unzip: prevent attacks via malicious filenames

Signed-off-by: Denys Vlasenko <vda.linux@googlemail.com>
author: Denys Vlasenko 2015-02-10 01:30:43 +0100
committer: Denys Vlasenko 2015-02-10 01:30:43 +0100
commit: 8c06bc6ba14949d945eff0abcabab885f1ef7680 (patch)
tree: 438b36b8264a1b257d4fb3e6293dcda1a4ac9d35 /archival/libarchive/unsafe_prefix.c
parent: 23cfaab47de7392c1ba7d601a05fb36da3629b28 (diff)
download: busybox-8c06bc6ba14949d945eff0abcabab885f1ef7680.zip
busybox-8c06bc6ba14949d945eff0abcabab885f1ef7680.tar.gz
1 files changed, 36 insertions, 0 deletions
diff --git a/archival/libarchive/unsafe_prefix.c b/archival/libarchive/unsafe_prefix.c
new file mode 100644
index 0000000..826c673
--- /dev/null
+++ b/archival/libarchive/unsafe_prefix.c
@@ -0,0 +1,36 @@
+/* vi: set sw=4 ts=4: */
+/*
+ * Licensed under GPLv2 or later, see file LICENSE in this source tree.
+ */
+
+#include "libbb.h"
+#include "bb_archive.h"
+
+const char* FAST_FUNC strip_unsafe_prefix(const char *str)
+{
+	const char *cp = str;
+	while (1) {
+		char *cp2;
+		if (*cp == '/') {
+			cp++;
+			continue;
+		}
+		if (strncmp(cp, "/../"+1, 3) == 0) {
+			cp += 3;
+			continue;
+		}
+		cp2 = strstr(cp, "/../");
+		if (!cp2)
+			break;
+		cp = cp2 + 4;
+	}
+	if (cp != str) {
+		static smallint warned = 0;
+		if (!warned) {
+			warned = 1;
+			bb_error_msg("removing leading '%.*s' from member names",
+				(int)(cp - str), str);
+		}
+	}
+	return cp;
+}
author	Denys Vlasenko	2015-02-10 01:30:43 +0100
committer	Denys Vlasenko	2015-02-10 01:30:43 +0100
commit	8c06bc6ba14949d945eff0abcabab885f1ef7680 (patch)
tree	438b36b8264a1b257d4fb3e6293dcda1a4ac9d35 /archival/libarchive/unsafe_prefix.c
parent	23cfaab47de7392c1ba7d601a05fb36da3629b28 (diff)
download	busybox-8c06bc6ba14949d945eff0abcabab885f1ef7680.zip busybox-8c06bc6ba14949d945eff0abcabab885f1ef7680.tar.gz