Updated cupsFileGetConf and cupsFilePutConf to escape more characters.

Author: michaelrsweet

cups/file.c

@@ -6,7 +6,7 @@
 // our own file functions allows us to provide transparent support of
 // different line endings, gzip'd print files, PPD files, etc.
 //
-// Copyright © 2020-2025 by OpenPrinting.
+// Copyright © 2020-2026 by OpenPrinting.
 // Copyright © 2007-2019 by Apple Inc.
 // Copyright © 1997-2007 by Easy Software Products, all rights reserved.
 //
@@ -622,8 +622,7 @@ cupsFileGetConf(cups_file_t *fp,	// I  - CUPS file
   // Range check input...
   DEBUG_printf("2cupsFileGetConf(fp=%p, buf=%p, buflen=" CUPS_LLFMT ", value=%p, linenum=%p)", (void *)fp, (void *)buf, CUPS_LLCAST buflen, (void *)value, (void *)linenum);
 
-  if (!fp || (fp->mode != 'r' && fp->mode != 's') ||
-      !buf || buflen < 2 || !value)
+  if (!fp || (fp->mode != 'r' && fp->mode != 's') || !buf || buflen < 2 || !value)
   {
     if (value)
       *value = NULL;
@@ -638,31 +637,33 @@ cupsFileGetConf(cups_file_t *fp,	// I  - CUPS file
   {
     (*linenum) ++;
 
-    // Strip any comments...
-    if ((ptr = strchr(buf, '#')) != NULL)
+    // Handle escaped characters and strip any comments...
+    for (ptr = buf; *ptr; ptr ++)
     {
-      if (ptr > buf && ptr[-1] == '\\')
+      if (*ptr == '#')
       {
-        // Unquote the #...
-	_cups_strcpy(ptr - 1, ptr);
+        // Strip comment text...
+        *ptr = '\0';
+        break;
       }
-      else
+      else if (*ptr == '\\' && (ptr[1] == '\\' || ptr[1] == '#' || ptr[1] == 'n' || ptr[1] == 'r'))
       {
-        // Strip the comment and any trailing whitespace...
-	while (ptr > buf)
-	{
-	  if (!_cups_isspace(ptr[-1]))
-	    break;
+	// \\, \#, \n, or \r, remove backslash and update the escaped char as needed...
+	_cups_strcpy(ptr, ptr + 1);
 
-	  ptr --;
-	}
-
-	*ptr = '\0';
+	if (*ptr == 'n')
+	  *ptr = '\n';
+	else if (*ptr == 'r')
+	  *ptr = '\r';
       }
     }
 
     // Strip leading whitespace...
-    for (ptr = buf; _cups_isspace(*ptr); ptr ++);
+    for (ptr = buf; *ptr; ptr ++)
+    {
+      if (!_cups_isspace(*ptr))
+        break;
+    }
 
     if (ptr > buf)
       _cups_strcpy(buf, ptr);
@@ -672,8 +673,10 @@ cupsFileGetConf(cups_file_t *fp,	// I  - CUPS file
     {
       // Yes, grab any value and return...
       for (ptr = buf; *ptr; ptr ++)
+      {
         if (_cups_isspace(*ptr))
 	  break;
+      }
 
       if (*ptr)
       {
@@ -688,7 +691,9 @@ cupsFileGetConf(cups_file_t *fp,	// I  - CUPS file
         ptr += strlen(ptr) - 1;
 
         if (buf[0] == '<' && *ptr == '>')
+        {
 	  *ptr-- = '\0';
+	}
 	else if (buf[0] == '<' && *ptr != '>')
         {
 	  // Syntax error...
@@ -1295,7 +1300,7 @@ cupsFilePutChar(cups_file_t *fp,	// I - CUPS file
 //
 // 'cupsFilePutConf()' - Write a configuration line.
 //
-// This function handles any comment escaping of the value.
+// This function handles any escaping of the value.
 //
 // @since CUPS 1.4@
 //
@@ -1307,7 +1312,6 @@ cupsFilePutConf(cups_file_t *fp,	// I - CUPS file
 {
   ssize_t	bytes,			// Number of bytes written
 		temp;			// Temporary byte count
-  const char	*ptr;			// Pointer into value
 
 
   if (!fp || !directive || !*directive)
@@ -1316,31 +1320,66 @@ cupsFilePutConf(cups_file_t *fp,	// I - CUPS file
   if ((bytes = cupsFilePuts(fp, directive)) < 0)
     return (-1);
 
-  if (cupsFilePutChar(fp, ' ') < 0)
-    return (-1);
-  bytes ++;
-
   if (value && *value)
   {
-    if ((ptr = strchr(value, '#')) != NULL)
+    const char	*start,			// Start of current fragment
+		*ptr;			// Pointer into value
+
+    if (cupsFilePutChar(fp, ' ') < 0)
+      return (-1);
+    bytes ++;
+
+    for (start = ptr = value; *ptr; ptr ++)
     {
-      // Need to quote the first # in the info string...
-      if ((temp = cupsFileWrite(fp, value, (size_t)(ptr - value))) < 0)
-        return (-1);
-      bytes += temp;
+      if (strchr("#\\\n\r", *ptr) != NULL)
+      {
+        // Character that needs to be escaped...
+        if (ptr > start)
+        {
+          // Write unescaped portion...
+	  if ((temp = cupsFileWrite(fp, start, (size_t)(ptr - start))) < 0)
+	    return (-1);
 
-      if (cupsFilePutChar(fp, '\\') < 0)
-        return (-1);
-      bytes ++;
+	  bytes += temp;
+        }
 
-      if ((temp = cupsFilePuts(fp, ptr)) < 0)
-        return (-1);
-      bytes += temp;
+        start = ptr + 1;
+
+        if (*ptr == '\\')
+        {
+          // "\" (for escaping)
+          if (cupsFilePuts(fp, "\\\\") < 0)
+            return (-1);
+        }
+        else if (*ptr == '#')
+        {
+          // "#" (for comment)
+          if (cupsFilePuts(fp, "\\#") < 0)
+            return (-1);
+        }
+        else if (*ptr == '\n')
+        {
+          // LF
+          if (cupsFilePuts(fp, "\\n") < 0)
+            return (-1);
+        }
+        else if (cupsFilePuts(fp, "\\r") < 0)
+        {
+	  return (-1);
+	}
+
+	bytes += 2;
+      }
     }
-    else if ((temp = cupsFilePuts(fp, value)) < 0)
-      return (-1);
-    else
+
+    if (ptr > start)
+    {
+      // Write remaining unescaped portion...
+      if ((temp = cupsFileWrite(fp, start, (size_t)(ptr - start))) < 0)
+	return (-1);
+
       bytes += temp;
+    }
   }
 
   if (cupsFilePutChar(fp, '\n') < 0)

cups/testfile.c

@@ -1,7 +1,7 @@
 //
 // File/directory test program for CUPS.
 //
-// Copyright © 2020-2024 by OpenPrinting.
+// Copyright © 2020-2026 by OpenPrinting.
 // Copyright © 2007-2018 by Apple Inc.
 // Copyright © 1997-2007 by Easy Software Products.
 //
@@ -491,6 +491,17 @@ read_write_tests(bool compression)	// I - Use compression?
   off_t		length;			// Length of file
   static const char *partial_line = "partial line";
 					// Partial line
+  static const char * const values[] =	// cupsFileGet/PutConf values
+  {
+    "simple",
+    "'single-quoted value'",
+    "\"double-quoted value\"",
+    "value with # comment",
+    "value with \n newline",
+    "value with \r carriage return",
+    "value with \\ backslash",
+    "pathological\r\nvalue\\#with comment"
+  };
 
 
   // No errors so far...
@@ -553,6 +564,24 @@ read_write_tests(bool compression)	// I - Use compression?
       status ++;
     }
 
+    // cupsFilePutConf()
+    testBegin("cupsFilePutConf()");
+    for (i = 0; i < (int)(sizeof(values) / sizeof(values[0])); i ++)
+    {
+      if (cupsFilePutConf(fp, "TestConf", values[i]) < 0)
+        break;
+    }
+
+    if (i >= (int)(sizeof(values) / sizeof(values[0])))
+    {
+      testEnd(true);
+    }
+    else
+    {
+      testEndMessage(false, "%s", strerror(errno));
+      status ++;
+    }
+
     // cupsFilePutChar()
     testBegin("cupsFilePutChar()");
 
@@ -607,13 +636,13 @@ read_write_tests(bool compression)	// I - Use compression?
     // cupsFileTell()
     testBegin("cupsFileTell()");
 
-    if ((length = cupsFileTell(fp)) == 81933283)
+    if ((length = cupsFileTell(fp)) == 81933542)
     {
       testEnd(true);
     }
     else
     {
-      testEndMessage(false, "" CUPS_LLFMT " instead of 81933283", CUPS_LLCAST length);
+      testEndMessage(false, "" CUPS_LLFMT " instead of 81933542", CUPS_LLCAST length);
       status ++;
     }
 
@@ -682,7 +711,7 @@ read_write_tests(bool compression)	// I - Use compression?
     // cupsFileGetConf()
     linenum = 1;
 
-    testBegin("cupsFileGetConf()");
+    testBegin("cupsFileGetConf(TestLine)");
 
     for (i = 0, value = NULL; i < 1000; i ++)
     {
@@ -709,6 +738,27 @@ read_write_tests(bool compression)	// I - Use compression?
       status ++;
     }
 
+    testBegin("cupsFileGetConf(TestConf)");
+
+    for (i = 0; i < (int)(sizeof(values) / sizeof(values[0])); i ++)
+    {
+      if (!cupsFileGetConf(fp, line, sizeof(line), &value, &linenum))
+      {
+        testEndMessage(false, "%s", strerror(errno));
+        status ++;
+        break;
+      }
+      else if (_cups_strcasecmp(line, "TestConf") || !value || strcmp(value, values[i]))
+      {
+        testEndMessage(false, "Expected 'TestConf %s', got '%s %s'", values[i], line, value);
+        status ++;
+        break;
+      }
+    }
+
+    if (i >= (int)(sizeof(values) / sizeof(values[0])))
+      testEnd(true);
+
     // cupsFileGetChar()
     testBegin("cupsFileGetChar()");
 
@@ -788,13 +838,13 @@ read_write_tests(bool compression)	// I - Use compression?
     // cupsFileTell()
     testBegin("cupsFileTell()");
 
-    if ((length = cupsFileTell(fp)) == 81933283)
+    if ((length = cupsFileTell(fp)) == 81933542)
     {
       testEnd(true);
     }
     else
     {
-      testEndMessage(false, "" CUPS_LLFMT " instead of 81933283", CUPS_LLCAST length);
+      testEndMessage(false, "" CUPS_LLFMT " instead of 81933542", CUPS_LLCAST length);
       status ++;
     }