Remote: stricter validation of the session names

Creating a session will not accept any slashes in the session path, connecting to an existing session will accept at most one slash to allow for specifying the session of a different user. Fixes #1635
author: Maxime Coste <mawww@kakoune.org> 2017-11-04 12:01:25 +0800
committer: Maxime Coste <mawww@kakoune.org> 2017-11-04 12:01:25 +0800
commit: aa82a90c39299ec34cff3886a35b265c7ae2dc4e (patch)
tree: 4803452f17a01a2d60619e0639f175c150c6020e /src/remote.cc
parent: aa9bcf08fcf576826a9021df77929ec4bc944af1 (diff)
1 files changed, 7 insertions, 1 deletions
diff --git a/src/remote.cc b/src/remote.cc
index 2bf6f03b..5a785aa1 100644
--- a/src/remote.cc
+++ b/src/remote.cc
@@ -531,7 +531,10 @@ static sockaddr_un session_addr(StringView session)
 {
     sockaddr_un addr;
     addr.sun_family = AF_UNIX;
-    if (find(session, '/')!= session.end())
+    auto slash_count = std::count(session.begin(), session.end(), '/');
+    if (slash_count > 1)
+        throw runtime_error{"Session names are either <user>/<name> or <name>"};
+    else if (slash_count == 1)
         format_to(addr.sun_path, "{}/kakoune/{}", tmpdir(), session);
     else
         format_to(addr.sun_path, "{}/kakoune/{}/{}", tmpdir(),
@@ -766,6 +769,9 @@ private:
 Server::Server(String session_name)
     : m_session{std::move(session_name)}
 {
+    if (contains(m_session, '/'))
+        throw runtime_error{"Cannot create sessions with '/' in their name"};
+
     int listen_sock = socket(AF_UNIX, SOCK_STREAM, 0);
     fcntl(listen_sock, F_SETFD, FD_CLOEXEC);
     sockaddr_un addr = session_addr(m_session);
author	Maxime Coste <mawww@kakoune.org>	2017-11-04 12:01:25 +0800
committer	Maxime Coste <mawww@kakoune.org>	2017-11-04 12:01:25 +0800
commit	aa82a90c39299ec34cff3886a35b265c7ae2dc4e (patch)
tree	4803452f17a01a2d60619e0639f175c150c6020e /src/remote.cc
parent	aa9bcf08fcf576826a9021df77929ec4bc944af1 (diff)