Closed Bug 332518 Opened 19 years ago Closed 17 years ago

Bugzilla crashes when the sslbase parameter points to an invalid host

Categories

(Bugzilla :: Administration, task)

Product:
Bugzilla
Component:
Administration
Version:
2.20.1
Type:
task
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
Bugzilla 3.2

People

(Reporter: spam, Assigned: LpSolit)

References

Details

(Whiteboard: [blocker will fix])

Attachments

(1 obsolete file)

step to reproduce: enter sslbase param https://example.orghttp:/ submit actual result: crash Saving new parameters Software error: Bad arg length for Socket::pack_sockaddr_in, length is 0, should be 4 at /usr/lib/perl5/5.8.5/i386-linux-thread-multi/Socket.pm line 373. expected result: show this error instead of crash. Saving new parameters New value for sslbase is invalid: must be a legal URL, that starts with https and ends with a slash. Please hit Back and try again.
Attached patch patch for tip v1 (obsolete) — Splinter Review
Attachment #216982 - Flags: review?(LpSolit)
Comment on attachment 216982 [details] [diff] [review] patch for tip v1 >+ if ($host =~ /:/) { >+ return "must not contain ':' character. " . >+ "Bugzilla supports only well-known port for https."; > } The error message should eventually be updated, but we don't want such a hack. ;)
Attachment #216982 - Flags: review?(LpSolit) → review-
Attachment #216982 - Attachment is obsolete: true
Status: UNCONFIRMED → RESOLVED
Closed: 18 years ago
Resolution: --- → WONTFIX
Not Wontfix. Denying review for a patch doesn't mean we shouldn't fix the bug.
Status: RESOLVED → UNCONFIRMED
Resolution: WONTFIX → ---
I entered 394415.... At present, a reasonable error message occurs when the following url is used: https://dev.hocprofessional.com:443/ and the error message is: the new value for sslbase is invalid: must not contain a port The *crash* occurs when entering any of the following: http://dev.hocprofessional.com/ https://dev.hocprofessional.com/ https://example.comhttp:/ Although patch above ("if ($host =~ /:/) {") may fix the problem <victory> observed, it would *not* fix the problem that I saw. Note that the error messages *are* the same.
ps... of course it should be noted that the first two urls in the last comment are completely valid.
Is fixed on 3.2 as part of bug 358588.
Assignee: administration → LpSolit
Status: UNCONFIRMED → NEW
Depends on: 358588
Ever confirmed: true
Hardware: PC → All
Summary: Bugzilla crash when give sslbase invalid url → Bugzilla crashes when the sslbase parameter points to an invalid host
Whiteboard: [blocker will fix]
Target Milestone: --- → Bugzilla 3.2
Status: NEW → RESOLVED
Closed: 18 years ago17 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: