diff options
| author | Rafael França <rafaelmfranca@gmail.com> | 2016-01-12 19:46:42 -0200 |
|---|---|---|
| committer | Rafael França <rafaelmfranca@gmail.com> | 2016-01-12 19:46:42 -0200 |
| commit | 89f70938d79cc797a4ddad5aa6cc13bfc5cf08c9 (patch) | |
| tree | e367ee4a97ff3f13d7947b943d2b33f083ad362f /actionpack/lib/action_dispatch/middleware | |
| parent | 5d41cb3bfd6b19833261622ce5d339b1e580bd8b (diff) | |
| parent | 918f0eea970c9f0d39b8d470a316ad5109935dae (diff) | |
| download | rails-89f70938d79cc797a4ddad5aa6cc13bfc5cf08c9.tar.gz rails-89f70938d79cc797a4ddad5aa6cc13bfc5cf08c9.tar.bz2 rails-89f70938d79cc797a4ddad5aa6cc13bfc5cf08c9.zip | |
Merge pull request #23035 from jkowens/fix-null-byte
Prevent static middleware from attempting to serve a request with a null byte
Diffstat (limited to 'actionpack/lib/action_dispatch/middleware')
| -rw-r--r-- | actionpack/lib/action_dispatch/middleware/static.rb | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/actionpack/lib/action_dispatch/middleware/static.rb b/actionpack/lib/action_dispatch/middleware/static.rb index ea9ab3821d..41c220236a 100644 --- a/actionpack/lib/action_dispatch/middleware/static.rb +++ b/actionpack/lib/action_dispatch/middleware/static.rb @@ -27,7 +27,7 @@ module ActionDispatch # in the server's `public/` directory (see Static#call). def match?(path) path = ::Rack::Utils.unescape_path path - return false unless path.valid_encoding? + return false unless valid_path?(path) path = Rack::Utils.clean_path_info path paths = [path, "#{path}#{ext}", "#{path}/#{@index}#{ext}"] @@ -94,6 +94,10 @@ module ActionDispatch false end end + + def valid_path?(path) + path.valid_encoding? && !path.include?("\0") + end end # This middleware will attempt to return the contents of a file's body from |