diff options
| author | Xavier Del Campo Romero <xavi.dcr@tutanota.com> | 2024-02-20 08:18:11 +0100 |
|---|---|---|
| committer | Xavier Del Campo Romero <xavi.dcr@tutanota.com> | 2024-02-20 08:18:11 +0100 |
| commit | afc5cf0dfcb8c507315e40d71ee305fa130be6db (patch) | |
| tree | fe81e997d268e3589eb4c657887d05a88dc6a160 | |
| parent | b7f232366c03dad8afbbb8ed5ba44314e42b13fd (diff) | |
main.c: Reject invalid /public/ requestsv0.2.1-rc3
Otherwise:
- slcl would accept /public/ (i.e., without a file name) as a valid
resource. This would incorrectly map the public/ directory on the
database, making slcl to return -1 because public/ is not a regular
file.
- slcl would accept directory names (e.g.: /public/dir/), which is never
expected since slcl stores all public files into a single directory.
| -rw-r--r-- | main.c | 10 |
1 files changed, 9 insertions, 1 deletions
@@ -429,7 +429,8 @@ static int getpublic(const struct http_payload *const p, { int ret = -1; struct auth *const a = user; - const char *const adir = auth_dir(a); + const char *const adir = auth_dir(a), + *const file = p->resource + strlen("/public/"); struct dynstr d; dynstr_init(&d); @@ -439,6 +440,13 @@ static int getpublic(const struct http_payload *const p, fprintf(stderr, "%s: auth_dir failed\n", __func__); goto end; } + else if (!*file || filename_invalid(file)) + { + fprintf(stderr, "%s: invalid filename %s\n", + __func__, p->resource); + ret = page_forbidden(r); + goto end; + } else if (path_invalid(p->resource)) { fprintf(stderr, "%s: illegal relative path %s\n", |