Improve path component validation Detect when a specific path component tries to escape the path that came before it -- so that a user-provided value can't use '..' to escape the directories laid out by the build system. Change-Id: I02d52d9baadb7152448a34f4e8b573fe3c032b12

commit: 80a7c2ab824381cd72e772c5af863cbda17f0111 [log] [tgz]
author: Dan Willemsen <dwillemsen@google.com> Mon Dec 21 14:57:11 2015 -0800
committer: Dan Willemsen <dwillemsen@google.com> Mon Dec 21 15:34:11 2015 -0800
tree: c524851885f7ffe1a4c39f264871464cf9f929b8
parent: 782a2d116a010d3cbc3ce26c43039b82ee579e55 [diff] [blame]
diff --git a/common/paths_test.go b/common/paths_test.go
index 16ede0d..c231163 100644
--- a/common/paths_test.go
+++ b/common/paths_test.go

@@ -69,6 +69,21 @@
 		out: "",
 		err: []error{errors.New("Path is outside directory: /a")},
 	},
+	{
+		in:  []string{"a", "../b"},
+		out: "",
+		err: []error{errors.New("Path is outside directory: ../b")},
+	},
+	{
+		in:  []string{"a", "b/../../c"},
+		out: "",
+		err: []error{errors.New("Path is outside directory: ../c")},
+	},
+	{
+		in:  []string{"a", "./.."},
+		out: "",
+		err: []error{errors.New("Path is outside directory: ..")},
+	},
 }
 
 var validateSafePathTestCases = append(commonValidatePathTestCases, []strsTestCase{
commit	80a7c2ab824381cd72e772c5af863cbda17f0111	[log] [tgz]
author	Dan Willemsen <dwillemsen@google.com>	Mon Dec 21 14:57:11 2015 -0800
committer	Dan Willemsen <dwillemsen@google.com>	Mon Dec 21 15:34:11 2015 -0800
tree	c524851885f7ffe1a4c39f264871464cf9f929b8
parent	782a2d116a010d3cbc3ce26c43039b82ee579e55 [diff] [blame]