Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge remote-tracking branch 'origin/pr/266'

Browse Source 
* origin/pr/266:
  Only allow known-safe characters in socket paths
This commit is contained in:
Marek Marczykowski-Górecki 2020-12-01 03:57:57 +01:00
commit 5ddc118429
No known key found for this signature in database
GPG Key ID: 063938BA42CFA724
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
qubes-rpc/qubes.ShowInTerminal
View File

@ -1,10 +1,11 @@
#!/bin/bash -- #!/bin/bash --
set -eu set -eu
umask 0077
tmpdir="$(mktemp -d)" tmpdir="$(mktemp -d)"
if [[ $tmpdir =~ \" ]]; then if ! [[ $tmpdir =~ ^/[/A-Za-z0-9._-]+$ ]]; then
echo 'Error: non admissible character detected in sock path.' echo 'Error: non admissible character detected in sock path.'>&2
exit 1 exit 1
fi fi