Merge "Add a warning about relative paths to ZipEntry#getName."

commit: 510742b01e0662c1c6078783d0ef0c4184ba9945 [log] [tgz]
author: Narayan Kamath <narayan@google.com> Fri Jan 16 19:03:14 2015 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Fri Jan 16 19:03:15 2015 +0000
tree: c7f24df77601336271ec13b5f909cb36354e0005
parent: 791bd64d1d5d369fa21ecc1b276d918255916d54 [diff]
parent: f6f506cef650471dbe9dc380e8fdefb560ad0274 [diff]
diff --git a/luni/src/main/java/java/util/zip/ZipEntry.java b/luni/src/main/java/java/util/zip/ZipEntry.java
index d007b0f..771af83 100644
--- a/luni/src/main/java/java/util/zip/ZipEntry.java
+++ b/luni/src/main/java/java/util/zip/ZipEntry.java

@@ -147,6 +147,11 @@
     /**
      * Gets the name of this {@code ZipEntry}.
      *
+     * <p><em>Security note:</em> Entry names can represent relative paths. {@code foo/../bar} or
+     * {@code ../bar/baz}, for example. If the entry name is being used to construct a filename
+     * or as a path component, it must be validated or sanitized to ensure that files are not
+     * written outside of the intended destination directory.
+     *
      * @return the entry name.
      */
     public String getName() {
commit	510742b01e0662c1c6078783d0ef0c4184ba9945	[log] [tgz]
author	Narayan Kamath <narayan@google.com>	Fri Jan 16 19:03:14 2015 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Fri Jan 16 19:03:15 2015 +0000
tree	c7f24df77601336271ec13b5f909cb36354e0005
parent	791bd64d1d5d369fa21ecc1b276d918255916d54 [diff]
parent	f6f506cef650471dbe9dc380e8fdefb560ad0274 [diff]