Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Refactor is_safe_filename and add test #2118

Merged
merged 2 commits into from
Jan 1, 2024
Merged

Refactor is_safe_filename and add test #2118

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
08dd45f
Use QString in is_safe_filename
lmoureaux Jan 1, 2024
6591fea
Add test for is_safe_filename
lmoureaux Jan 1, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions utility/CMakeLists.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -82,3 +82,8 @@ if(FREECIV_ENABLE_NLS)
target_include_directories(utility PUBLIC ${Intl_INCLUDE_DIRS})
target_link_libraries(utility PUBLIC ${Intl_LIBRARIES})
endif()

# Tests
if (BUILD_TESTING)
add_subdirectory(tests)
endif()
27 changes: 5 additions & 22 deletions utility/shared.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,7 @@
#include <QCoreApplication>
#include <QDateTime>
#include <QDir>
#include <QRegularExpression>
#include <QStandardPaths>
#include <QString>
#include <QtGlobal>
Expand Down Expand Up @@ -208,29 +209,11 @@ static bool is_ascii(char ch)
Check if the name is safe security-wise. This is intended to be used to
make sure an untrusted filename is safe to be used.
*/
bool is_safe_filename(const char *name)
bool is_safe_filename(const QString &name)
{
int i = 0;

// must not be nullptr or empty
if (!name || *name == '\0') {
return false;
}

for (; '\0' != name[i]; i++) {
if (nullptr == strchr(".@", name[i])
&& nullptr == strchr(base64url, name[i])) {
return false;
}
}

// we don't allow the filename to ascend directories
if (strstr(name, PARENT_DIR_OPERATOR)) {
return false;
}

// Otherwise, it is okay...
return true;
const QRegularExpression regex(QLatin1String("^[\\w_\\-.@]+$"));
return regex.match(name).hasMatch()
&& !name.contains(QLatin1String(PARENT_DIR_OPERATOR));
}

/**
Expand Down
2 changes: 1 addition & 1 deletion utility/shared.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -107,7 +107,7 @@ const char *int_to_text(unsigned int number);

bool is_ascii_name(const char *name);
bool is_base64url(const char *s);
bool is_safe_filename(const char *name);
bool is_safe_filename(const QString &name);
void randomize_base64url_string(char *s, size_t n);

char *skip_leading_spaces(char *s);
Expand Down
5 changes: 5 additions & 0 deletions utility/tests/CMakeLists.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
set(CMAKE_AUTOMOC ON)

add_executable(test_utility_paths test_paths.cpp)
target_link_libraries(test_utility_paths PRIVATE Qt5::Test utility)
add_test(NAME test_utility_paths COMMAND test_utility_paths)
27 changes: 27 additions & 0 deletions utility/tests/test_paths.cpp
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
#include "shared.h"

#include <QtTest>

/**
* Tests functions acting on paths
*/
class test_paths : public QObject {
Q_OBJECT

private slots:
void is_safe_filename();
};

/**
* Tests \ref ::is_safe_filename
*/
void test_paths::is_safe_filename()
{
QCOMPARE(::is_safe_filename(QLatin1String("")), false);
QCOMPARE(::is_safe_filename(QLatin1String("abcABC_-._")), true);
QCOMPARE(::is_safe_filename(QLatin1String("a/b")), false);
QCOMPARE(::is_safe_filename(QLatin1String("..")), false);
}

QTEST_MAIN(test_paths)
#include "test_paths.moc"
Loading