Почетна Преглед Помоћ
Регистрација Пријавите се
Apq
/
389-ds-base
огледало од https://github.com/389ds/389-ds-base.git
1
0
Креирај огранак 0
Датотеке Дискусије 0 Вики
Преглед изворни кода

Trac Ticket #497 - Escaped character cannot be used in the substring search filter

https://fedorahosted.org/389/ticket/497

Bug description: Previous commit de8fd7d0e596e4de885b4dda6bf5329469880c45
for Ticket 328 introduced this bug.  Only a string format filter
for logging needs to be escaped, but the above commit accidentally
applied the escaped filter to the real filter.

Fix description: This patch did undo the escape on the real filter.
Noriko Hosoi пре 13 година
родитељ
5bd932e0eb
комит
8ff26ec960
1 измењених фајлова са 33 додато и 26 уклоњено
Један поглед Покажи статистику Diff
  1. 33 26
      ldap/servers/slapd/filter.c

+ 33 - 26
ldap/servers/slapd/filter.c
Прегледај датотеку 

@@ -472,11 +472,12 @@ get_substring_filter(
 
 	ber_tag_t	tag, rc;
 
 	ber_tag_t	tag, rc;
 
 	ber_len_t	len = -1;
 
 	ber_len_t	len = -1;
 
 	char		*val, *eval, *last, *type = NULL;
 
 	char		*val, *eval, *last, *type = NULL;
 
+	size_t fstr_len;
 
 
 
 	LDAPDebug( LDAP_DEBUG_FILTER, "=> get_substring_filter\n", 0, 0, 0 );
 
 	LDAPDebug( LDAP_DEBUG_FILTER, "=> get_substring_filter\n", 0, 0, 0 );
 
 
 
 	if ( ber_scanf( ber, "{a", &type ) == LBER_ERROR ) {
 
 	if ( ber_scanf( ber, "{a", &type ) == LBER_ERROR ) {
 
-        slapi_ch_free_string(&type);
 
+		slapi_ch_free_string(&type);
 
 		return( LDAP_PROTOCOL_ERROR );
 
 		return( LDAP_PROTOCOL_ERROR );
 
 	}
 
 	}
 
 	f->f_sub_type = slapi_attr_syntax_normalize( type );
 
 	f->f_sub_type = slapi_attr_syntax_normalize( type );
 
@@ -485,7 +486,9 @@ get_substring_filter(
 
 	f->f_sub_any = NULL;
 
 	f->f_sub_any = NULL;
 
 	f->f_sub_final = NULL;
 
 	f->f_sub_final = NULL;
 
 
 
-	*fstr = slapi_ch_malloc( strlen( f->f_sub_type ) + 3 );
 
+	/* borrowing the handy macro: 256 */
 
+	fstr_len = strlen( f->f_sub_type ) + SLAPD_TYPICAL_ATTRIBUTE_NAME_MAX_LENGTH;
 
+	*fstr = slapi_ch_malloc(fstr_len);
 
 	sprintf( *fstr, "(%s=", f->f_sub_type );
 
 	sprintf( *fstr, "(%s=", f->f_sub_type );
 
 	for ( tag = ber_first_element( ber, &len, &last );
 
 	for ( tag = ber_first_element( ber, &len, &last );
 
 	    tag != LBER_ERROR && tag != LBER_END_OF_SEQORSET;
 
 	    tag != LBER_ERROR && tag != LBER_END_OF_SEQORSET;
 
@@ -512,29 +515,30 @@ get_substring_filter(
 
 				return( LDAP_PROTOCOL_ERROR );
 
 				return( LDAP_PROTOCOL_ERROR );
 
 			}
 
 			}
 
 			f->f_sub_initial = val;
 
 			f->f_sub_initial = val;
 
-			eval = (char*)slapi_escape_filter_value( val, -1);
 
-			if(eval){
 
-				slapi_ch_free_string(&val);
 
-				val = eval;
 
-				f->f_sub_initial = val;
 
+			eval = (char*)slapi_escape_filter_value(val, -1);
 
+			if(eval) {
 
+				if (fstr_len < strlen(*fstr) + strlen(eval) + 1) {
 
+				    fstr_len += (strlen(eval) + 1) * 2;
 
+				    *fstr = slapi_ch_realloc(*fstr, fstr_len);
 
+				}
 
+				strcat(*fstr, eval);
 
+				slapi_ch_free_string(&eval);
 
 			}
 
 			}
 
-			*fstr = slapi_ch_realloc( *fstr, strlen( *fstr ) +
 
-			    strlen( val ) + 1 );
 
-			strcat( *fstr, val );
 
 			break;
 
 			break;
 
 
 
 		case LDAP_SUBSTRING_ANY:
 
 		case LDAP_SUBSTRING_ANY:
 
 			LDAPDebug( LDAP_DEBUG_FILTER, "  ANY\n", 0, 0, 0 );
 
 			LDAPDebug( LDAP_DEBUG_FILTER, "  ANY\n", 0, 0, 0 );
 
-			eval = (char*)slapi_escape_filter_value( val, -1);
 
+			charray_add(&f->f_sub_any, val);
 
+			eval = (char*)slapi_escape_filter_value(val, -1);
 
 			if(eval){
 
 			if(eval){
 
-				slapi_ch_free_string(&val);
 
-				val = eval;
 
+				if (fstr_len < strlen(*fstr) + strlen(eval) + 1) {
 
+				    fstr_len += (strlen(eval) + 1) * 2;
 
+				    *fstr = slapi_ch_realloc(*fstr, fstr_len);
 
+				}
 
+				strcat(*fstr, "*");
 
+				strcat(*fstr, eval);
 
+				slapi_ch_free_string(&eval);
 
 			}
 
 			}
 
-			charray_add( &f->f_sub_any, val );
 
-			*fstr = slapi_ch_realloc( *fstr, strlen( *fstr ) +
 
-			    strlen( val ) + 2 );
 
-			strcat( *fstr, "*" );
 
-			strcat( *fstr, val );
 
 			break;
 
 			break;
 
 
 
 		case LDAP_SUBSTRING_FINAL:
 
 		case LDAP_SUBSTRING_FINAL:
 
@@ -545,14 +549,14 @@ get_substring_filter(
 
 			f->f_sub_final = val;
 
 			f->f_sub_final = val;
 
 			eval = (char*)slapi_escape_filter_value( val, -1);
 
 			eval = (char*)slapi_escape_filter_value( val, -1);
 
 			if(eval){
 
 			if(eval){
 
-				slapi_ch_free_string(&val);
 
-				val = eval;
 
-				f->f_sub_final = val;
 
+				if (fstr_len < strlen(*fstr) + strlen(eval) + 1) {
 
+				    fstr_len += (strlen(eval) + 1) * 2;
 
+				    *fstr = slapi_ch_realloc(*fstr, fstr_len);
 
+				}
 
+				strcat(*fstr, "*");
 
+				strcat(*fstr, eval);
 
+				slapi_ch_free_string(&eval);
 
 			}
 
 			}
 
-			*fstr = slapi_ch_realloc( *fstr, strlen( *fstr ) +
 
-			    strlen( val ) + 2 );
 
-			strcat( *fstr, "*" );
 
-			strcat( *fstr, val );
 
 			break;
 
 			break;
 
 
 
 		default:
 
 		default:
 
@@ -571,7 +575,10 @@ get_substring_filter(
 
 	}
 
 	}
 
 
 
 	filter_compute_hash(f);
 
 	filter_compute_hash(f);
 
-	*fstr = slapi_ch_realloc( *fstr, strlen( *fstr ) + 3 );
 
+	if (fstr_len < strlen(*fstr) + 3) {
 
+		fstr_len += 3;
 
+		*fstr = slapi_ch_realloc(*fstr, fstr_len);
 
+	}
 
 	if ( f->f_sub_final == NULL ) {
 
 	if ( f->f_sub_final == NULL ) {
 
 		strcat( *fstr, "*" );
 
 		strcat( *fstr, "*" );
 
 	}
 
 	}