mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

compute: disallow output files that are not regular files

Browse source 
Use case where this came up is a compute program using singularity,
where the process inside the container will be allowed to write to the temp
directory, so could make eg a /etc/shadow symlink, which could then be
used to exfiltrate that from the system to wherever the annex object
might be pushed to.

It seemed better to fix this once in git-annex rather than in any such
compute program.
This commit is contained in:
Joey Hess 2025-03-10 12:52:10 -04:00
parent 9d6c052c27
commit 9d9e34c187
No known key found for this signature in database
GPG key ID: DB12DB0FF05F8F38
1 changed files with 16 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

16
Remote/Compute.hs
View file

@ -56,6 +56,7 @@ import Types.Key
import Backend import Backend
import qualified Git import qualified Git
import qualified Utility.FileIO as F import qualified Utility.FileIO as F
import qualified Utility.RawFilePath as R
import qualified Utility.SimpleProtocol as Proto import qualified Utility.SimpleProtocol as Proto
import Network.HTTP.Types.URI import Network.HTTP.Types.URI
@ -63,6 +64,7 @@ import Data.Time.Clock
import Text.Read import Text.Read
import Control.Concurrent.STM import Control.Concurrent.STM
import Control.Concurrent.Async import Control.Concurrent.Async
import System.PosixCompat.Files (isRegularFile)
import qualified Data.Map as M import qualified Data.Map as M
import qualified Data.Set as S import qualified Data.Set as S
import qualified Data.ByteString as B import qualified Data.ByteString as B
@ -414,6 +416,7 @@ runComputeProgram (ComputeProgram program) state (ImmutableState immutablestate)
(liftIO . cleanupProcess) (liftIO . cleanupProcess)
(getinput tmpdir subdir startresult meterfile) (getinput tmpdir subdir startresult meterfile)
endtime <- liftIO currentMonotonicTimestamp endtime <- liftIO currentMonotonicTimestamp
liftIO $ checkoutputs result subdir
cont result subdir (calcduration starttime endtime) cont result subdir (calcduration starttime endtime)
getsubdir tmpdir = do getsubdir tmpdir = do
@ -514,6 +517,19 @@ runComputeProgram (ComputeProgram program) state (ImmutableState immutablestate)
when (any (\p -> dropTrailingPathSeparator p == literalOsPath ".git") (splitPath f)) $ when (any (\p -> dropTrailingPathSeparator p == literalOsPath ".git") (splitPath f)) $
err "inside the .git directory" err "inside the .git directory"
-- Disallow any output files that are not regular files.
-- This supports compute programs that run code in a sandboxed
-- environment, which might let it eg make a symlink or device
-- file that when read as an output file would expose data that
-- the sandboxed code was not allowed to access itself.
checkoutputs result subdir =
forM_ (M.keys $ computeOutputs $ computeState result) $ \f ->
let f' = subdir </> f
in tryIO (R.getSymbolicLinkStatus (fromOsPath f')) >>= \case
Right st | not (isRegularFile st) ->
giveup $ program ++ " output file " ++ fromOsPath f ++ " is not a regular file, refusing to use it"
_ -> noop
checkimmutable True _ _ a = a checkimmutable True _ _ a = a
checkimmutable False requestdesc p a checkimmutable False requestdesc p a
| not immutablestate = a | not immutablestate = a