Project

General

Profile

Actions
Copy link

Bug #12101

closed

Escaping issue in Users Technique Parameter

Added by I C about 6 years ago. Updated about 6 years ago.

Status:
Released
Priority:
N/A
Assignee:
François ARMAND
Category:
Web - Technique editor
Target version:
4.3.0~rc2
Pull Request:
https://github.com/Normation/rudder/p...
Severity:
Critical - prevents main use of Rudder | no workaround | data loss | security
UX impact:
User visibility:
Operational - other Techniques | Technique editor | Rudder settings
Effort required:
Priority:
75
Name check:
Fix check:
Regression:

Description

Hi,

There is a problem in the new Technique Parameters feature in version 4.3 beta

Parameters containing doublequote are not escaping and an error occured during policies regeneration.

For exemple parameter value = "myparam" cause this error :

⇨ Policy update error for process '56' at 2018-02-08 15:26:04
⇨ Cannot write configuration node
⇨ Exit code=1 for hook: '/opt/rudder/etc/hooks.d/policy-generation-node-ready/10-cf-promise-check'.
stdout: error: There are syntax errors in policy files
stderr: '/var/rudder/share/759d2700-62f7-42bf-9dc6-7c2f846e63a2/rules.new/cfengine-community/rudder-directives.cf:38:69: error: syntax error "N1 - Linux/CMDB-N1-USERS" usebundle => CMDB_N1_USERS(""myparam"");

Related issues 1 (0 open1 closed)

Related to Rudder - Bug #12674: Policies regeneration error when using a parameters with " charReleasedFrançois ARMANDActions
Actions
Copy link

Also available in: Atom PDF