Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / libxml2 / 5ee43b06000bf42aea1955260aa867c6e466e0a4^! / . / catalog.c
commit5ee43b06000bf42aea1955260aa867c6e466e0a4[log] [tgz]
authorDaniel Veillard <veillard@src.gnome.org>Mon Aug 04 00:58:46 2003 +0000
committerDaniel Veillard <veillard@src.gnome.org>Mon Aug 04 00:58:46 2003 +0000
tree2758f01e3af0ddcfd83b299598397a3414fda8ce
parent7b68df974b4c788d7a43d66950af431ad3898c70 [diff] [blame]
trying to fix #118754 of possible recursion in the catalogs. Not

* catalog.c: trying to fix #118754 of possible recursion in the
  catalogs. Not fantastically happy about the current fix since
  it's likely to break under very thread intensive concurrent
  access to the catalog. Better solution might to keep the depth
  an extra argument to the resolution functions.
Daniel

diff --git a/catalog.c b/catalog.c
index 06bffc6..d307bf4 100644
--- a/catalog.c
+++ b/catalog.c

@@ -42,6 +42,7 @@
 #include <libxml/globals.h>
 
 #define MAX_DELEGATE	50
+#define MAX_CATAL_DEPTH	50
 
 /**
  * TODO:
@@ -115,6 +116,7 @@
     xmlChar *URL;  /* The expanded URL using the base */
     xmlCatalogPrefer prefer;
     int dealloc;
+    int depth;
 };
 
 typedef enum {
@@ -230,6 +232,7 @@
 	ret->URL = NULL;
     ret->prefer = prefer;
     ret->dealloc = 0;
+    ret->depth = 0;
     return(ret);
 }
 
@@ -1443,6 +1446,20 @@
     int haveNext = 0;
 
     /*
+     * protection against loops
+     */
+    if (catal->depth > MAX_CATAL_DEPTH) {
+        if (catal->name != NULL)
+	    xmlGenericError(xmlGenericErrorContext,
+		    "Detected recursion in catalog %s\n", catal->name);
+	else
+	    xmlGenericError(xmlGenericErrorContext,
+		    "Detected recursion in catalog\n");
+	return(NULL);
+    }
+    catal->depth++;
+
+    /*
      * First tries steps 2/ 3/ 4/ if a system ID is provided.
      */
     if (sysID != NULL) {
@@ -1457,6 +1474,7 @@
 			if (xmlDebugCatalogs)
 			    xmlGenericError(xmlGenericErrorContext,
 				    "Found system match %s\n", cur->name);
+			catal->depth--;
 			return(xmlStrdup(cur->URL));
 		    }
 		    break;
@@ -1487,6 +1505,7 @@
 	    ret = xmlStrdup(rewrite->URL);
 	    if (ret != NULL)
 		ret = xmlStrcat(ret, &sysID[lenrewrite]);
+	    catal->depth--;
 	    return(ret);
 	}
 	if (haveDelegate) {
@@ -1520,8 +1539,10 @@
 				    "Trying system delegate %s\n", cur->URL);
 			ret = xmlCatalogListXMLResolve(
 				cur->children, NULL, sysID);
-			if (ret != NULL)
+			if (ret != NULL) {
+			    catal->depth--;
 			    return(ret);
+			}
 		    }
 		}
 		cur = cur->next;
@@ -1529,6 +1550,7 @@
 	    /*
 	     * Apply the cut algorithm explained in 4/
 	     */
+	    catal->depth--;
 	    return(XML_CATAL_BREAK);
 	}
     }
@@ -1545,6 +1567,7 @@
 			if (xmlDebugCatalogs)
 			    xmlGenericError(xmlGenericErrorContext,
 				    "Found public match %s\n", cur->name);
+			catal->depth--;
 			return(xmlStrdup(cur->URL));
 		    }
 		    break;
@@ -1595,8 +1618,10 @@
 				    "Trying public delegate %s\n", cur->URL);
 			ret = xmlCatalogListXMLResolve(
 				cur->children, pubID, NULL);
-			if (ret != NULL)
+			if (ret != NULL) {
+			    catal->depth--;
 			    return(ret);
+			}
 		    }
 		}
 		cur = cur->next;
@@ -1604,6 +1629,7 @@
 	    /*
 	     * Apply the cut algorithm explained in 4/
 	     */
+	    catal->depth--;
 	    return(XML_CATAL_BREAK);
 	}
     }
@@ -1616,14 +1642,17 @@
 		}
 		if (cur->children != NULL) {
 		    ret = xmlCatalogListXMLResolve(cur->children, pubID, sysID);
-		    if (ret != NULL)
+		    if (ret != NULL) {
+			catal->depth--;
 			return(ret);
+		    }
 		}
 	    }
 	    cur = cur->next;
 	}
     }
 
+    catal->depth--;
     return(NULL);
 }