Homec4science
Diffusion Phabricator 969d0c3e8de2

Use "\z" instead of "$" to anchor validating regular expressions
969d0c3e8de2
Actions

Authored by epriestley <git@epriestley.com> on Mar 13 2014, 20:42.

Description

Use "\z" instead of "$" to anchor validating regular expressions

Summary:
Via HackerOne. In regular expressions, "$" matches "end of input, or before terminating newline". This means that the expression /^A$/ matches two strings: "A", and "A\n".

When we care about this, use \z instead, which matches "end of input" only.

This allowed registration of "username\n" and similar.

Test Plan:

  • Grepped codebase for all calls to preg_match() / preg_match_all().
  • Fixed the ones where this seemed like it could have an impact.
  • Added and executed unit tests.

Reviewers: btrahan

Reviewed By: btrahan

Subscribers: aran, epriestley

Differential Revision: https://secure.phabricator.com/D8516

Details

Committed
epriestley <git@epriestley.com>Mar 13 2014, 20:42
Pushed
aubortJan 31 2017, 17:16
Parents
rPH58877a9b6c9d: Fix some collateral damage from SSH Keypair generation
Branches
Unknown
Tags
Unknown

Event Timeline

epriestley <git@epriestley.com> committed rPH969d0c3e8de2: Use "\z" instead of "$" to anchor validating regular expressions (authored by epriestley <git@epriestley.com>).Mar 13 2014, 20:42

Changes (15)

Path
Msrc/applications/auth/provider/PhabricatorAuthProviderOAuth1JIRA.php
Msrc/applications/diffusion/conduit/ConduitAPI_diffusion_getcommits_Method.php
Msrc/applications/diffusion/controller/DiffusionRepositoryCreateController.php
Msrc/applications/diffusion/ssh/DiffusionSSHSubversionServeWorkflow.php
Msrc/applications/diffusion/ssh/DiffusionSSHWorkflow.php
Msrc/applications/diviner/atom/DivinerAtomRef.php
Msrc/applications/diviner/workflow/DivinerWorkflow.php
Msrc/applications/files/engine/PhabricatorLocalDiskFileStorageEngine.php
Msrc/applications/macro/controller/PhabricatorMacroEditController.php
Msrc/applications/people/storage/PhabricatorUser.php
Msrc/applications/people/storage/PhabricatorUserEmail.php
Msrc/applications/people/storage/__tests__/PhabricatorUserEmailTestCase.php
Msrc/applications/people/storage/__tests__/PhabricatorUserTestCase.php
Msrc/applications/phlux/controller/PhluxEditController.php
Msrc/applications/repository/conduit/ConduitAPI_repository_create_Method.php

rPH969d0c3e8de2

View Options

src/applications/auth/provider/PhabricatorAuthProviderOAuth1JIRA.php

Loading...
View Options

src/applications/diffusion/conduit/ConduitAPI_diffusion_getcommits_Method.php

Loading...
View Options

src/applications/diffusion/controller/DiffusionRepositoryCreateController.php

Loading...
View Options

src/applications/diffusion/ssh/DiffusionSSHSubversionServeWorkflow.php

Loading...
View Options

src/applications/diffusion/ssh/DiffusionSSHWorkflow.php

Loading...
View Options

src/applications/diviner/atom/DivinerAtomRef.php

Loading...
View Options

src/applications/diviner/workflow/DivinerWorkflow.php

Loading...
View Options

src/applications/files/engine/PhabricatorLocalDiskFileStorageEngine.php

Loading...
View Options

src/applications/macro/controller/PhabricatorMacroEditController.php

Loading...
View Options

src/applications/people/storage/PhabricatorUser.php

Loading...
View Options

src/applications/people/storage/PhabricatorUserEmail.php

Loading...
View Options

src/applications/people/storage/__tests__/PhabricatorUserEmailTestCase.php

Loading...
View Options

src/applications/people/storage/__tests__/PhabricatorUserTestCase.php

Loading...
View Options

src/applications/phlux/controller/PhluxEditController.php

Loading...
View Options

src/applications/repository/conduit/ConduitAPI_repository_create_Method.php

Loading...
c4science ยท Help