regex - PHP - Is this a safe way to allow user-supplied regular expressions -


I would like to permit the submission of a small user-defined regular expression for testing, however, more evil than run-over server usage < There are several problems to consider code> eval () usage.

For my knowledge, I have handled those problems which I could think of following code, do not I have thought of any attack vectors? (I know one but not innocuous question) 

  function testRegex ($ regex) {// Null Character allows a premature regenerative end and "/../e" injection if ( SRPO ($ regex, 0)! == incorrect ||! Trim ($ regex)) {return false; } $ Backtrack_limit = ini_set ('pcre.backtrack_limit', 200); $ Recursion_limit = ini_set ('pcre.recursion_limit', 20); $ Valid = @ peg_match ("~ $ regex ~ u", tap)! == Incorrect; Ini_set ('pcre.backtrack_limit', $ backtrack_limit); Ini_set ('pcre.recursion_limit', $ recursion_limit); Return valid $; } $ Regexes = array ("Invalid Regular Expression"), '', '\ w +', '\ / \ w + /', 'foo [bar] *', '\ / \ x00known / e' Chr (0x00 ) Chr (0), 'known' e 'chr (0),' known 'e' chr (0x00), '[az] +', '\ p {lu} +',); Forex Currency ($ regexes as $ regex) {var_dump ($ regex, testRegex ($ regex)); }

If you want to see an example of the injection of null-bite : 

  $ user_regex = ' E 'chr (0); $ User_match = 'System ("Hummy")'; Var_dump (preg_replace ("~ $ user_regex ~ u", $ user_match, 'foo'));  
 
 Obviously, this is the only way to check that the string is a valid regular expression Compiling (which you call on any mailing function) is done, then what you're doing makes a lot of emotions. 
 
 The blank-byte security you added is not really necessary  since 5.4 , because already checked, and especially to fix the latter Is a relatively recent (2011). 
 
 Setting a low backcrack and recursion range is a good enough sandbox, maybe you can also check for the maximum length. 
 
 He said, the ability to use the special solutions such as  / s ,  / i  and  / m  does not provide; Maybe he is not your main concern at this time, but it is food for thought :)

Comments

Post a Comment

Popular posts from this blog

ios - How do I use CFArrayRef in Swift? -

I am using Objective-class in my Swift Project through a bridging header. The method signature looks like this: - Some cement (some type) some parameters; I started by getting an example of class, calling method, and storing the value: var myInstance = MyClassWithThatMethod (); Var cfArr = myInstance.someMethod (some value); Then try to get the value in the array: var valueInArrayThatIWant = CFArrayGetValueAtIndex (cfArr, 0); However, I get the error unmanaged & lt; Cfarray & gt; Not like 'CFArray' . Unmanaged & lt; Cfarray & gt; also means? I looked, but I do not need to change the array in a fast array (though it would be good). I need to be able to get value from the array. I also tried CFArray method to pass in a function: func doSomeStuffOnArray (myArray: NSArray) {} Although I get the same error when using: doSomeStuffOnArray (cfArr); // unmanaged & lt; CFArray & gt; I am using CFArray because I want to sto...
Read more

eclipse plugin - Run java code error: Workspace is closed -

To create an automated project, I created a plug-in project with the following dependencies: Org.eclipse.core.resources org.eclipse.equinox.registry org.eclipse.core.runtime and the following The Java class is located in the src folder: Package Examiner; Import org.eclipse.core.resources.IProject; Import org.eclipse.core.resources.IWorkspaceRoot; Import org.eclipse.core.resources.ResourcesPlugin; Import org.eclipse.core.runtime.CoreException; Import org.eclipse.core.runtime.IProgressMonitor; Import org.eclipse.core.runtime.NullProgressMonitor; Public class tes {public static zero main (string [] args) {// TODO auto generated method stub IProgressMonitor progress monitor = new NullProgressMonitor (); IWorkspaceRoot root = ResourcesPlugin.getWorkspace (). GetRoot (); Ipoject project = root.jetproject ("desired projectname"); Try {Project.create (progress monitor); Project.open (progressMonitor); } Grip (CoreException E) {// TODO Auto generated blocking block e....
Read more

c - Error on building source code in VC 6 -

When I create my project in VC6, the BScMKE reports the following error Linking .. Creating Library ... .. / ... / PB / Bean / Debub / ICEERP.Lib and Object ........ P.B. / Bean / DBube / ICREPlay.APP Browse information file ... BSMMK: ​​error can not be read from BK 1505: file '../../PB/bin/TmpOut/ICReplay/Debug/ICReplay_PB.bsc' Error executing bscmake.exe Can someone help me? 2 Reason for reference from: "ICReplay_PB .bsc "file will be corrupted The trunk of the file will be happening with the compiler running out of disk space or is being interrupted when creating .sbr file I think this answer will help you!
Read more