yggdrasil-network/yggdrasil-go
1
0
Fork 0
mirror of https://github.com/yggdrasil-network/yggdrasil-go.git synced 2025-08-24 16:05:07 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

Remove checks for absolute paths in validateConfigPath function to simplify path validation logic. This change streamlines the configuration handling process by eliminating unnecessary restrictions on system directory access.

Browse source
This commit is contained in:
Andy Oknen 2025-08-15 20:21:54 +00:00
parent 2180e12b73
commit 09f600c6cf
1 changed files with 0 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

10
src/config/config.go
View file

@ -314,16 +314,6 @@ func validateConfigPath(path string) (string, error) {
return "", fmt.Errorf("invalid path: contains path traversal sequences")
}
// Check for absolute paths starting with suspicious patterns
if strings.HasPrefix(path, "/etc/") || strings.HasPrefix(path, "/root/") ||
strings.HasPrefix(path, "/var/") || strings.HasPrefix(path, "/sys/") ||
strings.HasPrefix(path, "/proc/") || strings.HasPrefix(path, "/dev/") {
// Allow only specific safe paths
if !strings.HasPrefix(path, "/etc/yggdrasil/") && !strings.HasPrefix(path, "/var/lib/yggdrasil/") {
return "", fmt.Errorf("access to system directories not allowed")
}
}
// Clean the path to resolve any ".." or "." components
cleanPath := filepath.Clean(path)