Commit ddcff977 authored by Florian Schmaus's avatar Florian Schmaus Committed by flow

OF-476 - Made input processing of FlashCrossDomainHandler more robust: Abort...

OF-476 - Made input processing of FlashCrossDomainHandler more robust: Abort when EOF is encounterd or when more then 100 invalid CodePoints are read.

git-svn-id: http://svn.igniterealtime.org/svn/repos/openfire/trunk@13537 b35dd754-fafc-0310-a699-88a17e54d16e
parent b74c2b9f
...@@ -148,28 +148,32 @@ public class FlashCrossDomainHandler extends BasicModule { ...@@ -148,28 +148,32 @@ public class FlashCrossDomainHandler extends BasicModule {
} }
/** /**
* Safely read a string from the reader until a zero character or a newline is received o * Safely read a string from the reader until a zero character or a newline
r the 200 character is reached. * is received, more then 100 invalid code points where read or the 200
* * character is reached.
*
* @return the string read from the reader. * @return the string read from the reader.
*/ */
protected String read(BufferedReader in) { protected String read(BufferedReader in) {
StringBuffer buffer = new StringBuffer(); StringBuffer buffer = new StringBuffer();
int codePoint; int codePoint;
boolean zeroByteRead = false; boolean stopReading = false;
int invalidCodePoints = 0;
try { try {
do { do {
codePoint = in.read(); codePoint = in.read();
if (codePoint == 0 || codePoint == '\n') { if (codePoint == 0 || codePoint == '\n' || codePoint == -1) {
zeroByteRead = true; stopReading = true;
} }
else if (Character.isValidCodePoint(codePoint)) { else if (Character.isValidCodePoint(codePoint)) {
buffer.appendCodePoint(codePoint); buffer.appendCodePoint(codePoint);
} else {
invalidCodePoints++;
} }
} } while (!stopReading && buffer.length() < 200
while (!zeroByteRead && buffer.length() < 200); && invalidCodePoints < 100);
} }
catch (Exception e) { catch (Exception e) {
Log.debug("Exception (read): " + e.getMessage()); Log.debug("Exception (read): " + e.getMessage());
...@@ -177,5 +181,5 @@ r the 200 character is reached. ...@@ -177,5 +181,5 @@ r the 200 character is reached.
return buffer.toString(); return buffer.toString();
} }
} }
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment