sleepy/odysseus
1
0
Fork
You've already forked odysseus
 0
Code Issues 9 Pull requests 10 Projects Releases Packages Wiki Activity Actions

Harden backup restore tar extraction #574

Merged
ghreprimand merged 1 commit from ghreprimand/harden-backup-restore-tar into main 2026-06-01 20:08:46 +02:00
Conversation 1 Commits 1 Files changed 2 +163 -14
ghreprimand commented 2026-06-01 16:54:34 +02:00 (Migrated from github.com)
Copy link

Summary

  • validate backup archive members before restore and verify
  • reject symlink, hardlink, and special-file entries instead of passing them to tar.extractall()
  • extract only regular files and directories under data/ manually
  • skip symlinked files when creating snapshots so generated backups match the hardened restore contract

Why

The restore path already rejected absolute paths and ../ traversal, but tar archives can also redirect writes through link entries. For example, an archive can create a link inside data/ and then include a later regular file beneath that link. Using extractall() leaves that class of archive behavior to tarfile.

This keeps restores constrained to the data/ tree by accepting only regular files/directories and copying file contents directly after validation. It also makes odysseus-backup verify reject archives that restore would refuse.

Tests

  • venv/bin/python -m pytest tests/test_backup_cli_security.py -q
  • venv/bin/python -m pytest tests/test_security_regressions.py -q
  • venv/bin/python -m py_compile scripts/odysseus-backup
  • git diff --check
## Summary - validate backup archive members before restore and verify - reject symlink, hardlink, and special-file entries instead of passing them to tar.extractall() - extract only regular files and directories under data/ manually - skip symlinked files when creating snapshots so generated backups match the hardened restore contract ## Why The restore path already rejected absolute paths and ../ traversal, but tar archives can also redirect writes through link entries. For example, an archive can create a link inside data/ and then include a later regular file beneath that link. Using extractall() leaves that class of archive behavior to tarfile. This keeps restores constrained to the data/ tree by accepting only regular files/directories and copying file contents directly after validation. It also makes odysseus-backup verify reject archives that restore would refuse. ## Tests - venv/bin/python -m pytest tests/test_backup_cli_security.py -q - venv/bin/python -m pytest tests/test_security_regressions.py -q - venv/bin/python -m py_compile scripts/odysseus-backup - git diff --check
sleepy merged commit d8451ea849 into main 2026-06-01 20:08:46 +02:00
sleepy commented 2026-06-01 20:08:47 +02:00
Owner
Copy link

Merged via squash. Restore path now validates members before extraction, rejects symlinks/hardlinks/special files, and uses safe member-by-member extraction instead of extractall(). All 4 tests pass.

Merged via squash. Restore path now validates members before extraction, rejects symlinks/hardlinks/special files, and uses safe member-by-member extraction instead of extractall(). All 4 tests pass.
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
area:chat

   
area:core

   
area:llm

   
area:routes

   
area:tools

   
bug
Something isn't working

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
refactor

   
wontfix
This will not be worked on

No labels
area:chat
area:core
area:llm
area:routes
area:tools
bug
documentation
duplicate
enhancement
good first issue
help wanted
invalid
question
refactor
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
sleepy/odysseus!574
No description provided.