upstream/mercurial-mirror Commit - r1835:bdfb524d

Validate paths before reading or writing files in repository or working dir....

Thomas Arendsen Hein -

r1835:bdfb524d default

parent child

mercurial/commands.py

0 +5 -4

             def debugancestor(ui, index, rev1, rev2):
                 """find the ancestor revision of two revisions in a given index"""
-                r = revlog.revlog(util.opener(os.getcwd()), index, "")
+                r = revlog.revlog(util.opener(os.getcwd(), audit=False), index, "")
                 a = r.ancestor(r.lookup(rev1), r.lookup(rev2))
                 ui.write("%d:%s\n" % (r.rev(a), hex(a)))
             def debugdata(ui, file_, rev):
                 """dump the contents of an data file revision"""
-                r = revlog.revlog(util.opener(os.getcwd()), file_[:-2] + ".i", file_)
+                r = revlog.revlog(util.opener(os.getcwd(), audit=False),
+                                  file_[:-2] + ".i", file_)
                 try:
                     ui.write(r.revision(r.lookup(rev)))
                 except KeyError:
             def debugindex(ui, file_):
                 """dump the contents of an index file"""
-                r = revlog.revlog(util.opener(os.getcwd()), file_, "")
+                r = revlog.revlog(util.opener(os.getcwd(), audit=False), file_, "")
                 ui.write("   rev    offset  length   base linkrev" +
                          " nodeid       p1           p2\n")
                 for i in range(r.count()):
             def debugindexdot(ui, file_):
                 """dump an index DAG as a .dot file"""
-                r = revlog.revlog(util.opener(os.getcwd()), file_, "")
+                r = revlog.revlog(util.opener(os.getcwd(), audit=False), file_, "")
                 ui.write("digraph G {\n")
                 for i in range(r.count()):
                     e = r.index[i]

mercurial/localrepo.py

0 +1 0

                     remove.sort()
                     for f in remove:
                         self.ui.note(_("removing %s\n") % f)
+                        util.audit_path(f)
                         try:
                             util.unlink(self.wjoin(f))
                         except OSError, inst:

mercurial/util.py

0 +11 -1

                     else:
                         shutil.copy(src, dst)
-            def opener(base):
+            def audit_path(path):
+                """Abort if path contains dangerous components"""
+                parts = os.path.normcase(path).split(os.sep)
+                if (os.path.splitdrive(path)[0] or parts[0] in ('.hg', '')
+                    or os.pardir in parts):
+                    raise Abort(_("path contains illegal component: %s\n") % path)
+            def opener(base, audit=True):
                 """
                 return a function that opens files relative to base
                 remote file access from higher level code.
                 """
                 p = base
+                audit_p = audit
                 def mktempcopy(name):
                     d, fn = os.path.split(name)
                         self.close()
                 def o(path, mode="r", text=False, atomic=False):
+                    if audit_p:
+                        audit_path(path)
                     f = os.path.join(p, path)
                     if not text:

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages