Project

General

Profile

Actions

Bug #50913

closed

t3lib_div->trimExplode fills database table sys_log

Added by Christian Finkemeier over 11 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Must have
Assignee:
-
Category:
Miscellaneous
Target version:
-
Start date:
2013-08-08
Due date:
% Done:

100%

Estimated time:
TYPO3 Version:
4.5
PHP Version:
5.3
Tags:
Complexity:
easy
Is Regression:
Sprint Focus:

Description

There are several uses of t3lib_div::trimExplode with wrong parameter types.

The second parameter must be a string, otherwise a php warning is stored to the sys_log database table, e.g. in t3lib_userAuth::getAuthInfoArray (line 1299) where the argument is an integer...

This could be easily resolved by this:

@@ -1282,20 1282,24 @@ t3lib_userAuth::getAuthInfoArray
    function getAuthInfoArray() {
        $authInfo = array();
        $authInfo['loginType'] = $this->loginType;
        $authInfo['refInfo'] = parse_url(t3lib_div::getIndpEnv('HTTP_REFERER'));
        $authInfo['HTTP_HOST'] = t3lib_div::getIndpEnv('HTTP_HOST');
        $authInfo['REMOTE_ADDR'] = t3lib_div::getIndpEnv('REMOTE_ADDR');
        $authInfo['REMOTE_HOST'] = t3lib_div::getIndpEnv('REMOTE_HOST');
        $authInfo['security_level'] = $this->security_level;
        $authInfo['showHiddenRecords'] = $this->showHiddenRecords;
            // can be overidden in localconf by SVCONF:
        $authInfo['db_user']['table'] = $this->user_table;
        $authInfo['db_user']['userid_column'] = $this->userid_column;
        $authInfo['db_user']['username_column'] = $this->username_column;
        $authInfo['db_user']['userident_column'] = $this->userident_column;
        $authInfo['db_user']['usergroup_column'] = $this->usergroup_column;
        $authInfo['db_user']['enable_clause'] = $this->user_where_clause();
-       $authInfo['db_user']['checkPidList'] = $this->checkPid ? $this->checkPid_value : '';
+       $authInfo['db_user']['checkPidList'] = ($this->checkPid && $this->checkPid_value)
+           ? $this->checkPid_value
+           : '';
-       $authInfo['db_user']['check_pid_clause'] = $this->checkPid ? ' AND pid IN (' . $GLOBALS['TYPO3_DB']->cleanIntList($authInfo['db_user']['checkPidList']) . ')' : '';
+       $authInfo['db_user']['check_pid_clause'] = ($this->checkPid && $this->checkPid_value)
+           ? ' AND pid IN (' . $GLOBALS['TYPO3_DB']->cleanIntList($authInfo['db_user']['checkPidList']) . ')'
+           : '';
        $authInfo['db_groups']['table'] = $this->usergroup_table;
        return $authInfo;
    }


Files

class.tslib_fe.php.diff (2.36 KB) class.tslib_fe.php.diff Christian Finkemeier, 2013-08-12 13:06
class.t3lib_tsparser.php.diff (634 Bytes) class.t3lib_tsparser.php.diff Christian Finkemeier, 2013-08-12 13:06
class.tslib_pibase.php.diff (111 Bytes) class.tslib_pibase.php.diff Christian Finkemeier, 2013-08-12 13:06
class.tx_cssstyledcontent_pi1.php.diff (245 Bytes) class.tx_cssstyledcontent_pi1.php.diff Christian Finkemeier, 2013-08-12 13:06
class.tslib_content.php.diff (187 Bytes) class.tslib_content.php.diff Christian Finkemeier, 2013-08-12 13:06

Related issues 3 (0 open3 closed)

Related to TYPO3 Core - Bug #42921: t3lib_div->trimExplode fills database table sys_logClosed2012-11-13

Actions
Related to TYPO3 Core - Bug #52346: Incomplete backup in AbstractUserAuthenticationTestClosed2013-09-28

Actions
Related to TYPO3 Core - Bug #63959: t3lib_div->trimExplode fills database table sys_logClosed2014-12-17

Actions
Actions #1

Updated by Gerrit Code Review over 11 years ago

  • Status changed from New to Under Review

Patch set 1 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #2

Updated by Gerrit Code Review over 11 years ago

Patch set 2 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #3

Updated by Gerrit Code Review over 11 years ago

Patch set 3 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Updated by Christian Finkemeier over 11 years ago

I have found some more calls from core functions that trigger this PHP warning:

typo3/sysext/cms/tslib/class.tslib_fe.php
typo3/sysext/cms/tslib/class.tslib_content.php
typo3/sysext/cms/tslib/class.tslib_pibase.php
t3lib/class.t3lib_tsparser.php
typo3/sysext/css_styled_content/pi1/class.tx_cssstyledcontent_pi1.php

See diff files for details.

Actions #5

Updated by Markus Klein over 11 years ago

@Christian: Would you mind integrating these into the pending changeset in Gerrit?

It is twice the work, if you create a diff and somebody else has to make the patchset then.

Thanks.

Actions #6

Updated by Christian Finkemeier over 11 years ago

I'm sorry, but i don't know how to make the patchset itself or how to work with git.

Actions #7

Updated by Markus Klein over 11 years ago

If you're willing to learn, this will help you:
http://wiki.typo3.org/Contribution_Walkthrough_Tutorials

Actions #8

Updated by Gerrit Code Review over 11 years ago

Patch set 4 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #9

Updated by Gerrit Code Review about 11 years ago

Patch set 5 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #10

Updated by Gerrit Code Review about 11 years ago

Patch set 6 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #11

Updated by Gerrit Code Review about 11 years ago

Patch set 7 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #12

Updated by Gerrit Code Review about 11 years ago

Patch set 8 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/22956

Actions #13

Updated by Gerrit Code Review about 11 years ago

Patch set 1 for branch TYPO3_6-1 has been pushed to the review server.
It is available at https://review.typo3.org/24002

Actions #14

Updated by Gerrit Code Review about 11 years ago

Patch set 1 for branch TYPO3_6-0 has been pushed to the review server.
It is available at https://review.typo3.org/24003

Actions #15

Updated by Gerrit Code Review about 11 years ago

Patch set 1 for branch TYPO3_4-7 has been pushed to the review server.
It is available at https://review.typo3.org/24004

Actions #16

Updated by Gerrit Code Review about 11 years ago

Patch set 2 for branch TYPO3_4-7 has been pushed to the review server.
It is available at https://review.typo3.org/24004

Actions #17

Updated by Christian Finkemeier about 11 years ago

  • Status changed from Under Review to Resolved
  • % Done changed from 0 to 100
Actions #18

Updated by Benni Mack about 6 years ago

  • Status changed from Resolved to Closed
Actions

Also available in: Atom PDF