From 23b85a6e5748e3612801d3781a59677f036c5505 Mon Sep 17 00:00:00 2001 From: Julien Loizelet Date: Fri, 13 Dec 2024 13:58:48 +0900 Subject: [PATCH] fix(redis): Apply patch to fix redis acl connection --- CHANGELOG.md | 10 ++++++ composer.json | 3 ++ composer.lock | 2 +- crowdsec.php | 4 +-- inc/Constants.php | 2 +- patches/symfony-redis-cache-auth.patch | 36 ++++++++++++++++++++++ readme.txt | 2 +- vendor/composer/installed.json | 5 +++ vendor/composer/installed.php | 4 +-- vendor/symfony/cache/PATCHES.txt | 7 +++++ vendor/symfony/cache/Traits/RedisTrait.php | 18 ++++++++--- 11 files changed, 82 insertions(+), 11 deletions(-) create mode 100644 patches/symfony-redis-cache-auth.patch create mode 100644 vendor/symfony/cache/PATCHES.txt diff --git a/CHANGELOG.md b/CHANGELOG.md index 19f4e56..3dde12b 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -6,6 +6,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 --- +## [2.8.1](https://github.com/crowdsecurity/cs-wordpress-bouncer/releases/tag/v2.8.0) - 2024-12-13 +[_Compare with previous release_](https://github.com/crowdsecurity/cs-wordpress-bouncer/compare/v2.8.0...v2.8.1) + + +### Fixed + +- Fix Redis connection error when using user and password in DSN + +--- + ## [2.8.0](https://github.com/crowdsecurity/cs-wordpress-bouncer/releases/tag/v2.8.0) - 2024-12-13 [_Compare with previous release_](https://github.com/crowdsecurity/cs-wordpress-bouncer/compare/v2.7.0...v2.8.0) diff --git a/composer.json b/composer.json index 288a454..b7a9d5b 100644 --- a/composer.json +++ b/composer.json @@ -40,6 +40,9 @@ "patches": { "gregwar/captcha": { "Fix deprecation in CaptchaBuilder constructor": "patches/gregwar-captcha-constructor.patch" + }, + "symfony/cache": { + "Fix auth connection in RedisTrait": "patches/symfony-redis-cache-auth.patch" } } } diff --git a/composer.lock b/composer.lock index 9245d9e..a0b3219 100644 --- a/composer.lock +++ b/composer.lock @@ -4,7 +4,7 @@ "Read more about it at https://getcomposer.org/doc/01-basic-usage.md#installing-dependencies", "This file is @generated automatically" ], - "content-hash": "736dd03e0c646515fc0f7d62cc50f074", + "content-hash": "5aef58aaf082099ce6e45a92dd0a3eaa", "packages": [ { "name": "composer/ca-bundle", diff --git a/crowdsec.php b/crowdsec.php index 30d58cc..50f1cbd 100644 --- a/crowdsec.php +++ b/crowdsec.php @@ -4,7 +4,7 @@ * Plugin URI: https://github.com/crowdsecurity/cs-wordpress-bouncer * Description: Safer Together. Protect your WordPress application with CrowdSec. * Tags: security, captcha, ip-blocker, crowdsec, hacker-protection, appsec - * Version: 2.8.0 + * Version: 2.8.1 * Author: CrowdSec * Author URI: https://www.crowdsec.net/ * Github: https://github.com/crowdsecurity/cs-wordpress-bouncer @@ -13,7 +13,7 @@ * Requires PHP: 7.2 * Requires at least: 4.9 * Tested up to: 6.7 - * Stable tag: 2.8.0 + * Stable tag: 2.8.1 * Text Domain: crowdsec-wp * First release: 2021. */ diff --git a/inc/Constants.php b/inc/Constants.php index 4a60d86..805ccab 100644 --- a/inc/Constants.php +++ b/inc/Constants.php @@ -21,5 +21,5 @@ class Constants extends LibConstants public const DEFAULT_BASE_FILE_PATH = __DIR__ . '/../../../../wp-content/uploads/crowdsec/'; public const STANDALONE_CONFIG_PATH = __DIR__ . '/standalone-settings.php'; - public const VERSION = 'v2.8.0'; + public const VERSION = 'v2.8.1'; } diff --git a/patches/symfony-redis-cache-auth.patch b/patches/symfony-redis-cache-auth.patch new file mode 100644 index 0000000..f97c280 --- /dev/null +++ b/patches/symfony-redis-cache-auth.patch @@ -0,0 +1,36 @@ +diff --git a/vendor/symfony/cache/Traits/RedisTrait.php b/vendor/symfony/cache/Traits/RedisTrait.php +index 518a563..c767330 100644 +--- a/vendor/symfony/cache/Traits/RedisTrait.php ++++ b/vendor/symfony/cache/Traits/RedisTrait.php +@@ -105,9 +105,13 @@ trait RedisTrait + throw new CacheException('Cannot find the "redis" extension nor the "predis/predis" package.'); + } + +- $params = preg_replace_callback('#^'.$scheme.':(//)?(?:(?:[^:@]*+:)?([^@]*+)@)?#', function ($m) use (&$auth) { +- if (isset($m[2])) { +- $auth = rawurldecode($m[2]); ++ $params = preg_replace_callback('#^'.$scheme.':(//)?(?:(?:(?[^:@]*+):)?(?[^@]*+)@)?#', function ($m) use (&$auth) { ++ if (isset($m['password'])) { ++ if (\in_array($m['user'], ['', 'default'], true)) { ++ $auth = $m['password']; ++ } else { ++ $auth = [$m['user'], $m['password']]; ++ } + + if ('' === $auth) { + $auth = null; +@@ -376,7 +380,13 @@ trait RedisTrait + $params['parameters']['database'] = $params['dbindex']; + } + if (null !== $auth) { +- $params['parameters']['password'] = $auth; ++ if (\is_array($auth)) { ++ // ACL ++ $params['parameters']['username'] = $auth[0]; ++ $params['parameters']['password'] = $auth[1]; ++ } else { ++ $params['parameters']['password'] = $auth; ++ } + } + + if (isset($params['ssl'])) { diff --git a/readme.txt b/readme.txt index 04cceb9..42fe9f7 100644 --- a/readme.txt +++ b/readme.txt @@ -4,7 +4,7 @@ Donate link: https://crowdsec.net/ Tags: security, captcha, ip-blocker, crowdsec, hacker-protection Requires at least: 4.9 Tested up to: 6.7 -Stable tag: 2.8.0 +Stable tag: 2.8.1 Requires PHP: 7.2 License: MIT License URI: https://opensource.org/licenses/MIT diff --git a/vendor/composer/installed.json b/vendor/composer/installed.json index 554d041..3a547c4 100644 --- a/vendor/composer/installed.json +++ b/vendor/composer/installed.json @@ -1130,6 +1130,11 @@ }, "time": "2024-05-31T14:33:22+00:00", "type": "library", + "extra": { + "patches_applied": { + "Fix auth connection in RedisTrait": "patches/symfony-redis-cache-auth.patch" + } + }, "installation-source": "dist", "autoload": { "psr-4": { diff --git a/vendor/composer/installed.php b/vendor/composer/installed.php index 36b0136..ad8836a 100644 --- a/vendor/composer/installed.php +++ b/vendor/composer/installed.php @@ -3,7 +3,7 @@ 'name' => 'crowdsec/wordpress-bouncer', 'pretty_version' => 'dev-main', 'version' => 'dev-main', - 'reference' => 'e3507c08812edc1e02c0e4af672299f68cb9ad5a', + 'reference' => '4b43c4688a1c0cf4dbaa5aa269fe3ba9416bddf5', 'type' => 'project', 'install_path' => __DIR__ . '/../../', 'aliases' => array(), @@ -67,7 +67,7 @@ 'crowdsec/wordpress-bouncer' => array( 'pretty_version' => 'dev-main', 'version' => 'dev-main', - 'reference' => 'e3507c08812edc1e02c0e4af672299f68cb9ad5a', + 'reference' => '4b43c4688a1c0cf4dbaa5aa269fe3ba9416bddf5', 'type' => 'project', 'install_path' => __DIR__ . '/../../', 'aliases' => array(), diff --git a/vendor/symfony/cache/PATCHES.txt b/vendor/symfony/cache/PATCHES.txt new file mode 100644 index 0000000..99ae74c --- /dev/null +++ b/vendor/symfony/cache/PATCHES.txt @@ -0,0 +1,7 @@ +This file was automatically generated by Composer Patches (https://github.com/cweagans/composer-patches) +Patches applied to this directory: + +Fix auth connection in RedisTrait +Source: patches/symfony-redis-cache-auth.patch + + diff --git a/vendor/symfony/cache/Traits/RedisTrait.php b/vendor/symfony/cache/Traits/RedisTrait.php index 518a563..c767330 100644 --- a/vendor/symfony/cache/Traits/RedisTrait.php +++ b/vendor/symfony/cache/Traits/RedisTrait.php @@ -105,9 +105,13 @@ public static function createConnection(string $dsn, array $options = []) throw new CacheException('Cannot find the "redis" extension nor the "predis/predis" package.'); } - $params = preg_replace_callback('#^'.$scheme.':(//)?(?:(?:[^:@]*+:)?([^@]*+)@)?#', function ($m) use (&$auth) { - if (isset($m[2])) { - $auth = rawurldecode($m[2]); + $params = preg_replace_callback('#^'.$scheme.':(//)?(?:(?:(?[^:@]*+):)?(?[^@]*+)@)?#', function ($m) use (&$auth) { + if (isset($m['password'])) { + if (\in_array($m['user'], ['', 'default'], true)) { + $auth = $m['password']; + } else { + $auth = [$m['user'], $m['password']]; + } if ('' === $auth) { $auth = null; @@ -376,7 +380,13 @@ public static function createConnection(string $dsn, array $options = []) $params['parameters']['database'] = $params['dbindex']; } if (null !== $auth) { - $params['parameters']['password'] = $auth; + if (\is_array($auth)) { + // ACL + $params['parameters']['username'] = $auth[0]; + $params['parameters']['password'] = $auth[1]; + } else { + $params['parameters']['password'] = $auth; + } } if (isset($params['ssl'])) {