vtcode-core 0.98.1

Core library for VT Code - a Rust-based terminal coding agent
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49

use anyhow::{Result, bail};
use std::path::{Path, PathBuf};

/// Consolidated path validation combining safety checks, normalization, and workspace bounds.
///
/// Steps:
/// 1. Shell character + system path safety (from validation/paths.rs)
/// 2. Normalize + workspace bounds check (from traits.rs)
/// 3. Canonical resolve + re-check for symlink escapes (from path_policy.rs)
pub async fn validate_and_resolve_path(workspace_root: &Path, path_str: &str) -> Result<PathBuf> {
    // Step 1: Safety checks (dangerous chars, system paths, traversal)
    super::paths::validate_path_safety(path_str)?;

    // Step 2: Normalize and check workspace bounds
    let path = Path::new(path_str);
    let absolute = if path.is_absolute() {
        path.to_path_buf()
    } else {
        workspace_root.join(path)
    };
    let normalized = crate::utils::path::normalize_path(&absolute);
    let normalized_root = crate::utils::path::normalize_path(workspace_root);

    if !normalized.starts_with(&normalized_root) {
        bail!(
            "Path '{}' resolves outside the workspace boundary",
            path_str
        );
    }

    // Step 3: Canonical resolve + re-check (catches symlink escapes)
    let canonical = crate::utils::path::canonicalize_allow_missing(&normalized).await?;
    let canonical_root = if tokio::fs::try_exists(workspace_root).await.unwrap_or(false) {
        tokio::fs::canonicalize(workspace_root)
            .await
            .unwrap_or_else(|_| normalized_root.clone())
    } else {
        normalized_root
    };

    if !canonical.starts_with(&canonical_root) {
        bail!(
            "Path '{}' resolves outside the workspace boundary (after symlink resolution)",
            path_str
        );
    }

    Ok(canonical)
}