2 files changed, 87 insertions, 78 deletions

diff --git a/ChangeLog b/ChangeLog
index 0e367f9c..b4014983 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -562,6 +562,10 @@ expected that interfaces, even new ones, break during the initial
   [ported from v4]
 ---------------------------------------------------------------------------
 Version 5.10.1  [V5-STABLE], 2012-0?-??
+- bugfix: invalid property name in property-filter could cause abort
+  if action chaining (& operator) was used
+  http://bugzilla.adiscon.com/show_bug.cgi?id=355
+  Thanks to pilou@gmx.com for the bug report
 - bugfix: remove invalid socket option call from imuxsock
   Thanks to Cristian Ionescu-Idbohrn and Jonny Törnbom 
 ---------------------------------------------------------------------------
diff --git a/runtime/rule.c b/runtime/rule.c
index 18199230..452b0d80 100644
--- a/runtime/rule.c
+++ b/runtime/rule.c
@@ -182,78 +182,83 @@ shouldProcessThisMessage(rule_t *pRule, msg_t *pMsg, sbool *bProcessMsg)
 		dbgprintf("result of rainerscript filter evaluation: %d\n", bRet);
 	} else {
 		assert(pRule->f_filter_type == FILTER_PROP); /* assert() just in case... */
-		pszPropVal = MsgGetProp(pMsg, NULL, pRule->f_filterData.prop.propID,
-					pRule->f_filterData.prop.propName, &propLen, &pbMustBeFreed);
-
-		/* Now do the compares (short list currently ;)) */
-		switch(pRule->f_filterData.prop.operation ) {
-		case FIOP_CONTAINS:
-			if(rsCStrLocateInSzStr(pRule->f_filterData.prop.pCSCompValue, (uchar*) pszPropVal) != -1)
-				bRet = 1;
-			break;
-		case FIOP_ISEMPTY:
-			if(propLen == 0)
-				bRet = 1; /* process message! */
-			break;
-		case FIOP_ISEQUAL:
-			if(rsCStrSzStrCmp(pRule->f_filterData.prop.pCSCompValue,
-					  pszPropVal, ustrlen(pszPropVal)) == 0)
-				bRet = 1; /* process message! */
-			break;
-		case FIOP_STARTSWITH:
-			if(rsCStrSzStrStartsWithCStr(pRule->f_filterData.prop.pCSCompValue,
-					  pszPropVal, ustrlen(pszPropVal)) == 0)
-				bRet = 1; /* process message! */
-			break;
-		case FIOP_REGEX:
-			if(rsCStrSzStrMatchRegex(pRule->f_filterData.prop.pCSCompValue,
-					(unsigned char*) pszPropVal, 0, &pRule->f_filterData.prop.regex_cache) == RS_RET_OK)
-				bRet = 1;
-			break;
-		case FIOP_EREREGEX:
-			if(rsCStrSzStrMatchRegex(pRule->f_filterData.prop.pCSCompValue,
-					  (unsigned char*) pszPropVal, 1, &pRule->f_filterData.prop.regex_cache) == RS_RET_OK)
-				bRet = 1;
-			break;
-		default:
-			/* here, it handles NOP (for performance reasons) */
-			assert(pRule->f_filterData.prop.operation == FIOP_NOP);
-			bRet = 1; /* as good as any other default ;) */
-			break;
-		}
-
-		/* now check if the value must be negated */
-		if(pRule->f_filterData.prop.isNegated)
-			bRet = (bRet == 1) ?  0 : 1;
-
-		if(Debug) {
-			char *cstr;
-			if(pRule->f_filterData.prop.propID == PROP_CEE) {
-				cstr = es_str2cstr(pRule->f_filterData.prop.propName, NULL);
-				dbgprintf("Filter: check for CEE property '%s' (value '%s') ",
-					cstr, pszPropVal);
-				free(cstr);
-			} else {
-				dbgprintf("Filter: check for property '%s' (value '%s') ",
-					propIDToName(pRule->f_filterData.prop.propID), pszPropVal);
+		if(pRule->f_filterData.prop.propID == PROP_INVALID) {
+			DBGPRINTF("invalid property ID, filter always returns 0\n");
+			bRet = 0;
+		} else {
+			pszPropVal = MsgGetProp(pMsg, NULL, pRule->f_filterData.prop.propID,
+						pRule->f_filterData.prop.propName, &propLen, &pbMustBeFreed);
+
+			/* Now do the compares (short list currently ;)) */
+			switch(pRule->f_filterData.prop.operation ) {
+			case FIOP_CONTAINS:
+				if(rsCStrLocateInSzStr(pRule->f_filterData.prop.pCSCompValue, (uchar*) pszPropVal) != -1)
+					bRet = 1;
+				break;
+			case FIOP_ISEMPTY:
+				if(propLen == 0)
+					bRet = 1; /* process message! */
+				break;
+			case FIOP_ISEQUAL:
+				if(rsCStrSzStrCmp(pRule->f_filterData.prop.pCSCompValue,
+						  pszPropVal, ustrlen(pszPropVal)) == 0)
+					bRet = 1; /* process message! */
+				break;
+			case FIOP_STARTSWITH:
+				if(rsCStrSzStrStartsWithCStr(pRule->f_filterData.prop.pCSCompValue,
+						  pszPropVal, ustrlen(pszPropVal)) == 0)
+					bRet = 1; /* process message! */
+				break;
+			case FIOP_REGEX:
+				if(rsCStrSzStrMatchRegex(pRule->f_filterData.prop.pCSCompValue,
+						(unsigned char*) pszPropVal, 0, &pRule->f_filterData.prop.regex_cache) == RS_RET_OK)
+					bRet = 1;
+				break;
+			case FIOP_EREREGEX:
+				if(rsCStrSzStrMatchRegex(pRule->f_filterData.prop.pCSCompValue,
+						  (unsigned char*) pszPropVal, 1, &pRule->f_filterData.prop.regex_cache) == RS_RET_OK)
+					bRet = 1;
+				break;
+			default:
+				/* here, it handles NOP (for performance reasons) */
+				assert(pRule->f_filterData.prop.operation == FIOP_NOP);
+				bRet = 1; /* as good as any other default ;) */
+				break;
 			}
+
+			/* now check if the value must be negated */
 			if(pRule->f_filterData.prop.isNegated)
-				dbgprintf("NOT ");
-			if(pRule->f_filterData.prop.operation == FIOP_ISEMPTY) {
-				dbgprintf("%s : %s\n",
-				       getFIOPName(pRule->f_filterData.prop.operation),
-				       bRet ? "TRUE" : "FALSE");
-			} else {
-				dbgprintf("%s '%s': %s\n",
-				       getFIOPName(pRule->f_filterData.prop.operation),
-				       rsCStrGetSzStrNoNULL(pRule->f_filterData.prop.pCSCompValue),
-				       bRet ? "TRUE" : "FALSE");
+				bRet = (bRet == 1) ?  0 : 1;
+
+			if(Debug) {
+				char *cstr;
+				if(pRule->f_filterData.prop.propID == PROP_CEE) {
+					cstr = es_str2cstr(pRule->f_filterData.prop.propName, NULL);
+					dbgprintf("Filter: check for CEE property '%s' (value '%s') ",
+						cstr, pszPropVal);
+					free(cstr);
+				} else {
+					dbgprintf("Filter: check for property '%s' (value '%s') ",
+						propIDToName(pRule->f_filterData.prop.propID), pszPropVal);
+				}
+				if(pRule->f_filterData.prop.isNegated)
+					dbgprintf("NOT ");
+				if(pRule->f_filterData.prop.operation == FIOP_ISEMPTY) {
+					dbgprintf("%s : %s\n",
+					       getFIOPName(pRule->f_filterData.prop.operation),
+					       bRet ? "TRUE" : "FALSE");
+				} else {
+					dbgprintf("%s '%s': %s\n",
+					       getFIOPName(pRule->f_filterData.prop.operation),
+					       rsCStrGetSzStrNoNULL(pRule->f_filterData.prop.pCSCompValue),
+					       bRet ? "TRUE" : "FALSE");
+				}
 			}
-		}
 
-		/* cleanup */
-		if(pbMustBeFreed)
-			free(pszPropVal);
+			/* cleanup */
+			if(pbMustBeFreed)
+				free(pszPropVal);
+		}
 	}
 
 finalize_it:
@@ -397,16 +402,16 @@ CODESTARTobjDebugPrint(rule)
 	} else {
 		dbgprintf("PROPERTY-BASED Filter:\n");
 		dbgprintf("\tProperty.: '%s'\n", propIDToName(pThis->f_filterData.prop.propID));
-		if(pThis->f_filterData.prop.propName != NULL) {
-			cstr = es_str2cstr(pThis->f_filterData.prop.propName, NULL);
-			dbgprintf("\tCEE-Prop.: '%s'\n", cstr);
-			free(cstr);
-		}
-		dbgprintf("\tOperation: ");
-		if(pThis->f_filterData.prop.isNegated)
-			dbgprintf("NOT ");
-		dbgprintf("'%s'\n", getFIOPName(pThis->f_filterData.prop.operation));
-		if(pThis->f_filterData.prop.pCSCompValue != NULL) {
+		if(pThis->f_filterData.prop.propID != PROP_INVALID) {
+			if(pThis->f_filterData.prop.propName != NULL) {
+				cstr = es_str2cstr(pThis->f_filterData.prop.propName, NULL);
+				dbgprintf("\tCEE-Prop.: '%s'\n", cstr);
+				free(cstr);
+			}
+			dbgprintf("\tOperation: ");
+			if(pThis->f_filterData.prop.isNegated)
+				dbgprintf("NOT ");
+			dbgprintf("'%s'\n", getFIOPName(pThis->f_filterData.prop.operation));
 			dbgprintf("\tValue....: '%s'\n",
 			       rsCStrGetSzStrNoNULL(pThis->f_filterData.prop.pCSCompValue));
 		}