Check the CA hash when importing stuff in the local store

When adding a path to the local store (via `LocalStore::addToStore`), ensure that the `ca` field of the provided `ValidPathInfo` does indeed correspond to the content of the path. Otherwise any untrusted user (or any binary cache) can add arbitrary content-addressed paths to the store (as content-addressed paths don’t need a signature).
2025-12-05 16:41:01 +01:00 · 2021-05-27 13:25:25 +02:00 · 2021-05-27 13:25:25 +02:00 · 5985b8b527
commit 5985b8b527
parent 48396d940e
4 changed files with 109 additions and 0 deletions
--- a/src/libstore/local-store.hh
+++ b/src/libstore/local-store.hh
@ -283,6 +283,19 @@ private:

    void createUser(const std::string & userName, uid_t userId) override;

+    // XXX: Make a generic `Store` method
+    FixedOutputHash hashCAPath(
+        const FileIngestionMethod & method,
+        const HashType & hashType,
+        const StorePath & path);
+
+    FixedOutputHash hashCAPath(
+        const FileIngestionMethod & method,
+        const HashType & hashType,
+        const Path & path,
+        const std::string_view pathHash
+    );
+
    friend struct LocalDerivationGoal;
    friend struct PathSubstitutionGoal;
    friend struct SubstitutionGoal;