Paths

Table of Contentst

Differential D14993

Fix incorrect key handling in extended policy filtering
ClosedPublic
Actions

Authored by epriestley on Jan 11 2016, 12:44 PM.

Details

Reviewers

chad

Commits

Restricted Diffusion Commit
rPf59ebf4c0959: Fix incorrect key handling in extended policy filtering

Summary

Via HackerOne. The use of $key here should be $extended_key.

Exploiting this requires a very unusual group of objects to be subjected to extended policy checks. I believe there is no way to actually get anything bad through the policy filter today, but this could have been an issue in the future.

Test Plan

Added a unit test which snuck something through the policy filter.
Fixed use of $extended_key.
Test now passes.

Diff Detail

Repository

rP Phabricator

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

epriestley updated this revision to Diff 36214.Jan 11 2016, 12:44 PM

epriestley retitled this revision from to Fix incorrect key handling in extended policy filtering.

epriestley updated this object.

epriestley edited the test plan for this revision. (Show Details)

epriestley added a reviewer: chad.

Slightly more detailed comment.

chad accepted this revision.Jan 11 2016, 3:03 PM

chad edited edge metadata.

This revision is now accepted and ready to land.Jan 11 2016, 3:03 PM

Closed by commit rPf59ebf4c0959: Fix incorrect key handling in extended policy filtering (authored by epriestley, committed by epriestley). · Explain WhyJan 11 2016, 3:04 PM

This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

Path

Size

src/

applications/

policy/

__tests__/

PhabricatorPolicyTestCase.php

72 lines

filter/

PhabricatorPolicyFilter.php

6 lines

Diff 36219

View Options

src/applications/policy/tests/PhabricatorPolicyTestCase.php

View Options

src/applications/policy/filter/PhabricatorPolicyFilter.php

Fix incorrect key handling in extended policy filteringClosedPublicActions