path: also guard .gitmodules against NTFS Alternate Data Streams

dscho · dscho · commit 91bd46588e69 · 2019-12-05T15:36:51.000+01:00
We just safe-guarded `.git` against NTFS Alternate Data Stream-related
attack vectors, and now it is time to do the same for `.gitmodules`.

Note: In the added regression test, we refrain from verifying all kinds
of variations between short names and NTFS Alternate Data Streams: as
the new code disallows _all_ Alternate Data Streams of `.gitmodules`, it
is enough to test one in order to know that all of them are guarded
against.

Signed-off-by: Johannes Schindelin &lt;johannes.schindelin@gmx.de&gt;
diff --git a/path.c b/path.c
@@ -1369,7 +1369,7 @@ static int is_ntfs_dot_generic(const char *name,
 only_spaces_and_periods:
 		for (;;) {
 			char c = name[i++];
-			if (!c)
+			if (!c || c == ':')
 				return 1;
 			if (c != ' ' && c != '.')
 				return 0;
diff --git a/t/t0060-path-utils.sh b/t/t0060-path-utils.sh
@@ -408,6 +408,9 @@ test_expect_success 'match .gitmodules' '
 		~1000000 \
 		~9999999 \
 		\
+		.gitmodules:\$DATA \
+		"gitmod~4 . :\$DATA" \
+		\
 		--not \
 		".gitmodules x"  \
 		".gitmodules .x" \
@@ -432,7 +435,9 @@ test_expect_success 'match .gitmodules' '
 		\
 		GI7EB~1 \
 		GI7EB~01 \
-		GI7EB~1X
+		GI7EB~1X \
+		\
+		.gitmodules,:\$DATA
 '
 
 test_done

Original file line number	Diff line number	Diff line change
`@@ -408,6 +408,9 @@ test_expect_success 'match .gitmodules' '`
`408`	`408`	`~1000000 \`
`409`	`409`	`~9999999 \`
`410`	`410`	`\`
	`411`	`+ .gitmodules:\$DATA \`
	`412`	`+ "gitmod~4 . :\$DATA" \`
	`413`	`+ \`
`411`	`414`	`--not \`
`412`	`415`	`".gitmodules x" \`
`413`	`416`	`".gitmodules .x" \`
`@@ -432,7 +435,9 @@ test_expect_success 'match .gitmodules' '`
`432`	`435`	`\`
`433`	`436`	`GI7EB~1 \`
`434`	`437`	`GI7EB~01 \`
`435`		`- GI7EB~1X`
	`438`	`+ GI7EB~1X \`
	`439`	`+ \`
	`440`	`+ .gitmodules,:\$DATA`
`436`	`441`	`'`
`437`	`442`
`438`	`443`	`test_done`