database/openGauss-server
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix gs_ctl restore cmd injection

Browse Source
This commit is contained in:
yanghao
2023-03-20 20:06:00 +08:00
parent de94920bea
commit a1ccda1431
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/bin/pg_ctl/pg_ctl.cpp
View File

@ -4620,8 +4620,8 @@ static void do_full_restore(void)
"select * from pg_catalog.gs_download_obs_file('%s', '%s/base.tar.gz', 'base.tar.gz')", slotname, key_cn);
securec_check_ss_c(ret, "\0", "\0");
ret = snprintf_s(tar_cmd, MAXPGPATH, MAX_PATH_LEN - 1, "tar -zvxf %s/base.tar.gz -C %s --strip-components 1",
pg_data, pg_data);
ret = snprintf_s(tar_cmd, MAXPGPATH, MAX_PATH_LEN - 1,
"tar -zvxf \"%s\"/base.tar.gz -C \"%s\" --strip-components 1", pg_data, pg_data);
securec_check_ss_c(ret, "\0", "\0");