use Date::Format; # For time2str().
use Date::Parse; # For str2time().
-# use Carp; # for confess
+use Carp; # for confess
use RelationSet;
+# $ENV{PATH} is not taint safe
+delete $ENV{PATH};
+
# Contains the version string for the current running Bugzilla.
$::param{'version'} = '2.13';
# Joe Robins, 7/5/00
$::superusergroupset = "9223372036854775807";
+sub die_with_dignity {
+ my ($err_msg) = @_;
+ print $err_msg;
+ confess($err_msg);
+}
+$::SIG{__DIE__} = \&die_with_dignity;
+
sub ConnectToDatabase {
my ($useshadow) = (@_);
if (!defined $::db) {
sub DBID_to_name {
my ($id) = (@_);
+ # $id should always be a positive integer
+ if ($id =~ m/^([1-9][0-9]*)$/) {
+ $id = $1;
+ } else {
+ $::cachedNameArray{$id} = "__UNKNOWN__";
+ }
if (!defined $::cachedNameArray{$id}) {
PushGlobalSQLState();
SendSQL("select login_name from profiles where userid = $id");
SendSQL("select userid from profiles where login_name = @{[SqlQuote($name)]}");
my $r = FetchOneColumn();
PopGlobalSQLState();
- if (!defined $r || $r eq "") {
+ # $r should be a positive integer, this makes Taint mode happy
+ if (defined $r && $r =~ m/^([1-9][0-9]*)$/) {
+ return $1;
+ } else {
return 0;
}
- return $r;
}
exit(0);
}
+# Use detaint_string() when you know that there is no way that the data
+# in a scalar can be tainted, but taint mode still bails on it.
+# WARNING!! Using this routine on data that really could be tainted
+# defeats the purpose of taint mode. It should only be
+# used on variables that cannot be touched by users.
+
+sub detaint_string {
+ my ($str) = @_;
+ $str =~ m/^(.*)$/s;
+ $str = $1;
+}
+
# This routine quoteUrls contains inspirations from the HTML::FromText CPAN
# module by Gareth Rees <garethr@cre.canon.co.uk>. It has been heavily hacked,
# all that is really recognizable from the original is bits of the regular
# }
$str =~ s/([\\\'])/\\$1/g;
$str =~ s/\0/\\0/g;
+ # If it's been SqlQuote()ed, then it's safe, so we tell -T that.
+ $str = detaint_string($str);
return "'$str'";
}
-#!/usr/bonsaitools/bin/perl -w
+#!/usr/bonsaitools/bin/perl -wT
# -*- Mode: perl; indent-tabs-mode: nil -*-
#
# The contents of this file are subject to the Mozilla Public
use diagnostics;
use strict;
+use lib ".";
require "globals.pl";
use RelationSet;
+
+# Shut up misguided -w warnings about "used only once".
+sub processmail_sillyness {
+ my $zz;
+ $zz = $::db;
+}
+
$| = 1;
umask(0);
$values{$i} = shift(@row);
}
my ($start, $end) = (@row);
+ # $start and $end are considered safe because users can't touch them
+ $start = detaint_string($start);
+ $end = detaint_string($end);
+
my $ccSet = new RelationSet();
$ccSet->mergeFromDB("SELECT who FROM cc WHERE bug_id = $id");
$values{'cc'} = $ccSet->toString();
foreach my $person (@emailList) {
- my $userid;
my $lastCount = @filteredList;
if ( $person eq '' ) { next; }
- SendSQL("SELECT userid FROM profiles WHERE login_name = "
- . SqlQuote($person) );
+ my $userid = DBname_to_id($person);
- if ( !($userid = FetchSQLData()) ) {
+ if ( ! $userid ) {
push(@filteredList,$person);
next;
}
SendSQL("SELECT emailflags FROM profiles WHERE " .
"userid = $userid" );
-
+
my ($userFlagString) = FetchSQLData();
# If the sender doesn't want email, exclude them from list
return;
}
+ # Sanitize $values{'groupset'}
+ if ($values{'groupset'} =~ m/(\d+)/) {
+ $values{'groupset'} = $1;
+ } else {
+ $values{'groupset'} = 0;
+ }
SendSQL("SELECT userid, groupset & $values{'groupset'} " .
"FROM profiles WHERE login_name = " . SqlQuote($person));
my ($userid, $groupset) = (FetchSQLData());
# Code starts here
ConnectToDatabase();
+# Set Taint mode for the SQL
+$::db->{Taint} = 1;
+# ^^^ Taint mode is still a work in progress...
GetVersionTable();
if (open(FID, "<data/nomail")) {
ProcessOneBug($ARGV[0]);
}
} else {
- ProcessOneBug($ARGV[0]);
+ my $bugnum;
+ if ($ARGV[0] =~ m/^([1-9][0-9]*)$/) {
+ $bugnum = $1;
+ } else {
+ print "Error calling processmail (bug id is not an integer)<br>\n";
+ exit;
+ }
+ ProcessOneBug($bugnum);
}
exit;
projects / thirdparty / bugzilla.git / commitdiff
