Bash – Understanding Carriage Return Behavior

bashnewlinesshell-scriptspecial characters

I have one quick question.
Is it normal that bash (i am using 4.4.11) is not displaying lines/text that is separated / end with plain \r ?

I was a bit surprised to see this behavior:

$ a=$(printf "hello\ragain\rgeorge\r\n")
$ echo "$a"
george

But "hello again" text is still there,somehow "hidden":

$ echo "$a" |od -w32 -t x1c
0000000  68  65  6c  6c  6f  0d  61  67  61  69  6e  0d  67  65  6f  72  67  65  0d  0a
          h   e   l   l   o  \r   a   g   a   i   n  \r   g   e   o   r   g   e  \r  \n

And as soon as we just play with bash is fine…. But is this a potential security risk? What if contents of variable "a" come from outter world and include "bad commands" instead of just hello?

Another test, a bit unsecure this time:

$ a=$(printf "ls;\rGeorge\n")
$ echo "$a"
George
$ eval "$a"
0                   awkprof.out       event-tester.log  helloworld.c      oneshot.sh         rightclick-tester.py  tmp                    uinput-simple.py
<directory listing appears with an error message at the end for command George>

Imagine a hidden rm instead of a hidden ls.

Same behavior when using echo -e:

$ a=$(echo -e "ls;\rGeorge\r\n"); echo "$a"
George

Is it me that does something wrong…?

Best Answer

Your echo "$a" prints "hello", then goes back to the beginning of the line (which is what \r does), print "again", goes back again, prints "george", goes back again, and goes to the next line (\n). It’s all perfectly normal, but as chepner points out, it doesn’t have anything to do with Bash: \r and \n are interpreted by the terminal, not by Bash (which is why you get the full output when you pipe the command to od).

You can see this better with

$ a=$(printf "hellooooo\r  again,\rgeorge\r\n")
$ echo "$a"

since that will leave the end of the overwritten text:

georgen,o

You can’t really use that to hide commands though, only their output (and only if you can be sure to overwrite with enough characters), unless using eval as you show (but using eval is generally not recommended). A more dangerous trick is using CSS to mask commands intended to be copied and pasted from web sites.

Related Solutions

Bash – Carriage return issue

Carriage return puts the cursor back to the beginning of the line. Your output string is:

    This is yesterday date:20130605<Cr>end

Except, when the terminal hits the <Cr> it returns the cursor to the beginning of the line and overwrites the characters that are there.

In other words, "Thi" gets replaced with "end", producing:

    ends is yesterday date:20130605

To do what you appear to be trying to do your script should look something like this:

   variable="text"
   echo "Some sentence $variable"

Which will output

   Some sentence text

IF there are stray carriage returns they should show up as ^M in vi (as Bruce said)

Solution 1

The best way to remove carriage returns or other non-printing characters is with the tr command with the -d option, which deletes any instance of a single character, with \r which is the escape sequence for carriage return:

    tr -d '\r'

This will remove all carriage returns. Run it on the script to remove all instances of carriage returns, then overwrite the original script file:

    tr -d '\r' yourscript.bash > temp
    mv temp yourscript.bash

Solution 2

or while in vi with the script open enter:

    :%s/\r//g
    :wq

To remove the carriage returns within the document then save it.

Carriage return vs newline in vim

From vim docs on patterns:

\r matches <CR>

\n matches an end-of-line - When matching in a string instead of buffer text a literal newline character is matched.

Source: https://stackoverflow.com/questions/71417/why-is-r-a-newline-for-vim

Best Answer

Related Solutions

Bash – Carriage return issue

Carriage return vs newline in vim

Related Question