PR#109: Escape source name before regex'ing. - mdapi - Pagure.io

mdapi

#109 Escape source name before regex'ing.

Merged 5 years ago by pingou. Opened 5 years ago by qulogic.

qulogic/mdapi re-escape into master

Escape source name before regex'ing.

Elliott Sales de Andrade • 5 years ago

772dda9

mdapi/__init__.py

file modified

+2 -1

		`@@ -91,10 +91,11 @@`
		`pkg = [Packages(*item) for item in pkgc]`
		`break`
		`elif srcname:`
		`- pattern = re.compile(f"{srcname}-[0-9]")`
		`async with db.execute(GET_PACKAGE_BY_SRC, (srcname+'-%',)) as cursor:`
		`pkgc = await cursor.fetchall()`
		`if pkgc:`
		`+ srcname = re.escape(srcname)`
		`+ pattern = re.compile(f"{srcname}-[0-9]")`
		`for pkg_item in pkgc:`
		`if pattern.match(pkg_item[3]):`
		`pkg = Packages(*pkg_item)`

qulogic commented 5 years ago

Otherwise, looking for /rawhide/srcpkg/gcc-c++ would cause a traceback and return a 500, instead of a 404.

Also, only compile regex if we found some packages.

Metadata

Assignee

None

Tags

No Tags

Changes Summary 1

file changed

mdapi/__init__.py

Powered by Pagure 5.14.1

Documentation • File an Issue • About • SSH Hostkey/Fingerprint

© Red Hat, Inc. and others.