vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-03-14 03:20:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
265367d99bc8c2dd477ef39ed4cd0ced2eb82471
openclaw/src/infra/path-alias-guards.test.ts
Peter Steinberger 4fd29a35bb fix: block broken-symlink sandbox path escapes
2026-02-26 13:30:45 +01:00

77 lines
2.5 KiB
TypeScript
Raw Blame History

import fs from "node:fs/promises";
import path from "node:path";
import { describe, expect, it } from "vitest";
import { assertNoPathAliasEscape } from "./path-alias-guards.js";
async function withTempRoot<T>(run: (root: string) => Promise<T>): Promise<T> {
const base = await fs.mkdtemp(path.join(process.cwd(), "openclaw-path-alias-"));
const root = path.join(base, "root");
await fs.mkdir(root, { recursive: true });
try {
return await run(root);
} finally {
await fs.rm(base, { recursive: true, force: true });
}
}
describe("assertNoPathAliasEscape", () => {
it.runIf(process.platform !== "win32")(
"rejects broken final symlink targets outside root",
async () => {
await withTempRoot(async (root) => {
const outside = path.join(path.dirname(root), "outside");
await fs.mkdir(outside, { recursive: true });
const linkPath = path.join(root, "jump");
await fs.symlink(path.join(outside, "owned.txt"), linkPath);
await expect(
assertNoPathAliasEscape({
absolutePath: linkPath,
rootPath: root,
boundaryLabel: "sandbox root",
}),
).rejects.toThrow(/Symlink escapes sandbox root/);
});
},
);
it.runIf(process.platform !== "win32")(
"allows broken final symlink targets that remain inside root",
async () => {
await withTempRoot(async (root) => {
const linkPath = path.join(root, "jump");
await fs.symlink(path.join(root, "missing", "owned.txt"), linkPath);
await expect(
assertNoPathAliasEscape({
absolutePath: linkPath,
rootPath: root,
boundaryLabel: "sandbox root",
}),
).resolves.toBeUndefined();
});
},
);
it.runIf(process.platform !== "win32")(
"rejects broken targets that traverse via an in-root symlink alias",
async () => {
await withTempRoot(async (root) => {
const outside = path.join(path.dirname(root), "outside");
await fs.mkdir(outside, { recursive: true });
await fs.symlink(outside, path.join(root, "hop"));
const linkPath = path.join(root, "jump");
await fs.symlink(path.join("hop", "missing", "owned.txt"), linkPath);
await expect(
assertNoPathAliasEscape({
absolutePath: linkPath,
rootPath: root,
boundaryLabel: "sandbox root",
}),
).rejects.toThrow(/Symlink escapes sandbox root/);
});
},
);
});
Reference in New Issue View Git Blame Copy Permalink