granicus.if.org Git - apache/commit

author	Cliff Woolley <jwoolley@apache.org>
	Tue, 23 Sep 2003 22:40:23 +0000 (22:40 +0000)
committer	Cliff Woolley <jwoolley@apache.org>
	Tue, 23 Sep 2003 22:40:23 +0000 (22:40 +0000)
commit	ae172585fa22dbfa6d6f36569215fee3c24e4dd9
tree	e2acc590b481c3f13619c1f0faeaf4ad713b1f36	tree \| snapshot
parent	bfc7b8e3738b2a2a725af724a3eb299534be93f8	commit \| diff

The problem that this patch solves is one where cookie names are mis-identified
by mod_usertrack. This is because of the use of strstr() in spot_cookie() the
original mod_usertrack.c to find the name of the cookie. strstr(), by virtue of
looking for a substring instead of an exact match, can mis-identify the cookie
"MyID" as the cookie "ID" or "My". So, if you were looking for the value of the
cookie "ID", but only the cookie "MyID" was returned by the browser,
mod_usertrack.c would return the value of the "MyID" cookie in place of the
"ID" you were looking for.

Even more seriously, because strstr is invoked before the cookie name is
separated from its cookie value, a cookie and value like
"myCookie=thisisnotIDeal" will be a false positive if you told mod_usertrack
the cookie name was ID. Furthermore, using this example, "eal" will get logged
as the value of the cookie; now that strstr has incorrectly identified the
substring "ID" as the cookie name, the following "e" (assumed to be the "="
sign) gets discarded, and the remaining content used as the value of
the cookie.

Replacing the strstr() with a more robust regex match fixes this problem.

PR: 16661
Submitted by: Manni Wood <manniwood@planet-save.com>

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@101306 13f79535-47bb-0310-9956-ffa450edef68

CHANGES		diff \| blob \| history
modules/metadata/mod_usertrack.c		diff \| blob \| history