Shell_t *shp = lvalue->shp;
|
|
int flags = HASH_NOSCOPE|HASH_SCOPE|HASH_BUCKET;
|
|
int c=0,nosub = lvalue->nosub;
|
|
Dt_t *sdict = (shp->st.real_fun? shp->st.real_fun->sdict:0);
|
|
Dt_t *nsdict = (shp->namespace?nv_dict(shp->namespace):0);
|
|
Dt_t *root = shp->var_tree;
|
|
assign = assign?NV_ASSIGN:NV_NOASSIGN;
|
|
lvalue->nosub = 0;
|
|
if(nosub<0 && lvalue->ovalue)
|
|
return((Namval_t*)lvalue->ovalue);
|
|
lvalue->ovalue = 0;
|
|
if(cp>=lvalue->expr && cp < lvalue->expr+lvalue->elen)
|
|
{
|
|
int offset;
|
|
/* do binding to node now */
|
|
int c = cp[flag];
|
|
cp[flag] = 0;
|
|
if((!(np = nv_open(cp,shp->var_tree,assign|NV_VARNAME|NV_NOADD|NV_NOFAIL)) || nv_isnull(np)) && sh_macfun(shp,cp, offset = staktell()))
|
|
{
|
|
Fun = sh_arith(shp,sub=stakptr(offset));
|
|
FunNode.nvalue.ldp = &Fun;
|
|
nv_onattr(&FunNode,NV_NOFREE|NV_LDOUBLE|NV_RDONLY);
|
|
cp[flag] = c;
|
|
return(&FunNode);
|
|
}
|
|
if(!np && assign)
|
|
np = nv_open(cp,shp->var_tree,assign|NV_VARNAME);
|
|
cp[flag] = c;
|
|
if(!np)
|
|
return(0);
|
|
root = shp->last_root;
|
|
if(cp[flag+1]=='[')
|
|
flag++;
|
|
else
|
|
flag = 0;
|
|
cp = (char*)np;
|
|
}
|
|
else if(assign==NV_ASSIGN && nv_isnull(np) && !nv_isattr(np, ~(NV_MINIMAL|NV_NOFREE)))
|
|
flags |= NV_ADD;
|
|
if((lvalue->emode&ARITH_COMP) && dtvnext(root) && ((sdict && (mp=nv_search(cp,sdict,flags&~NV_ADD))) || (mp=nv_search(cp,root,flags&~(NV_ADD))) || (nsdict && (mp=nv_search(cp,nsdict,flags&~(NV_ADD|HASH_NOSCOPE)))) ))
|
|
np = mp;
|
|
while(nv_isref(np))
|
|
{
|
|
#if SHOPT_FIXEDARRAY
|
|
int n,dim;
|
|
dim = nv_refdimen(np);
|
|
n = nv_refindex(np);
|
|
#endif /* SHOPT_FIXEDARRAY */
|
|
sub = nv_refsub(np);
|
|
np = nv_refnode(np);
|
|
#if SHOPT_FIXEDARRAY
|
|
if(n)
|
|
{
|
|
Namarr_t *ap = nv_arrayptr(np);
|
|
ap->nelem = dim;
|
|
nv_putsub(np,(char*)0,n);
|
|
}
|
|
else
|
|
#endif /* SHOPT_FIXEDARRAY */
|
|
if(sub)
|
|
nv_putsub(np,sub,assign==NV_ASSIGN?ARRAY_ADD:0);
|
|
}
|
|
if(!nosub && flag)
|
|
{
|
|
int hasdot = 0;
|
|
cp = (char*)&lvalue->expr[flag];
|
|
if(sub)
|
|
{
|
|
goto skip;
|
|
}
|
|
sub = cp;
|
|
while(1)
|
|
{
|
|
Namarr_t *ap;
|
|
Namval_t *nq;
|
|
cp = nv_endsubscript(np,cp,0);
|
|
if(c || *cp=='.')
|
|
{
|
|
c = '.';
|
|
while(*cp=='.')
|
|
{
|
|
hasdot=1;
|
|
cp++;
|
|
while(c=mbchar(cp),isaname(c));
|
|
}
|
|
if(c=='[')
|
|
continue;
|
|
}
|
|
flag = *cp;
|
|
*cp = 0;
|
|
if(c || hasdot)
|
|
{
|
|
sfprintf(shp->strbuf,"%s%s%c",nv_name(np),sub,0);
|
|
sub = sfstruse(shp->strbuf);
|
|
}
|
|
*cp = flag;
|
|
if(c || hasdot)
|
|
{
|
|
np = nv_open(sub,shp->var_tree,NV_VARNAME|assign);
|
|
return(np);
|
|
}
|
|
#if SHOPT_FIXEDARRAY
|
|
ap = nv_arrayptr(np);
|
|
cp = nv_endsubscript(np,sub,NV_ADD|(ap&&ap->fixed?NV_FARRAY:0));
|
|
#else
|
|
cp = nv_endsubscript(np,sub,NV_ADD);
|
|
#endif /* SHOPT_FIXEDARRAY */
|
|
if(*cp!='[')
|
|
break;
|
|
skip:
|
|
if(nq = nv_opensub(np))
|
|
np = nq;
|
|
else
|
|
{
|
|
ap = nv_arrayptr(np);
|
|
if(ap && !ap->table)
|
|
{
|
|
ap->table = dtopen(&_Nvdisc,Dtoset);
|
|
dtuserdata(ap->table,shp,1);
|
|
}
|
|
if(ap && ap->table && (nq=nv_search(nv_getsub(np),ap->table,NV_ADD)))
|
|
nq->nvenv = (char*)np;
|
|
if(nq && nv_isnull(nq))
|
|
np = nv_arraychild(np,nq,0);
|
|
}
|
|
sub = cp;
|
|
}
|
|
}
|
|
else if(nosub>0)
|
|
nv_putsub(np,(char*)0,nosub-1);
|
|
return(np);
|
|
}
|
|
|
|
static Math_f sh_mathstdfun(const char *fname, size_t fsize, short * nargs)
|
|
{
|
|
register const struct mathtab *tp;
|
|
register char c = fname[0];
|
|
for(tp=shtab_math; *tp->fname; tp++)
|
|
{
|
|
if(*tp->fname > c)
|
|
break;
|
|
if(tp->fname[1]==c && tp->fname[fsize+1]==0 && strncmp(&tp->fname[1],fname,fsize)==0)
|
|
{
|
|
if(nargs)
|
|
*nargs = *tp->fname;
|
|
return(tp->fnptr);
|
|
}
|
|
}
|
|
return(0);
|
|
}
|
|
|
|
int sh_mathstd(const char *name)
|
|
{
|
|
return(sh_mathstdfun(name,strlen(name),NULL)!=0);
|
|
}
|
|
|
|
static Sfdouble_t arith(const char **ptr, struct lval *lvalue, int type, Sfdouble_t n)
|
|
{
|
|
Shell_t *shp = lvalue->shp;
|
|
register Sfdouble_t r= 0;
|
|
char *str = (char*)*ptr;
|
|
register char *cp;
|
|
switch(type)
|
|
{
|
|
case ASSIGN:
|
|
{
|
|
register Namval_t *np = (Namval_t*)(lvalue->value);
|
|
np = scope(np,lvalue,1);
|
|
nv_putval(np, (char*)&n, NV_LDOUBLE);
|
|
if(lvalue->eflag)
|
|
lvalue->ptr = (void*)nv_hasdisc(np,&ENUM_disc);
|
|
lvalue->eflag = 0;
|
|
r=nv_getnum(np);
|
|
lvalue->value = (char*)np;
|
|
break;
|
|
}
|
|
case LOOKUP:
|
|
{
|
|
register int c = *str;
|
|
register char *xp=str;
|
|
lvalue->value = (char*)0;
|
|
if(c=='.')
|
|
str++;
|
|
c = mbchar(str);
|
|
if(isaletter(c))
|
|
{
|
|
register Namval_t *np;
|
|
int dot=0;
|
|
while(1)
|
|
{
|
|
while(xp=str, c=mbchar(str), isaname(c));
|
|
str = xp;
|
|
while(c=='[' && dot==NV_NOADD)
|
|
{
|
|
str = nv_endsubscript((Namval_t*)0,str,0);
|
|
c = *str;
|
|
}
|
|
if(c!='.')
|
|
break;
|
|
dot=NV_NOADD;
|
|
if((c = *++str) !='[')
|
|
continue;
|
|
str = nv_endsubscript((Namval_t*)0,cp=str,0)-1;
|
|
if(sh_checkid(cp+1,(char*)0))
|
|
str -=2;
|
|
}
|
|
if(c=='(')
|
|
{
|
|
int off=stktell(shp->stk);
|
|
int fsize = str- (char*)(*ptr);
|
|
const struct mathtab *tp;
|
|
Namval_t *np;
|
|
c = **ptr;
|
|
lvalue->fun = 0;
|
|
sfprintf(shp->stk,".sh.math.%.*s%c",fsize,*ptr,0);
|
|
stkseek(shp->stk,off);
|
|
if(np=nv_search(stkptr(shp->stk,off),shp->fun_tree,0))
|
|
{
|
|
lvalue->nargs = -np->nvalue.rp->argc;
|
|
lvalue->fun = (Math_f)np;
|
|
break;
|
|
}
|
|
if(fsize<=(sizeof(tp->fname)-2))
|
|
lvalue->fun = (Math_f)sh_mathstdfun(*ptr,fsize,&lvalue->nargs);
|
|
if(lvalue->fun)
|
|
break;
|
|
if(lvalue->emode&ARITH_COMP)
|
|
lvalue->value = (char*)e_function;
|
|
else
|
|
lvalue->value = (char*)ERROR_dictionary(e_function);
|
|
return(r);
|
|
}
|
|
if((lvalue->emode&ARITH_COMP) && dot)
|
|
{
|
|
lvalue->value = (char*)*ptr;
|
|
lvalue->flag = str-lvalue->value;
|
|
break;
|
|
}
|
|
*str = 0;
|
|
if(sh_isoption(SH_NOEXEC))
|
|
np = L_ARGNOD;
|
|
else
|
|
{
|
|
int offset = staktell();
|
|
char *saveptr = stakfreeze(0);
|
|
Dt_t *root = (lvalue->emode&ARITH_COMP)?shp->var_base:shp->var_tree;
|
|
*str = c;
|
|
cp = str;
|
|
while(c=='[' || c=='.')
|
|
{
|
|
if(c=='[')
|
|
{
|
|
str = nv_endsubscript(np,str,0);
|
|
if((c= *str)!='[' && c!='.')
|
|
{
|
|
str = cp;
|
|
c = '[';
|
|
break;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
dot = NV_NOADD|NV_NOFAIL;
|
|
str++;
|
|
while(xp=str, c=mbchar(str), isaname(c));
|
|
str = xp;
|
|
}
|
|
}
|
|
*str = 0;
|
|
cp = (char*)*ptr;
|
|
if ((cp[0] == 'i' || cp[0] == 'I') && (cp[1] == 'n' || cp[1] == 'N') && (cp[2] == 'f' || cp[2] == 'F') && cp[3] == 0)
|
|
{
|
|
Inf = strtold("Inf", NiL);
|
|
Infnod.nvalue.ldp = &Inf;
|
|
np = &Infnod;
|
|
nv_onattr(np,NV_NOFREE|NV_LDOUBLE|NV_RDONLY);
|
|
}
|
|
else if ((cp[0] == 'n' || cp[0] == 'N') && (cp[1] == 'a' || cp[1] == 'A') && (cp[2] == 'n' || cp[2] == 'N') && cp[3] == 0)
|
|
{
|
|
NaN = strtold("NaN", NiL);
|
|
NaNnod.nvalue.ldp = &NaN;
|
|
np = &NaNnod;
|
|
nv_onattr(np,NV_NOFREE|NV_LDOUBLE|NV_RDONLY);
|
|
}
|
|
else if(!(np = nv_open(*ptr,root,NV_NOREF|NV_NOASSIGN|NV_VARNAME|dot)))
|
|
{
|
|
lvalue->value = (char*)*ptr;
|
|
lvalue->flag = str-lvalue->value;
|
|
}
|
|
if(saveptr != stakptr(0))
|
|
stakset(saveptr,offset);
|
|
else
|
|
stakseek(offset);
|
|
}
|
|
*str = c;
|
|
if(!np && lvalue->value)
|
|
break;
|
|
lvalue->value = (char*)np;
|
|
/* bind subscript later */
|
|
if(nv_isattr(np,NV_DOUBLE)==NV_DOUBLE)
|
|
lvalue->isfloat=1;
|
|
lvalue->flag = 0;
|
|
if(c=='[')
|
|
{
|
|
lvalue->flag = (str-lvalue->expr);
|
|
do
|
|
{
|
|
while(c=='.')
|
|
{
|
|
str++;
|
|
while(xp=str, c=mbchar(str), isaname(c));
|
|
c = *(str = xp);
|
|
}
|
|
if(c=='[')
|
|
str = nv_endsubscript(np,str,0);
|
|
}
|
|
while((c= *str)=='[' || c=='.');
|
|
break;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
char lastbase=0, *val = xp, oerrno = errno;
|
|
const char radix = GETDECIMAL(0);
|
|
lvalue->eflag = 0;
|
|
errno = 0;
|
|
if(shp->bltindata.bnode==SYSLET && !sh_isoption(SH_LETOCTAL))
|
|
{ /*
|
|
* Since we're running the "let" builtin, disable octal number processing by
|
|
* skipping all initial zeros, unless the 'letoctal' option is on.
|
|
*/
|
|
while(*val=='0' && isdigit(val[1]))
|
|
val++;
|
|
}
|
|
r = strtonll(val,&str, &lastbase,-1);
|
|
if(*str=='8' || *str=='9')
|
|
{
|
|
lastbase=10;
|
|
errno = 0;
|
|
r = strtonll(val,&str, &lastbase,-1);
|
|
}
|
|
if(lastbase<=1)
|
|
lastbase=10;
|
|
if(*val=='0')
|
|
{
|
|
while(*val=='0')
|
|
val++;
|
|
if(*val==0 || *val=='.' || *val=='x' || *val=='X')
|
|
val--;
|
|
}
|
|
if(r==LLONG_MAX && errno)
|
|
c='e';
|
|
else
|
|
c = *str;
|
|
if(c=='.' && radix!='.')
|
|
errormsg(SH_DICT,ERROR_exit(1),"%s: radix point '.' requires LC_NUMERIC=C",val);
|
|
if(c==radix || c=='e' || c == 'E' || lastbase == 16 && (c == 'p' || c == 'P'))
|
|
{
|
|
lvalue->isfloat=1;
|
|
r = strtold(val,&str);
|
|
}
|
|
else if(lastbase==10 && val[1])
|
|
{
|
|
if(val[2]=='#')
|
|
val += 3;
|
|
if((str-val)>2*sizeof(Sflong_t))
|
|
{
|
|
Sfdouble_t rr;
|
|
rr = strtold(val,&str);
|
|
if(rr!=r)
|
|
{
|
|
r = rr;
|
|
lvalue->isfloat=1;
|
|
}
|
|
}
|
|
}
|
|
errno = oerrno;
|
|
}
|
|
break;
|
|
}
|
|
case VALUE:
|
|
{
|
|
register Namval_t *np = (Namval_t*)(lvalue->value);
|
|
if(sh_isoption(SH_NOEXEC))
|
|
return(0);
|
|
np = scope(np,lvalue,0);
|
|
if(!np)
|
|
{
|
|
if(sh_isoption(SH_NOUNSET))
|
|
{
|
|
*ptr = lvalue->value;
|
|
goto skip;
|
|
}
|
|
return(0);
|
|
}
|
|
lvalue->ovalue = (char*)np;
|
|
if(lvalue->eflag)
|
|
lvalue->ptr = (void*)nv_hasdisc(np,&ENUM_disc);
|
|
else if((Namfun_t*)lvalue->ptr && !nv_hasdisc(np,&ENUM_disc) && !nv_isattr(np,NV_INTEGER))
|
|
{
|
|
Namval_t *mp,node;
|
|
mp = ((Namfun_t*)lvalue->ptr)->type;
|
|
memset(&node,0,sizeof(node));
|
|
nv_clone(mp,&node,0);
|
|
nv_offattr(&node,NV_RDONLY|NV_NOFREE);
|
|
nv_putval(&node,np->nvname,0);
|
|
if(nv_isattr(&node,NV_NOFREE))
|
|
return(r=nv_getnum(&node));
|
|
}
|
|
lvalue->eflag = 0;
|
|
if(((lvalue->emode&2) || lvalue->level>1 || sh_isoption(SH_NOUNSET)) && nv_isnull(np) && !nv_isattr(np,NV_INTEGER))
|
|
{
|
|
*ptr = nv_name(np);
|
|
skip:
|
|
lvalue->value = (char*)ERROR_dictionary(e_notset);
|
|
lvalue->emode |= 010;
|
|
return(0);
|
|
}
|
|
r = nv_getnum(np);
|
|
if(nv_isattr(np,NV_INTEGER|NV_BINARY)==(NV_INTEGER|NV_BINARY))
|
|
lvalue->isfloat= (r!=(Sflong_t)r);
|
|
else if(nv_isattr(np,NV_DOUBLE)==NV_DOUBLE)
|
|
lvalue->isfloat=1;
|
|
if((lvalue->emode&ARITH_ASSIGNOP) && nv_isarray(np))
|
|
lvalue->nosub = nv_aindex(np)+1;
|
|
return(r);
|
|
}
|
|
|
|
case MESSAGE:
|
|
sfsync(NIL(Sfio_t*));
|
|
if(lvalue->emode&ARITH_COMP)
|
|
return(-1);
|
|
|
|
errormsg(SH_DICT,ERROR_exit((lvalue->emode&3)!=0),lvalue->value,*ptr);
|
|
}
|
|
*ptr = str;
|
|
return(r);
|
|
}
|
|
|
|
/*
|
|
* convert number defined by string to a Sfdouble_t
|
|
* ptr is set to the last character processed
|
|
* if mode>0, an error will be fatal with value <mode>
|
|
*/
|
|
|
|
Sfdouble_t sh_strnum(register const char *str, char** ptr, int mode)
|
|
{
|
|
Shell_t *shp = sh_getinterp();
|
|
register Sfdouble_t d;
|
|
char base=(shp->inarith?0:10), *last;
|
|
if(*str==0)
|
|
{
|
|
d = 0.0;
|
|
last = (char*)str;
|
|
} else {
|
|
errno = 0;
|
|
d = strtonll(str,&last,&base,-1);
|
|
if (*last && !shp->inarith && sh_isstate(SH_INIT)) {
|
|
/* This call is to handle "base#value" literals if we're importing untrusted env vars. */
|
|
errno = 0;
|
|
d = strtonll(str, &last, NULL, -1);
|
|
}
|
|
|
|
if(*last || errno)
|
|
{
|
|
if (sh_isstate(SH_INIT)) {
|
|
/*
|
|
* Initializing means importing untrusted env vars. The string does not appear to be
|
|
* a recognized numeric literal, so give up. We can't safely call strval(), because
|
|
* that allows arbitrary expressions, causing security vulnerability CVE-2019-14868.
|
|
*/
|
|
d = 0.0;
|
|
} else {
|
|
if(!last || *last!='.' || last[1]!='.')
|
|
d = strval(shp,str,&last,arith,mode);
|
|
if(!ptr && *last && mode>0)
|
|
errormsg(SH_DICT,ERROR_exit(1),e_lexbadchar,*last,str);
|
|
}
|
|
} else if (!d && *str=='-') {
|
|
d = -0.0;
|
|
}
|
|
}
|
|
if(ptr)
|
|
*ptr = last;
|
|
return(d);
|
|
}
|
|
|
|
Sfdouble_t sh_arith(Shell_t *shp,register const char *str)
|
|
{
|
|
return(sh_strnum(str, (char**)0, 1));
|
|
}
|
|
|
|
void *sh_arithcomp(Shell_t *shp,register char *str)
|
|
{
|
|
const char *ptr = str;
|
|
Arith_t *ep;
|
|
ep = arith_compile(shp,str,(char**)&ptr,arith,ARITH_COMP|1);
|
|
if(*ptr)
|
|
errormsg(SH_DICT,ERROR_exit(1),e_lexbadchar,*ptr,str);
|
|
return((void*)ep);
|
|
}
|