Can unprivileged users corrupt the store with bad tarballs?

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Can unprivileged users corrupt the store with bad tarballs?

From:	Mark H Weaver
Subject:	Can unprivileged users corrupt the store with bad tarballs?
Date:	Thu, 03 Apr 2014 14:43:31 -0400

I was thinking about the security implications of giving out shell
access to one of my systems running Guix.

When I ask guix-daemon to build package 'foo', it will use as an input
the source for package 'foo', usually a tarball.  If the tarball is
already in the store, it won't download it again, because it is
effectively cached in the store.

It is possible for another user on the same system to corrupt the cache,
but manually adding a bad tarball for 'foo' to the store, in such a way
that it would be used to build 'foo' when I ask for it?

      Mark

[Prev in Thread]

Current Thread

[Next in Thread]

Can unprivileged users corrupt the store with bad tarballs?, Mark H Weaver <=
- Re: Can unprivileged users corrupt the store with bad tarballs?, Ludovic Courtès, 2014/04/03
  - Re: Can unprivileged users corrupt the store with bad tarballs?, Mark H Weaver, 2014/04/04
    - Re: Can unprivileged users corrupt the store with bad tarballs?, Ludovic Courtès, 2014/04/04

Prev by Date: Re: Why is this build considered a failure by hydra?
Next by Date: Re: Can unprivileged users corrupt the store with bad tarballs?
Previous by thread: Why is this build considered a failure by hydra?
Next by thread: Re: Can unprivileged users corrupt the store with bad tarballs?
Index(es):
- Date
- Thread