Fix subdomain matching FIXMEs in commit 373440662 #1366
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -75,14 +75,10 @@ func (e *Endpoint) rewriteReference(ref reference.Named, prefix string) (referen | |
| } | ||
| // In the case of an empty `location` field, simply return the original | ||
| // input ref as-is. | ||
| locationPrefixCheck := EmptyLocationWildcardedPrefixCheck(e.Location, prefix) | ||
| if locationPrefixCheck == -1 { | ||
| return nil, fmt.Errorf("invalid prefix '%v' for empty location, should be in the format: *.example.com", prefix) | ||
| } else if locationPrefixCheck == 1 { | ||
| return ref, nil | ||
| } | ||
| newNamedRef = e.Location + refString[prefixLen:] | ||
|
|
@@ -271,16 +267,6 @@ func (e *InvalidRegistries) Error() string { | |
| func parseLocation(input string) (string, error) { | ||
| trimmed := strings.TrimRight(input, "/") | ||
|
|
||
|
There was a problem hiding this comment. The request around #1191 (comment) was to reintroduce this check, and handle the cases that do allow |
||
| if strings.HasPrefix(trimmed, "http://") || strings.HasPrefix(trimmed, "https://") { | ||
| msg := fmt.Sprintf("invalid location '%s': URI schemes are not supported", input) | ||
| return "", &InvalidRegistries{s: msg} | ||
|
|
@@ -289,6 +275,20 @@ func parseLocation(input string) (string, error) { | |
| return trimmed, nil | ||
| } | ||
|
|
||
| // parsePrefix parses the input string, performs some sanity checks and returns | ||
| // the sanitized input string. An error is returned if the input string is | ||
| // empty or if contains an "http{s,}://" prefix. | ||
| func parsePrefix(input string) (string, error) { | ||
|
There was a problem hiding this comment. How does this differ from |
||
| trimmed := strings.TrimRight(input, "/") | ||
|
|
||
| if strings.HasPrefix(trimmed, "http://") || strings.HasPrefix(trimmed, "https://") { | ||
| msg := fmt.Sprintf("invalid prefix '%s': URI schemes are not supported", input) | ||
| return "", &InvalidRegistries{s: msg} | ||
| } | ||
|
|
||
| return trimmed, nil | ||
| } | ||
|
|
||
| // ConvertToV2 returns a v2 config corresponding to a v1 one. | ||
| func (config *V1RegistriesConf) ConvertToV2() (*V2RegistriesConf, error) { | ||
| regMap := make(map[string]*Registry) | ||
|
|
@@ -343,6 +343,21 @@ func (config *V1RegistriesConf) ConvertToV2() (*V2RegistriesConf, error) { | |
| // anchoredDomainRegexp is an internal implementation detail of postProcess, defining the valid values of elements of UnqualifiedSearchRegistries. | ||
| var anchoredDomainRegexp = regexp.MustCompile("^" + reference.DomainRegexp.String() + "$") | ||
|
|
||
| // WildcardedPrefixCheck is the only place to check if a prefix contains "*." | ||
| func WildcardedPrefixCheck(prefix string) bool { | ||
|
There was a problem hiding this comment. Please make this private. We try to keep new public APIs at the bare minimum to prevent bumping the major version. There was a problem hiding this comment. Typically (not quite always), it’s more readable if function names are either commands ( |
||
| return prefix[:2] == "*." | ||
| } | ||
|
|
||
| func EmptyLocationWildcardedPrefixCheck(location string, prefix string) int { | ||
|
There was a problem hiding this comment. Same here. Please add a comment on the return value. There was a problem hiding this comment. I don’t think a comment is enough — it should either be structured in some completely different way, or use an enum, not hard-coded 0/1/-1. |
||
| if location == "" { | ||
| if !(WildcardedPrefixCheck(prefix)) { | ||
| return -1 | ||
| } | ||
| return 1 | ||
| } | ||
| return 0 | ||
| } | ||
|
|
||
| // postProcess checks the consistency of all the configuration, looks for conflicts, | ||
| // and normalizes the configuration (e.g., sets the Prefix to Location if not set). | ||
| func (config *V2RegistriesConf) postProcessRegistries() error { | ||
|
|
@@ -357,36 +372,36 @@ func (config *V2RegistriesConf) postProcessRegistries() error { | |
| return err | ||
| } | ||
|
|
||
| if reg.Prefix != "" { | ||
| reg.Prefix, err = parsePrefix(reg.Prefix) | ||
| if err != nil { | ||
| return err | ||
| } | ||
| if reg.Location != "" { | ||
|
There was a problem hiding this comment. This looks suspicious. Why are we allowing a config with an empty location? If that's desired, we need tests for that case and probably some sanity checks and some massaging of the docs. For instance, unless it's blocked, it would require at least one mirror to make sense which in turn would bring up the question: why lift the requirement to specify a location, There was a problem hiding this comment. See all the “prefix is a wildcard” and “prefix is empty” conditions in https://github.com/openshift/runtime-utils/pull/11/files Right now, if the user wants to set properties (insecure/blocked/mirrors) on a registry without redirecting it, there are two different syntaxes: (prefix=*.domain, location="") or (prefix="", location="non-wildcard.domain/…"), with little reason to for the two to differ. It would conceptually be much simpler if we always required |
||
| reg.Location, err = parseLocation(reg.Location) | ||
| if err != nil { | ||
| return err | ||
| } | ||
| } | ||
| } else if reg.Location != "" { | ||
| reg.Prefix, err = parseLocation(reg.Location) | ||
| if err != nil { | ||
| return err | ||
| } | ||
| reg.Location = reg.Prefix | ||
| } else { | ||
| return &InvalidRegistries{s: "invalid condition: both location and prefix are unset"} | ||
| } | ||
|
|
||
| // make sure mirrors are valid | ||
| for _, mir := range reg.Mirrors { | ||
| if mir.Location == "" { | ||
|
There was a problem hiding this comment.
|
||
| return &InvalidRegistries{s: "invalid condition: mirror location is unset"} | ||
| } | ||
| mir.Location, err = parseLocation(mir.Location) | ||
| if err != nil { | ||
| return err | ||
| } | ||
|
There was a problem hiding this comment. Has anything been done to fix that? |
||
| } | ||
| if reg.Location == "" { | ||
| regMap[reg.Prefix] = append(regMap[reg.Prefix], reg) | ||
|
|
@@ -804,7 +819,7 @@ func refMatchingSubdomainPrefix(ref, prefix string) int { | |
| // (This is split from the caller primarily to make testing easier.) | ||
| func refMatchingPrefix(ref, prefix string) int { | ||
| switch { | ||
| case WildcardedPrefixCheck(prefix): | ||
| return refMatchingSubdomainPrefix(ref, prefix) | ||
| case len(ref) < len(prefix): | ||
| return -1 | ||
|
|
@@ -919,17 +934,6 @@ func loadConfigFile(path string, forceV2 bool) (*parsedConfig, error) { | |
| res.shortNameMode = types.ShortNameModeInvalid | ||
| } | ||
|
|
||
|
There was a problem hiding this comment. What replaces the validation? |
||
| // Parse and validate short-name aliases. | ||
| cache, err := newShortNameAliasCache(path, &res.partialV2.shortNameAliasConf) | ||
| if err != nil { | ||
|
|
||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,13 @@ | ||
| [[registry]] | ||
| location = "http://registry.com:5000" | ||
| prefix = "http://schema-is-invalid.com" | ||
|
|
||
| [[registry]] | ||
| location = "https://registry.com:5000" | ||
| prefix = "http://schema-is-invalid.com" | ||
|
|
||
| [[registry]] | ||
| location = "http://registry.com:5000" | ||
|
|
||
| [[registry]] | ||
| location = "https://registry.com:5000" |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The FIXME was to drop the check for
prefixstarting with"*."in this location, (after ensuringpostProcessRegistriesenforces that constraint), not to keep exactly the same check and move it into a single-use function. That move, along with the undocumented 0/1/-1 values, just makes this harder to read with AFAICS no change to behavior.