1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
|
// Copyright 2024 syzkaller project authors. All rights reserved.
// Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file.
package validator
import (
"errors"
"fmt"
"regexp"
"strings"
"github.com/google/syzkaller/pkg/auth"
"github.com/google/syzkaller/pkg/coveragedb"
)
type Result struct {
Ok bool
Err error
}
var ResultOk = Result{true, nil}
func AnyError(errPrefix string, results ...Result) error {
for _, res := range results {
if !res.Ok {
return wrapError(res.Err.Error(), errPrefix)
}
}
return nil
}
func AnyOk(results ...Result) Result {
if len(results) == 0 {
return ResultOk
}
for _, res := range results {
if res.Ok {
return ResultOk
}
}
return results[0]
}
func PanicIfNot(results ...Result) error {
if err := AnyError("", results...); err != nil {
panic(err.Error())
}
return nil
}
var ErrValueNotAllowed = errors.New("value is not allowed")
func Allowlisted(str string, allowlist []string, valueName ...string) Result {
for _, allowed := range allowlist {
if allowed == str {
return Result{
Ok: true,
}
}
}
if len(valueName) == 0 {
return Result{
Err: fmt.Errorf("value %s is not allowed", str),
}
}
return Result{
Err: fmt.Errorf("%s(%s) is not allowed", valueName[0], str),
}
}
var (
EmptyStr = makeStrLenFunc("not empty", 0)
AlphaNumeric = makeStrReFunc("not an alphanum", "^[a-zA-Z0-9]*$")
CommitHash = makeCombinedStrFunc("not a hash", AlphaNumeric, makeStrLenFunc("len is not 40", 40))
KernelFilePath = makeStrReFunc("not a kernel file path", "^[./_a-zA-Z0-9-]*$")
NamespaceName = makeStrReFunc("not a namespace name", "^[a-zA-Z0-9_.-]{4,32}$")
ManagerName = makeStrReFunc("not a manager name", "^ci[a-z0-9-]*$")
DashClientName = makeStrReFunc("not a dashboard client name", "^[a-zA-Z0-9_.-]{4,100}$")
DashClientKey = makeStrReFunc("not a dashboard client key",
"^([a-zA-Z0-9]{16,128})|("+regexp.QuoteMeta(auth.OauthMagic)+".*)$")
TimePeriodType = makeStrReFunc(fmt.Sprintf("bad time period, use (%s|%s|%s)",
coveragedb.DayPeriod, coveragedb.MonthPeriod, coveragedb.QuarterPeriod),
fmt.Sprintf("^(%s|%s|%s)$", coveragedb.DayPeriod, coveragedb.MonthPeriod, coveragedb.QuarterPeriod))
)
type strValidationFunc func(string, ...string) Result
func looksDangerous(s string) bool {
return strings.Contains(s, "--")
}
func makeStrReFunc(errStr, reStr string) strValidationFunc {
matchRe := regexp.MustCompile(reStr)
return func(s string, objName ...string) Result {
if s == "" {
return Result{false, wrapError(errStr + ": can't be empty")}
}
if looksDangerous(s) || !matchRe.MatchString(s) {
return Result{false, wrapError(errStr, objName...)}
}
return ResultOk
}
}
func makeStrLenFunc(errStr string, l int) strValidationFunc {
return func(s string, objName ...string) Result {
if len(s) != l {
return Result{false, wrapError(errStr, objName...)}
}
return ResultOk
}
}
func makeCombinedStrFunc(errStr string, funcs ...strValidationFunc) strValidationFunc {
return func(s string, objName ...string) Result {
for _, f := range funcs {
if res := f(s); !res.Ok {
return Result{false, wrapError(fmt.Sprintf(errStr+": %s", res.Err.Error()), objName...)}
}
}
return ResultOk
}
}
func wrapError(errStr string, prefix ...string) error {
if len(prefix) > 0 && prefix[0] != "" {
return fmt.Errorf("%s: %s", prefix[0], errStr)
}
return errors.New(errStr)
}
|
