Check address book URI length before creation

author Joas Schilling <coding@schilljs.com>

Fri, 26 Aug 2022 11:58:18 +0000 (13:58 +0200)

committer Joas Schilling <coding@schilljs.com>

Fri, 26 Aug 2022 11:58:18 +0000 (13:58 +0200)
author Joas Schilling <coding@schilljs.com>
Fri, 26 Aug 2022 11:58:18 +0000 (13:58 +0200)
committer Joas Schilling <coding@schilljs.com>
Fri, 26 Aug 2022 11:58:18 +0000 (13:58 +0200)
diff --git a/apps/dav/lib/CardDAV/CardDavBackend.php b/apps/dav/lib/CardDAV/CardDavBackend.php

index 6b60d6701d47a4b467b8a750c88fad79d5a45c75..b4fdcf922dc457bba76032d808cb4b95cc1a6dc4 100644 (file)
--- a/apps/dav/lib/CardDAV/CardDavBackend.php
+++ b/apps/dav/lib/CardDAV/CardDavBackend.php
@@ -389,6 +389,10 @@ class CardDavBackend implements BackendInterface, SyncSupport {
          * @throws BadRequest
          */
         public function createAddressBook($principalUri, $url, array $properties) {
+               if (strlen($url) > 255) {
+                       throw new BadRequest('URI too long. Address book not created');
+               }
+
                 $values = [
                         'displayname' => null,
                         'description' => null,
author	Joas Schilling <coding@schilljs.com>
	Fri, 26 Aug 2022 11:58:18 +0000 (13:58 +0200)
committer	Joas Schilling <coding@schilljs.com>
	Fri, 26 Aug 2022 11:58:18 +0000 (13:58 +0200)