refname_is_safe(): insist that the refname already be normalized
The reference name is going to be compared to other reference names, so it should be in its normalized form. Signed-off-by: Michael Haggerty <mhagger@alum.mit.edu>
This commit is contained in:
parent
35db25c65f
commit
e40f3557f7
9
refs.c
9
refs.c
@ -125,14 +125,19 @@ int refname_is_safe(const char *refname)
|
||||
if (skip_prefix(refname, "refs/", &rest)) {
|
||||
char *buf;
|
||||
int result;
|
||||
size_t restlen = strlen(rest);
|
||||
|
||||
/* rest must not be empty, or start or end with "/" */
|
||||
if (!restlen || *rest == '/' || rest[restlen - 1] == '/')
|
||||
return 0;
|
||||
|
||||
/*
|
||||
* Does the refname try to escape refs/?
|
||||
* For example: refs/foo/../bar is safe but refs/foo/../../bar
|
||||
* is not.
|
||||
*/
|
||||
buf = xmallocz(strlen(rest));
|
||||
result = !normalize_path_copy(buf, rest);
|
||||
buf = xmallocz(restlen);
|
||||
result = !normalize_path_copy(buf, rest) && !strcmp(buf, rest);
|
||||
free(buf);
|
||||
return result;
|
||||
}
|
||||
|
Loading…
Reference in New Issue
Block a user