chg: Proper runtime type checking for retrieved forms

author Benny Baumann <BenBE1987@gmx.net>

Sun, 31 Jul 2016 12:17:07 +0000 (14:17 +0200)

committer Benny Baumann <BenBE1987@gmx.net>

Sun, 31 Jul 2016 15:03:14 +0000 (17:03 +0200)
author Benny Baumann <BenBE1987@gmx.net>
Sun, 31 Jul 2016 12:17:07 +0000 (14:17 +0200)
committer Benny Baumann <BenBE1987@gmx.net>
Sun, 31 Jul 2016 15:03:14 +0000 (17:03 +0200)
diff --git a/src/org/cacert/gigi/output/template/Form.java b/src/org/cacert/gigi/output/template/Form.java

index f2219581be3c09b2d77cbbd2dff8ae30ac32de5a..3f7ab6d1d06750fdeb7789e7a77149df39ec43c6 100644 (file)
--- a/src/org/cacert/gigi/output/template/Form.java
+++ b/src/org/cacert/gigi/output/template/Form.java
@@ -104,6 +104,7 @@ public abstract class Form implements Outputable {
       * @throws CSRFException
       *             if no CSRF-token is found or the token is wrong.
       */
+    @SuppressWarnings("unchecked")
      public static <T extends Form> T getForm(HttpServletRequest req, Class<T> target) throws CSRFException {
          String csrf = req.getParameter(CSRF_FIELD);
          if (csrf == null) {
@@ -113,10 +114,17 @@ public abstract class Form implements Outputable {
          if (hs == null) {
              throw new CSRFException();
          }
-        Form f = (Form) hs.getAttribute("form/" + target.getName() + "/" + csrf);
+        Object f = hs.getAttribute("form/" + target.getName() + "/" + csrf);
          if (f == null) {
              throw new CSRFException();
          }
+        if ( !(f instanceof Form)) {
+            throw new CSRFException();
+        }
+        if ( !target.isInstance(f)) {
+            throw new CSRFException();
+        }
+        // Dynamic Cast checked by previous if statement
          return (T) f;
      }
author	Benny Baumann <BenBE1987@gmx.net>
	Sun, 31 Jul 2016 12:17:07 +0000 (14:17 +0200)
committer	Benny Baumann <BenBE1987@gmx.net>
	Sun, 31 Jul 2016 15:03:14 +0000 (17:03 +0200)