Merge pull request #2452 from ElvishJerricco/verify-sigs-overflow

Fix overflow when verifying signatures of content addressable paths
2018-10-08 12:03:03 +02:00 · 2018-10-08 12:03:03 +02:00 · 01bd66bf83
parent 0fda9b22c7 b7091ce41e
commit 01bd66bf83
2 changed files with 5 additions and 1 deletions
--- a/src/nix/verify.cc
+++ b/src/nix/verify.cc
@ -120,7 +120,7 @@ struct CmdVerify : StorePathsCommand
                            for (auto sig : sigs) {
                                if (sigsSeen.count(sig)) continue;
                                sigsSeen.insert(sig);
-                                if (info->checkSignature(publicKeys, sig))
+                                if (validSigs < ValidPathInfo::maxSigs && info->checkSignature(publicKeys, sig))
                                    validSigs++;
                            }
                        };
--- a/tests/signing.sh
+++ b/tests/signing.sh
@ -62,6 +62,10 @@ outPathCA=$(IMPURE_VAR1=foo IMPURE_VAR2=bar nix-build ./fixed.nix -A good.0 --no
 nix verify $outPathCA
 nix verify $outPathCA --sigs-needed 1000

+# Check that signing a content-addressed path doesn't overflow validSigs
+nix sign-paths --key-file $TEST_ROOT/sk1 $outPathCA
+nix verify -r $outPathCA --sigs-needed 1000 --trusted-public-keys $pk1
+
 # Copy to a binary cache.
 nix copy --to file://$cacheDir $outPath2