tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-22 12:05:37 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #7825 from open-sausages/pulls/4.0/fix-session-unsaved

Browse Source 
BUG Fix critical issue with incorrectly saved session data
This commit is contained in:
Chris Joe 2018-02-02 16:14:26 +13:00 committed by GitHub
commit b81ac41b5d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 220 additions and 86 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

211
src/Control/Session.php
View File

@ -4,6 +4,7 @@ namespace SilverStripe\Control;
use BadMethodCallException; use BadMethodCallException;
use SilverStripe\Core\Config\Configurable; use SilverStripe\Core\Config\Configurable;
use SilverStripe\Dev\Deprecation;
/** /**
* Handles all manipulation of the session. * Handles all manipulation of the session.
@ -136,6 +137,24 @@ class Session
protected $data = null; protected $data = null;
/** /**
* List of keys changed. This is a nested array which represents the
* keys modified in $this->data. The value of each item is either "true"
* or a nested array.
*
* If a value is in changedData but not in data, it must be removed
* from the destination during save().
*
* Only highest level changes are stored. E.g. changes to `Base.Sub`
* and then `Base` only records `Base` as the change.
*
* E.g.
* [
* 'Base' => true,
* 'Key' => [
* 'Nested' => true,
* ],
* ]
*
* @var array * @var array
*/ */
protected $changedData = array(); protected $changedData = array();
@ -305,38 +324,40 @@ class Session
if (!$this->isStarted()) { if (!$this->isStarted()) {
throw new BadMethodCallException("Session cannot be modified until it's started"); throw new BadMethodCallException("Session cannot be modified until it's started");
} }
$var = &$this->nestedValueRef($name, $this->data);
// Quicker execution path for "."-free names // Mark changed
if (strpos($name, '.') === false) {
$this->data[$name] = $val;
$this->changedData[$name] = $val;
} else {
$names = explode('.', $name);
// We still want to do this even if we have strict path checking for legacy code
$var = &$this->data;
$diffVar = &$this->changedData;
// Iterate twice over the names - once to see if the value needs to be changed,
// and secondly to get the changed data value. This is done to solve a problem
// where iterating over the diff var would create empty arrays, and the value
// would then not be set, inadvertently clearing session values.
foreach ($names as $n) {
$var = &$var[$n];
}
if ($var !== $val) { if ($var !== $val) {
foreach ($names as $n) {
$diffVar = &$diffVar[$n];
}
$var = $val; $var = $val;
$diffVar = $val; $this->markChanged($name);
}
} }
return $this; return $this;
} }
/**
* Mark key as changed
*
* @internal
* @param string $name
*/
protected function markChanged($name)
{
$diffVar = &$this->changedData;
foreach (explode('.', $name) as $namePart) {
if (!isset($diffVar[$namePart])) {
$diffVar[$namePart] = [];
}
$diffVar = &$diffVar[$namePart];
// Already diffed
if ($diffVar === true) {
return;
}
}
// Mark changed
$diffVar = true;
}
/** /**
* Merge value with array * Merge value with array
* *
@ -375,31 +396,7 @@ class Session
if (!$this->isStarted()) { if (!$this->isStarted()) {
throw new BadMethodCallException("Session cannot be accessed until it's started"); throw new BadMethodCallException("Session cannot be accessed until it's started");
} }
return $this->nestedValue($name, $this->data);
// Quicker execution path for "."-free names
if (strpos($name, '.') === false) {
if (isset($this->data[$name])) {
return $this->data[$name];
}
return null;
} else {
$names = explode('.', $name);
if (!isset($this->data)) {
return null;
}
$var = $this->data;
foreach ($names as $n) {
if (!isset($var[$n])) {
return null;
}
$var = $var[$n];
}
return $var;
}
} }
/** /**
@ -414,28 +411,21 @@ class Session
throw new BadMethodCallException("Session cannot be modified until it's started"); throw new BadMethodCallException("Session cannot be modified until it's started");
} }
$names = explode('.', $name); // Get var by path
$var = $this->nestedValue($name, $this->data);
// We still want to do this even if we have strict path checking for legacy code
$var = &$this->data;
$diffVar = &$this->changedData;
foreach ($names as $n) {
// don't clear a record that doesn't exist
if (!isset($var[$n])) {
return $this;
}
$var = &$var[$n];
}
// only loop to find data within diffVar if var is proven to exist in the above loop
foreach ($names as $n) {
$diffVar = &$diffVar[$n];
}
// Unset var
if ($var !== null) { if ($var !== null) {
$var = null; // Unset parent key
$diffVar = null; $parentParts = explode('.', $name);
$basePart = array_pop($parentParts);
if ($parentParts) {
$parent = &$this->nestedValueRef(implode('.', $parentParts), $this->data);
unset($parent[$basePart]);
} else {
unset($this->data[$name]);
}
$this->markChanged($name);
} }
return $this; return $this;
} }
@ -491,7 +481,8 @@ class Session
$this->start($request); $this->start($request);
} }
$this->recursivelyApply($this->changedData, $_SESSION); // Apply all changes recursively
$this->recursivelyApplyChanges($this->changedData, $this->data, $_SESSION);
} }
} }
@ -499,11 +490,13 @@ class Session
* Recursively apply the changes represented in $data to $dest. * Recursively apply the changes represented in $data to $dest.
* Used to update $_SESSION * Used to update $_SESSION
* *
* @deprecated 4.1...5.0 Use recursivelyApplyChanges() instead
* @param array $data * @param array $data
* @param array $dest * @param array $dest
*/ */
protected function recursivelyApply($data, &$dest) protected function recursivelyApply($data, &$dest)
{ {
Deprecation::notice('5.0', 'Use recursivelyApplyChanges() instead');
foreach ($data as $k => $v) { foreach ($data as $k => $v) {
if (is_array($v)) { if (is_array($v)) {
if (!isset($dest[$k]) || !is_array($dest[$k])) { if (!isset($dest[$k]) || !is_array($dest[$k])) {
@ -517,7 +510,7 @@ class Session
} }
/** /**
* Return the changed data, for debugging purposes. * Returns the list of changed keys
* *
* @return array * @return array
*/ */
@ -525,4 +518,78 @@ class Session
{ {
return $this->changedData; return $this->changedData;
} }
/**
* Navigate to nested value in source array by name,
* creating a null placeholder if it doesn't exist.
*
* @internal
* @param string $name
* @param array $source
* @return mixed Reference to value in $source
*/
protected function &nestedValueRef($name, &$source)
{
// Find var to change
$var = &$source;
foreach (explode('.', $name) as $namePart) {
if (!isset($var)) {
$var = [];
}
if (!isset($var[$namePart])) {
$var[$namePart] = null;
}
$var = &$var[$namePart];
}
return $var;
}
/**
* Navigate to nested value in source array by name,
* returning null if it doesn't exist.
*
* @internal
* @param string $name
* @param array $source
* @return mixed Value in array in $source
*/
protected function nestedValue($name, $source)
{
// Find var to change
$var = $source;
foreach (explode('.', $name) as $namePart) {
if (!isset($var[$namePart])) {
return null;
}
$var = $var[$namePart];
}
return $var;
}
/**
* Apply all changes using separate keys and data sources and a destination
*
* @internal
* @param array $changes
* @param array $source
* @param array $destination
*/
protected function recursivelyApplyChanges($changes, $source, &$destination)
{
foreach ($changes as $key => $changed) {
if ($changed === true) {
// Determine if replacement or removal
if (array_key_exists($key, $source)) {
$destination[$key] = $source[$key];
} else {
unset($destination[$key]);
}
} else {
// Recursively apply
$destVal = &$this->nestedValueRef($key, $destination);
$sourceVal = $this->nestedValue($key, $source);
$this->recursivelyApplyChanges($changed, $sourceVal, $destVal);
}
}
}
} }

91
tests/php/Control/SessionTest.php
View File

@ -78,18 +78,20 @@ class SessionTest extends SapphireTest
*/ */
public function testClearElementThatDoesntExist() public function testClearElementThatDoesntExist()
{ {
$s = new Session(array('something' => array('does' => 'exist'))); $s = new Session(['something' => ['does' => 'exist']]);
$s->clear('something.doesnt.exist'); $s->clear('something.doesnt.exist');
$result = $s->changedData();
unset($result['HTTP_USER_AGENT']);
$this->assertEquals(array(), $result);
// Clear without existing data
$data = $s->get('something.doesnt.exist');
$this->assertEquals(array(), $s->changedData());
$this->assertNull($data);
// Clear with existing change
$s->set('something-else', 'val'); $s->set('something-else', 'val');
$s->clear('something-new'); $s->clear('something-new');
$result = $s->changedData(); $data = $s->get('something-else');
unset($result['HTTP_USER_AGENT']); $this->assertEquals(['something-else' => true], $s->changedData());
$this->assertEquals(array('something-else' => 'val'), $result); $this->assertEquals('val', $data);
} }
/** /**
@ -97,12 +99,29 @@ class SessionTest extends SapphireTest
*/ */
public function testClearElementThatDoesExist() public function testClearElementThatDoesExist()
{ {
$s = new Session(array('something' => array('does' => 'exist'))); $s = new Session(['something' => ['does' => 'exist']]);
// Ensure keys are properly removed and not simply nullified
$s->clear('something.does'); $s->clear('something.does');
$result = $s->changedData(); $this->assertEquals(
unset($result['HTTP_USER_AGENT']); ['something' => ['does' => true]],
$this->assertEquals(array('something' => array('does' => null)), $result); $s->changedData()
);
$this->assertEquals(
[], // 'does' removed
$s->get('something')
);
// Clear at more specific level should also clear other changes
$s->clear('something');
$this->assertEquals(
['something' => true],
$s->changedData()
);
$this->assertEquals(
null, // Should be removed not just empty array
$s->get('something')
);
} }
public function testUserAgentLockout() public function testUserAgentLockout()
@ -126,4 +145,52 @@ class SessionTest extends SapphireTest
$s2->init($req2); $s2->init($req2);
$this->assertNotEquals($s2->get('val'), 123); $this->assertNotEquals($s2->get('val'), 123);
} }
public function testSave()
{
$request = new HTTPRequest('GET', '/');
// Test change of nested array type
$s = new Session($_SESSION = ['something' => ['some' => 'value', 'another' => 'item']]);
$s->set('something', 'string');
$s->save($request);
$this->assertEquals(
['something' => 'string'],
$_SESSION
);
// Test multiple changes combine safely
$s = new Session($_SESSION = ['something' => ['some' => 'value', 'another' => 'item']]);
$s->set('something.another', 'newanother');
$s->clear('something.some');
$s->set('something.newkey', 'new value');
$s->save($request);
$this->assertEquals(
[
'something' => [
'another' => 'newanother',
'newkey' => 'new value',
]
],
$_SESSION
);
// Test cleared keys are restorable
$s = new Session($_SESSION = ['bookmarks' => [ 1 => 1, 2 => 2]]);
$s->clear('bookmarks');
$s->set('bookmarks', [
1 => 1,
3 => 3,
]);
$s->save($request);
$this->assertEquals(
[
'bookmarks' => [
1 => 1,
3 => 3,
]
],
$_SESSION
);
}
} }