length calculation did not take into account escaped symbols in arguments

commit: 04610ead82aee661d07534dae1836b8566a49794 [log] [tgz]
author: Igor Sysoev <igor@sysoev.ru> Tue Feb 12 18:05:32 2008 +0000
committer: Igor Sysoev <igor@sysoev.ru> Tue Feb 12 18:05:32 2008 +0000
tree: 75bdd63f8ae9b8cb4086500714b00179fd7943c7
parent: 2a6c4466eee1a380333777be4f24059b8352a99c [diff]
diff --git a/src/http/ngx_http_script.c b/src/http/ngx_http_script.c
index 0af34e3..acd867f 100644
--- a/src/http/ngx_http_script.c
+++ b/src/http/ngx_http_script.c

@@ -221,6 +221,14 @@
             sc->args = 1;
             sc->compile_args = 0;
 
+            code = ngx_http_script_add_code(*sc->lengths, sizeof(uintptr_t),
+                                            NULL);
+            if (code == NULL) {
+                return NGX_ERROR;
+            }
+
+            *code = (uintptr_t) ngx_http_script_mark_args_code;
+
             code = ngx_http_script_add_code(*sc->values, sizeof(uintptr_t),
                                             &sc->main);
             if (code == NULL) {
@@ -504,7 +512,7 @@
     e->ip += sizeof(ngx_http_script_copy_capture_code_t);
 
     if (code->n < e->ncaptures) {
-        if ((e->args || e->quote)
+        if ((e->is_args || e->quote)
             && (e->request->quoted_uri || e->request->plus_in_uri))
         {
             return e->captures[code->n + 1] - e->captures[code->n]
@@ -531,7 +539,7 @@
     e->ip += sizeof(ngx_http_script_copy_capture_code_t);
 
     if (code->n < e->ncaptures) {
-        if ((e->args || e->quote)
+        if ((e->is_args || e->quote)
             && (e->request->quoted_uri || e->request->plus_in_uri))
         {
             e->pos = (u_char *) ngx_escape_uri(e->pos,
@@ -550,6 +558,16 @@
 }
 
 
+size_t
+ngx_http_script_mark_args_code(ngx_http_script_engine_t *e)
+{
+    e->is_args = 1;
+    e->ip += sizeof(uintptr_t);
+
+    return 1;
+}
+
+
 void
 ngx_http_script_start_args_code(ngx_http_script_engine_t *e)
 {
@@ -700,7 +718,7 @@
         le.ncaptures = e->ncaptures;
         le.quote = code->redirect;
 
-        len = 1;  /* reserve 1 byte for possible "?" */
+        len = 0;
 
         while (*(uintptr_t *) le.ip) {
             lcode = *(ngx_http_script_len_code_pt *) le.ip;
@@ -708,6 +726,7 @@
         }
 
         e->buf.len = len;
+        e->is_args = le.is_args;
     }
 
     if (code->add_args && r->args.len) {

diff --git a/src/http/ngx_http_script.h b/src/http/ngx_http_script.h
index b865cdb..37c8951 100644
--- a/src/http/ngx_http_script.h
+++ b/src/http/ngx_http_script.h

@@ -27,6 +27,7 @@
     unsigned                    flushed:1;
     unsigned                    skip:1;
     unsigned                    quote:1;
+    unsigned                    is_args:1;
     unsigned                    log:1;
 
     int                        *captures;
@@ -194,6 +195,7 @@
 void ngx_http_script_copy_var_code(ngx_http_script_engine_t *e);
 size_t ngx_http_script_copy_capture_len_code(ngx_http_script_engine_t *e);
 void ngx_http_script_copy_capture_code(ngx_http_script_engine_t *e);
+size_t ngx_http_script_mark_args_code(ngx_http_script_engine_t *e);
 void ngx_http_script_start_args_code(ngx_http_script_engine_t *e);
 #if (NGX_PCRE)
 void ngx_http_script_regex_start_code(ngx_http_script_engine_t *e);
commit	04610ead82aee661d07534dae1836b8566a49794	[log] [tgz]
author	Igor Sysoev <igor@sysoev.ru>	Tue Feb 12 18:05:32 2008 +0000
committer	Igor Sysoev <igor@sysoev.ru>	Tue Feb 12 18:05:32 2008 +0000
tree	75bdd63f8ae9b8cb4086500714b00179fd7943c7
parent	2a6c4466eee1a380333777be4f24059b8352a99c [diff]