podman
804 строки · 23.2 Кб
1// Copyright 2015 go-swagger maintainers2//3// Licensed under the Apache License, Version 2.0 (the "License");4// you may not use this file except in compliance with the License.5// You may obtain a copy of the License at6//7// http://www.apache.org/licenses/LICENSE-2.08//9// Unless required by applicable law or agreed to in writing, software10// distributed under the License is distributed on an "AS IS" BASIS,11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.12// See the License for the specific language governing permissions and13// limitations under the License.14package validate16import (18"encoding/json"19"fmt"20"sort"21"strings"22"github.com/go-openapi/analysis"24"github.com/go-openapi/errors"25"github.com/go-openapi/jsonpointer"26"github.com/go-openapi/loads"27"github.com/go-openapi/spec"28"github.com/go-openapi/strfmt"29)30// Spec validates an OpenAPI 2.0 specification document.32//33// Returns an error flattening in a single standard error, all validation messages.34//35// - TODO: $ref should not have siblings36// - TODO: make sure documentation reflects all checks and warnings37// - TODO: check on discriminators38// - TODO: explicit message on unsupported keywords (better than "forbidden property"...)39// - TODO: full list of unresolved refs40// - TODO: validate numeric constraints (issue#581): this should be handled like defaults and examples41// - TODO: option to determine if we validate for go-swagger or in a more general context42// - TODO: check on required properties to support anyOf, allOf, oneOf43//44// NOTE: SecurityScopes are maps: no need to check uniqueness45//46func Spec(doc *loads.Document, formats strfmt.Registry) error {47errs, _ /*warns*/ := NewSpecValidator(doc.Schema(), formats).Validate(doc)48if errs.HasErrors() {49return errors.CompositeValidationError(errs.Errors...)50}51return nil52}53// SpecValidator validates a swagger 2.0 spec55type SpecValidator struct {56schema *spec.Schema // swagger 2.0 schema57spec *loads.Document58analyzer *analysis.Spec59expanded *loads.Document60KnownFormats strfmt.Registry61Options Opts // validation options62}63// NewSpecValidator creates a new swagger spec validator instance65func NewSpecValidator(schema *spec.Schema, formats strfmt.Registry) *SpecValidator {66return &SpecValidator{67schema: schema,68KnownFormats: formats,69Options: defaultOpts,70}71}72// Validate validates the swagger spec74func (s *SpecValidator) Validate(data interface{}) (*Result, *Result) {75var sd *loads.Document76errs, warnings := new(Result), new(Result)77if v, ok := data.(*loads.Document); ok {79sd = v80}81if sd == nil {82errs.AddErrors(invalidDocumentMsg())83return errs, warnings // no point in continuing84}85s.spec = sd86s.analyzer = analysis.New(sd.Spec())87// Swagger schema validator89schv := NewSchemaValidator(s.schema, nil, "", s.KnownFormats, SwaggerSchema(true))90var obj interface{}91// Raw spec unmarshalling errors93if err := json.Unmarshal(sd.Raw(), &obj); err != nil {94// NOTE: under normal conditions, the *load.Document has been already unmarshalled95// So this one is just a paranoid check on the behavior of the spec package96panic(InvalidDocumentError)97}98defer func() {100// errs holds all errors and warnings,101// warnings only warnings102errs.MergeAsWarnings(warnings)103warnings.AddErrors(errs.Warnings...)104}()105errs.Merge(schv.Validate(obj)) // error -107// There may be a point in continuing to try and determine more accurate errors108if !s.Options.ContinueOnErrors && errs.HasErrors() {109return errs, warnings // no point in continuing110}111errs.Merge(s.validateReferencesValid()) // error -113// There may be a point in continuing to try and determine more accurate errors114if !s.Options.ContinueOnErrors && errs.HasErrors() {115return errs, warnings // no point in continuing116}117errs.Merge(s.validateDuplicateOperationIDs())119errs.Merge(s.validateDuplicatePropertyNames()) // error -120errs.Merge(s.validateParameters()) // error -121errs.Merge(s.validateItems()) // error -122// Properties in required definition MUST validate their schema124// Properties SHOULD NOT be declared as both required and readOnly (warning)125errs.Merge(s.validateRequiredDefinitions()) // error and warning126// There may be a point in continuing to try and determine more accurate errors128if !s.Options.ContinueOnErrors && errs.HasErrors() {129return errs, warnings // no point in continuing130}131// Values provided as default MUST validate their schema133df := &defaultValidator{SpecValidator: s}134errs.Merge(df.Validate())135// Values provided as examples MUST validate their schema137// Value provided as examples in a response without schema generate a warning138// Known limitations: examples in responses for mime type not application/json are ignored (warning)139ex := &exampleValidator{SpecValidator: s}140errs.Merge(ex.Validate())141errs.Merge(s.validateNonEmptyPathParamNames())143// errs.Merge(s.validateRefNoSibling()) // warning only145errs.Merge(s.validateReferenced()) // warning only146return errs, warnings148}149func (s *SpecValidator) validateNonEmptyPathParamNames() *Result {151res := new(Result)152if s.spec.Spec().Paths == nil {153// There is no Paths object: error154res.AddErrors(noValidPathMsg())155} else {156if s.spec.Spec().Paths.Paths == nil {157// Paths may be empty: warning158res.AddWarnings(noValidPathMsg())159} else {160for k := range s.spec.Spec().Paths.Paths {161if strings.Contains(k, "{}") {162res.AddErrors(emptyPathParameterMsg(k))163}164}165}166}167return res168}169func (s *SpecValidator) validateDuplicateOperationIDs() *Result {171// OperationID, if specified, must be unique across the board172var analyzer *analysis.Spec173if s.expanded != nil {174// $ref are valid: we can analyze operations on an expanded spec175analyzer = analysis.New(s.expanded.Spec())176} else {177// fallback on possible incomplete picture because of previous errors178analyzer = s.analyzer179}180res := new(Result)181known := make(map[string]int)182for _, v := range analyzer.OperationIDs() {183if v != "" {184known[v]++185}186}187for k, v := range known {188if v > 1 {189res.AddErrors(nonUniqueOperationIDMsg(k, v))190}191}192return res193}194type dupProp struct {196Name string197Definition string198}199func (s *SpecValidator) validateDuplicatePropertyNames() *Result {201// definition can't declare a property that's already defined by one of its ancestors202res := new(Result)203for k, sch := range s.spec.Spec().Definitions {204if len(sch.AllOf) == 0 {205continue206}207knownanc := map[string]struct{}{209"#/definitions/" + k: {},210}211ancs, rec := s.validateCircularAncestry(k, sch, knownanc)213if rec != nil && (rec.HasErrors() || !rec.HasWarnings()) {214res.Merge(rec)215}216if len(ancs) > 0 {217res.AddErrors(circularAncestryDefinitionMsg(k, ancs))218return res219}220knowns := make(map[string]struct{})222dups, rep := s.validateSchemaPropertyNames(k, sch, knowns)223if rep != nil && (rep.HasErrors() || rep.HasWarnings()) {224res.Merge(rep)225}226if len(dups) > 0 {227var pns []string228for _, v := range dups {229pns = append(pns, v.Definition+"."+v.Name)230}231res.AddErrors(duplicatePropertiesMsg(k, pns))232}233}235return res236}237func (s *SpecValidator) resolveRef(ref *spec.Ref) (*spec.Schema, error) {239if s.spec.SpecFilePath() != "" {240return spec.ResolveRefWithBase(s.spec.Spec(), ref, &spec.ExpandOptions{RelativeBase: s.spec.SpecFilePath()})241}242// NOTE: it looks like with the new spec resolver, this code is now unrecheable243return spec.ResolveRef(s.spec.Spec(), ref)244}245func (s *SpecValidator) validateSchemaPropertyNames(nm string, sch spec.Schema, knowns map[string]struct{}) ([]dupProp, *Result) {247var dups []dupProp248schn := nm250schc := &sch251res := new(Result)252for schc.Ref.String() != "" {254// gather property names255reso, err := s.resolveRef(&schc.Ref)256if err != nil {257errorHelp.addPointerError(res, err, schc.Ref.String(), nm)258return dups, res259}260schc = reso261schn = sch.Ref.String()262}263if len(schc.AllOf) > 0 {265for _, chld := range schc.AllOf {266dup, rep := s.validateSchemaPropertyNames(schn, chld, knowns)267if rep != nil && (rep.HasErrors() || rep.HasWarnings()) {268res.Merge(rep)269}270dups = append(dups, dup...)271}272return dups, res273}274for k := range schc.Properties {276_, ok := knowns[k]277if ok {278dups = append(dups, dupProp{Name: k, Definition: schn})279} else {280knowns[k] = struct{}{}281}282}283return dups, res285}286func (s *SpecValidator) validateCircularAncestry(nm string, sch spec.Schema, knowns map[string]struct{}) ([]string, *Result) {288res := new(Result)289if sch.Ref.String() == "" && len(sch.AllOf) == 0 { // Safeguard. We should not be able to actually get there291return nil, res292}293var ancs []string294schn := nm296schc := &sch297for schc.Ref.String() != "" {299reso, err := s.resolveRef(&schc.Ref)300if err != nil {301errorHelp.addPointerError(res, err, schc.Ref.String(), nm)302return ancs, res303}304schc = reso305schn = sch.Ref.String()306}307if schn != nm && schn != "" {309if _, ok := knowns[schn]; ok {310ancs = append(ancs, schn)311}312knowns[schn] = struct{}{}313if len(ancs) > 0 {315return ancs, res316}317}318if len(schc.AllOf) > 0 {320for _, chld := range schc.AllOf {321if chld.Ref.String() != "" || len(chld.AllOf) > 0 {322anc, rec := s.validateCircularAncestry(schn, chld, knowns)323if rec != nil && (rec.HasErrors() || !rec.HasWarnings()) {324res.Merge(rec)325}326ancs = append(ancs, anc...)327if len(ancs) > 0 {328return ancs, res329}330}331}332}333return ancs, res334}335func (s *SpecValidator) validateItems() *Result {337// validate parameter, items, schema and response objects for presence of item if type is array338res := new(Result)339for method, pi := range s.analyzer.Operations() {341for path, op := range pi {342for _, param := range paramHelp.safeExpandedParamsFor(path, method, op.ID, res, s) {343if param.TypeName() == arrayType && param.ItemsTypeName() == "" {345res.AddErrors(arrayInParamRequiresItemsMsg(param.Name, op.ID))346continue347}348if param.In != swaggerBody {349if param.Items != nil {350items := param.Items351for items.TypeName() == arrayType {352if items.ItemsTypeName() == "" {353res.AddErrors(arrayInParamRequiresItemsMsg(param.Name, op.ID))354break355}356items = items.Items357}358}359} else {360// In: body361if param.Schema != nil {362res.Merge(s.validateSchemaItems(*param.Schema, fmt.Sprintf("body param %q", param.Name), op.ID))363}364}365}366var responses []spec.Response368if op.Responses != nil {369if op.Responses.Default != nil {370responses = append(responses, *op.Responses.Default)371}372if op.Responses.StatusCodeResponses != nil {373for _, v := range op.Responses.StatusCodeResponses {374responses = append(responses, v)375}376}377}378for _, resp := range responses {380// Response headers with array381for hn, hv := range resp.Headers {382if hv.TypeName() == arrayType && hv.ItemsTypeName() == "" {383res.AddErrors(arrayInHeaderRequiresItemsMsg(hn, op.ID))384}385}386if resp.Schema != nil {387res.Merge(s.validateSchemaItems(*resp.Schema, "response body", op.ID))388}389}390}391}392return res393}394// Verifies constraints on array type396func (s *SpecValidator) validateSchemaItems(schema spec.Schema, prefix, opID string) *Result {397res := new(Result)398if !schema.Type.Contains(arrayType) {399return res400}401if schema.Items == nil || schema.Items.Len() == 0 {403res.AddErrors(arrayRequiresItemsMsg(prefix, opID))404return res405}406if schema.Items.Schema != nil {408schema = *schema.Items.Schema409if _, err := compileRegexp(schema.Pattern); err != nil {410res.AddErrors(invalidItemsPatternMsg(prefix, opID, schema.Pattern))411}412res.Merge(s.validateSchemaItems(schema, prefix, opID))414}415return res416}417func (s *SpecValidator) validatePathParamPresence(path string, fromPath, fromOperation []string) *Result {419// Each defined operation path parameters must correspond to a named element in the API's path pattern.420// (For example, you cannot have a path parameter named id for the following path /pets/{petId} but you must have a path parameter named petId.)421res := new(Result)422for _, l := range fromPath {423var matched bool424for _, r := range fromOperation {425if l == "{"+r+"}" {426matched = true427break428}429}430if !matched {431res.AddErrors(noParameterInPathMsg(l))432}433}434for _, p := range fromOperation {436var matched bool437for _, r := range fromPath {438if "{"+p+"}" == r {439matched = true440break441}442}443if !matched {444res.AddErrors(pathParamNotInPathMsg(path, p))445}446}447return res449}450func (s *SpecValidator) validateReferenced() *Result {452var res Result453res.MergeAsWarnings(s.validateReferencedParameters())454res.MergeAsWarnings(s.validateReferencedResponses())455res.MergeAsWarnings(s.validateReferencedDefinitions())456return &res457}458// nolint: dupl460func (s *SpecValidator) validateReferencedParameters() *Result {461// Each referenceable definition should have references.462params := s.spec.Spec().Parameters463if len(params) == 0 {464return nil465}466expected := make(map[string]struct{})468for k := range params {469expected["#/parameters/"+jsonpointer.Escape(k)] = struct{}{}470}471for _, k := range s.analyzer.AllParameterReferences() {472delete(expected, k)473}474if len(expected) == 0 {476return nil477}478result := new(Result)479for k := range expected {480result.AddWarnings(unusedParamMsg(k))481}482return result483}484// nolint: dupl486func (s *SpecValidator) validateReferencedResponses() *Result {487// Each referenceable definition should have references.488responses := s.spec.Spec().Responses489if len(responses) == 0 {490return nil491}492expected := make(map[string]struct{})494for k := range responses {495expected["#/responses/"+jsonpointer.Escape(k)] = struct{}{}496}497for _, k := range s.analyzer.AllResponseReferences() {498delete(expected, k)499}500if len(expected) == 0 {502return nil503}504result := new(Result)505for k := range expected {506result.AddWarnings(unusedResponseMsg(k))507}508return result509}510// nolint: dupl512func (s *SpecValidator) validateReferencedDefinitions() *Result {513// Each referenceable definition must have references.514defs := s.spec.Spec().Definitions515if len(defs) == 0 {516return nil517}518expected := make(map[string]struct{})520for k := range defs {521expected["#/definitions/"+jsonpointer.Escape(k)] = struct{}{}522}523for _, k := range s.analyzer.AllDefinitionReferences() {524delete(expected, k)525}526if len(expected) == 0 {528return nil529}530result := new(Result)532for k := range expected {533result.AddWarnings(unusedDefinitionMsg(k))534}535return result536}537func (s *SpecValidator) validateRequiredDefinitions() *Result {539// Each property listed in the required array must be defined in the properties of the model540res := new(Result)541DEFINITIONS:543for d, schema := range s.spec.Spec().Definitions {544if schema.Required != nil { // Safeguard545for _, pn := range schema.Required {546red := s.validateRequiredProperties(pn, d, &schema) //#nosec547res.Merge(red)548if !red.IsValid() && !s.Options.ContinueOnErrors {549break DEFINITIONS // there is an error, let's stop that bleeding550}551}552}553}554return res555}556func (s *SpecValidator) validateRequiredProperties(path, in string, v *spec.Schema) *Result {558// Takes care of recursive property definitions, which may be nested in additionalProperties schemas559res := new(Result)560propertyMatch := false561patternMatch := false562additionalPropertiesMatch := false563isReadOnly := false564// Regular properties566if _, ok := v.Properties[path]; ok {567propertyMatch = true568isReadOnly = v.Properties[path].ReadOnly569}570// NOTE: patternProperties are not supported in swagger. Even though, we continue validation here572// We check all defined patterns: if one regexp is invalid, croaks an error573for pp, pv := range v.PatternProperties {574re, err := compileRegexp(pp)575if err != nil {576res.AddErrors(invalidPatternMsg(pp, in))577} else if re.MatchString(path) {578patternMatch = true579if !propertyMatch {580isReadOnly = pv.ReadOnly581}582}583}584if !(propertyMatch || patternMatch) {586if v.AdditionalProperties != nil {587if v.AdditionalProperties.Allows && v.AdditionalProperties.Schema == nil {588additionalPropertiesMatch = true589} else if v.AdditionalProperties.Schema != nil {590// additionalProperties as schema are upported in swagger591// recursively validates additionalProperties schema592// TODO : anyOf, allOf, oneOf like in schemaPropsValidator593red := s.validateRequiredProperties(path, in, v.AdditionalProperties.Schema)594if red.IsValid() {595additionalPropertiesMatch = true596if !propertyMatch && !patternMatch {597isReadOnly = v.AdditionalProperties.Schema.ReadOnly598}599}600res.Merge(red)601}602}603}604if !(propertyMatch || patternMatch || additionalPropertiesMatch) {606res.AddErrors(requiredButNotDefinedMsg(path, in))607}608if isReadOnly {610res.AddWarnings(readOnlyAndRequiredMsg(in, path))611}612return res613}614func (s *SpecValidator) validateParameters() *Result {616// - for each method, path is unique, regardless of path parameters617// e.g. GET:/petstore/{id}, GET:/petstore/{pet}, GET:/petstore are618// considered duplicate paths619// - each parameter should have a unique `name` and `type` combination620// - each operation should have only 1 parameter of type body621// - there must be at most 1 parameter in body622// - parameters with pattern property must specify valid patterns623// - $ref in parameters must resolve624// - path param must be required625res := new(Result)626rexGarbledPathSegment := mustCompileRegexp(`.*[{}\s]+.*`)627for method, pi := range s.expandedAnalyzer().Operations() {628methodPaths := make(map[string]map[string]string)629for path, op := range pi {630pathToAdd := pathHelp.stripParametersInPath(path)631// Warn on garbled path afer param stripping633if rexGarbledPathSegment.MatchString(pathToAdd) {634res.AddWarnings(pathStrippedParamGarbledMsg(pathToAdd))635}636// Check uniqueness of stripped paths638if _, found := methodPaths[method][pathToAdd]; found {639// Sort names for stable, testable output641if strings.Compare(path, methodPaths[method][pathToAdd]) < 0 {642res.AddErrors(pathOverlapMsg(path, methodPaths[method][pathToAdd]))643} else {644res.AddErrors(pathOverlapMsg(methodPaths[method][pathToAdd], path))645}646} else {647if _, found := methodPaths[method]; !found {648methodPaths[method] = map[string]string{}649}650methodPaths[method][pathToAdd] = path // Original non stripped path651}653var bodyParams []string655var paramNames []string656var hasForm, hasBody bool657// Check parameters names uniqueness for operation659// TODO: should be done after param expansion660res.Merge(s.checkUniqueParams(path, method, op))661for _, pr := range paramHelp.safeExpandedParamsFor(path, method, op.ID, res, s) {663// Validate pattern regexp for parameters with a Pattern property664if _, err := compileRegexp(pr.Pattern); err != nil {665res.AddErrors(invalidPatternInParamMsg(op.ID, pr.Name, pr.Pattern))666}667// There must be at most one parameter in body: list them all669if pr.In == swaggerBody {670bodyParams = append(bodyParams, fmt.Sprintf("%q", pr.Name))671hasBody = true672}673if pr.In == "path" {675paramNames = append(paramNames, pr.Name)676// Path declared in path must have the required: true property677if !pr.Required {678res.AddErrors(pathParamRequiredMsg(op.ID, pr.Name))679}680}681if pr.In == "formData" {683hasForm = true684}685if !(pr.Type == numberType || pr.Type == integerType) &&687(pr.Maximum != nil || pr.Minimum != nil || pr.MultipleOf != nil) {688// A non-numeric parameter has validation keywords for numeric instances (number and integer)689res.AddWarnings(parameterValidationTypeMismatchMsg(pr.Name, path, pr.Type))690}691if !(pr.Type == stringType) &&693// A non-string parameter has validation keywords for strings694(pr.MaxLength != nil || pr.MinLength != nil || pr.Pattern != "") {695res.AddWarnings(parameterValidationTypeMismatchMsg(pr.Name, path, pr.Type))696}697if !(pr.Type == arrayType) &&699// A non-array parameter has validation keywords for arrays700(pr.MaxItems != nil || pr.MinItems != nil || pr.UniqueItems) {701res.AddWarnings(parameterValidationTypeMismatchMsg(pr.Name, path, pr.Type))702}703}704// In:formData and In:body are mutually exclusive706if hasBody && hasForm {707res.AddErrors(bothFormDataAndBodyMsg(op.ID))708}709// There must be at most one body param710// Accurately report situations when more than 1 body param is declared (possibly unnamed)711if len(bodyParams) > 1 {712sort.Strings(bodyParams)713res.AddErrors(multipleBodyParamMsg(op.ID, bodyParams))714}715// Check uniqueness of parameters in path717paramsInPath := pathHelp.extractPathParams(path)718for i, p := range paramsInPath {719for j, q := range paramsInPath {720if p == q && i > j {721res.AddErrors(pathParamNotUniqueMsg(path, p, q))722break723}724}725}726// Warns about possible malformed params in path728rexGarbledParam := mustCompileRegexp(`{.*[{}\s]+.*}`)729for _, p := range paramsInPath {730if rexGarbledParam.MatchString(p) {731res.AddWarnings(pathParamGarbledMsg(path, p))732}733}734// Match params from path vs params from params section736res.Merge(s.validatePathParamPresence(path, paramsInPath, paramNames))737}738}739return res740}741func (s *SpecValidator) validateReferencesValid() *Result {743// each reference must point to a valid object744res := new(Result)745for _, r := range s.analyzer.AllRefs() {746if !r.IsValidURI(s.spec.SpecFilePath()) { // Safeguard - spec should always yield a valid URI747res.AddErrors(invalidRefMsg(r.String()))748}749}750if !res.HasErrors() {751// NOTE: with default settings, loads.Document.Expanded()752// stops on first error. Anyhow, the expand option to continue753// on errors fails to report errors at all.754exp, err := s.spec.Expanded()755if err != nil {756res.AddErrors(unresolvedReferencesMsg(err))757}758s.expanded = exp759}760return res761}762func (s *SpecValidator) checkUniqueParams(path, method string, op *spec.Operation) *Result {764// Check for duplicate parameters declaration in param section.765// Each parameter should have a unique `name` and `type` combination766// NOTE: this could be factorized in analysis (when constructing the params map)767// However, there are some issues with such a factorization:768// - analysis does not seem to fully expand params769// - param keys may be altered by x-go-name770res := new(Result)771pnames := make(map[string]struct{})772if op.Parameters != nil { // Safeguard774for _, ppr := range op.Parameters {775var ok bool776pr, red := paramHelp.resolveParam(path, method, op.ID, &ppr, s) //#nosec777res.Merge(red)778if pr != nil && pr.Name != "" { // params with empty name does no participate the check780key := fmt.Sprintf("%s#%s", pr.In, pr.Name)781if _, ok = pnames[key]; ok {783res.AddErrors(duplicateParamNameMsg(pr.In, pr.Name, op.ID))784}785pnames[key] = struct{}{}786}787}788}789return res790}791// SetContinueOnErrors sets the ContinueOnErrors option for this validator.793func (s *SpecValidator) SetContinueOnErrors(c bool) {794s.Options.ContinueOnErrors = c795}796// expandedAnalyzer returns expanded.Analyzer when it is available.798// otherwise just analyzer.799func (s *SpecValidator) expandedAnalyzer() *analysis.Spec {800if s.expanded != nil && s.expanded.Analyzer != nil {801return s.expanded.Analyzer802}803return s.analyzer804}805