From 629f155187460199ad7e28cd2fff78c630126cc3 Mon Sep 17 00:00:00 2001
From: Shish <shish@shishnet.org>
Date: Fri, 26 Apr 2019 10:12:40 +0100
Subject: [PATCH] don't autocomplete searches with ==0 or >32 characters

---
 ext/autocomplete/main.php | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/ext/autocomplete/main.php b/ext/autocomplete/main.php
index af6ad166..84a8c863 100644
--- a/ext/autocomplete/main.php
+++ b/ext/autocomplete/main.php
@@ -13,11 +13,13 @@ class AutoComplete extends Extension {
 
 		if($event->page_matches("api/internal/autocomplete")) {
 			if(!isset($_GET["s"])) return;
+			$s = strtolower($_GET["s"]);
+			if(strlen($s) == 0 || strlen($s) > 32) return;
 
 			//$limit = 0;
-			$cache_key = "autocomplete-" . strtolower($_GET["s"]);
+			$cache_key = "autocomplete-$s";
 			$limitSQL = "";
-			$SQLarr = array("search"=>$_GET["s"]."%");
+			$SQLarr = array("search"=>"$s%");
 			if(isset($_GET["limit"]) && $_GET["limit"] !== 0){
 				$limitSQL = "LIMIT :limit";
 				$SQLarr['limit'] = $_GET["limit"];