~ubuntu-branches/ubuntu/natty/tomcat6/natty-proposed

Viewing changes to java/org/apache/jasper/compiler/AttributeParser.java

Committer: Bazaar Package Importer
Author(s): Thierry Carrez
Date: 2010-05-21 13:51:15 UTC
mfrom: (2.2.12 sid)
Revision ID: james.westby@ubuntu.com-20100521135115-qfwnf24lzvi3644v

Tags: 6.0.26-2

http://bugs.debian.org/581018

* debian/tomcat6.{postinst,prerm}: Respect TOMCAT6_USER and TOMCAT6_GROUP
  as defined in /etc/default/tomcat6 when setting directory permissions and
  authbind configuration (Closes: #581018, LP: #557300)
* debian/tomcat6.postinst: Use group "tomcat6" instead of "adm" for
  permissions in /var/lib/tomcat6, so that group "adm" doesn't get write
  permissions over /var/lib/tomcat6/webapps (LP: #569118)

files added:
res/META-INF/annotations-api.jar.manifest

res/META-INF/el-api.jar.manifest

test/org/apache/catalina/valves/TestRemoteIpValve.java

webapps/manager/WEB-INF/jsp

webapps/manager/WEB-INF/jsp/sessionDetail.jsp

webapps/manager/WEB-INF/jsp/sessionsList.jsp

files removed:
test/org/apache/catalina/valves/RemoteIpValveTest.java

webapps/manager/sessionDetail.jsp

webapps/manager/sessionsList.jsp

files modified:
.pc/deploy-webapps-build-xml.patch/build.xml

.pc/jsp-api-OSGi.patch/res/META-INF/jsp-api.jar.manifest

.pc/servlet-api-OSGi.patch/res/META-INF/servlet-api.jar.manifest

.pc/use-commons-dbcp.patch/webapps/docs/jndi-resources-howto.xml

STATUS.txt

bin/catalina.bat

bin/digest.bat

bin/service.bat

bin/setclasspath.bat

bin/shutdown.bat

bin/startup.bat

bin/tool-wrapper.bat

bin/version.bat

build.properties.default

build.xml

conf/tomcat-users.xml

conf/web.xml

debian/changelog

debian/control

debian/patches/jsp-api-OSGi.patch

debian/patches/servlet-api-OSGi.patch

debian/tomcat6-instance-create

debian/tomcat6.postinst

debian/tomcat6.prerm

dist.xml

extras.xml

java/javax/el/ArrayELResolver.java

java/javax/el/ListELResolver.java

java/javax/el/LocalStrings.properties

java/javax/servlet/jsp/JspContext.java

java/javax/servlet/jsp/JspFactory.java

java/javax/servlet/jsp/el/ELException.java

java/javax/servlet/jsp/el/ELParseException.java

java/javax/servlet/jsp/el/Expression.java

java/javax/servlet/jsp/el/ExpressionEvaluator.java

java/javax/servlet/jsp/el/FunctionMapper.java

java/javax/servlet/jsp/el/ImplicitObjectELResolver.java

java/javax/servlet/jsp/el/VariableResolver.java

java/javax/servlet/jsp/tagext/BodyTag.java

java/javax/servlet/jsp/tagext/TagSupport.java

java/org/apache/catalina/ant/AbstractCatalinaTask.java

java/org/apache/catalina/ant/DeployTask.java

java/org/apache/catalina/connector/Connector.java

java/org/apache/catalina/core/AprLifecycleListener.java

java/org/apache/catalina/core/LocalStrings_es.properties

java/org/apache/catalina/core/StandardHost.java

java/org/apache/catalina/core/StandardService.java

java/org/apache/catalina/core/mbeans-descriptors.xml

java/org/apache/catalina/loader/LocalStrings.properties

java/org/apache/catalina/loader/VirtualWebappLoader.java

java/org/apache/catalina/loader/WebappClassLoader.java

java/org/apache/catalina/manager/HTMLManagerServlet.java

java/org/apache/catalina/manager/LocalStrings.properties

java/org/apache/catalina/manager/ManagerServlet.java

java/org/apache/catalina/manager/host/LocalStrings.properties

java/org/apache/catalina/mbeans/MBeanUtils.java

java/org/apache/catalina/servlets/DefaultServlet.java

java/org/apache/catalina/servlets/WebdavServlet.java

java/org/apache/catalina/session/LocalStrings_fr.properties

java/org/apache/catalina/startup/Catalina.java

java/org/apache/catalina/startup/TldConfig.java

java/org/apache/catalina/tribes/transport/ReplicationTransmitter.java

java/org/apache/catalina/util/RequestUtil.java

java/org/apache/catalina/valves/RemoteIpValve.java

java/org/apache/catalina/valves/mbeans-descriptors.xml

java/org/apache/coyote/http11/Http11AprProcessor.java

java/org/apache/coyote/http11/Http11NioProcessor.java

java/org/apache/coyote/http11/Http11Processor.java

java/org/apache/el/ValueExpressionImpl.java

java/org/apache/el/lang/ELSupport.java

java/org/apache/el/parser/AstIdentifier.java

java/org/apache/el/parser/AstValue.java

java/org/apache/el/parser/SimpleNode.java

java/org/apache/jasper/JspC.java

java/org/apache/jasper/Options.java

java/org/apache/jasper/compiler/AttributeParser.java

java/org/apache/jasper/compiler/Compiler.java

java/org/apache/jasper/compiler/ELParser.java

java/org/apache/jasper/compiler/Generator.java

java/org/apache/jasper/compiler/JavacErrorDetail.java

java/org/apache/jasper/compiler/JspConfig.java

java/org/apache/jasper/compiler/JspDocumentParser.java

java/org/apache/jasper/compiler/Parser.java

java/org/apache/jasper/compiler/ScriptingVariabler.java

java/org/apache/jasper/compiler/Validator.java

java/org/apache/jasper/el/ExpressionEvaluatorImpl.java

java/org/apache/jasper/resources/LocalStrings.properties

java/org/apache/jasper/resources/LocalStrings_fr.properties

java/org/apache/jasper/security/SecurityClassLoad.java

java/org/apache/jasper/servlet/JspServletWrapper.java

java/org/apache/juli/ClassLoaderLogManager.java

java/org/apache/juli/FileHandler.java

java/org/apache/tomcat/util/net/AprEndpoint.java

res/META-INF/bootstrap.jar.manifest

res/META-INF/default.manifest

res/META-INF/default.notice

res/META-INF/jsp-api.jar.manifest

res/META-INF/servlet-api.jar.manifest

res/confinstall/tomcat-users_2.xml

res/procrun/amd64/tomcat6.exe

res/procrun/ia64/tomcat6.exe

res/procrun/tomcat6.exe

res/procrun/tomcat6w.exe

res/welcome.bin.html

res/welcome.main.html

test/build.xml

test/org/apache/el/lang/TestELSupport.java

test/org/apache/jasper/compiler/TestAttributeParser.java

webapps/docs/aio.xml

webapps/docs/appdev/deployment.xml

webapps/docs/appdev/processes.xml

webapps/docs/appdev/source.xml

webapps/docs/apr.xml

webapps/docs/balancer-howto.xml

webapps/docs/building.xml

webapps/docs/cgi-howto.xml

webapps/docs/changelog.xml

webapps/docs/class-loader-howto.xml

webapps/docs/cluster-howto.xml

webapps/docs/config/ajp.xml

webapps/docs/config/cluster-channel.xml

webapps/docs/config/cluster-deployer.xml

webapps/docs/config/cluster-interceptor.xml

webapps/docs/config/cluster-listener.xml

webapps/docs/config/cluster-manager.xml

webapps/docs/config/cluster-membership.xml

webapps/docs/config/cluster-receiver.xml

webapps/docs/config/cluster-sender.xml

webapps/docs/config/cluster-valve.xml

webapps/docs/config/cluster.xml

webapps/docs/config/context.xml

webapps/docs/config/engine.xml

webapps/docs/config/executor.xml

webapps/docs/config/globalresources.xml

webapps/docs/config/host.xml

webapps/docs/config/http.xml

webapps/docs/config/listeners.xml

webapps/docs/config/loader.xml

webapps/docs/config/manager.xml

webapps/docs/config/realm.xml

webapps/docs/config/resources.xml

webapps/docs/config/server.xml

webapps/docs/config/service.xml

webapps/docs/config/systemprops.xml

webapps/docs/config/valve.xml

webapps/docs/connectors.xml

webapps/docs/default-servlet.xml

webapps/docs/deployer-howto.xml

webapps/docs/extras.xml

webapps/docs/funcspecs/fs-admin-apps.xml

webapps/docs/funcspecs/fs-admin-objects.xml

webapps/docs/funcspecs/fs-admin-opers.xml

webapps/docs/funcspecs/fs-default.xml

webapps/docs/funcspecs/fs-invoker.xml

webapps/docs/funcspecs/fs-jdbc-realm.xml

webapps/docs/funcspecs/fs-jndi-realm.xml

webapps/docs/funcspecs/fs-memory-realm.xml

webapps/docs/funcspecs/mbean-names.xml

webapps/docs/html-manager-howto.xml

webapps/docs/introduction.xml

webapps/docs/jasper-howto.xml

webapps/docs/jndi-datasource-examples-howto.xml

webapps/docs/jndi-resources-howto.xml

webapps/docs/logging.xml

webapps/docs/manager-howto.xml

webapps/docs/maven-jars.xml

webapps/docs/mbeans-descriptor-howto.xml

webapps/docs/monitoring.xml

webapps/docs/proxy-howto.xml

webapps/docs/realm-howto.xml

webapps/docs/security-manager-howto.xml

webapps/docs/setup.xml

webapps/docs/ssi-howto.xml

webapps/docs/ssl-howto.xml

webapps/docs/tomcat-docs.xsl

webapps/docs/tribes/introduction.xml

webapps/docs/virtual-hosting-howto.xml

webapps/docs/windows-service-howto.xml

webapps/examples/WEB-INF/classes/LocalStrings_es.properties

webapps/examples/WEB-INF/classes/LocalStrings_fr.properties

webapps/examples/jsp/index.html

webapps/manager/WEB-INF/web.xml

Show diffs side-by-side

added added

removed removed

java/org/apache/jasper/compiler/AttributeParser.java

* "\${1+1}". After unquoting, both appear as "${1+1}" but the first should

* evaluate to "2" and the second to "${1+1}". Literal \, $ and # need special

* treatment to ensure there is no ambiguity. The JSP attribute unquoting

* covers \\, \", \', \$, \#, %\>, <\%, ' and "

* covers \\, \", \', \$, \#, %\>, <\%, &apos; and &quot;

public class AttributeParser {

* scripting expressions.

* @param isELIgnored Is expression language being ignored on the page

* where the JSP attribute is defined.

* @param isDeferredSyntaxAllowedAsLiteral

* Are deferred expressions treated as literals?

* @return An unquoted JSP attribute that, if it contains

* expression language can be safely passed to the EL

* processor without fear of ambiguity.

public static String getUnquoted(String input, char quote,

boolean isELIgnored) {

boolean isELIgnored, boolean isDeferredSyntaxAllowedAsLiteral) {

return (new AttributeParser(input, quote, isELIgnored,

isDeferredSyntaxAllowedAsLiteral,

STRICT_QUOTE_ESCAPING)).getUnquoted();

}

* scripting expressions.

* @param isELIgnored Is expression language being ignored on the page

* where the JSP attribute is defined.

* @param isDeferredSyntaxAllowedAsLiteral

* Are deferred expressions treated as literals?

* @param strict The value to use for STRICT_QUOTE_ESCAPING.

* @return An unquoted JSP attribute that, if it contains

* expression language can be safely passed to the EL

* processor without fear of ambiguity.

protected static String getUnquoted(String input, char quote,

boolean isELIgnored, boolean strict) {

boolean isELIgnored, boolean isDeferredSyntaxAllowedAsLiteral,

boolean strict) {

return (new AttributeParser(input, quote, isELIgnored,

strict)).getUnquoted();

isDeferredSyntaxAllowedAsLiteral, strict)).getUnquoted();

}

/* The quoted input string. */

* treated as literals rather than quoted values. */

private final boolean isELIgnored;

/* Are deferred expression treated as literals */

private final boolean isDeferredSyntaxAllowedAsLiteral;

/* Overrides the STRICT_QUOTE_ESCAPING. Used for Unit tests only. */

private final boolean strict;

109

118

* @param strict

110

119

111

120

private AttributeParser(String input, char quote,

112

boolean isELIgnored, boolean strict) {

121

boolean isELIgnored, boolean isDeferredSyntaxAllowedAsLiteral,

122

boolean strict) {

113

123

this.input = input;

114

124

this.quote = quote;

115

125

// If quote is null this is a scriptign expressions and any EL syntax

116

126

// should be ignored

117

127

this.isELIgnored = isELIgnored || (quote == 0);

128

this.isDeferredSyntaxAllowedAsLiteral =

129

isDeferredSyntaxAllowedAsLiteral;

118

130

this.strict = strict;

119

131

this.type = getType(input);

120

132

this.size = input.length();

151

163

char ch = nextChar();

152

164

if (!isELIgnored && ch == '\\') {

153

165

if (type == 0) {

154

type = '$';

166

result.append("\\");

167

} else {

168

result.append(type);

169

result.append("{'\\\\'}");

155

170

}

156

result.append(type);

157

result.append("{'\\\\'}");

158

171

} else if (!isELIgnored && ch == '$' && lastChEscaped){

159

172

if (type == 0) {

160

type = '$';

173

result.append("\\$");

174

} else {

175

result.append(type);

176

result.append("{'$'}");

161

177

}

162

result.append(type);

163

result.append("{'$'}");

164

178

} else if (!isELIgnored && ch == '#' && lastChEscaped){

179

// Note if isDeferredSyntaxAllowedAsLiteral==true, \# will

180

// not be treated as an escape

165

181

if (type == 0) {

166

type = '$';

182

result.append("\\#");

183

} else {

184

result.append(type);

185

result.append("{'#'}");

167

186

}

168

result.append(type);

169

result.append("{'#'}");

170

187

} else if (ch == type){

171

188

if (i < size) {

172

189

char next = input.charAt(i);

197

214

private void parseEL() {

198

215

boolean endEL = false;

199

216

boolean insideLiteral = false;

217

char literalQuote = 0;

200

218

while (i < size && !endEL) {

201

char literalQuote = '\'';

202

219

char ch = nextChar();

203

220

if (ch == '\'' || ch == '\"') {

204

221

if (insideLiteral) {

261

278

} else if (ch == '\\' && i + 1 < size) {

262

279

ch = input.charAt(i + 1);

263

280

if (ch == '\\' || ch == '\"' || ch == '\'' ||

264

(!isELIgnored && (ch == '$' || ch == '#'))) {

281

(!isELIgnored &&

282

(ch == '$' ||

283

(!isDeferredSyntaxAllowedAsLiteral &&

284

ch == '#')))) {

265

285

i += 2;

266

286

lastChEscaped = true;

267

287

} else {

311

331

int j = 0;

312

332

int len = value.length();

313

333

char current;

314

334

315

335

while (j < len) {

316

336

current = value.charAt(j);

317

337

if (current == '\\') {

318

338

// Escape character - skip a character

319

339

j++;

320

} else if (current == '#') {

340

} else if (current == '#' && !isDeferredSyntaxAllowedAsLiteral) {

321

341

if (j < (len -1) && value.charAt(j + 1) == '{') {

322

342

return '#';

323

343

}

Older »