fix: address issue

mmaps · mmaps · commit b3aa61663a6a · 2026-04-29T15:46:52.000Z
diff --git a/src/infra/dotenv.test.ts b/src/infra/dotenv.test.ts
@@ -284,6 +284,23 @@ describe("loadDotEnv", () => {
     });
   });
 
+  it.each(["systemroot", "SystemRoot", "SYSTEMROOT", "windir", "WINDIR"])(
+    "blocks %s from workspace .env",
+    async (key) => {
+      await withIsolatedEnvAndCwd(async () => {
+        await withDotEnvFixture(async ({ cwdDir }) => {
+          await writeEnvFile(path.join(cwdDir, ".env"), `${key}=.\\fake-root\n`);
+
+          delete process.env[key];
+
+          loadWorkspaceDotEnvFile(path.join(cwdDir, ".env"), { quiet: true });
+
+          expect(process.env[key]).toBeUndefined();
+        });
+      });
+    },
+  );
+
   it("blocks path-override vars (OPENCLAW_AGENT_DIR, OPENCLAW_BUNDLED_PLUGINS_DIR, PI_CODING_AGENT_DIR, OPENCLAW_OAUTH_DIR) from workspace .env", async () => {
     await withIsolatedEnvAndCwd(async () => {
       await withDotEnvFixture(async ({ base, cwdDir }) => {
diff --git a/src/infra/dotenv.ts b/src/infra/dotenv.ts
@@ -72,7 +72,10 @@ const BLOCKED_WORKSPACE_DOTENV_KEYS = new Set([
   "PLAYWRIGHT_CHROMIUM_EXECUTABLE_PATH",
   "SYNOLOGY_CHAT_INCOMING_URL",
   "SYNOLOGY_NAS_HOST",
+  // Windows helper roots affect command resolution for audit/repair flows.
+  "SYSTEMROOT",
   "UV_PYTHON",
+  "WINDIR",
 ]);
 
 // Block endpoint redirection for any service without overfitting per-provider names.
diff --git a/src/security/windows-acl.test.ts b/src/security/windows-acl.test.ts
@@ -4,6 +4,8 @@ import type { WindowsAclEntry, WindowsAclSummary } from "./windows-acl.js";
 const MOCK_USERNAME = "MockUser";
 const mockUserInfo = () => ({ username: MOCK_USERNAME });
 const emptyUserInfo = () => ({ username: "" });
+const DEFAULT_ICACLS = "C:\\Windows\\System32\\icacls.exe";
+const DEFAULT_WHOAMI = "C:\\Windows\\System32\\whoami.exe";
 
 let createIcaclsResetCommand: typeof import("./windows-acl.js").createIcaclsResetCommand;
 let formatIcaclsResetCommand: typeof import("./windows-acl.js").formatIcaclsResetCommand;
@@ -424,7 +426,7 @@ Successfully processed 1 files`;
       expectInspectSuccess(result, 2);
       // /sid is passed so that account names are printed as SIDs, making the
       // audit locale-independent (fixes #35834).
-      expect(mockExec).toHaveBeenCalledWith("icacls.exe", ["C:\\test\\file.txt", "/sid"]);
+      expect(mockExec).toHaveBeenCalledWith(DEFAULT_ICACLS, ["C:\\test\\file.txt", "/sid"]);
     });
 
     it("classifies *S-1-5-18 (SID form of SYSTEM from /sid) as trusted", async () => {
@@ -469,8 +471,8 @@ Successfully processed 1 files`;
       expectInspectSuccess(result, 2);
       expect(result.trusted).toHaveLength(2);
       expect(result.untrustedGroup).toHaveLength(0);
-      expect(mockExec).toHaveBeenNthCalledWith(1, "icacls.exe", ["C:\\test\\file.txt", "/sid"]);
-      expect(mockExec).toHaveBeenNthCalledWith(2, "whoami.exe", ["/user", "/fo", "csv", "/nh"]);
+      expect(mockExec).toHaveBeenNthCalledWith(1, DEFAULT_ICACLS, ["C:\\test\\file.txt", "/sid"]);
+      expect(mockExec).toHaveBeenNthCalledWith(2, DEFAULT_WHOAMI, ["/user", "/fo", "csv", "/nh"]);
     });
 
     it("returns error state on exec failure", async () => {
@@ -533,21 +535,61 @@ Successfully processed 1 files`;
 
       const result = await inspectWindowsAcl("C:\\test\\file.txt", {
         exec: mockExec,
-        env: { SystemRoot: "C:\\Windows" },
+        env: { SystemRoot: "D:\\Windows" },
       });
 
       expectInspectSuccess(result, 1);
-      expect(mockExec).toHaveBeenNthCalledWith(1, "C:\\Windows\\System32\\icacls.exe", [
+      expect(mockExec).toHaveBeenNthCalledWith(1, "D:\\Windows\\System32\\icacls.exe", [
         "C:\\test\\file.txt",
         "/sid",
       ]);
-      expect(mockExec).toHaveBeenNthCalledWith(2, "C:\\Windows\\System32\\whoami.exe", [
+      expect(mockExec).toHaveBeenNthCalledWith(2, "D:\\Windows\\System32\\whoami.exe", [
         "/user",
         "/fo",
         "csv",
         "/nh",
       ]);
     });
+
+    it("does not resolve Windows system commands through a relative SystemRoot", async () => {
+      const mockExec = vi
+        .fn()
+        .mockResolvedValueOnce({
+          stdout: "C:\\test\\file.txt *S-1-5-21-111-222-333-1001:(F)",
+          stderr: "",
+        })
+        .mockResolvedValueOnce({
+          stdout: '"mock-host\\\\MockUser","S-1-5-21-111-222-333-1001"\r\n',
+          stderr: "",
+        });
+
+      const result = await inspectWindowsAcl("C:\\test\\file.txt", {
+        exec: mockExec,
+        env: { SystemRoot: ".\\fake-root" },
+      });
+
+      expectInspectSuccess(result, 1);
+      expect(mockExec).toHaveBeenNthCalledWith(1, DEFAULT_ICACLS, ["C:\\test\\file.txt", "/sid"]);
+      expect(mockExec).toHaveBeenNthCalledWith(2, DEFAULT_WHOAMI, ["/user", "/fo", "csv", "/nh"]);
+    });
+
+    it("uses a valid WINDIR when SystemRoot is invalid", async () => {
+      const mockExec = vi.fn().mockResolvedValueOnce({
+        stdout: "C:\\test\\file.txt *S-1-5-18:(F)",
+        stderr: "",
+      });
+
+      const result = await inspectWindowsAcl("C:\\test\\file.txt", {
+        exec: mockExec,
+        env: { SystemRoot: ".\\fake-root", WINDIR: "E:\\Windows" },
+      });
+
+      expectInspectSuccess(result, 1);
+      expect(mockExec).toHaveBeenCalledWith("E:\\Windows\\System32\\icacls.exe", [
+        "C:\\test\\file.txt",
+        "/sid",
+      ]);
+    });
   });
 
   describe("formatWindowsAclSummary", () => {
@@ -653,11 +695,20 @@ Successfully processed 1 files`;
         env,
       });
       expect(result).not.toBeNull();
-      expect(result?.command).toBe("icacls");
+      expect(result?.command).toBe(DEFAULT_ICACLS);
       expect(result?.args).toContain("C:\\test\\file.txt");
       expect(result?.args).toContain("/inheritance:r");
     });
 
+    it("uses a validated SystemRoot for the structured command executable", () => {
+      const result = createIcaclsResetCommand("C:\\test\\file.txt", {
+        isDir: false,
+        env: { SystemRoot: "D:\\Windows", USERNAME: "TestUser" },
+      });
+
+      expect(result?.command).toBe("D:\\Windows\\System32\\icacls.exe");
+    });
+
     it("returns command with system username when env is empty (falls back to os.userInfo)", () => {
       // When env is empty, resolveWindowsUserPrincipal falls back to os.userInfo().username
       const result = createIcaclsResetCommand("C:\\test\\file.txt", {
@@ -667,7 +718,7 @@ Successfully processed 1 files`;
       });
       // Should return a valid command using the system username
       expect(result).not.toBeNull();
-      expect(result?.command).toBe("icacls");
+      expect(result?.command).toBe(DEFAULT_ICACLS);
       expect(result?.args).toContain(`${MOCK_USERNAME}:F`);
     });
 
diff --git a/src/security/windows-acl.ts b/src/security/windows-acl.ts
@@ -1,5 +1,6 @@
 import os from "node:os";
 import path from "node:path";
+import { normalizeWindowsInstallRoot } from "../infra/windows-install-roots.js";
 import { runExec } from "../process/exec.js";
 import { normalizeLowercaseStringOrEmpty } from "../shared/string-coerce.js";
 
@@ -51,6 +52,7 @@ const TRUSTED_BASE = new Set([
 ]);
 const WORLD_SUFFIXES = ["\\users", "\\authenticated users"];
 const TRUSTED_SUFFIXES = ["\\administrators", "\\system", "\\système"];
+const DEFAULT_WINDOWS_SYSTEM_ROOT = "C:\\Windows";
 
 // Accept an optional leading * which icacls prefixes to SIDs when invoked with /sid
 // (e.g. *S-1-5-18 instead of S-1-5-18).
@@ -115,11 +117,13 @@ function buildTrustedPrincipals(env?: NodeJS.ProcessEnv): Set<string> {
 
 function resolveWindowsSystemCommand(command: string, env?: NodeJS.ProcessEnv): string {
   const root =
-    env?.SystemRoot?.trim() ||
-    env?.SYSTEMROOT?.trim() ||
-    env?.windir?.trim() ||
-    env?.WINDIR?.trim();
-  return root ? path.win32.join(root, "System32", command) : command;
+    [
+      normalizeWindowsInstallRoot(env?.SystemRoot),
+      normalizeWindowsInstallRoot(env?.SYSTEMROOT),
+      normalizeWindowsInstallRoot(env?.windir),
+      normalizeWindowsInstallRoot(env?.WINDIR),
+    ].find((candidate): candidate is string => candidate !== null) ?? DEFAULT_WINDOWS_SYSTEM_ROOT;
+  return path.win32.join(root, "System32", command);
 }
 
 function classifyPrincipal(
@@ -398,7 +402,7 @@ export function createIcaclsResetCommand(
     `*S-1-5-18:${grant}`,
   ];
   return {
-    command: "icacls",
+    command: resolveWindowsSystemCommand("icacls.exe", opts.env),
     args,
     display: formatIcaclsResetCommand(targetPath, opts),
   };
