News:

Bored?  Looking to kill some time?  Want to chat with other SMF users?  Join us in IRC chat or Discord

Main Menu

Bug in new 1.1.11 download

Started by dcmouser, December 01, 2009, 09:31:17 PM

Previous topic - Next topic
Print
Go Down Pages1 2 All
User actions

dcmouser

December 01, 2009, 09:31:17 PM
Just downloaded the new 1.1.11 package and found this bug in Subs.php

In many places you have the line:
if (strpos($data, \'http://\') !== 0 || strpos($data, \'https://\') !== 0)

I believe that should be (in all cases):
if (strpos($data, \'http://\') !== 0 && strpos($data, \'https://\') !== 0)

Basically if you leave it as is that condition is ALWAYS matched (since one of thos will not be ===0 meaning in first position), and so you get extra http:// added to each url and image link.
proud member of donationcoder.com (forum)

RMIGHTY1

#1
December 02, 2009, 03:16:07 AM
TY dcmouser, that got the extra "HTTP://" out of the url's.

~~Ray     :D

vizzini

#2
December 02, 2009, 03:25:41 AM
yep, that would do it.

for the lazy...
Code Select
sed -i -e 's/0 ||/0 \&\&/g' Sources/Subs.php

assumes you haven't modified the stock install or upgrade Sources/Subs.php before running it

Arantor

#3
December 02, 2009, 03:38:08 AM
This has actually been fixed, btw. Was fixed in the revised packages issued about 2 hours later.

If you updated within the first couple of hours, uninstall the patch, delete it and reinstall.

vizzini

#4
December 02, 2009, 04:12:03 AM
Just dl'd all three bz2 files and they have the same issue...

Arantor

#5
December 02, 2009, 04:13:03 AM
Weird. They were supposed to have been regenerated.

I know the upgrade from 1.1.10 -> 1.1.11 was fixed; I was using that myself.

Geek

#6
December 02, 2009, 04:46:12 AM
Hi,

I just tried upgrading the Subs.php files from the downloads area (the Full and Small install .zips, 0145AM PST, Dec 2nd) and the bug is still there.

I just edited manually as per the first poster's instructions and voila! Fixed ;D

Cheers!
-= Gregg =-

Arantor

#7
December 02, 2009, 04:46:58 AM
* Arantor goes and bugs the devs then to fix that.

vizzini

#8
December 02, 2009, 05:06:07 AM
The above fix has issues as well; it always evaluates to zero.

I've been running the following changes for the past two hours without issue...

Original:
Code Select
if (strpos($data, \'http://\') !== 0 || strpos($data, \'https://\') !== 0)
Proposed:
Code Select
if (!(strncmp($data, \'http://\', 7) == 0 || strncmp($data, \'https://\', 8) == 0))

Original:
Code Select
elseif (strpos($data, \'http://\') !== 0 || strpos($data, \'https://\') !== 0)
Proposed:
Code Select
elseif (!(strncmp($data, \'http://\', 7) == 0 || strncmp($data, \'https://\', 8) == 0))

Original:
Code Select
if (strpos($data, \'ftp://\') !== 0 || strpos($data, \'ftps://\') !== 0)
Proposed:
Code Select
if (!(strncmp($data, \'ftp://\', 6) == 0 || strncmp($data, \'ftps://\', 7) == 0))

the above would cover cases like  'anonym.to/?http://example.com [nofollow]'.  I also suspect the assignment should be $data = $boardurl instead of just stuffing h t t p : / / infront; how else would you get relative urls in the smf_messages.body?

Arantor

#9
December 02, 2009, 05:07:19 AM
Umm, the only time you should ever be able to produce relative URLs is with # links only, from what I remember of it.

davyp74

#10
December 02, 2009, 05:41:29 AM
I have the same problem.
i have installed 1.1.11 today.

vizzini

#11
December 02, 2009, 05:43:56 AM
rut-ro, i have a few "/index.php?board=x" in smf_messages.board... yes, without h t t p : / /  that's why i beginning to believe $data = $boardurl was the real intention.

Is there a smf specification on encoding? Perhaps someone has script to vigorously verify current expectations with regard to markup? 'Find and repair any errors' didn't catch this ( wouldn't expect it to )

Arantor

#12
December 02, 2009, 05:46:19 AM
No, $boardurl was never the intention here, never has been. The idea is that url is supposed to be for full links (and always has been) so it's vetting for http://

vizzini

#13
December 02, 2009, 06:52:27 AM
The downloads are the same; any word on an official fix time frame?

Arantor

#14
December 02, 2009, 06:56:39 AM
Not yet. No doubt there will be a post if/when things get fixed.

javierjp

#15
December 02, 2009, 09:08:12 AM Last Edit: December 02, 2009, 09:48:53 AM by javierjp
Hi Arantor,

What we should do? i get the extra http:// too, we must wait for a official fix or we should apply the dcmouser solution?
thanks in advance.

edit: dcmouser, i tried your fix and works fine for posted images, but not solve the problem with posted urls, still with double http://

alphacaveman

#16
December 02, 2009, 09:51:37 AM
So...is the upgrade good now?

dcmouser

#17
December 02, 2009, 09:54:54 AM
make sure you change all occurences of if (strpos($data, \'http://\') !== 0 || strpos($data, \'https://\') !== 0)
and same for if (strpos($data, \'ftp://\') !== 0 || strpos($data, \'ftps://\') !== 0)

there are several places in that subs.php file where this is checked -- some cover img tags, others cover url tags; if you change them all it will be fixed.

Quote from: javierjp on December 02, 2009, 09:08:12 AM
edit: dcmouser, i tried your fix and works fine for posted images, but not solve the problem with posted urls, still with double http://
proud member of donationcoder.com (forum)

javierjp

#18
December 02, 2009, 10:03:12 AM
Thanks for reply, so i must search and replace the || for &&  in all the tags with problems, right?

dcmouser

#19
December 02, 2009, 10:06:11 AM
yes you can do a global search and replace in subs.php and replace
!== 0 || strpos($data,
with
!== 0 && strpos($data,
proud member of donationcoder.com (forum)
Print
Go Up Pages1 2 All
User actions
Advertisement: