-
Notifications
You must be signed in to change notification settings - Fork 970
-
Notifications
You must be signed in to change notification settings - Fork 970
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
check paths in zip archive before unzipping during artifact upload #1393
Comments
…to_be_extracted_outside_of_target_directory #1393 - checking paths in zip archive before unzipping
When the artifact to be uploaded to Server contains directory traversal characters, the artifact upload fails but appropriate message not logged in the log file The reason is because on identifying traversal characters the method throws "IllegalStateException" but the caller only handles "IOException" due to which the appropriate exception is not handled |
verified this fix on 15.3.0-2651. Exception handled as expected. However there is a retry during artifact upload failure which can be avoided in case of IllegalPathException. Have created new issue #1621 to fix the retry logic. This bug can be closed. |
#1371
The text was updated successfully, but these errors were encountered: