Comments on: Script day: grep in jar (or zip) files

By: Oded

Oded — Sat, 11 Dec 2010 00:37:06 +0000

The script would work fine for that purpose, just use the “alternative loop” code inside the loop instead of my “rpm finding” code.

By: John Ortega

John Ortega — Fri, 10 Dec 2010 09:36:40 +0000

Ok,

That was easy.

But, what I need is to search a lib directory with a bunch of jar files or zip files. Inside of the files there may be class files or xml files. I need to read the xml files and see if a certain string occurs in it or not.

Any help?

John Ortega
madridlinuxgroup.blogspot.com
madridlinuxgroup@gmail.com

By: Oded

Oded — Sun, 08 Nov 2009 23:29:37 +0000

P.S – I don’t like preview comments as I think they are redundant. I will investigate adding them anyway though.

By: Oded

Oded — Sun, 08 Nov 2009 23:28:54 +0000

The problem of shell variable escaping is known, and in this simple example (as well as most other scripts I write) I choose to ignore it unless I know for a fact that the values I’m dealing with are expected to include word delimiters (IFR in bash-speak).

Specifically in this case, jar files very rarely include white space (I could say “never” as I haven’t see such a case in all my years, but as they say – “never say never”) and class files are not allowed to include white space in their names by the Java language specification.

I do quote the submitted pattern in the above example, because it is always important to make sure user input can’t escape into your script, regardless of what it is matched against .

By: Shlomi Fish

Shlomi Fish — Sat, 07 Nov 2009 08:31:17 +0000

Hi Oded! Your code here suffers from potential shell-variable injection. See my posts about: Code Injection Shell Variable Injection And why can't we have comment previews here? Stupid and incredibly lame WordPress.