Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
github.com/diskfs/go-diskfs
go-diskfs is a go library for performing manipulation of disks, disk images and filesystems natively in go.
You can do nearly everything that go-diskfs provides using shell tools like gdisk/fdisk/mkfs.vfat/mtools/sgdisk/sfdisk/dd. However, these have the following limitations:
go-diskfs performs all modifications natively in go, without mounting any disks.
Note: detailed go documentation is available at godoc.org.
go-diskfs
has a few basic concepts:
A disk represents either a file or block device that you access and manipulate. With access to the disk, you can:
A partition is a slice of a disk, beginning at one point and ending at a later one. You can have multiple partitions on a disk, and a partition table that describes how partitions are laid out on the disk.
A filesystem is a construct that gives you access to create, read and write directories and files.
You do not need a partitioned disk to work with a filesystem; filesystems can be an entire disk
, just as they can be an entire block device. However, they also can be in a partition in a disk
Before you can do anything with a disk - partitions or filesystems - you need to access it.
Open()
itCreate()
itThe disk will be opened read-write, with exclusive access. If it cannot do either, it will fail.
Once you have a Disk
, you can work with partitions or filesystems in it.
The following are the partition actions you can take on a disk:
GetPartitionTable()
- if one exists. Will report the table layout and type.Partition()
- partition the disk, overwriting any previous table if it existsAs of this writing, supported partition formats are Master Boot Record (mbr
) and GUID Partition Table (gpt
).
Once you have a valid disk, and optionally partition, you can access filesystems on that disk image or partition.
CreateFilesystem()
- create a filesystem in an individual partition or the entire diskGetFilesystem()
- access an existing filesystem in a partition or the entire diskAs of this writing, supported filesystems include FAT32
and ISO9660
(a.k.a. .iso
).
With a filesystem in hand, you can create, access and modify directories and files.
Mkdir()
- make a directory in a filesystemReaddir()
- read all of the entries in a directoryOpenFile()
- open a file for read, optionally write, create and appendNote that OpenFile()
is intended to match os.OpenFile and returns a godiskfs.File
that closely matches os.File
With a File
in hand, you then can:
Write(p []byte)
to the fileRead(b []byte)
from the fileSeek(offset int64, whence int)
to set the next read or write to an offset in the fileSome filesystem types are intended to be created once, after which they are read-only, for example ISO9660
/.iso
and squashfs
.
godiskfs
recognizes read-only filesystems and limits working with them to the following:
GetFilesystem()
a read-only filesystem and do all read activities, but cannot write to them. Any attempt to Mkdir()
or OpenFile()
in write/append/create modes or Write()
to the file will result in an error.CreateFilesystem()
a read-only filesystem and write anything to it that you want. It will do all of its work in a "scratch" area, or temporary "workspace" directory on your local filesystem. When you are ready to complete it, you call Finalize()
, after which it becomes read-only. If you forget to Finalize()
it, you get... nothing. The Finalize()
function exists only on read-only filesystems.There are examples in the examples/ directory. See for example how to create a fully bootable EFI disk image.
There are two ways to run tests: unit and integration (somewhat loosely defined).
testdata/
subdirectory. By default, these are run by running go test ./...
or just make unit_test
.TEST_IMAGE=diskfs/godiskfs go test ./...
or just make test
. The value of TEST_IMAGE
will be the image to use to run tests.For integration tests to work, the correct docker image must be available. You can create it by running make image
. Check the Makefile to see the docker build
command used to create it. Running make test
automatically creates the image for you.
The integration test image contains the various tools necessary to test images: mtools
, fdisk
, gdisk
, etc. It works on precisely one file at a time. In order to avoid docker volume mounting limitations with various OSes, instead of mounting the image -v
, it expects to receive the image as a stdin
stream, and saves it internally to the container as /file.img
.
For example, to test the existence of directory /abc
on file $PWD/foo.img
:
cat $PWD/foo.img | docker run -i --rm $INT_IMAGE mdir -i /file.img /abc
Future plans are to add the following:
mbr
e.g. altmbr.bin
(no need for gpt
since an ESP with /EFI/BOOT/BOOT<arch>.EFI
will boot)Joliet
extensions to iso9660
Rock Ridge
sparse file support - supports the flag, but not yet reading or writingsquashfs
sparse file support - currently treats sparse files as regular filesqcow
disk formatFAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.