io/fs: set ErrInvalid for FS.Open from SubFS when it fails ValidPath

panjf2000 · gopherbot · commit bf821f65cfd6 · 2024-02-10T02:10:17.000Z
Fixes #65419 Change-Id: I8f9f82ab0387d8bb39aaca4f9e60e36ee15c587d Reviewed-on: https://go-review.googlesource.com/c/go/+/560137 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Ian Lance Taylor <iant@google.com> Reviewed-by: Ian Lance Taylor <iant@google.com>
diff --git a/src/io/fs/sub.go b/src/io/fs/sub.go
@@ -33,7 +33,7 @@ type SubFS interface {
 // chroot-style security mechanism, and Sub does not change that fact.
 func Sub(fsys FS, dir string) (FS, error) {
 	if !ValidPath(dir) {
-		return nil, &PathError{Op: "sub", Path: dir, Err: errors.New("invalid name")}
+		return nil, &PathError{Op: "sub", Path: dir, Err: ErrInvalid}
 	}
 	if dir == "." {
 		return fsys, nil
@@ -52,7 +52,7 @@ type subFS struct {
 // fullName maps name to the fully-qualified name dir/name.
 func (f *subFS) fullName(op string, name string) (string, error) {
 	if !ValidPath(name) {
-		return "", &PathError{Op: op, Path: name, Err: errors.New("invalid name")}
+		return "", &PathError{Op: op, Path: name, Err: ErrInvalid}
 	}
 	return path.Join(f.dir, name), nil
 }
diff --git a/src/io/fs/sub_test.go b/src/io/fs/sub_test.go
@@ -5,6 +5,7 @@
 package fs_test
 
 import (
+	"errors"
 	. "io/fs"
 	"testing"
 )
@@ -54,4 +55,9 @@ func TestSub(t *testing.T) {
 	if pe.Path != "nonexist" {
 		t.Fatalf("Open(nonexist): err.Path = %q, want %q", pe.Path, "nonexist")
 	}
+
+	_, err = sub.Open("./")
+	if !errors.Is(err, ErrInvalid) {
+		t.Fatalf("Open(./): error is %v, want %v", err, ErrInvalid)
+	}
 }

Original file line number	Diff line number	Diff line change
`@@ -33,7 +33,7 @@ type SubFS interface {`
`33`	`33`	`// chroot-style security mechanism, and Sub does not change that fact.`
`34`	`34`	`func Sub(fsys FS, dir string) (FS, error) {`
`35`	`35`	`if !ValidPath(dir) {`
`36`		`- return nil, &PathError{Op: "sub", Path: dir, Err: errors.New("invalid name")}`
	`36`	`+ return nil, &PathError{Op: "sub", Path: dir, Err: ErrInvalid}`
`37`	`37`	`}`
`38`	`38`	`if dir == "." {`
`39`	`39`	`return fsys, nil`
`@@ -52,7 +52,7 @@ type subFS struct {`
`52`	`52`	`// fullName maps name to the fully-qualified name dir/name.`
`53`	`53`	`func (f *subFS) fullName(op string, name string) (string, error) {`
`54`	`54`	`if !ValidPath(name) {`
`55`		`- return "", &PathError{Op: op, Path: name, Err: errors.New("invalid name")}`
	`55`	`+ return "", &PathError{Op: op, Path: name, Err: ErrInvalid}`
`56`	`56`	`}`
`57`	`57`	`return path.Join(f.dir, name), nil`
`58`	`58`	`}`
Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@`
`5`	`5`	`package fs_test`
`6`	`6`
`7`	`7`	`import (`
	`8`	`+ "errors"`
`8`	`9`	`. "io/fs"`
`9`	`10`	`"testing"`
`10`	`11`	`)`
`@@ -54,4 +55,9 @@ func TestSub(t *testing.T) {`
`54`	`55`	`if pe.Path != "nonexist" {`
`55`	`56`	`t.Fatalf("Open(nonexist): err.Path = %q, want %q", pe.Path, "nonexist")`
`56`	`57`	`}`
	`58`	`+`
	`59`	`+ _, err = sub.Open("./")`
	`60`	`+ if !errors.Is(err, ErrInvalid) {`
	`61`	`+ t.Fatalf("Open(./): error is %v, want %v", err, ErrInvalid)`
	`62`	`+ }`
`57`	`63`	`}`