osfs: In BoundOS, empty baseDir disables bound checks

pjbgf · pjbgf · commit dc481f5289ba · 2024-08-05T00:15:25.000+01:00
This aligns the behaviour with chroot, as per use in go-git's default loader.

Signed-off-by: Paulo Gomes &lt;pjbgf@linux.com&gt;
diff --git a/osfs/os_bound.go b/osfs/os_bound.go
@@ -287,8 +287,7 @@ func (fs *BoundOS) insideBaseDir(filename string) (bool, error) {
 // a dir that is within the fs.baseDir, by first evaluating any symlinks
 // that either filename or fs.baseDir may contain.
 func (fs *BoundOS) insideBaseDirEval(filename string) (bool, error) {
-	// "/" contains all others.
-	if fs.baseDir == "/" || fs.baseDir == filename {
+	if fs.baseDir == "/" || fs.baseDir == "" || fs.baseDir == filename {
 		return true, nil
 	}
 	dir, err := filepath.EvalSymlinks(filepath.Dir(filename))
diff --git a/osfs/os_bound_test.go b/osfs/os_bound_test.go
@@ -1133,10 +1133,16 @@ func TestReadDir(t *testing.T) {
 
 func TestInsideBaseDirEval(t *testing.T) {
 	assert := assert.New(t)
+
 	fs := BoundOS{baseDir: "/"}
 	b, err := fs.insideBaseDirEval("a")
 	assert.True(b)
 	assert.Nil(err)
+
+	fs = BoundOS{baseDir: ""}
+	b, err = fs.insideBaseDirEval(filepath.Join("a", "b", "c"))
+	assert.True(b)
+	assert.Nil(err)
 }
 
 func TestMkdirAll(t *testing.T) {
diff --git a/osfs/os_windows.go b/osfs/os_windows.go
@@ -52,7 +52,7 @@ func rename(from, to string) error {
 	return os.Rename(from, to)
 }
 
-func umask(new int) func() {
+func umask(_ int) func() {
 	return func() {
 	}
 }

Original file line number	Diff line number	Diff line change
`@@ -52,7 +52,7 @@ func rename(from, to string) error {`
`52`	`52`	`return os.Rename(from, to)`
`53`	`53`	`}`
`54`	`54`
`55`		`-func umask(new int) func() {`
	`55`	`+func umask(_ int) func() {`
`56`	`56`	`return func() {`
`57`	`57`	`}`
`58`	`58`	`}`