strict input validation on attestation version numbers (#2180)

2024-10-01 01:36:09 -04:00 · 2023-08-09 11:41:04 +02:00 · 2023-08-09 11:41:04 +02:00 · d8db9d0add
commit d8db9d0add
parent d1febd7276
2 changed files with 89 additions and 17 deletions
--- a/internal/config/attestationversion.go
+++ b/internal/config/attestationversion.go
@ -9,6 +9,8 @@ package config
 import (
 	"encoding/json"
 	"fmt"
 	"math"
 	"strconv"
 	"strings"
 )
@ -38,7 +40,7 @@ func (v AttestationVersion) MarshalYAML() (any, error) {
 // UnmarshalYAML implements a custom unmarshaller to resolve "atest" values.
 func (v *AttestationVersion) UnmarshalYAML(unmarshal func(any) error) error {
-	var rawUnmarshal any
+	var rawUnmarshal string
 	if err := unmarshal(&rawUnmarshal); err != nil {
 		return fmt.Errorf("raw unmarshal: %w", err)
 	}
@ -56,29 +58,29 @@ func (v AttestationVersion) MarshalJSON() ([]byte, error) {
 // UnmarshalJSON implements a custom unmarshaller to resolve "latest" values.
 func (v *AttestationVersion) UnmarshalJSON(data []byte) (err error) {
-	var rawUnmarshal any
+	var rawUnmarshal string
 	if err := json.Unmarshal(data, &rawUnmarshal); err != nil {
 		return fmt.Errorf("raw unmarshal: %w", err)
 	}
 	return v.parseRawUnmarshal(rawUnmarshal)
 }
-func (v *AttestationVersion) parseRawUnmarshal(rawUnmarshal any) error {
+func (v *AttestationVersion) parseRawUnmarshal(str string) error {
-	switch s := rawUnmarshal.(type) {
+	if strings.HasPrefix(str, "0") {
-	case string:
+		return fmt.Errorf("no format with prefixed 0 (octal, hexadecimal) allowed: %s", str)
-		if strings.ToLower(s) == "latest" {
+	}
-			v.WantLatest = true
+	if strings.ToLower(str) == "latest" {
-			v.Value = placeholderVersionValue
+		v.WantLatest = true
-		} else {
+		v.Value = placeholderVersionValue
-			return fmt.Errorf("invalid version value: %s", s)
+	} else {
 		ui, err := strconv.ParseUint(str, 10, 8)
 		if err != nil {
 			return fmt.Errorf("invalid version value: %s", str)
 		}
-	case int:
+		if ui > math.MaxUint8 {
-		v.Value = uint8(s)
+			return fmt.Errorf("integer value is out ouf uint8 range: %d", ui)
-	// yaml spec allows "1" as float64, so version number might come as a float:  https://github.com/go-yaml/yaml/issues/430
+		}
-	case float64:
+		v.Value = uint8(ui)
 		v.Value = uint8(s)
 	default:
 		return fmt.Errorf("invalid version value type: %s", s)
 	}
 	return nil
 }
--- a/internal/config/attestationversion_test.go
+++ b/internal/config/attestationversion_test.go
@ -44,3 +44,73 @@ func TestVersionMarshalYAML(t *testing.T) {
 		})
 	}
 }
 func TestVersionUnmarshalYAML(t *testing.T) {
 	tests := []struct {
 		name    string
 		sut     string
 		want    AttestationVersion
 		wantErr bool
 	}{
 		{
 			name: "latest resolves to isLatest",
 			sut:  "latest",
 			want: AttestationVersion{
 				Value:      0,
 				WantLatest: true,
 			},
 			wantErr: false,
 		},
 		{
 			name: "1 resolves to value 1",
 			sut:  "1",
 			want: AttestationVersion{
 				Value:      1,
 				WantLatest: false,
 			},
 			wantErr: false,
 		},
 		{
 			name:    "max uint8+1 errors",
 			sut:     "256",
 			wantErr: true,
 		},
 		{
 			name:    "-1 errors",
 			sut:     "-1",
 			wantErr: true,
 		},
 		{
 			name:    "2.6 errors",
 			sut:     "2.6",
 			wantErr: true,
 		},
 		{
 			name:    "2.0 errors",
 			sut:     "2.0",
 			wantErr: true,
 		},
 		{
 			name:    "hex format is invalid",
 			sut:     "0x10",
 			wantErr: true,
 		},
 		{
 			name:    "octal format is invalid",
 			sut:     "010",
 			wantErr: true,
 		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
 			var sut AttestationVersion
 			err := yaml.Unmarshal([]byte(tt.sut), &sut)
 			if tt.wantErr {
 				require.Error(t, err)
 				return
 			}
 			require.NoError(t, err)
 			require.Equal(t, tt.want, sut)
 		})
 	}
 }