freepattern(pat);
}
freeca(cf->index);
+ freeca(cf->dotallow);
if(cf->capture != NULL)
free(cf->capture);
if(cf->reparse != NULL)
} else if(!strcmp(s->argv[0], "index-file")) {
freeca(cf->index);
cf->index = cadup(s->argv + 1);
+ } else if(!strcmp(s->argv[0], "dot-allow")) {
+ freeca(cf->dotallow);
+ cf->dotallow = cadup(s->argv + 1);
} else if(!strcmp(s->argv[0], "capture")) {
if(s->argc < 2) {
flog(LOG_WARNING, "%s:%i: missing argument to capture declaration", s->file, s->lno);
#include <ctype.h>
#include <dirent.h>
#include <time.h>
+#include <fnmatch.h>
#include <sys/wait.h>
#include <sys/signal.h>
handle(req, fd, path, pat);
}
+static int checkaccess(char *path, char *name)
+{
+ int i, o;
+ struct config **cfs;
+
+ if(*name == '.') {
+ cfs = getconfigs(sprintf3("%s/", path));
+ for(i = 0; cfs[i] != NULL; i++) {
+ if(cfs[i]->dotallow != NULL) {
+ for(o = 0; cfs[i]->dotallow[o] != NULL; o++) {
+ if(!fnmatch(cfs[i]->dotallow[o], name, 0))
+ return(1);
+ }
+ break;
+ }
+ }
+ return(0);
+ }
+ return(1);
+}
+
static char *findfile(char *path, char *name, struct stat *sb)
{
DIR *dir;
continue;
if(strncmp(dent->d_name, name, strlen(name)))
continue;
- fp = sprintf3("%s/%s", path, dent->d_name);
- if(stat(fp, sb))
+ fp = sprintf2("%s/%s", path, dent->d_name);
+ if(stat(fp, sb)) {
+ free(fp);
+ continue;
+ }
+ if(!S_ISREG(sb->st_mode)) {
+ free(fp);
continue;
- if(!S_ISREG(sb->st_mode))
+ }
+ if(!checkaccess(path, dent->d_name)) {
+ free(fp);
continue;
- ret = sstrdup(fp);
+ }
+ ret = fp;
break;
}
closedir(dir);
char *newpath;
int rv;
- if(*el == '.')
- return(0);
if(!stat(sprintf3("%s/%s", path, el), &sb)) {
+ if(!checkaccess(path, el))
+ return(0);
if(S_ISDIR(sb.st_mode)) {
if(!*rest) {
stdredir(req, fd, 301, sprintf3("%s/", el));
Dolda2000 GitWeb / ashd.git / commitdiff