Stopping the various methods that use URLs from reading things remotely.

Author: Craigacp

olcut-config-edn/src/main/java/com/oracle/labs/mlrg/olcut/config/edn/EdnLoader.java

@@ -39,6 +39,7 @@
 import com.oracle.labs.mlrg.olcut.config.SerializedObject;
 import com.oracle.labs.mlrg.olcut.config.property.SimpleProperty;
 import com.oracle.labs.mlrg.olcut.config.io.URLLoader;
+import com.oracle.labs.mlrg.olcut.util.IOUtil;
 import us.bpsm.edn.EdnException;
 import us.bpsm.edn.Keyword;
 import us.bpsm.edn.Symbol;
@@ -174,6 +175,8 @@ public final void load(URL url) throws ConfigLoaderException {
                 () -> {
                     if (url.getProtocol().equals("file")) {
                         workingDir = new File(url.getFile()).getParent();
+                    } else if (IOUtil.isDisallowedProtocol(url)) {
+                        throw new ConfigLoaderException("Unable to load configurations from URLs with protocol: " + url.getProtocol());
                     } else {
                         workingDir = "";
                     }

olcut-config-json/src/main/java/com/oracle/labs/mlrg/olcut/config/json/JsonLoader.java

@@ -45,6 +45,7 @@
 import com.oracle.labs.mlrg.olcut.config.property.SimpleProperty;
 import com.oracle.labs.mlrg.olcut.config.io.URLLoader;
 import com.oracle.labs.mlrg.olcut.config.SerializedObject;
+import com.oracle.labs.mlrg.olcut.util.IOUtil;
 
 import java.io.File;
 import java.io.IOException;
@@ -101,6 +102,8 @@ public final void load(URL url) throws ConfigLoaderException {
                 () -> {
                     if (url.getProtocol().equals("file")) {
                         workingDir = new File(url.getFile()).getParent();
+                    } else if (IOUtil.isDisallowedProtocol(url)) {
+                        throw new ConfigLoaderException("Unable to load configurations from URLs with protocol: " + url.getProtocol());
                     } else {
                         workingDir = "";
                     }

olcut-core/src/main/java/com/oracle/labs/mlrg/olcut/config/ConfigurationManager.java

@@ -41,6 +41,7 @@
 import com.oracle.labs.mlrg.olcut.config.property.Property;
 import com.oracle.labs.mlrg.olcut.config.property.SimpleProperty;
 import com.oracle.labs.mlrg.olcut.config.xml.XMLConfigFactory;
+import com.oracle.labs.mlrg.olcut.util.IOUtil;
 import com.oracle.labs.mlrg.olcut.util.Pair;
 
 import javax.management.MBeanServer;
@@ -642,6 +643,9 @@ private static URL findURL(String input, String argumentName) {
                             }
                         }
                     }
+                    if (IOUtil.isDisallowedProtocol(url)) {
+                        throw new ConfigLoaderException("Unable to load configurations from URLs with protocol: " + url.getProtocol());
+                    }
                     return url;
                 }
         );

olcut-core/src/main/java/com/oracle/labs/mlrg/olcut/config/xml/SAXLoader.java

@@ -47,7 +47,6 @@
 import javax.xml.parsers.ParserConfigurationException;
 import javax.xml.parsers.SAXParserFactory;
 
-import com.oracle.labs.mlrg.olcut.config.Configurable;
 import com.oracle.labs.mlrg.olcut.config.io.ConfigLoader;
 import com.oracle.labs.mlrg.olcut.config.io.ConfigLoaderException;
 import com.oracle.labs.mlrg.olcut.config.ConfigurationData;
@@ -59,6 +58,7 @@
 import com.oracle.labs.mlrg.olcut.config.SerializedObject;
 import com.oracle.labs.mlrg.olcut.config.property.SimpleProperty;
 import com.oracle.labs.mlrg.olcut.config.io.URLLoader;
+import com.oracle.labs.mlrg.olcut.util.IOUtil;
 import org.xml.sax.Attributes;
 import org.xml.sax.InputSource;
 import org.xml.sax.Locator;
@@ -111,13 +111,15 @@ public SAXLoader(URLLoader parent, Map<String, ConfigurationData> rpdMap, Map<St
     public final void load(URL url) throws ConfigLoaderException {
         AccessController.doPrivileged((PrivilegedAction<Void>)
                 () -> {
+                    if (url.getProtocol().equals("file")) {
+                        String workingDir = new File(url.getFile()).getParent();
+                        handler.setCurWorkingDir(workingDir);
+                    } else if (IOUtil.isDisallowedProtocol(url)) {
+                        throw new ConfigLoaderException("Unable to load configurations from URLs with protocol: " + url.getProtocol());
+                    } else {
+                        handler.setCurWorkingDir("");
+                    }
                     try (InputStream is = url.openStream()) {
-                        if (url.getProtocol().equals("file")) {
-                            String workingDir = new File(url.getFile()).getParent();
-                            handler.setCurWorkingDir(workingDir);
-                        } else {
-                            handler.setCurWorkingDir("");
-                        }
                         innerLoad(is, url.toString());
                     } catch (IOException e) {
                         throw new ConfigLoaderException(e, e.getMessage());

olcut-core/src/main/java/com/oracle/labs/mlrg/olcut/provenance/ProvenanceUtil.java

@@ -186,12 +186,18 @@ public static String hashResource(HashType hashType, File file) {
     /**
      * Hashes a resource stream by reading the bytes and passing them through the
      * appropriate {@link MessageDigest}.
+     * <p>
+     * If the URL is remote then it logs an error and returns the hash of the URL itself.
      * @param hashType The type of hash to perform.
      * @param file The URL for the stream.
      * @return A hexadecimal string representation of the hash.
      */
     public static String hashResource(HashType hashType, URL file) {
         MessageDigest md = hashType.getDigest();
+        if (IOUtil.isDisallowedProtocol(file)) {
+            logger.severe("Tried to read disallowed URL protocol: '" + file.toString() + "'");
+            return bytesToHexString(md.digest(file.toString().getBytes(StandardCharsets.UTF_8)));
+        }
         byte[] buffer = new byte[16384];
         int count;
         try (InputStream bis = new BufferedInputStream(file.openStream())) {

olcut-core/src/main/java/com/oracle/labs/mlrg/olcut/util/IOUtil.java

@@ -116,47 +116,94 @@ public static List<String> getLines(BufferedReader reader, int count) throws IOE
         return lines;
     }
 
+    /**
+     * Loads the string as a classpath resource or a path, using UTF-8.
+     * @param path The path to load.
+     * @return A buffered reader.
+     * @throws FileNotFoundException If the path wasn't found.
+     */
     public static BufferedReader getReader(String path) throws FileNotFoundException {
         return getReader(path, StandardCharsets.UTF_8);
     }
 
-    public static BufferedReader getReader(String path, Charset charSet) throws FileNotFoundException {
-        return new BufferedReader(new InputStreamReader(getInputStream(path),charSet),BUFFER_SIZE);
+    /**
+     * Loads the string as a classpath resource or a path, using the specified charset.
+     * @param path The path to load.
+     * @param charset The charset to use.
+     * @return A buffered reader.
+     * @throws FileNotFoundException If the path wasn't found.
+     */
+    public static BufferedReader getReader(String path, Charset charset) throws FileNotFoundException {
+        return new BufferedReader(new InputStreamReader(getInputStream(path),charset),BUFFER_SIZE);
     }
 
-    public static BufferedReader getReader(URI uri, Charset charSet) throws IOException {
-        InputStream is = uri.toURL().openStream();
-        return new BufferedReader(new InputStreamReader(is,charSet),BUFFER_SIZE);
+    /**
+     * This method converts the URI into a URL, and applies the
+     * protocol check to see if it's http or https. If it is then an exception is thrown, otherwise
+     * the stream is opened. Figures out if the stream is zipped using the magic bytes.
+     * @param uri The URI to load.
+     * @param charset The charset to use.
+     * @return A buffered reader from the input stream.
+     * @throws IOException If the URI failed to open.
+     */
+    public static BufferedReader getReader(URI uri, Charset charset) throws IOException {
+        return getReader(uri.toURL(),charset);
     }
 
-    public static BufferedReader getReader(Path path, Charset charSet) throws IOException {
-        InputStream is = new FileInputStream(path.toFile());
-        return new BufferedReader(new InputStreamReader(is,charSet),BUFFER_SIZE);
+    /**
+     * This method applies the
+     * protocol check to see if the URL is http or https. If it is then an exception is thrown, otherwise
+     * the stream is opened. Figures out if the stream is zipped using the magic bytes.
+     * @param url The URL to load.
+     * @param charset The charset to use.
+     * @return A buffered reader from the input stream.
+     * @throws IOException If the URI failed to open.
+     */
+    public static BufferedReader getReader(URL url, Charset charset) throws IOException {
+        if (isDisallowedProtocol(url)) {
+            throw new IllegalArgumentException("Tried to read disallowed URL protocol: '" + url.toString() + "'");
+        }
+        return getReader(url.openStream(),charset);
+    }
+
+    /**
+     * Opens a buffered reader on the specified path with the specified charset. Figures out if the stream is zipped using the magic bytes.
+     * @param path The path to read.
+     * @param charset The charset to use.
+     * @return A buffered reader.
+     * @throws IOException If the path failed to open.
+     */
+    public static BufferedReader getReader(Path path, Charset charset) throws IOException {
+        return getReader(new FileInputStream(path.toFile()),charset);
     }
 
     /**
      * Makes a reader wrapped around the string. Figures out if the stream is zipped using the magic bytes.
      * @param filename The input filename.
-     * @param charSet The charset to use.
+     * @param charset The charset to use.
      * @return A BufferedReader wrapped around the appropriate stream.
      * @throws FileNotFoundException If the file can't be read.
      * @throws IOException If an error occurred when opening the file.
      */
-    public static BufferedReader getReader(String filename, String charSet) throws FileNotFoundException, IOException {
-        return getReader(new File(filename), charSet);
+    public static BufferedReader getReader(String filename, String charset) throws FileNotFoundException, IOException {
+        return getReader(new File(filename), charset);
     }
 
     /**
      * Makes a reader wrapped around the file. Figures out if the stream is zipped using the magic bytes.
      * @param file The file to read.
-     * @param charSet The charset to use.
+     * @param charset The charset to use.
      * @return A BufferedReader wrapped around the appropriate stream.
      * @throws FileNotFoundException If the file can't be read.
      * @throws IOException If an error occurred when opening the file.
      */
-    public static BufferedReader getReader(File file, String charSet) throws FileNotFoundException, IOException {
-        InputStream stream = wrapGZIPStream(new FileInputStream(file));
-        return new BufferedReader(new InputStreamReader(stream,charSet));
+    public static BufferedReader getReader(File file, String charset) throws FileNotFoundException, IOException {
+        return getReader(new FileInputStream(file),Charset.forName(charset));
+    }
+
+    private static BufferedReader getReader(InputStream stream, Charset charset) throws IOException {
+        InputStream wrappedStream = wrapGZIPStream(stream);
+        return new BufferedReader(new InputStreamReader(wrappedStream,charset),BUFFER_SIZE);
     }
 
     /**
@@ -246,12 +293,12 @@ public static String toString(String path) throws IOException {
         return toString(path, StandardCharsets.UTF_8);
     }
 
-    public static String toString(String path, Charset charSet) throws IOException {
-        String str = fromResource(path, charSet);
+    public static String toString(String path, Charset charset) throws IOException {
+        String str = fromResource(path, charset);
         if (str != null) {
             return str;
         } else {
-            str = fromFile(path, charSet);
+            str = fromFile(path, charset);
             if (str != null) {
                 return str;
             } else {
@@ -260,35 +307,58 @@ public static String toString(String path, Charset charSet) throws IOException {
         }
     }
 
-    public static String fromResource(String path, Charset charSet) {
-        return fromInputStream(IOUtil.class.getResourceAsStream(path), charSet);
+    public static String fromResource(String path, Charset charset) {
+        return fromInputStream(IOUtil.class.getResourceAsStream(path), charset);
     }
 
     public static String fromPath(Path path) throws FileNotFoundException {
         return fromFile(path.toFile(), StandardCharsets.UTF_8);
     }
 
-    public static String fromPath(Path path, Charset charSet) throws FileNotFoundException {
-        return fromFile(path.toFile(), charSet);
+    public static String fromPath(Path path, Charset charset) throws FileNotFoundException {
+        return fromFile(path.toFile(), charset);
     }
 
-    public static String fromFile(String path, Charset charSet) throws FileNotFoundException {
-        return fromFile(new File(path), charSet);
+    public static String fromFile(String path, Charset charset) throws FileNotFoundException {
+        return fromFile(new File(path), charset);
     }
 
-    public static String fromFile(File file, Charset charSet) throws FileNotFoundException {
+    public static String fromFile(File file, Charset charset) throws FileNotFoundException {
         if (file.length() == 0) {
             return "";
         }
-        return fromInputStream(new FileInputStream(file), charSet);
+        return fromInputStream(new FileInputStream(file), charset);
     }
 
-    public static String fromUri(URI uri, Charset charSet) throws IOException {
-        return fromInputStream(uri.toURL().openStream(), charSet);
+    /**
+     * Reads the location specified by a URI into a String. Checks to see if the URI is
+     * remote first, and throws IllegalArgumentException if it is.
+     * @param uri The URI to read.
+     * @param charset The charset to use.
+     * @return The String contents of the URI.
+     * @throws IOException If the URI failed to load or if it wasn't convertible to a URL.
+     */
+    public static String fromUri(URI uri, Charset charset) throws IOException {
+        return fromUrl(uri.toURL(),charset);
+    }
+
+    /**
+     * Reads the location specified by a URL into a String. Checks to see if the URL is
+     * remote first, and throws IllegalArgumentException if it is.
+     * @param url The URL to read.
+     * @param charset The charset to use.
+     * @return The String contents of the URL.
+     * @throws IOException If the URL failed to load.
+     */
+    public static String fromUrl(URL url, Charset charset) throws IOException {
+        if (isDisallowedProtocol(url)) {
+            throw new IllegalArgumentException("Tried to read disallowed URL protocol: '" + url.toString() + "'");
+        }
+        return fromInputStream(url.openStream(),charset);
     }
 
-    private static String fromInputStream(InputStream in, Charset charSet) {
-        try (Scanner scanner = new Scanner(new BufferedInputStream(in,BUFFER_SIZE),charSet.name())) {
+    private static String fromInputStream(InputStream in, Charset charset) {
+        try (Scanner scanner = new Scanner(new BufferedInputStream(in,BUFFER_SIZE),charset.name())) {
             return scanner.useDelimiter("\\Z").next();
         }
     }
@@ -456,6 +526,10 @@ public static Iterator<Path> getPaths(List<String> fileNames, Path parentPath) {
     public static InputStream getInputStreamForLocation(String location) {
         URL url = getURLForLocation(location);
         if (url != null) {
+            if (isDisallowedProtocol(url)) {
+                logger.severe("Tried to open a disallowed URL protocol: " + url.toString());
+                return null;
+            }
             try {
                 InputStream ret = url.openStream();
 
@@ -544,6 +618,31 @@ public static URL getURLForLocation(String location) {
         return ret;
     }
 
+    /**
+     * Checks the url to see if the protocol is disallowed.
+     * Disallowed protocols are http, https, ftp. Null
+     * URLs are also disallowed.
+     * @param url The URL to check.
+     * @return True if the protocol is disallowed, the URL is null, or the protocol is null.
+     */
+    public static boolean isDisallowedProtocol(URL url) {
+        if (url == null) {
+            return true;
+        }
+        String protocol = url.getProtocol();
+        if (protocol == null) {
+            return true;
+        }
+        switch (protocol) {
+            case "http":
+            case "https":
+            case "ftp":
+                return true;
+            default:
+                return false;
+        }
+    }
+
     public static class NamesPathIterator implements Iterator<Path>{
 
         private final Iterator<String> fileNames;