From mboxrd@z Thu Jan  1 00:00:00 1970
Delivered-To: chneukirchen@gmail.com
Received: by 10.229.96.67 with SMTP id g3csp133789qcn; Fri, 4 May 2012
 14:37:56 -0700 (PDT)
Return-Path: <rack-devel+bncCIPDxrOWBhCpmJH9BBoEN6mYTg@googlegroups.com>
Received-SPF: pass (google.com: domain of
 rack-devel+bncCIPDxrOWBhCpmJH9BBoEN6mYTg@googlegroups.com designates
 10.68.131.8 as permitted sender) client-ip=10.68.131.8;
Authentication-Results: mr.google.com; spf=pass (google.com: domain of
 rack-devel+bncCIPDxrOWBhCpmJH9BBoEN6mYTg@googlegroups.com designates
 10.68.131.8 as permitted sender)
 smtp.mail=rack-devel+bncCIPDxrOWBhCpmJH9BBoEN6mYTg@googlegroups.com;
 dkim=pass header.i=rack-devel+bncCIPDxrOWBhCpmJH9BBoEN6mYTg@googlegroups.com
Received: from mr.google.com ([10.68.131.8]) by 10.68.131.8 with SMTP id
 oi8mr1861470pbb.12.1336167475782 (num_hops = 1); Fri, 04 May 2012 14:37:55
 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com;
 s=beta; h=x-beenthere:mime-version:date:user-agent:x-http-useragent
 :message-id:subject:from:to:x-original-sender
 :x-original-authentication-results:reply-to:precedence:mailing-list
 :list-id:x-google-group-id:list-post:list-help:list-archive:sender
 :list-subscribe:list-unsubscribe:content-type;
 bh=ffCpqwxlxFMqedkt7vXX0T7+e0YqnIZEQG9CBsg1wlE=;
 b=VRMaV7ipYBcQlq5d+fryn16qUBFS9kUoTjSpz7OKn2VQNDNsShGE5KC3rkH7mLheSt
 ewYECUJsra4lJLv3WKpY8aJ9yicsFh2sM5skUSYFLVKOVgfkDYnwM9CgdJuFc+ltZu8G
 z0kyopmpU/Dr0vGePwavCVnxiKEu3Wj4RHp9s=
Received: by 10.68.131.8 with SMTP id oi8mr223228pbb.12.1336167465302; Fri,
 04 May 2012 14:37:45 -0700 (PDT)
X-BeenThere: rack-devel@googlegroups.com
Received: by 10.68.115.43 with SMTP id jl11ls7843573pbb.4.gmail; Fri, 04 May
 2012 14:37:44 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.68.131.8 with SMTP id oi8mr223227pbb.12.1336167464916; Fri,
 04 May 2012 14:37:44 -0700 (PDT)
Received: by o3g2000pby.googlegroups.com with HTTP; Fri, 4 May 2012 14:37:44
 -0700 (PDT)
Date: Fri, 4 May 2012 14:37:44 -0700 (PDT)
User-Agent: G2/1.0
X-HTTP-UserAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_8)
 AppleWebKit/536.3 (KHTML, like Gecko) Chrome/19.0.1068.1
 Safari/536.3,gzip(gfe)
Message-ID:
 <eac87456-daa9-4544-a0d8-4538b7059559@o3g2000pby.googlegroups.com>
Subject: bug report and unit test for infinite loop parsing Content-Disposion
 header
From: Paul Rogers <pmr16366@gmail.com>
To: Rack Development <rack-devel@googlegroups.com>
X-Original-Sender: pmr16366@gmail.com
X-Original-Authentication-Results: ls.google.com; spf=pass (google.com:
 domain of pmr16366@gmail.com designates internal as permitted sender)
 smtp.mail=pmr16366@gmail.com; dkim=pass header.i=@gmail.com
Reply-To: rack-devel@googlegroups.com
Precedence: list
Mailing-list: list rack-devel@googlegroups.com; contact
 rack-devel+owners@googlegroups.com
List-ID: <rack-devel.googlegroups.com>
X-Google-Group-Id: 486215384060
List-Post: <http://groups.google.com/group/rack-devel/post?hl=en_US>,
 <mailto:rack-devel@googlegroups.com>
List-Help: <http://groups.google.com/support/?hl=en_US>,
 <mailto:rack-devel+help@googlegroups.com>
List-Archive: <http://groups.google.com/group/rack-devel?hl=en_US>
Sender: rack-devel@googlegroups.com
List-Subscribe:
 <http://groups.google.com/group/rack-devel/subscribe?hl=en_US>,
 <mailto:rack-devel+subscribe@googlegroups.com>
List-Unsubscribe:
 <http://groups.google.com/group/rack-devel/subscribe?hl=en_US>,
 <mailto:googlegroups-manage+486215384060+unsubscribe@googlegroups.com>
Content-Type: text/plain; charset=ISO-8859-1

Hi,

I created this

git@github.com:paulrogers/rack.git

showing a test that seems to have an infinite loop issue when parsing
a multipart form.

you can run the test using

bacon -I./lib:./test -a -t 'Rack::Multipart'

What seems to happen is that when parsing a header like this

Content-Disposition: inline; name=xml_product_config;
filename=XML_PRODUCT_CONFIG.xml

the regexp in the get_filename method in parser.rb seems to get stuck
in an infinite loop on   the line with

if head =~ RFC2183

This happens in the tests as well as in the unit test in the attached
git commit ( is that the correct term?)

Id be grateful if some one can take a look.

Thanks,,
Paul