Fix #3725:

- Fix match_filter_field() and also simplify logic
- Fix $filterfieldsarray initialization
- Avoid to have double spaces on filterfieldsarray['act']
- Fix filter on Firewall Logs

1 files changed, 17 insertions, 15 deletions

diff --git a/etc/inc/filter_log.inc b/etc/inc/filter_log.inc
index 6b3e279..8b1903e 100644
--- a/etc/inc/filter_log.inc
+++ b/etc/inc/filter_log.inc
@@ -95,28 +95,30 @@ function match_filter_line($flent, $filtertext = "") {
 }
 
 function match_filter_field($flent, $fields) {
-	foreach ($fields as $field) {
-		if ($fields[$field] == "All") continue;
-		if ((strpos($fields[$field], '!') === 0)) {
-			$fields[$field] = substr($fields[$field], 1);
-			if (preg_match("/act/i", $field)) {
-				if ( (in_arrayi($flent[$field], explode(",", str_replace(" ", ",", $fields[$field]))) ) ) return false;
+	foreach ($fields as $key => $field) {
+		if ($field == "All")
+			continue;
+		if ((strpos($$field, '!') === 0)) {
+			$field = substr($field, 1);
+			if (strtolower($key) == 'act') {
+				if (in_arrayi($flent[$key], explode(" ", $field)))
+					return false;
 			} else {
-				$field_regex = escape_filter_regex($fields[$field]);
-				if ( (@preg_match("/{$field_regex}/i", $flent[$field])) )
+				$field_regex = escape_filter_regex($field);
+				if (@preg_match("/{$field_regex}/i", $flent[$key]))
 					return false;
 			}
-		}
-		else {
-			if (preg_match("/act/i", $field)) {
-				if ( !(in_arrayi($flent[$field], explode(",", str_replace(" ", ",", $fields[$field]))) ) ) return false;
+		} else {
+			if (strtolower($key) == 'act') {
+				if (!in_arrayi($flent[$key], explode(" ", $field)))
+					return false;
 			} else {
-				$field_regex = escape_filter_regex($fields[$field]);
-				if ( !(@preg_match("/{$field_regex}/i", $flent[$field])) )
+				$field_regex = escape_filter_regex($field);
+				if (!@preg_match("/{$field_regex}/i", $flent[$key]))
 					return false;
 			}
 		}
-	}	
+	}
 	return true;
 }