backend: Use utils.IsBelowDir instead of local code

utils.IsBelowDir is actually tested and doesn't allow writes to “…/queue*”, like the old code here did. Signed-off-by: Michael Hanselmann <hansmi@google.com> Reviewed-by: Iustin Pop <iustin@google.com>

backend: Use utils.IsBelowDir instead of local code
utils.IsBelowDir is actually tested and doesn't allow writes to “…/queue*”, like the old code here did. Signed-off-by: Michael Hanselmann <hansmi@google.com> Reviewed-by: Iustin Pop <iustin@google.com>
b3589802 · Michael Hanselmann · 4fdedd09 · b3589802
Commit b3589802 authored 12 years ago by Michael Hanselmann
--- a/lib/backend.py
+++ b/lib/backend.py
@@ -2808,12 +2808,9 @@ def _EnsureJobQueueFile(file_name):
  @raises RPCFail: if the file is not valid

  """
-  queue_dir = os.path.normpath(pathutils.QUEUE_DIR)
-  result = (os.path.commonprefix([queue_dir, file_name]) == queue_dir)
-
-  if not result:
+  if not utils.IsBelowDir(pathutils.QUEUE_DIR, file_name):
    _Fail("Passed job queue file '%s' does not belong to"
-          " the queue directory '%s'", file_name, queue_dir)
+          " the queue directory '%s'", file_name, pathutils.QUEUE_DIR)


 def JobQueueUpdate(file_name, content):