[Webkit-unassigned] [Bug 47309] Fix FileSystem path validation order to normalize '..' and '.' before restriction checks
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Oct 7 23:56:59 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=47309
David Levin <levin at chromium.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #70168|review? |review+, commit-queue-
Flag| |
--- Comment #3 from David Levin <levin at chromium.org> 2010-10-07 23:56:59 PST ---
(From update of attachment 70168)
View in context: https://bugs.webkit.org/attachment.cgi?id=70168&action=review
> LayoutTests/fast/filesystem/resources/op-get-entry.js:60
> + function(helper) { helper.getFile('/a', '/a/../../b/./c/../../../../../e.txt', {create:true}); },
Consider adding a test with "..." to check that it is invalid (unless you already have one).
> WebCore/fileapi/DOMFileSystemBase.cpp:145
> + if (DOMFilePath::isAbsolute(path))
How about:
if (!DOMFilePath::isAbsolute(path))
path = DOMFilePath::append(base->fullPath(), path);
String absolutePath = DOMFilePath::removeExtraParentReferences(path);
In fact make this all into a function b/c there is so much common code in these two places.
Feel free to change names but this is what I'm thinking:
bool DOMFileSystemBase::domPathToPlatformPath(String domPath, String& platformPath)
{
if (!DOMFilePath::isAbsolute(path))
domPath = DOMFilePath::append(base->fullPath(), domPath);
String absolutePath = DOMFilePath::removeExtraParentReferences(path);
if (!DOMFilePath::isValidPath(absolutePath))
return false;
platformPath = m_asyncFileSystem->virtualToPlatformPath(absolutePath);
return true;
}
String platformPath;
if (!domPathToPlatformPath(path, platformPath))
return false;
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list