Skip to content

[WIP]: enhance security with safe-path #23

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 4 commits into
base: main
Choose a base branch
from
Draft

[WIP]: enhance security with safe-path #23

wants to merge 4 commits into from

Conversation

jiangliu
Copy link
Member

No description provided.

jiangliu added 3 commits April 22, 2022 01:48
@jiangliu
bundle: add more comments with quotation from the image spec
a98956e 
The OCI image spec has a section named `Conversion to OCI Runtime
Configuration`, which defines how to generate a default runtime
configuration from an image.

So add more comments to create_runtime_config() by quoting spec
definitions.

Signed-off-by: Jiang Liu <gerry@linux.alibaba.com>
@jiangliu
bundle: follow the image spec to handle annotations
30535e9 
Obey the precedence rule defined the OCI image spec when generating
annotations for runtime configuration.

Signed-off-by: Jiang Liu <gerry@linux.alibaba.com>
@jiangliu
bundle: add support for missing annotations
89292d9 
There are three more annotations defined by the OCI image spec,
so add support for them.

Signed-off-by: Jiang Liu <gerry@linux.alibaba.com>
@jiangliu jiangliu marked this pull request as draft April 22, 2022 05:23
@jiangliu
bundle: enhance security by using the safe-path crate
a9bf1f6 
Use the safe-path crate to protect from possible path related attacks.

Signed-off-by: Jiang Liu <gerry@linux.alibaba.com>
jodh-intel
jodh-intel reviewed Apr 27, 2022
View reviewed changes
Copy link
Member

@jodh-intel jodh-intel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @jiangliu - A few comments...

src/bundle.rs

Ok(bundle_config)
PinnedPathBuf::new(bundle_path, BUNDLE_CONFIG)
.context("The path of generated config.json file has changed, possible attack!")
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Could you use BUNDLE_CONFIG rather than hard-coding config.json.
  • I wonder if we want to use a standard "eye catcher" / tag for scenarios like this (maybe use a "SECURITY" prefix in the context message?) That would make errors like this more grep(1)-able.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any update on this?

@jodh-intel
Copy link
Member

Ping @jiangliu.

@jodh-intel
Copy link
Member

Re-ping @jiangliu 😄

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jodh-intel jodh-intel jodh-intel left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jiangliu @jodh-intel