Additional fix for BZ 58660

When Mapper root redirect is enabled, ensure '/' is added to path for redirect This is part 3 of 3 of the fix for CVE-2015-5345 git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@1716894 13f79535-47bb-0310-9956-ffa450edef68
apache · Nov 27, 2015 · 127d8ea · 127d8ea
1 parent f388800
commit 127d8ea
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/java/org/apache/catalina/mapper/Mapper.java b/java/org/apache/catalina/mapper/Mapper.java
@@ -879,8 +879,10 @@ private final void internalMapWrapper(ContextVersion contextVersion,
         if(mappingData.wrapper == null && noServletPath &&
                 mappingData.context.getMapperContextRootRedirectEnabled()) {
             // The path is empty, redirect to "/"
+            path.append('/');
+            pathEnd = path.getEnd();
             mappingData.redirectPath.setChars
-                (path.getBuffer(), pathOffset, pathEnd-pathOffset);
+                (path.getBuffer(), pathOffset, pathEnd - pathOffset);
             path.setEnd(pathEnd - 1);
             return;
         }