From f7516481b14e9c0150cf9ebe22b618a534efdaeb Mon Sep 17 00:00:00 2001 From: Simon Welsh Date: Fri, 23 Dec 2011 10:38:37 +1300 Subject: [PATCH] BUGFIX Sanitise keys and tags before using them with Zend_Cache. --- model/Aggregate.php | 11 +++++++---- view/SSTemplateParser.php.inc | 1 + 2 files changed, 8 insertions(+), 4 deletions(-) diff --git a/model/Aggregate.php b/model/Aggregate.php index 061618473..77a483db3 100644 --- a/model/Aggregate.php +++ b/model/Aggregate.php @@ -48,9 +48,12 @@ class Aggregate extends ViewableData { if (!$class || $class == 'DataObject') { $cache->clean(Zend_Cache::CLEANING_MODE_MATCHING_TAG, array('aggregate')); - } - else { - $cache->clean(Zend_Cache::CLEANING_MODE_MATCHING_ANY_TAG, ClassInfo::ancestry($class)); + } else { + $tags = ClassInfo::ancestry($class); + foreach($tags as &$tag) { + $tag = preg_replace('/[^a-zA-Z0-9_]/', '_', $tag); + } + $cache->clean(Zend_Cache::CLEANING_MODE_MATCHING_ANY_TAG, $tags); } } @@ -108,7 +111,7 @@ class Aggregate extends ViewableData { if (!($result = $cache->load($cachekey))) { $result = (string)$query->execute()->value(); if (!$result) $result = '0'; - $cache->save($result, null, array('aggregate', $this->type)); + $cache->save($result, null, array('aggregate', preg_replace('/[^a-zA-Z0-9_]/', '_', $this->type))); } return $result; diff --git a/view/SSTemplateParser.php.inc b/view/SSTemplateParser.php.inc index 63dca3116..105555dec 100644 --- a/view/SSTemplateParser.php.inc +++ b/view/SSTemplateParser.php.inc @@ -490,6 +490,7 @@ class SSTemplateParser extends Parser { $block = ++$res['subblocks']; // Build the key for this block from the passed cache key, the block index, and the sha hash of the template itself $key = "'" . sha1($sub['php']) . (isset($res['key']) && $res['key'] ? "_'.sha1(".$res['key'].")" : "'") . ".'_$block'"; + $key = preg_replace('/[^a-zA-Z0-9_]/', '_', $key); // Get any condition $condition = isset($res['condition']) ? $res['condition'] : '';