From bce7a28a0a38da41fca91cfdbf7ae0fe14833f2a Mon Sep 17 00:00:00 2001 From: Mathieu Othacehe Date: Tue, 30 Aug 2022 19:18:26 +0200 Subject: [PATCH] image: Perform more sanitizing. * gnu/image.scm (validate-size, validate-partition-offset, validate-partition-flags): New macros. ()[size, offset, flags]: Sanitize those fields using the above procedures respectively. --- gnu/image.scm | 72 ++++++++++++++++++++++++++++++++++++++++++++------- 1 file changed, 62 insertions(+), 10 deletions(-) diff --git a/gnu/image.scm b/gnu/image.scm index 486c02aadc..21ac70e56a 100644 --- a/gnu/image.scm +++ b/gnu/image.scm @@ -1,5 +1,5 @@ ;;; GNU Guix --- Functional package management for GNU -;;; Copyright © 2020 Mathieu Othacehe +;;; Copyright © 2020, 2022 Mathieu Othacehe ;;; ;;; This file is part of GNU Guix. ;;; @@ -21,6 +21,7 @@ (define-module (gnu image) #:use-module (guix records) #:use-module (guix diagnostics) #:use-module (guix i18n) + #:use-module (srfi srfi-1) #:use-module (srfi srfi-34) #:use-module (srfi srfi-35) #:export (partition @@ -58,23 +59,73 @@ (define-module (gnu image) os->image os+platform->image)) + +;;; +;;; Sanitizers. +;;; + +(define-with-syntax-properties (validate-size (value properties)) + (unless (and value + (or (eq? value 'guess) (integer? value))) + (raise + (make-compound-condition + (condition + (&error-location + (location (source-properties->location properties)))) + (formatted-message + (G_ "size (~a) can only be 'guess or a numeric expression ~%") + value 'field)))) + value) + ;;; ;;; Partition record. ;;; +(define-with-syntax-properties (validate-partition-offset (value properties)) + (unless (and value (integer? value)) + (raise + (make-compound-condition + (condition + (&error-location + (location (source-properties->location properties)))) + (formatted-message + (G_ "the partition offset (~a) can only be a \ +numeric expression ~%") value 'field)))) + value) + +(define-with-syntax-properties (validate-partition-flags (value properties)) + (let ((bad-flags (lset-difference eq? value '(boot esp)))) + (unless (and (list? value) (null? bad-flags)) + (raise + (make-compound-condition + (condition + (&error-location + (location (source-properties->location properties)))) + (formatted-message + (G_ "unsupported partition flag(s): ~a ~%") bad-flags))))) + value) + (define-record-type* partition make-partition partition? (device partition-device (default #f)) - (size partition-size) - (offset partition-offset (default 0)) - (file-system partition-file-system (default "ext4")) + (size partition-size ;size in bytes as integer or 'guess + (sanitize validate-size)) + (offset partition-offset + (default 0) ;offset in bytes as integer + (sanitize validate-partition-offset)) + (file-system partition-file-system + (default "ext4")) ;string (file-system-options partition-file-system-options - (default '())) - (label partition-label (default #f)) - (uuid partition-uuid (default #f)) - (flags partition-flags (default '())) - (initializer partition-initializer (default #f))) ;gexp | #f + (default '())) ;list of strings + (label partition-label) ;string + (uuid partition-uuid + (default #f)) ; + (flags partition-flags + (default '()) ;list of symbols + (sanitize validate-partition-flags)) + (initializer partition-initializer + (default #f))) ;gexp | #f ;;; @@ -109,7 +160,8 @@ (define-record-type* (platform image-platform ; (default #f)) (size image-size ;size in bytes as integer - (default 'guess)) + (default 'guess) + (sanitize validate-size)) (operating-system image-operating-system ; (default #f)) (partition-table-type image-partition-table-type ; 'mbr or 'gpt