Add attribute value escaping to support user names containing ';' · apache/tomcat@c4df8d4 · GitHub
Skip to content

Commit

Permalink
Add attribute value escaping to support user names containing ';'
Browse files Browse the repository at this point in the history
  • Loading branch information
markt-asf committed Apr 13, 2021
1 parent 2a13dd8 commit c4df8d4
Show file tree
Hide file tree
Showing 3 changed files with 177 additions and 3 deletions.
79 changes: 77 additions & 2 deletions java/org/apache/catalina/realm/JNDIRealm.java
Original file line number Diff line number Diff line change
Expand Up @@ -1541,8 +1541,11 @@ protected User getUserByPattern(JNDIConnection connection, String username, Stri
return null;
}

// Form the dn from the user pattern
String dn = connection.userPatternFormatArray[curUserPattern].format(new String[] { username });
// Form the DistinguishedName from the user pattern.
// Escape in case username contains a character with special meaning in
// an attribute value.
String dn = connection.userPatternFormatArray[curUserPattern].format(
new String[] { doAttributeValueEscaping(username) });

try {
user = getUserByPattern(connection.context, username, attrIds, dn);
Expand Down Expand Up @@ -2824,6 +2827,78 @@ protected String getDistinguishedName(DirContext context, String base, SearchRes
}


/**
* Implements the necessary escaping to represent an attribute value as a
* String as per RFC 4514.
*
* @param input The original attribute value
* @return The string representation of the attribute value
*/
protected String doAttributeValueEscaping(String input) {
int len = input.length();
StringBuilder result = new StringBuilder();

for (int i = 0; i < len; i++) {
char c = input.charAt(i);
switch (c) {
case ' ': {
if (i == 0 || i == (len -1)) {
result.append("\\20");
} else {
result.append(c);
}
break;
}
case '#': {
if (i == 0 ) {
result.append("\\23");
} else {
result.append(c);
}
break;
}
case '\"': {
result.append("\\22");
break;
}
case '+': {
result.append("\\2B");
break;
}
case ',': {
result.append("\\2C");
break;
}
case ';': {
result.append("\\3B");
break;
}
case '<': {
result.append("\\3C");
break;
}
case '>': {
result.append("\\3E");
break;
}
case '\\': {
result.append("\\5C");
break;
}
case '\u0000': {
result.append("\\00");
break;
}
default:
result.append(c);
}

}

return result.toString();
}


protected static String convertToHexEscape(String input) {
if (input.indexOf('\\') == -1) {
// No escaping present. Return original.
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,86 @@
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.catalina.realm;

import java.util.ArrayList;
import java.util.Collection;
import java.util.List;

import org.junit.Assert;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.junit.runners.Parameterized;
import org.junit.runners.Parameterized.Parameter;

@RunWith(Parameterized.class)
public class TestJNDIRealmAttributeValueEscape {

@Parameterized.Parameters(name = "{index}: in[{0}], out[{1}]")
public static Collection<Object[]> parameters() {
List<Object[]> parameterSets = new ArrayList<>();

// No escaping required
parameterSets.add(new String[] { "none", "none" });
// Simple cases (same order as RFC 4512 section 2)
// Each appearing at the beginning, middle and ent
parameterSets.add(new String[] { " test", "\\20test" });
parameterSets.add(new String[] { "te st", "te st" });
parameterSets.add(new String[] { "test ", "test\\20" });
parameterSets.add(new String[] { "#test", "\\23test" });
parameterSets.add(new String[] { "te#st", "te#st" });
parameterSets.add(new String[] { "test#", "test#" });
parameterSets.add(new String[] { "\"test", "\\22test" });
parameterSets.add(new String[] { "te\"st", "te\\22st" });
parameterSets.add(new String[] { "test\"", "test\\22" });
parameterSets.add(new String[] { "+test", "\\2Btest" });
parameterSets.add(new String[] { "te+st", "te\\2Bst" });
parameterSets.add(new String[] { "test+", "test\\2B" });
parameterSets.add(new String[] { ",test", "\\2Ctest" });
parameterSets.add(new String[] { "te,st", "te\\2Cst" });
parameterSets.add(new String[] { "test,", "test\\2C" });
parameterSets.add(new String[] { ";test", "\\3Btest" });
parameterSets.add(new String[] { "te;st", "te\\3Bst" });
parameterSets.add(new String[] { "test;", "test\\3B" });
parameterSets.add(new String[] { "<test", "\\3Ctest" });
parameterSets.add(new String[] { "te<st", "te\\3Cst" });
parameterSets.add(new String[] { "test<", "test\\3C" });
parameterSets.add(new String[] { ">test", "\\3Etest" });
parameterSets.add(new String[] { "te>st", "te\\3Est" });
parameterSets.add(new String[] { "test>", "test\\3E" });
parameterSets.add(new String[] { "\\test", "\\5Ctest" });
parameterSets.add(new String[] { "te\\st", "te\\5Cst" });
parameterSets.add(new String[] { "test\\", "test\\5C" });
parameterSets.add(new String[] { "\u0000test", "\\00test" });
parameterSets.add(new String[] { "te\u0000st", "te\\00st" });
parameterSets.add(new String[] { "test\u0000", "test\\00" });
return parameterSets;
}


@Parameter(0)
public String in;
@Parameter(1)
public String out;

private JNDIRealm realm = new JNDIRealm();

@Test
public void testConvertToHexEscape() throws Exception {
String result = realm.doAttributeValueEscaping(in);
Assert.assertEquals(out, result);
}
}
15 changes: 14 additions & 1 deletion test/org/apache/catalina/realm/TestJNDIRealmIntegration.java
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@ public static Collection<Object[]> parameters() {
List<Object[]> parameterSets = new ArrayList<>();

parameterSets.add(new Object[] { "test", "test", new String[] {"TestGroup"} });
parameterSets.add(new Object[] { "t;", "test", new String[] {"TestGroup"} });

return parameterSets;
}
Expand Down Expand Up @@ -125,12 +126,24 @@ public static void createLDAP() throws Exception {
result = conn.processOperation(addUserTest);
Assert.assertEquals(ResultCode.SUCCESS, result.getResultCode());

AddRequest addUserTestSemicolon = new AddRequest(
"dn: cn=t\\;,ou=people,dc=example,dc=com",
"objectClass: top",
"objectClass: person",
"objectClass: organizationalPerson",
"cn: test",
"sn: Test",
"userPassword: test");
result = conn.processOperation(addUserTestSemicolon);
Assert.assertEquals(ResultCode.SUCCESS, result.getResultCode());

AddRequest addGroupTest = new AddRequest(
"dn: cn=TestGroup,ou=people,dc=example,dc=com",
"objectClass: top",
"objectClass: groupOfNames",
"cn: TestGroup",
"member: cn=test,ou=people,dc=example,dc=com");
"member: cn=test,ou=people,dc=example,dc=com",
"member: cn=t\\;,ou=people,dc=example,dc=com");
result = conn.processOperation(addGroupTest);
Assert.assertEquals(ResultCode.SUCCESS, result.getResultCode());
}
Expand Down

0 comments on commit c4df8d4

Please sign in to comment.