generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

this time *really* fix the /../ check ...

Browse Source
This commit is contained in:
Bodo Möller
2001-03-30 14:55:50 +00:00
parent 5d3ab9b096
commit b10ae320f7
1 changed files with 2 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
apps/s_server.c
View File

@@ -1436,9 +1436,6 @@ static int www_body(char *hostname, int s, unsigned char *context)
switch (dot) switch (dot)
{ {
case 0:
dot = (e[0] == '/') ? 1 : 0;
break;
case 1: case 1:
dot = (e[0] == '.') ? 2 : 0; dot = (e[0] == '.') ? 2 : 0;
break; break;
@@ -1449,6 +1446,8 @@ static int www_body(char *hostname, int s, unsigned char *context)
dot = (e[0] == '/') ? -1 : 0; dot = (e[0] == '/') ? -1 : 0;
break; break;
} }
if (dot == 0)
dot = (e[0] == '/') ? 1 : 0;
} }
dot = (dot == 3) || (dot == -1); /* filename contains ".." component */ dot = (dot == 3) || (dot == -1); /* filename contains ".." component */