[flutter_tools] Reject archive entries that escape into a sibling directory by name prefix (#185794)#186647
Merged
auto-submit[bot] merged 4 commits intoJun 1, 2026
Conversation
…ectory by name prefix _WindowsUtils._unpackArchive validated archive entries against the target extraction directory using String.startsWith on canonical paths. The check is vulnerable to path prefix confusion: a destination like `<target>-sibling/x.txt` starts with the canonical target path (e.g. `<cache>/windows-x64-profile/x.txt` starts with `<cache>/windows-x64`) yet escapes the target dir, allowing a crafted artifact archive served via FLUTTER_STORAGE_BASE_URL to write into sibling engine cache directories. Replace the prefix check with `path.isWithin`, which compares full path components and correctly rejects sibling directories sharing a name prefix. Add a regression test that reproduces the prefix-confusion case from the linked report and asserts the sibling file is not written. Fixes flutter#185794.
Contributor
There was a problem hiding this comment.
Code Review
This pull request replaces startsWith with path.isWithin in the Windows unzip utility to prevent path prefix confusion vulnerabilities and adds a corresponding regression test. Review feedback recommends hoisting the target directory's canonical path calculation outside the extraction loop for performance and updating the validation logic to explicitly allow entries identical to the target directory to avoid regressions.
Comment on lines
556
to
558
| final String targetDirectoryCanonicalPath = _fileSystem.path.canonicalize( | ||
| targetDirectory.path, | ||
| ); |
Contributor
There was a problem hiding this comment.
The targetDirectoryCanonicalPath is calculated for every entry in the archive. Since the targetDirectory does not change during the extraction process, this calculation should be hoisted outside of the loop for better performance, especially when dealing with archives containing many files.
| targetDirectory.path, | ||
| ); | ||
| if (!destinationFileCanonicalPath.startsWith(targetDirectoryCanonicalPath)) { | ||
| if (!_fileSystem.path.isWithin(targetDirectoryCanonicalPath, destinationFileCanonicalPath)) { |
Contributor
There was a problem hiding this comment.
The path.isWithin function returns false if the two paths are identical. If an archive contains an entry that resolves exactly to the target directory (e.g., an entry named . or an empty string), this check will now throw a StateError. This is a change in behavior from the previous startsWith implementation which allowed the root directory. To avoid potential regressions with archives that include the root directory as an entry, consider allowing the case where the destination path is equal to the target directory path.
Suggested change
| if (!_fileSystem.path.isWithin(targetDirectoryCanonicalPath, destinationFileCanonicalPath)) { | |
| if (!_fileSystem.path.isWithin(targetDirectoryCanonicalPath, destinationFileCanonicalPath) && | |
| !_fileSystem.path.equals(targetDirectoryCanonicalPath, destinationFileCanonicalPath)) { |
Address review feedback (flutter#186647): the target directory does not change across archive entries, so canonicalize it once before iterating instead of per file.
bkonyi
reviewed
May 19, 2026
bkonyi
left a comment
Contributor
There was a problem hiding this comment.
This mostly LGTM, just a couple of comments.
| // Validate that the destFile is within the targetDirectory we want to | ||
| // extract to. | ||
| // | ||
| // The previous string `startsWith` check was vulnerable to path prefix |
Contributor
There was a problem hiding this comment.
I don't think this comment is necessary.
| targetDirectory.path, | ||
| ); | ||
| if (!destinationFileCanonicalPath.startsWith(targetDirectoryCanonicalPath)) { | ||
| if (!_fileSystem.path.isWithin(targetDirectoryCanonicalPath, destinationFileCanonicalPath)) { |
- Drop the `startsWith`-vs-`isWithin` background comment per @bkonyi. - Allow archive entries that resolve exactly to the target directory (e.g. a file entry with an empty or `.` name) by accepting equality in addition to `isWithin`, restoring the pre-fix `startsWith` behavior for that edge case.
bkonyi
approved these changes
May 25, 2026
chingjun
approved these changes
May 26, 2026
Contributor
|
autosubmit label was removed for flutter/flutter/186647, because The base commit of the PR is older than 7 days and can not be merged. Please merge the latest changes from the main into this branch and resubmit the PR. |
Contributor
|
autosubmit label was removed for flutter/flutter/186647, because - The status or check suite Windows tool_integration_tests_2_10 has failed. Please fix the issues identified (or deflake) before re-applying this label. |
This was referenced Jun 2, 2026
auto-submit Bot
pushed a commit
to flutter/packages
that referenced
this pull request
Jun 2, 2026
flutter/flutter@54e199a...701665b 2026-06-02 engine-flutter-autoroll@skia.org Roll Skia from c97e939eb5c9 to 279b17fe9fc1 (16 revisions) (flutter/flutter#187425) 2026-06-02 bdero@google.com [Flutter GPU] Add block-compressed texture format support (BC, ETC2, ASTC LDR) (flutter/flutter#187281) 2026-06-02 bdero@google.com [Impeller] Allow attaching specific texture mip levels and slices (flutter/flutter#187066) 2026-06-02 bdero@google.com [Impeller] Fix GLES command submission status before context is current (flutter/flutter#187293) 2026-06-02 engine-flutter-autoroll@skia.org Roll Dart SDK from 3cdc25e8ffe9 to d39850bf4a01 (9 revisions) (flutter/flutter#187409) 2026-06-01 jason-simmons@users.noreply.github.com [Impeller] Use glVertexAttribDivisor on GLES3 and glVertexAttribDivisorEXT on GLES2 with the extension (flutter/flutter#187313) 2026-06-01 matt.boetger@gmail.com [Android] Add Javadoc documentation to TextInputChannel (flutter/flutter#186018) 2026-06-01 mvincentong@gmail.com Read FLTEnableWideGamut from Dart bundle (flutter/flutter#186509) 2026-06-01 matt.boetger@gmail.com [flutter_tools] Remove obsolete AndroidX console warning during Gradle builds (flutter/flutter#186077) 2026-06-01 kjlubick@users.noreply.github.com [skia] Update gni file list name hsw -> ml3 (flutter/flutter#184892) 2026-06-01 zhongliu88889@gmail.com [web] Always sync slider input attrs regardless of gesture mode (flutter/flutter#187217) 2026-06-01 zhongliu88889@gmail.com [flutter_driver] Don't throw when stderr is unavailable on web (flutter/flutter#187190) 2026-06-01 116356835+AbdeMohlbi@users.noreply.github.com Remove unused code in `FlutterPluginUtils.kt` (flutter/flutter#187012) 2026-06-01 taak140@gmail.com [flutter_tools] Fix `flutter drive --chrome-binary` being ignored on web (flutter/flutter#185481) 2026-06-01 davidmartos96@gmail.com Eager failure when building and no XCode build settings (flutter/flutter#184726) 2026-06-01 goung123@gmail.com Fix Windows Korean IME caret position during composition (flutter/flutter#186353) 2026-06-01 okorohelijah@google.com iOS: update provisioning profile for 2026-2027 cert (flutter/flutter#187280) 2026-06-01 154381524+flutteractionsbot@users.noreply.github.com Sync CHANGELOG.md from stable (flutter/flutter#187380) 2026-06-01 jason-simmons@users.noreply.github.com Reland "Move dart-lang/ai to a top level third party dependency in engine (#187268)" (flutter/flutter#187378) 2026-06-01 stuartmorgan@google.com Add vector_math to Framework triage (flutter/flutter#187389) 2026-06-01 engine-flutter-autoroll@skia.org Roll Packages from e930ced to f5d50ca (4 revisions) (flutter/flutter#187381) 2026-06-01 mr_nadeem_iqbal@yahoo.com [flutter_tools] Reject archive entries that escape into a sibling directory by name prefix (#185794) (flutter/flutter#186647) 2026-06-01 bkonyi@google.com [flutter_tools] Fix widget_preview unawaited async write race condition (flutter/flutter#187177) 2026-06-01 137456488+flutter-pub-roller-bot@users.noreply.github.com Roll pub packages (flutter/flutter#187375) 2026-06-01 engine-flutter-autoroll@skia.org Roll Skia from 0aee4675e0ad to c97e939eb5c9 (7 revisions) (flutter/flutter#187371) 2026-06-01 mr_nadeem_iqbal@yahoo.com docs: Stack.clipBehavior = Clip.none does not extend hit testing (#160787) (flutter/flutter#186643) If this roll has caused a breakage, revert this CL and stop the roller using the controls here: https://autoroll.skia.org/r/flutter-packages Please CC stuartmorgan@google.com,tarrinneal@google.com on the revert to ensure that a human is aware of the problem. To file a bug in Packages: https://github.com/flutter/flutter/issues/new/choose To report a problem with the AutoRoller itself, please file a bug: https://issues.skia.org/issues/new?component=1389291&template=1850622 Documentation for the AutoRoller is here: https://skia.googlesource.com/buildbot/+doc/main/autoroll/README.md
creatorpiyush
pushed a commit
to creatorpiyush/packages
that referenced
this pull request
Jun 10, 2026
…r#11822) flutter/flutter@54e199a...701665b 2026-06-02 engine-flutter-autoroll@skia.org Roll Skia from c97e939eb5c9 to 279b17fe9fc1 (16 revisions) (flutter/flutter#187425) 2026-06-02 bdero@google.com [Flutter GPU] Add block-compressed texture format support (BC, ETC2, ASTC LDR) (flutter/flutter#187281) 2026-06-02 bdero@google.com [Impeller] Allow attaching specific texture mip levels and slices (flutter/flutter#187066) 2026-06-02 bdero@google.com [Impeller] Fix GLES command submission status before context is current (flutter/flutter#187293) 2026-06-02 engine-flutter-autoroll@skia.org Roll Dart SDK from 3cdc25e8ffe9 to d39850bf4a01 (9 revisions) (flutter/flutter#187409) 2026-06-01 jason-simmons@users.noreply.github.com [Impeller] Use glVertexAttribDivisor on GLES3 and glVertexAttribDivisorEXT on GLES2 with the extension (flutter/flutter#187313) 2026-06-01 matt.boetger@gmail.com [Android] Add Javadoc documentation to TextInputChannel (flutter/flutter#186018) 2026-06-01 mvincentong@gmail.com Read FLTEnableWideGamut from Dart bundle (flutter/flutter#186509) 2026-06-01 matt.boetger@gmail.com [flutter_tools] Remove obsolete AndroidX console warning during Gradle builds (flutter/flutter#186077) 2026-06-01 kjlubick@users.noreply.github.com [skia] Update gni file list name hsw -> ml3 (flutter/flutter#184892) 2026-06-01 zhongliu88889@gmail.com [web] Always sync slider input attrs regardless of gesture mode (flutter/flutter#187217) 2026-06-01 zhongliu88889@gmail.com [flutter_driver] Don't throw when stderr is unavailable on web (flutter/flutter#187190) 2026-06-01 116356835+AbdeMohlbi@users.noreply.github.com Remove unused code in `FlutterPluginUtils.kt` (flutter/flutter#187012) 2026-06-01 taak140@gmail.com [flutter_tools] Fix `flutter drive --chrome-binary` being ignored on web (flutter/flutter#185481) 2026-06-01 davidmartos96@gmail.com Eager failure when building and no XCode build settings (flutter/flutter#184726) 2026-06-01 goung123@gmail.com Fix Windows Korean IME caret position during composition (flutter/flutter#186353) 2026-06-01 okorohelijah@google.com iOS: update provisioning profile for 2026-2027 cert (flutter/flutter#187280) 2026-06-01 154381524+flutteractionsbot@users.noreply.github.com Sync CHANGELOG.md from stable (flutter/flutter#187380) 2026-06-01 jason-simmons@users.noreply.github.com Reland "Move dart-lang/ai to a top level third party dependency in engine (#187268)" (flutter/flutter#187378) 2026-06-01 stuartmorgan@google.com Add vector_math to Framework triage (flutter/flutter#187389) 2026-06-01 engine-flutter-autoroll@skia.org Roll Packages from e930ced to f5d50ca (4 revisions) (flutter/flutter#187381) 2026-06-01 mr_nadeem_iqbal@yahoo.com [flutter_tools] Reject archive entries that escape into a sibling directory by name prefix (#185794) (flutter/flutter#186647) 2026-06-01 bkonyi@google.com [flutter_tools] Fix widget_preview unawaited async write race condition (flutter/flutter#187177) 2026-06-01 137456488+flutter-pub-roller-bot@users.noreply.github.com Roll pub packages (flutter/flutter#187375) 2026-06-01 engine-flutter-autoroll@skia.org Roll Skia from 0aee4675e0ad to c97e939eb5c9 (7 revisions) (flutter/flutter#187371) 2026-06-01 mr_nadeem_iqbal@yahoo.com docs: Stack.clipBehavior = Clip.none does not extend hit testing (#160787) (flutter/flutter#186643) If this roll has caused a breakage, revert this CL and stop the roller using the controls here: https://autoroll.skia.org/r/flutter-packages Please CC stuartmorgan@google.com,tarrinneal@google.com on the revert to ensure that a human is aware of the problem. To file a bug in Packages: https://github.com/flutter/flutter/issues/new/choose To report a problem with the AutoRoller itself, please file a bug: https://issues.skia.org/issues/new?component=1389291&template=1850622 Documentation for the AutoRoller is here: https://skia.googlesource.com/buildbot/+doc/main/autoroll/README.md
via-guy
pushed a commit
to via-guy/flutter
that referenced
this pull request
Jun 26, 2026
…ectory by name prefix (flutter#185794) (flutter#186647) `_WindowsUtils._unpackArchive` in `packages/flutter_tools/lib/src/base/os.dart` validates that each archive entry resolves inside the target directory before writing it. The existing check compared the canonical destination path to the canonical target path with `startsWith`, which is vulnerable to prefix confusion: a target of `bin\cache\artifacts\engine\windows-x64` and a canonical destination of `bin\cache\artifacts\engine\windows-x64-profile\poc_marker.txt` (as produced by a crafted entry like `..\windows-x64-profile\poc_marker.txt`) returns `true` because the destination path starts with the target path as a string, even though it is a sibling directory. Replaced the `startsWith` check with `path.isWithin`, which compares full path components, and hoisted the `targetDirectoryCanonicalPath` calculation out of the per-entry loop. Added a regression test covering the prefix-confusion case in `packages/flutter_tools/test/general.shard/base/os_test.dart`; existing `..\..\` test continues to pass. Fixes flutter#185794. ## Pre-launch Checklist - [x] I read the [Contributor Guide] and followed the process outlined there for submitting PRs. - [x] I read the [AI contribution guidelines] and understand my responsibilities, or I am not using AI tools. - [x] I read the [Tree Hygiene] wiki page, which explains my responsibilities. - [x] I read and followed the [Flutter Style Guide], including [Features we expect every widget to implement]. - [x] I signed the [CLA]. - [x] I listed at least one issue that this PR fixes in the description above. - [x] I updated/added relevant documentation (doc comments with `///`). - [x] I added new tests to check the change I am making, or this PR is [test-exempt]. - [x] I followed the [breaking change policy] and added [Data Driven Fixes] where supported. - [x] All existing and new tests are passing. <!-- Links --> [Contributor Guide]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#overview [AI contribution guidelines]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#ai-contribution-guidelines [Tree Hygiene]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md [test-exempt]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#tests [Flutter Style Guide]: https://github.com/flutter/flutter/blob/main/docs/contributing/Style-guide-for-Flutter-repo.md [Features we expect every widget to implement]: https://github.com/flutter/flutter/blob/main/docs/contributing/Style-guide-for-Flutter-repo.md#features-we-expect-every-widget-to-implement [CLA]: https://cla.developers.google.com/ [breaking change policy]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#handling-breaking-changes [Data Driven Fixes]: https://github.com/flutter/flutter/blob/main/docs/contributing/Data-driven-Fixes.md --------- Co-authored-by: Ben Konyi <bkonyi@google.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
_WindowsUtils._unpackArchiveinpackages/flutter_tools/lib/src/base/os.dartvalidates that each archive entry resolves inside the target directory before writing it. The existing check compared the canonical destination path to the canonical target path withstartsWith, which is vulnerable to prefix confusion: a target ofbin\cache\artifacts\engine\windows-x64and a canonical destination ofbin\cache\artifacts\engine\windows-x64-profile\poc_marker.txt(as produced by a crafted entry like..\windows-x64-profile\poc_marker.txt) returnstruebecause the destination path starts with the target path as a string, even though it is a sibling directory.Replaced the
startsWithcheck withpath.isWithin, which compares full path components, and hoisted thetargetDirectoryCanonicalPathcalculation out of the per-entry loop. Added a regression test covering the prefix-confusion case inpackages/flutter_tools/test/general.shard/base/os_test.dart; existing..\..\test continues to pass.Fixes #185794.
Pre-launch Checklist
///).