[JENKINS-26838] Utility API to check if a file is physically inside a given directory

Type: Improvement
Resolution: Unresolved
Priority: Minor
Component/s: core
Labels:
- api
- security

Similar Issues:
Powered by SuggestiMate

Show

Commonly need to verify that file paths provided by a user are really relative and do not refer to locations outside a workspace or the like. Should have something in Util along the lines of

public static boolean isInside(File root, File f) throws IOException {
    String path = f.getCanonicalPath();
    String rootPath = root.getCanonicalPath();
    return path.equals(rootPath) || path.startsWith(rootPath + File.separatorChar);
}

and a matching method in FilePath.

relates to

JENKINS-44657 Build history not copied after renaming the job's parent folder when using custom build directories

Resolved

Jesse Glick created issue - 2015-02-06 16:11

Jesse Glick made changes - 2015-02-06 16:12

Link

New: This issue is blocking SECURITY-162 [ SECURITY-162 ]

R. Tyler Croy made changes - 2016-07-25 23:51

Workflow

Original: JNJira [ 161012 ]

New: JNJira + In-Review [ 180545 ]

Jesse Glick made changes - 2017-09-28 14:43

Link

New: This issue relates to ~~JENKINS-44657~~ [ ~~JENKINS-44657~~ ]

Jesse Glick made changes - 2021-09-23 17:21

Link

New: This issue relates to SECURITY-2518 [ SECURITY-2518 ]

Assignee:: Unassigned

Reporter:: Jesse Glick

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2015-02-06 16:11

Updated:: 2021-09-23 17:21

Jenkins

Details

Description

Attachments

Issue Links

Activity

People

Dates