HomePhabricator
Diffusion Phabricator faaaff0b6f60

Fix an error in the PolicyFilter algorithm
faaaff0b6f60
Actions

Description

Fix an error in the PolicyFilter algorithm

Summary:
PhabricatorPolicyFilter has a bug right now where it lets through objects incorrectly if:

  • the query requests two or more policies;
  • the object satisfies at least one of those policies; and
  • policy exceptions are not enabled.

This would be bad, but there's only one call in the codebase which satisfies all of these conditions, in the Maniphest batch editor. And it's moot anyway because edit operations get another policy check slightly later. So there is no policy/security impact from this flaw.

(The next diff relies on this behavior, which is how I caught it.)

Test Plan:

  • Added a failing unit test and made it pass.
  • Grepped the codebase for requireCapabilities() and verified that there is no security impact. Basically, 99% of callsites use executeOne(), which throws anyway and moots the filtering.

Reviewers: btrahan

Reviewed By: btrahan

CC: aran

Differential Revision: https://secure.phabricator.com/D7721

Details

Provenance
epriestleyAuthored on Dec 6 2013, 1:00 AM
epriestleyPushed on Dec 6 2013, 1:00 AM
Reviewer
btrahan
Differential Revision
D7721: Fix an error in the PolicyFilter algorithm
Parents
rP5ca84589bdf6: Add an SSH access log
Branches
Unknown
Tags
Unknown

Event Timeline

Changes (3)

PathSize
src/
applications/
policy/
__tests__/
filter/
infrastructure/
query/
policy/

rPfaaaff0b6f60

View Options

src/applications/policy/__tests__/PhabricatorPolicyTestCase.php

Loading...
View Options

src/applications/policy/filter/PhabricatorPolicyFilter.php

Loading...
View Options

src/infrastructure/query/policy/PhabricatorPolicyAwareQuery.php

Loading...
Phabricator ยท Built by Phacility