guix/nix/libstore at 8f4ffb3fae133bb21d7991e97c2f19a7108b1143 - me/guix

me/guix

Archived

This repository has been archived on 2024-08-07. You can view files and clone it, but cannot push or open issues or pull requests.

History

Ludovic Courtès 8f4ffb3fae daemon: Protect against FD escape when building fixed-output derivations (CVE-2024-27297). This fixes a security issue (CVE-2024-27297) whereby a fixed-output derivation build process could open a writable file descriptor to its output, send it to some outside process for instance over an abstract AF_UNIX socket, which would then allow said process to modify the file in the store after it has been marked as “valid”. Vulnerability discovered by puck <https://github.com/puckipedia>. Nix security advisory: https://github.com/NixOS/nix/security/advisories/GHSA-2ffj-w4mj-pg37 Nix fix: `244f3eee0b` * nix/libutil/util.cc (readDirectory): Add variants that take a DIR* and a file descriptor. Rewrite the ‘Path’ variant accordingly. (copyFile, copyFileRecursively): New functions. * nix/libutil/util.hh (copyFileRecursively): New declaration. * nix/libstore/build.cc (DerivationGoal::buildDone): When ‘fixedOutput’ is true, call ‘copyFileRecursively’ followed by ‘rename’ on each output. Change-Id: I7952d41093eed26e123e38c14a4c1424be1ce1c4 Reported-by: Picnoir <picnoir@alternativebit.fr>, Théophane Hufschmitt <theophane.hufschmitt@tweag.io> Change-Id: Idb5f2757f35af86b032a9851cecb19b70227bd88		2024-03-11 22:12:34 +01:00
..
.gitignore
build.cc	daemon: Protect against FD escape when building fixed-output derivations (CVE-2024-27297).	2024-03-11 22:12:34 +01:00
builtins.cc	daemon: Add “git-download” built-in builder.	2023-09-26 17:36:58 +02:00
builtins.hh
derivations.cc
derivations.hh
gc.cc	Revert "nix: Guard against removing temporary roots of living processes."	2022-10-17 09:37:27 +02:00
globals.cc	daemon: Change default ‘timeout’ and ‘max-silent-time’ values.	2024-01-05 17:27:21 +01:00
globals.hh
local-store.cc	daemon: Print the line whence we expect an integer.	2021-11-27 00:49:53 +01:00
local-store.hh
misc.cc	daemon: Remove unused function findOutput.	2022-09-11 16:43:30 +02:00
misc.hh	daemon: Remove unused function findOutput.	2022-09-11 16:43:30 +02:00
optimise-store.cc
pathlocks.cc
pathlocks.hh
references.cc
references.hh
sqlite.cc
sqlite.hh	daemon: Fix build with GCC 13.	2023-09-09 18:47:35 +02:00
store-api.cc	daemon: Remove unused function exportPaths.	2022-09-11 16:43:30 +02:00
store-api.hh	daemon: Remove unused function exportPaths.	2022-09-11 16:43:30 +02:00
worker-protocol.hh	daemon: Implement ‘substitute-urls’ RPC.	2023-12-11 23:18:53 +01:00