[ENHANCEMENT] FileUtil additions + sandboxing #3032
Conversation
|
Wouldn't this theoretically allow mods to do malicious things? Unless somehow directories that are not Funkin's are restricted. |
mods can already do that with the functions already in var root:String = "./";
while (FileUtil.doesFileExist(root)) {root += "../";}
FileUtil.writeStringToPath(root.substring(0, root.length - 6) + "some important path here", "", FileWriteMode.Force);though sandboxing to only the game root directory is definitely needed i think thats an issue for another pr |
|
Fair enough! Sandboxing would be very nice. |
itd be an easy addition like using this in all the functions that have a path input /**
* Prevent paths from exiting the root.
*
* @param path The path to sanitize.
* @return The sanitized path.
*/
public static function sanitizePath(path:String):String
{
path = path.trim().replace('\\', '/');
if (path.contains(':'))
{
path = path.substring(path.lastIndexOf(':') + 1);
}
while (path.charAt(0) == '/')
{
path = path.substring(1);
}
var parts:Array<String> = path.split('/');
var sanitized:Array<String> = [];
for (part in parts)
{
switch (part)
{
case '.':
case '':
continue;
case '..':
if (sanitized.length > 0) sanitized.pop();
default:
sanitized.push(part);
}
}
return sanitized.join('/');
}however the problem is that theres a few places internally where they use the functions to do stuff outside of the root folder (unit tests/polymod asset redirect/etc) |
cyn0x8
changed the title
|
it works |
|
Shouldn't it be better to extend FileUtilBase and override all functions including those that cause trouble or am i dumb ? |
will do that rn lol |
|
wait nvm static doesnt have inheritance pr is fine so far |
EliteMasterEric
added
the
status: pending triage
EliteMasterEric
added
type: enhancement
|
Pretty interesting! Of note, you could change the names so that the one that gets used by the core game is still |
|
why isn't this merged yet..... grrrrr..... |
this is a sizeable pr and also related to security stuff so im not surprised if it takes a while to review and merge |
Briefly describe the issue(s) fixed.
im currently working on a mod launcher/manager/updater mod, and require certain file manipulation functions that are blacklisted and also not currently present in
FileUtil, so this pr aims to expandFileUtilfunctionality by adding the following:this pr also sandboxes all the functions!! the core functionality is now housed in
FileUtilBase(used only internally, blacklisted in scripts), whichFileUtiluses, sanitizing the paths first and preventing them from leaving the game folderfunctions that have the capability to modify/delete are prevented from messing with
assets,manifestand everything in it,pluginsand everything in it, and the dlls and game executable@:keepwas also added to both classes so that while source may not use all the functions, mods will still be able toall functions above have been tested; if anyone finds any faults, please make them known