/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */ /* * This file is part of the LibreOffice project. * * This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. * * This file incorporates work covered by the following license notice: * * Licensed to the Apache Software Foundation (ASF) under one or more * contributor license agreements. See the NOTICE file distributed * with this work for additional information regarding copyright * ownership. The ASF licenses this file to you under the Apache * License, Version 2.0 (the "License"); you may not use this file * except in compliance with the License. You may obtain a copy of * the License at http://www.apache.org/licenses/LICENSE-2.0 . */ #include #include #include #include #include #include namespace svt { namespace { // ---------------------------------------------------------------- /** retrieves the value of an environment variable @return if and only if the retrieved string value is not empty */ bool lcl_getEnvironmentValue( const sal_Char* _pAsciiEnvName, ::rtl::OUString& _rValue ) { _rValue = ::rtl::OUString(); ::rtl::OUString sEnvName = ::rtl::OUString::createFromAscii( _pAsciiEnvName ); osl_getEnvironment( sEnvName.pData, &_rValue.pData ); return !_rValue.isEmpty(); } //----------------------------------------------------------------- void lcl_convertStringListToUrls( const rtl::OUString& _rColonSeparatedList, ::std::vector< String >& _rTokens ) { const sal_Unicode cSeparator = #if defined(WNT) ';' #else ':' #endif ; sal_Int32 nIndex = 0; do { // the current token in the list rtl::OUString sCurrentToken = _rColonSeparatedList.getToken( 0, cSeparator, nIndex ); if ( !sCurrentToken.isEmpty() ) { INetURLObject aCurrentURL; rtl::OUString sURL; if ( ::utl::LocalFileHelper::ConvertPhysicalNameToURL( sCurrentToken, sURL ) ) aCurrentURL = INetURLObject( sURL ); else { // smart URL parsing, assuming FILE protocol aCurrentURL = INetURLObject( sCurrentToken, INET_PROT_FILE ); } aCurrentURL.setFinalSlash( ); _rTokens.push_back( aCurrentURL.GetMainURL( INetURLObject::NO_DECODE ) ); } } while ( nIndex >= 0 ); } } //===================================================================== //= CheckURLAllowed //===================================================================== struct CheckURLAllowed { protected: #ifdef WNT SvtSysLocale m_aSysLocale; #endif String m_sCheckURL; // the URL to check bool m_bAllowParent; public: inline CheckURLAllowed( const String& _rCheckURL, bool bAllowParent = true ) :m_sCheckURL( _rCheckURL ), m_bAllowParent( bAllowParent ) { #ifdef WNT // on windows, assume that the relevant file systems are case insensitive, // thus normalize the URL m_sCheckURL = m_aSysLocale.GetCharClass().lowercase( m_sCheckURL, 0, m_sCheckURL.Len() ); #endif } bool operator()( const String& _rApprovedURL ) { #ifdef WNT // on windows, assume that the relevant file systems are case insensitive, // thus normalize the URL String sApprovedURL( m_aSysLocale.GetCharClass().lowercase( _rApprovedURL, 0, _rApprovedURL.Len() ) ); #else String sApprovedURL( _rApprovedURL ); #endif xub_StrLen nLenApproved = sApprovedURL.Len(); xub_StrLen nLenChecked = m_sCheckURL.Len(); if ( nLenApproved > nLenChecked ) { if ( m_bAllowParent ) { if ( sApprovedURL.Search( m_sCheckURL ) == 0 ) { if ( ( m_sCheckURL.GetChar( nLenChecked - 1 ) == '/' ) || ( sApprovedURL.GetChar( nLenChecked ) == '/' ) ) return true; } } else { // just a difference in final slash? if ( ( nLenApproved == ( nLenChecked + 1 ) ) && ( sApprovedURL.GetChar( nLenApproved - 1 ) == '/' ) ) return true; } return false; } else if ( nLenApproved < nLenChecked ) { if ( m_sCheckURL.Search( sApprovedURL ) == 0 ) { if ( ( sApprovedURL.GetChar( nLenApproved - 1 ) == '/' ) || ( m_sCheckURL.GetChar( nLenApproved ) == '/' ) ) return true; } return false; } else { // strings have equal length return ( sApprovedURL == m_sCheckURL ); } } }; //===================================================================== //= RestrictedPaths //===================================================================== //--------------------------------------------------------------------- RestrictedPaths::RestrictedPaths() :m_bFilterIsEnabled( true ) { ::rtl::OUString sRestrictedPathList; if ( lcl_getEnvironmentValue( "RestrictedPath", sRestrictedPathList ) ) // append a final slash. This ensures that when we later on check // for unrestricted paths, we don't allow paths like "/home/user35" just because // "/home/user3" is allowed - with the final slash, we make it "/home/user3/". lcl_convertStringListToUrls( sRestrictedPathList, m_aUnrestrictedURLs ); } RestrictedPaths::~RestrictedPaths() {} // -------------------------------------------------------------------- bool RestrictedPaths::isUrlAllowed( const String& _rURL ) const { if ( m_aUnrestrictedURLs.empty() || !m_bFilterIsEnabled ) return true; ::std::vector< String >::const_iterator aApprovedURL = ::std::find_if( m_aUnrestrictedURLs.begin(), m_aUnrestrictedURLs.end(), CheckURLAllowed( _rURL, true ) ); return ( aApprovedURL != m_aUnrestrictedURLs.end() ); } // -------------------------------------------------------------------- bool RestrictedPaths::isUrlAllowed( const String& _rURL, bool allowParents ) const { if ( m_aUnrestrictedURLs.empty() || !m_bFilterIsEnabled ) return true; ::std::vector< String >::const_iterator aApprovedURL = ::std::find_if( m_aUnrestrictedURLs.begin(), m_aUnrestrictedURLs.end(), CheckURLAllowed( _rURL, allowParents ) ); return ( aApprovedURL != m_aUnrestrictedURLs.end() ); } } // namespace svt /* vim:set shiftwidth=4 softtabstop=4 expandtab: */