aboutsummaryrefslogtreecommitdiffstats
path: root/lib
diff options
context:
space:
mode:
authorFerdinand Thiessen <opensource@fthiessen.de>2024-08-12 18:11:31 +0200
committerFerdinand Thiessen <opensource@fthiessen.de>2024-08-21 04:16:14 +0200
commitb9cc7bcec71854665008e1332f6a7d3f39249d50 (patch)
tree465149ffd48de2e85dd16a2585bed5808f9e6ec9 /lib
parent1907eeea357db3aedbeea7512fd2b4babd13d501 (diff)
downloadnextcloud-server-b9cc7bcec71854665008e1332f6a7d3f39249d50.tar.gz
nextcloud-server-b9cc7bcec71854665008e1332f6a7d3f39249d50.zip
fix: `FilenameValidator::isForbidden` should only check forbidden files
And not forbidden basenames as this is used for different purposes. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
Diffstat (limited to 'lib')
-rw-r--r--lib/private/Files/FilenameValidator.php27
1 files changed, 18 insertions, 9 deletions
diff --git a/lib/private/Files/FilenameValidator.php b/lib/private/Files/FilenameValidator.php
index b1ce8e02b13..2fe3c93d026 100644
--- a/lib/private/Files/FilenameValidator.php
+++ b/lib/private/Files/FilenameValidator.php
@@ -198,9 +198,7 @@ class FilenameValidator implements IFilenameValidator {
}
}
- if ($this->isForbidden($filename)) {
- throw new ReservedWordException();
- }
+ $this->checkForbiddenName($filename);
$this->checkForbiddenExtension($filename);
@@ -227,18 +225,25 @@ class FilenameValidator implements IFilenameValidator {
return true;
}
+ // Filename is not forbidden
+ return false;
+ }
+
+ protected function checkForbiddenName($filename): void {
+ if ($this->isForbidden($filename)) {
+ throw new ReservedWordException($this->l10n->t('"%1$s" is a forbidden file or folder name.', [$filename]));
+ }
+
// Check for forbidden basenames - basenames are the part of the file until the first dot
// (except if the dot is the first character as this is then part of the basename "hidden files")
$basename = substr($filename, 0, strpos($filename, '.', 1) ?: null);
$forbiddenNames = $this->getForbiddenBasenames();
if (in_array($basename, $forbiddenNames)) {
- return true;
+ throw new ReservedWordException($this->l10n->t('"%1$s" is a forbidden prefix for file or folder names.', [$filename]));
}
-
- // Filename is not forbidden
- return false;
}
+
/**
* Check if a filename contains any of the forbidden characters
* @param string $filename
@@ -252,7 +257,7 @@ class FilenameValidator implements IFilenameValidator {
foreach ($this->getForbiddenCharacters() as $char) {
if (str_contains($filename, $char)) {
- throw new InvalidCharacterInPathException($this->l10n->t('Invalid character "%1$s" in filename', [$char]));
+ throw new InvalidCharacterInPathException($this->l10n->t('"%1$s" is not allowed inside a file or folder name.', [$char]));
}
}
}
@@ -268,7 +273,11 @@ class FilenameValidator implements IFilenameValidator {
$forbiddenExtensions = $this->getForbiddenExtensions();
foreach ($forbiddenExtensions as $extension) {
if (str_ends_with($filename, $extension)) {
- throw new InvalidPathException($this->l10n->t('Invalid filename extension "%1$s"', [$extension]));
+ if (str_starts_with($extension, '.')) {
+ throw new InvalidPathException($this->l10n->t('"%1$s" is a forbidden file type.', [$extension]));
+ } else {
+ throw new InvalidPathException($this->l10n->t('Filenames must not end with "%1$s".', [$extension]));
+ }
}
}
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-10 16:23:05 +0000