Changeset 87095 in webkit

Timestamp:

May 23, 2011 1:47:06 PM (13 years ago)

Author:

adamk@chromium.org

Message:

2011-05-23 Adam Klein <​adamk@chromium.org>

Reviewed by Jian Li.

[fileapi] Add a File::createWithName method to avoid obfuscated filename leakage from FileEntry.file() method
​https://bugs.webkit.org/show_bug.cgi?id=61155

Covered by existing tests: fast/filesystem/file-from-file-entry.html

fast/filesystem/workers/file-from-file-entry.html
fast/filesystem/workers/file-from-file-entry-sync.html

• fileapi/DOMFileSystem.cpp: (WebCore::DOMFileSystem::createFile): Updated to call createWithName().
• fileapi/DOMFileSystemSync.cpp: (WebCore::DOMFileSystemSync::createFile): Updated to call createWithName().
• fileapi/File.cpp: (WebCore::createBlobDataForFile): Added an optional name argument to fix MIME type lookup. (WebCore::File::createWithRelativePath): Renamed from create() for consistency with new method. (WebCore::File::File):
• fileapi/File.h: (WebCore::File::createWithName):
• html/FileInputType.cpp: (WebCore::FileInputType::setFileList): Updated the single caller of File::createWithRelativePath().

Location:

trunk/Source/WebCore

Files:

• ChangeLog (modified) (1 diff)
• fileapi/DOMFileSystem.cpp (modified) (4 diffs)
• fileapi/DOMFileSystemSync.cpp (modified) (1 diff)
• fileapi/File.cpp (modified) (3 diffs)
• fileapi/File.h (modified) (2 diffs)
• html/FileInputType.cpp (modified) (1 diff)

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2011-05-23  Adam Klein  <adamk@chromium.org>
+
+        Reviewed by Jian Li.
+
+        [fileapi] Add a File::createWithName method to avoid obfuscated filename leakage from FileEntry.file() method
+        https://bugs.webkit.org/show_bug.cgi?id=61155
+
+        Covered by existing tests: fast/filesystem/file-from-file-entry.html
+                                   fast/filesystem/workers/file-from-file-entry.html
+                                   fast/filesystem/workers/file-from-file-entry-sync.html
+
+        * fileapi/DOMFileSystem.cpp:
+        (WebCore::DOMFileSystem::createFile): Updated to call createWithName().
+        * fileapi/DOMFileSystemSync.cpp:
+        (WebCore::DOMFileSystemSync::createFile): Updated to call createWithName().
+        * fileapi/File.cpp:
+        (WebCore::createBlobDataForFile): Added an optional name argument to fix MIME type lookup.
+        (WebCore::File::createWithRelativePath): Renamed from create() for consistency with new method.
+        (WebCore::File::File):
+        * fileapi/File.h:
+        (WebCore::File::createWithName):
+        * html/FileInputType.cpp:
+        (WebCore::FileInputType::setFileList): Updated the single caller of File::createWithRelativePath().
+
 2011-05-23  Adrienne Walker  <enne@google.com>
 

trunk/Source/WebCore/fileapi/DOMFileSystem.cpp

@@ -118 +118 @@
 class GetPathCallback : public FileSystemCallbacksBase {
 public:
-    static PassOwnPtr<GetPathCallback> create(PassRefPtr<DOMFileSystem> filesystem, const String& path, PassRefPtr<FileCallback> successCallback, PassRefPtr<ErrorCallback> errorCallback)
+    static PassOwnPtr<GetPathCallback> create(PassRefPtr<DOMFileSystem> filesystem, const String& path, const String& name, PassRefPtr<FileCallback> successCallback, PassRefPtr<ErrorCallback> errorCallback)
     {
-        return adoptPtr(new GetPathCallback(filesystem, path, successCallback, errorCallback));
+        return adoptPtr(new GetPathCallback(filesystem, path, name, successCallback, errorCallback));
     }
 
@@ -128 +128 @@
             m_path = metadata.platformPath;
 
-        m_filesystem->scheduleCallback(m_successCallback.release(), File::create(m_path));
+        m_filesystem->scheduleCallback(m_successCallback.release(), File::createWithName(m_path, m_name));
     }
 
 private:
-    GetPathCallback(PassRefPtr<DOMFileSystem> filesystem, const String& path, PassRefPtr<FileCallback> successCallback, PassRefPtr<ErrorCallback> errorCallback)
+    GetPathCallback(PassRefPtr<DOMFileSystem> filesystem, const String& path, const String& name, PassRefPtr<FileCallback> successCallback, PassRefPtr<ErrorCallback> errorCallback)
         : FileSystemCallbacksBase(errorCallback)
         , m_filesystem(filesystem)
         , m_path(path)
+        , m_name(name)
         , m_successCallback(successCallback)
     {
@@ -142 +143 @@
     RefPtr<DOMFileSystem> m_filesystem;
     String m_path;
+    String m_name;
     RefPtr<FileCallback> m_successCallback;
 };
@@ -151 +153 @@
     String platformPath = m_asyncFileSystem->virtualToPlatformPath(fileEntry->fullPath());
 
-    m_asyncFileSystem->readMetadata(platformPath, GetPathCallback::create(this, platformPath, successCallback, errorCallback));
+    m_asyncFileSystem->readMetadata(platformPath, GetPathCallback::create(this, platformPath, fileEntry->name(), successCallback, errorCallback));
 }
 

trunk/Source/WebCore/fileapi/DOMFileSystemSync.cpp

@@ -170 +170 @@
     if (!result->m_path.isEmpty())
         platformPath = result->m_path;
-    return File::create(platformPath);
+    return File::createWithName(platformPath, fileEntry->name());
 }
 

trunk/Source/WebCore/fileapi/File.cpp

@@ -34 +34 @@
 namespace WebCore {
 
-static PassOwnPtr<BlobData> createBlobDataForFile(const String& path)
+static PassOwnPtr<BlobData> createBlobDataForFile(const String& path, const String& name = String())
 {
     String type;
-    int index = path.reverseFind('.');
+    const String& nameForMIMEType = !name.isEmpty() ? name : path;
+    int index = nameForMIMEType.reverseFind('.');
     if (index != -1)
-        type = MIMETypeRegistry::getMIMETypeForExtension(path.substring(index + 1));
+        type = MIMETypeRegistry::getMIMETypeForExtension(nameForMIMEType.substring(index + 1));
 
     OwnPtr<BlobData> blobData = BlobData::create();
@@ -46 +47 @@
     return blobData.release();
 }
+
+#if ENABLE(DIRECTORY_UPLOAD)
+PassRefPtr<File> File::createWithRelativePath(const String& path, const String& relativePath)
+{
+    RefPtr<File> file = adoptRef(new File(path));
+    file->m_relativePath = relativePath;
+    return file.release();
+}
+#endif
 
 File::File(const String& path)
@@ -61 +71 @@
 }
 
-#if ENABLE(DIRECTORY_UPLOAD)
-File::File(const String& relativePath, const String& path)
-    : Blob(createBlobDataForFile(path), -1)
+#if ENABLE(FILE_SYSTEM)
+File::File(const String& path, const String& name)
+    : Blob(createBlobDataForFile(path, name), -1)
     , m_path(path)
-    , m_relativePath(relativePath)
+    , m_name(name)
 {
-    m_name = pathGetFileName(path);
 }
 #endif

trunk/Source/WebCore/fileapi/File.h

@@ -50 +50 @@
 
 #if ENABLE(DIRECTORY_UPLOAD)
-    static PassRefPtr<File> create(const String& relativePath, const String& path)
+    static PassRefPtr<File> createWithRelativePath(const String& path, const String& relativePath);
+#endif
+
+#if ENABLE(FILE_SYSTEM)
+    // Create a file with a name exposed to the author (via File.name and associated DOM properties) that differs from the one provided in the path.
+    static PassRefPtr<File> createWithName(const String& path, const String& name)
     {
-        return adoptRef(new File(relativePath, path));
+        return adoptRef(new File(path, name));
     }
 #endif
@@ -76 +81 @@
 private:
     File(const String& path);
-    
+
     // For deserialization.
     File(const String& path, const KURL& srcURL, const String& type);
 
-#if ENABLE(DIRECTORY_UPLOAD)
-    File(const String& relativePath, const String& path);
+#if ENABLE(FILE_SYSTEM)
+    File(const String& path, const String& name);
 #endif
 

trunk/Source/WebCore/html/FileInputType.cpp

@@ -179 +179 @@
             // Normalize backslashes to slashes before exposing the relative path to script.
             String relativePath = paths[i].substring(1 + rootPath.length()).replace('\\', '/');
-            m_fileList->append(File::create(relativePath, paths[i]));
+            m_fileList->append(File::createWithRelativePath(paths[i], relativePath));
         }
         return;