gocryptfs/internal/ctlsock/sanitize_test.go, branch xattr_user_bufferMirror of gocryptfs source code on Githubhttp://nuetzlich.net/cgit/gocryptfs/atom?h=xattr_user_buffer2020-05-09T15:36:41+00:00ctlsock: create exported ctlsock client library2020-05-09T15:36:41+00:00Jakob Unterwurzacher2020-05-09T15:36:41+00:00urn:sha1:16221facb9066ccf03015ccfe9e7ca784b0d2099
The former interal ctlsock server package is renamed
to ctlsocksrv.
ctlsock: sanitize: handle multiple leading slashes2017-02-05T17:05:35+00:00Jakob Unterwurzacher2017-02-05T17:05:35+00:00urn:sha1:8bcae63a5a375d918aad9f2c18804867730378e1ctlsock: interpret paths that point above CWD as ""2017-01-29T14:24:47+00:00Jakob Unterwurzacher2017-01-29T14:24:47+00:00urn:sha1:532ef15417072cf6c6bd6576d78588f96800fa43
Paths that start with ".." were previously accepted as-is.
ctlsock: sanitize paths before passing them to the backend2016-12-10T11:59:54+00:00Jakob Unterwurzacher2016-12-10T11:59:54+00:00urn:sha1:2758c75cae2896b7f1327fe00f60a1c017c0e0d1
You used to be able to crash gocryptfs by passing "/foo"
of "foo/" to the ctlsock.
Fixes https://github.com/rfjakob/gocryptfs/issues/66