fix(claw-analog): reject backslash paths in validate_rel_path (dotdot bypass on Linux)

2026-05-26 23:46:45 +00:00 · 2026-05-25 12:41:32 +09:00
parent 1f572ff8de
commit 06c126ab6b
1 changed files with 6 additions and 0 deletions
--- a/rust/crates/claw-analog/src/lib.rs
+++ b/rust/crates/claw-analog/src/lib.rs
@@ -1589,6 +1589,12 @@ fn output_to_input_blocks(blocks: &[OutputContentBlock]) -> Vec<InputContentBloc
 }

 pub fn validate_rel_path(rel: &str) -> Result<(), String> {
+    // Reject Windows-style backslash paths that may contain dotdot traversal
+    // (on Unix, Path::components does not split on backslash, so "..\\x" parses
+    // as a single Normal component and evades the ParentDir check).
+    if rel.contains('\\') {
+        return Err("path must not contain backslashes".into());
+    }
    let p = Path::new(rel);
    for c in p.components() {
        match c {