Salastil/odysseus
1
0
Fork 0
mirror of https://github.com/pewdiepie-archdaemon/odysseus.git synced 2026-06-17 02:05:22 -04:00
Code Issues Packages Projects Releases Wiki Activity

Security: sanitize export and gallery filenames

Browse Source 
Co-authored-by: RefuseOdd <refuseodd@users.noreply.github.com>
This commit is contained in:
Refuse
2026-06-02 23:29:56 +12:00
committed by GitHub
parent 4218bfe71e
commit 323f027865
3 changed files with 99 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
tests/test_security_regressions.py
+79
View File
@@ -943,6 +943,85 @@ def test_mcp_oauth_page_escapes_reflected_values():
assert f"{var} = html.escape({var}" in body, var
# -- export/gallery filename hardening ----------------------------------------
def _install_route_import_stubs(monkeypatch):
core_mod = types.ModuleType("core")
core_mod.__path__ = []
db_mod = types.ModuleType("core.database")
db_mod.SessionLocal = lambda: None
for name in (
"Session",
"Document",
"GalleryImage",
"GalleryAlbum",
"ModelEndpoint",
):
setattr(db_mod, name, type(name, (), {}))
session_manager_mod = types.ModuleType("core.session_manager")
session_manager_mod.SessionManager = type("SessionManager", (), {})
models_mod = types.ModuleType("core.models")
models_mod.ChatMessage = type("ChatMessage", (), {})
monkeypatch.setitem(sys.modules, "core", core_mod)
monkeypatch.setitem(sys.modules, "core.database", db_mod)
monkeypatch.setitem(sys.modules, "core.session_manager", session_manager_mod)
monkeypatch.setitem(sys.modules, "core.models", models_mod)
def _import_session_routes_for_filename(monkeypatch):
_install_route_import_stubs(monkeypatch)
monkeypatch.delitem(sys.modules, "routes.session_routes", raising=False)
from routes import session_routes
return session_routes
def _import_gallery_routes_for_filename(monkeypatch):
_install_route_import_stubs(monkeypatch)
monkeypatch.delitem(sys.modules, "routes.gallery_helpers", raising=False)
monkeypatch.delitem(sys.modules, "routes.gallery_routes", raising=False)
from routes import gallery_routes
return gallery_routes
def test_export_filename_sanitizer_blocks_header_and_path_chars(monkeypatch):
mod = _import_session_routes_for_filename(monkeypatch)
out = mod._sanitize_export_filename('chat.md\r\nX-Test: yes/..\\evil;quote".txt\x00')
assert out
assert len(out) <= 128
for ch in '\r\n/\\:\x00;" ':
assert ch not in out
def test_export_filename_sanitizer_preserves_safe_names(monkeypatch):
mod = _import_session_routes_for_filename(monkeypatch)
assert mod._sanitize_export_filename("conversation_20260602.md") == "conversation_20260602.md"
assert mod._sanitize_export_filename("") == ""
def test_gallery_replace_filename_sanitizer_uses_basename(monkeypatch):
mod = _import_gallery_routes_for_filename(monkeypatch)
out = mod._sanitize_gallery_filename("../../etc/cron.d/evil image.png")
assert out == "evil_image.png"
assert "/" not in out
assert "\\" not in out
def test_gallery_replace_filename_sanitizer_falls_back_when_empty(monkeypatch):
mod = _import_gallery_routes_for_filename(monkeypatch)
monkeypatch.setattr(mod.uuid, "uuid4", lambda: types.SimpleNamespace(hex="abcdef1234567890"))
assert mod._sanitize_gallery_filename("../") == "abcdef123456"
def test_chat_active_document_lookup_is_owner_scoped():
"""The explicit `active_doc_id` path in /api/chat_stream must scope the
document lookup to the caller. Resolving by id alone let any user inject