Error when mount specs have paths that are a descendent of the root path

to extract This is a case that doesn't really make sense is is almost certainly user error, so make a friendly message for it. Signed-off-by: Brian Goff <cpuguy83@gmail.com>
Azure · Jun 26, 2024 · a4d7f29 · a4d7f29
1 parent ec626f5
commit a4d7f29
Show file tree

Hide file tree

Showing 3 changed files with 40 additions and 0 deletions.
diff --git a/load.go b/load.go
@@ -143,6 +143,9 @@ func (s *Source) validate(failContext ...string) (retErr error) {
 
  if s.DockerImage.Cmd != nil {
  for _, mnt := range s.DockerImage.Cmd.Mounts {
+ if mnt.Dest == s.Path {
+ return errors.Wrap(errInvalidMountConfig, "")
+ }
  if err := mnt.Spec.validate("docker image source with ref", "'"+s.DockerImage.Ref+"'"); err != nil {
  retErr = goerrors.Join(retErr, err)
  }

diff --git a/source.go b/source.go
@@ -5,6 +5,7 @@ import (
  "bytes"
  "fmt"
  "io"
+ "path/filepath"
 
  "github.com/moby/buildkit/client/llb"
  "github.com/moby/buildkit/identity"
@@ -193,6 +194,8 @@ func (s *Source) AsMount(name string, sOpt SourceOpts, opts ...llb.ConstraintsOp
  return s.asState(name, true, sOpt, opts...)
 }
 
+var errInvalidMountConfig = errors.New("invalid mount config")
+
 // must not be called with a nil cmd pointer
 // subPath must be a valid non-empty path
 func generateSourceFromImage(st llb.State, cmd *Command, sOpts SourceOpts, subPath string, opts ...llb.ConstraintsOpt) (llb.State, error) {
@@ -217,6 +220,14 @@ func generateSourceFromImage(st llb.State, cmd *Command, sOpts SourceOpts, subPa
  baseRunOpts := []llb.RunOption{CacheDirsToRunOpt(cmd.CacheDirs, "", "")}
 
  for _, src := range cmd.Mounts {
+ if src.Dest == "/" {
+ return llb.Scratch(), errors.Wrap(errInvalidMountConfig, "mount destination must not be \"/\"")
+ }
+ if subPath != "/" && filepath.HasPrefix(src.Dest, subPath) {
+ // We cannot support this as the base mount for subPath will shadow the mount being done here.
+ return llb.Scratch(), errors.Wrapf(errInvalidMountConfig, "mount destination (%s) must not be a descendent of the target source path (%s)", src.Dest, subPath)
+ }
+
  srcSt, err := src.Spec.AsMount(src.Dest, sOpts, opts...)
  if err != nil {
  return llb.Scratch(), err

diff --git a/source_test.go b/source_test.go
@@ -19,6 +19,7 @@ import (
  "github.com/moby/buildkit/solver/pb"
  "github.com/opencontainers/go-digest"
  v1 "github.com/opencontainers/image-spec/specs-go/v1"
+ "gotest.tools/v3/assert"
 )
 
 func TestSourceGitSSH(t *testing.T) {
@@ -322,6 +323,31 @@ func TestSourceDockerImage(t *testing.T) {
  checkCmd(t, ops[1:], &src, [][]expectMount{{rootMount}, {rootMount}})
  })
 
+ t.Run("mount beneath subpath", func(t *testing.T) {
+ src := src
+ src.Path = "subpath"
+
+ img := *src.DockerImage
+ cmd := *img.Cmd
+
+ img.Cmd = &cmd
+ src.DockerImage = &img
+
+ img.Cmd.Mounts = []SourceMount{
+ {
+ Dest: src.Path,
+ Spec: Source{
+ Inline: &SourceInline{
+ Dir: &SourceInlineDir{},
+ },
+ },
+ },
+ }
+
+ _, err := src.AsState("test", SourceOpts{})
+ assert.ErrorIs(t, err, errInvalidMountConfig)
+ })
+
  t.Run("subpath with include-exclude", func(t *testing.T) {
  src := src
  src.Path = "subdir"