Merge pull request #1253 from jinroh/vfs-walk-overflow

jinroh · web-flow · commit a93d00df899b · 2018-02-23T10:04:26.000+01:00
VFS: add maximum amount of recursivity when walking the vfs index
diff --git a/pkg/vfs/archive.go b/pkg/vfs/archive.go
@@ -149,7 +149,7 @@ func (a *Archive) Serve(fs VFS, w http.ResponseWriter) error {
 			defer f.Close()
 			_, err = io.Copy(ze, f)
 			return err
-		})
+		}, 0)
 	}
 
 	return nil
diff --git a/pkg/vfs/directory.go b/pkg/vfs/directory.go
@@ -236,7 +236,7 @@ func setTrashedForFilesInsideDir(fs VFS, doc *DirDoc, trashed bool) error {
 			files = append(files, file)
 		}
 		return err
-	})
+	}, 0)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/vfs/vfs.go b/pkg/vfs/vfs.go
@@ -45,10 +45,18 @@ const (
 	conflictFormat = "%s (__cozy__: %s)"
 )
 
+// maxWalkRecursive is the maximum amount of recursion allowed for the
+// recursive walk process.
+const maxWalkRecursive = 512
+
 // ErrSkipDir is used in WalkFn as an error to skip the current
 // directory. It is not returned by any function of the package.
 var ErrSkipDir = errors.New("skip directories")
 
+// ErrWalkOverflow is used in the walk process when the maximum amount of
+// recursivity allowed is reached when browsing the index tree.
+var ErrWalkOverflow = errors.New("vfs: walk overflow")
+
 // Fs is an interface providing a set of high-level methods to interact with
 // the file-system binaries and metadata.
 type Fs interface {
@@ -517,10 +525,13 @@ func Walk(fs VFS, root string, walkFn WalkFn) error {
 	if err != nil {
 		return walkFn(root, dir, file, err)
 	}
-	return walk(fs, root, dir, file, walkFn)
+	return walk(fs, root, dir, file, walkFn, 0)
 }
 
-func walk(fs VFS, name string, dir *DirDoc, file *FileDoc, walkFn WalkFn) error {
+func walk(fs VFS, name string, dir *DirDoc, file *FileDoc, walkFn WalkFn, count int) error {
+	if count >= maxWalkRecursive {
+		return ErrWalkOverflow
+	}
 	err := walkFn(name, dir, file, nil)
 	if err != nil {
 		if dir != nil && err == ErrSkipDir {
@@ -546,7 +557,7 @@ func walk(fs VFS, name string, dir *DirDoc, file *FileDoc, walkFn WalkFn) error
 		} else {
 			fullpath = path.Join(name, d.DocName)
 		}
-		if err = walk(fs, fullpath, d, f, walkFn); err != nil {
+		if err = walk(fs, fullpath, d, f, walkFn, count+1); err != nil {
 			return err
 		}
 	}
diff --git a/web/auth/auth_test.go b/web/auth/auth_test.go
@@ -806,7 +806,7 @@ func TestAuthorizeWithInvalidCSRFToken(t *testing.T) {
 	defer res.Body.Close()
 	assert.Equal(t, "403 Forbidden", res.Status)
 	body, _ := ioutil.ReadAll(res.Body)
-	assert.Contains(t, string(body), "Invalid csrf token")
+	assert.Contains(t, string(body), "invalid csrf token")
 }
 
 func TestAuthorizeWithNoState(t *testing.T) {

Original file line number	Diff line number	Diff line change
`@@ -149,7 +149,7 @@ func (a *Archive) Serve(fs VFS, w http.ResponseWriter) error {`
`149`	`149`	`defer f.Close()`
`150`	`150`	`_, err = io.Copy(ze, f)`
`151`	`151`	`return err`
`152`		`- })`
	`152`	`+ }, 0)`
`153`	`153`	`}`
`154`	`154`
`155`	`155`	`return nil`
Original file line number	Diff line number	Diff line change
`@@ -236,7 +236,7 @@ func setTrashedForFilesInsideDir(fs VFS, doc *DirDoc, trashed bool) error {`
`236`	`236`	`files = append(files, file)`
`237`	`237`	`}`
`238`	`238`	`return err`
`239`		`- })`
	`239`	`+ }, 0)`
`240`	`240`	`if err != nil {`
`241`	`241`	`return err`
`242`	`242`	`}`
Original file line number	Diff line number	Diff line change
`@@ -806,7 +806,7 @@ func TestAuthorizeWithInvalidCSRFToken(t *testing.T) {`
`806`	`806`	`defer res.Body.Close()`
`807`	`807`	`assert.Equal(t, "403 Forbidden", res.Status)`
`808`	`808`	`body, _ := ioutil.ReadAll(res.Body)`
`809`		`- assert.Contains(t, string(body), "Invalid csrf token")`
	`809`	`+ assert.Contains(t, string(body), "invalid csrf token")`
`810`	`810`	`}`
`811`	`811`
`812`	`812`	`func TestAuthorizeWithNoState(t *testing.T) {`