lix/tests/secure-drv-outputs.sh

# Test that users cannot register specially-crafted derivations that
# produce output paths belonging to other derivations.  This could be
# used to inject malware into the store.

source common.sh

clearStore

startDaemon

# Determine the output path of the "good" derivation.
goodOut=$(nix-store -q $(nix-instantiate ./secure-drv-outputs.nix -A good))

# Instantiate the "bad" derivation.
badDrv=$(nix-instantiate ./secure-drv-outputs.nix -A bad)
badOut=$(nix-store -q $badDrv)

# Rewrite the bad derivation to produce the output path of the good
# derivation.
rm -f $TEST_ROOT/bad.drv
sed -e "s|$badOut|$goodOut|g" < $badDrv > $TEST_ROOT/bad.drv

# Add the manipulated derivation to the store and build it.  This
# should fail.
if badDrv2=$(nix-store --add $TEST_ROOT/bad.drv); then
    nix-store -r "$badDrv2"
fi

# Now build the good derivation.
goodOut2=$(nix-build ./secure-drv-outputs.nix -A good --no-out-link)
test "$goodOut" = "$goodOut2"

if ! test -e "$goodOut"/good; then
    echo "Bad derivation stole the output path of the good derivation!"
    exit 1
fi
* Added a test that make sure that users cannot register specially-crafted derivations that produce output paths belonging to other derivations. This could be used to inject malware into the store. 2011-07-20 12:15:40 +00:00			`# Test that users cannot register specially-crafted derivations that`
			`# produce output paths belonging to other derivations. This could be`
			`# used to inject malware into the store.`

			`source common.sh`

			`clearStore`

			`startDaemon`

			`# Determine the output path of the "good" derivation.`
* Refactoring: remove unnecessary variables from the tests. 2011-10-10 21:32:34 +00:00			`goodOut=$(nix-store -q $(nix-instantiate ./secure-drv-outputs.nix -A good))`
* Added a test that make sure that users cannot register specially-crafted derivations that produce output paths belonging to other derivations. This could be used to inject malware into the store. 2011-07-20 12:15:40 +00:00
			`# Instantiate the "bad" derivation.`
* Refactoring: remove unnecessary variables from the tests. 2011-10-10 21:32:34 +00:00			`badDrv=$(nix-instantiate ./secure-drv-outputs.nix -A bad)`
			`badOut=$(nix-store -q $badDrv)`
* Added a test that make sure that users cannot register specially-crafted derivations that produce output paths belonging to other derivations. This could be used to inject malware into the store. 2011-07-20 12:15:40 +00:00
			`# Rewrite the bad derivation to produce the output path of the good`
			`# derivation.`
			`rm -f $TEST_ROOT/bad.drv`
			`sed -e "s\|$badOut\|$goodOut\|g" < $badDrv > $TEST_ROOT/bad.drv`

			`# Add the manipulated derivation to the store and build it. This`
			`# should fail.`
* Refactoring: remove unnecessary variables from the tests. 2011-10-10 21:32:34 +00:00			`if badDrv2=$(nix-store --add $TEST_ROOT/bad.drv); then`
			`nix-store -r "$badDrv2"`
* Added a test that make sure that users cannot register specially-crafted derivations that produce output paths belonging to other derivations. This could be used to inject malware into the store. 2011-07-20 12:15:40 +00:00			`fi`

			`# Now build the good derivation.`
Don't put results symlinks in the tests directory 2012-09-11 23:14:15 +00:00			`goodOut2=$(nix-build ./secure-drv-outputs.nix -A good --no-out-link)`
* Added a test that make sure that users cannot register specially-crafted derivations that produce output paths belonging to other derivations. This could be used to inject malware into the store. 2011-07-20 12:15:40 +00:00			`test "$goodOut" = "$goodOut2"`

			`if ! test -e "$goodOut"/good; then`
			`echo "Bad derivation stole the output path of the good derivation!"`
			`exit 1`
			`fi`