Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Check if an std::filesystem::path is inside a directory

Tags:

c++

c++17

std-filesystem

I have a root path represented by an std::filesystem::path. I want to add some user provided filename to this path and make sure the resulting path is not out of the root directory.

For example:

    std::filesystem::path root = "/foo/bar";
    std::filesystem::path userFile = "ham/spam";
    std::filesystem::path finalPath = root / userFile;

The final path is ok, it is inside /foo/bar. But if I give ../ham/spam to the userFile variable, this will result in a file outside the define rootPath.

How can I check that the resulting file keeps inside its allowed boundaries ?

like image 717
Nicolas Appriou Avatar asked Apr 09 '20 14:04

Nicolas Appriou

People also ask

How do you check if a path is a directory C++?

filesystem::is_directory Checks if the given file status or path corresponds to a directory. 1) Equivalent to s. type() == file_type::directory. 2) Equivalent to is_directory(status(p)) or is_directory(status(p, ec)), respectively.

What is boost :: filesystem :: path?

boost::filesystem::path is the central class in Boost. Filesystem for representing and processing paths. Definitions can be found in the namespace boost::filesystem and in the header file boost/filesystem. hpp . Paths can be built by passing a string to the constructor of boost::filesystem::path (see Example 35.1).

Is directory empty C++?

We can call IsEmpty to check whether a given directory is empty. An empty directory is considered to have no files or other directories in it. IsEmpty returns true if the directory is empty; false otherwise. The following table lists the parameters expected by this method.

1 Answers

First, you need to normalize the final path. This removes all . and ..s in the path. Then, you need to check to see if it has any mismatches in its directory iterator range, relative to root. And there's a standard library algorithm for that.

So overall, the code looks like this:

std::optional<fs::path> MakeAbsolute(const fs::path &root, const fs::path &userPath)
{
    auto finalPath = (root / userPath).lexically_normal();

    auto[rootEnd, nothing] = std::mismatch(root.begin(), root.end(), finalPath.begin());

    if(rootEnd != root.end())
        return std::nullopt;

    return finalPath;
}

Note that this only works theoretically; the user may have used symlink shenanigans within the root directory to break out of your root directory. You would need to use canonical rather than lexically_normal to ensure that this doesn't happen. However, canonical requires that the path exist, so if this is a path to a file/directory that needs to be created, it won't work.

like image 163
Nicol Bolas Avatar answered Oct 08 '22 07:10

Nicol Bolas
Sign in to Comment

Related questions

Using `extern template` to prevent implicit instantiation of a template class
What is the best way to convert from a C++ std::vector<float> to a Rust Vec<f32>?
Why isn't forwarding reference const?
Check for C++ template value zero fails
Is std::string header only in Visual Studio?
Invoke a method with a timeout
Visual Studio Code MSVC cl.exe not found after installing build tools
Is there any way to swap nodes in std::list?
C++ STL Container requirements - Post condition confusion
Do I Need to use ref With make_pair to Return a Reference?
Building Makefile using bazel
How to right align text in ImGui Columns?
What is the advantage of a unique_ptr over a shared_ptr
Differing output between C++ and NativeCall in Raku
Can I pass a pointer to before the beginning of an array if I know only existing elements will be used?
why can loop index run out of loop bound
Why is dynamically allocated memory always 16 bytes aligned?
Deleting the container in atomic multi-threaded code
Why does Foo(b) compile successfully in C++? [duplicate]
Is taking the address of an undefined function allowed?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!