util: when using basename() for creating temporary files, verify the resulting name is actually valid

Also, rename filename_is_safe() to filename_is_valid(), since it actually does a full validation for what the kernel will accept as file name, it's not just a heuristic.
author: Lennart Poettering <lennart@poettering.net> 2014-12-12 02:32:33 +0100
committer: Lennart Poettering <lennart@poettering.net> 2014-12-12 13:35:32 +0100
commit: ae6c3cc009a21df4b51851fb8fe3fde0b7d6d8f0 (patch)
tree: 98eda04d3ff6c24177217efbe9613ed6ed2dc51b /src/journal/journald-native.c
parent: 8d1c8bd746a6a14dec7470f93f843bcb0699f4b8 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/src/journal/journald-native.c b/src/journal/journald-native.c
index f982696255..f701233bbe 100644
--- a/src/journal/journald-native.c
+++ b/src/journal/journald-native.c
@@ -350,7 +350,7 @@ void server_process_native_file(
                         return;
                 }
 
-                if (!filename_is_safe(e)) {
+                if (!filename_is_valid(e)) {
                         log_error("Received file in subdirectory of allowed directories. Refusing.");
                         return;
                 }
author	Lennart Poettering <lennart@poettering.net>	2014-12-12 02:32:33 +0100
committer	Lennart Poettering <lennart@poettering.net>	2014-12-12 13:35:32 +0100
commit	ae6c3cc009a21df4b51851fb8fe3fde0b7d6d8f0 (patch)
tree	98eda04d3ff6c24177217efbe9613ed6ed2dc51b /src/journal/journald-native.c
parent	8d1c8bd746a6a14dec7470f93f843bcb0699f4b8 (diff)