From 5e859bae099245af0b9a95b6c45059863153b95f Mon Sep 17 00:00:00 2001
From: Florian Dold <florian.dold@gmail.com>
Date: Mon, 23 Sep 2019 17:23:54 +0200
Subject: make URL joining more restrictive to avoid mistakes

---
 src/util/util.c | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'src/util/util.c')

diff --git a/src/util/util.c b/src/util/util.c
index 75ace4dcf..027daf427 100644
--- a/src/util/util.c
+++ b/src/util/util.c
@@ -300,6 +300,15 @@ TALER_url_join (const char *base_url,
   va_list args;
 
   GNUNET_assert (NULL != res);
+  GNUNET_assert (NULL != base_url);
+  GNUNET_assert (NULL != path);
+  GNUNET_assert (strlen (base_url) > 0);
+
+  // Must be an actual base URL!
+  GNUNET_assert ('/' == base_url[strlen (base_url) - 1]);
+
+  // Path must be relative to existing path of base URL
+  GNUNET_assert ('/' != path[0]);
 
   grow_string (&res, base_url, &n);
 
-- 
cgit v1.2.3