Escape or reject special characters in commands to execute #1767

ychiucco · 2024-09-16T11:00:44Z

closes #1646
closes #1647

Checklist before merging

I added an appropriate entry to CHANGELOG.md
I added logging to new code - if appropriate.
I merged main into the current branch.

This reverts commit 2146d8e.

…user-provided-strings

…ct-special-characters-in-user-provided-strings' into 1646-escape-or-reject-special-characters-in-user-provided-strings

…user-provided-strings

github-actions · 2024-09-16T11:04:59Z

Benchmark comparison

GET /api/alive/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`
vanilla	0.9	1.0	0.90
power	0.8	1.0	0.80
dataset	0.9	1.0	0.90
project	0.9	1.0	0.90
job	0.8	1.0	0.80

GET /api/v2/dataset/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
vanilla	8.8	9.1	0.97	0.6	0.6
power	405.0	403.9	1.00	389.0	389.0
dataset	159.7	160.2	1.00	145.6	145.6
project	46.0	44.9	1.02	50.9	50.9
job	29.4	29.4	1.00	35.3	35.3

GET /api/v2/job/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
vanilla	5.8	5.8	1.00	2.2	2.2
power	142.1	139.1	1.02	652.0	652.0
dataset	141.1	138.6	1.02	904.8	904.8
project	49.4	48.7	1.01	283.7	283.7
job	39.0	37.8	1.03	224.8	224.8

GET /api/v2/project/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
vanilla	6.3	6.3	1.00	0.1	0.1
power	6.3	6.1	1.03	0.1	0.1
dataset	6.2	7.2	0.86	0.1	0.1
project	8.1	8.4	0.96	2.3	2.3
job	6.2	6.1	1.02	0.1	0.1

GET /api/v2/workflow/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
vanilla	10.5	10.3	1.02	0.8	0.8
power	26.3	25.9	1.02	27.2	27.2
dataset	18.5	18.3	1.01	15.8	15.8
project	21.2	21.3	1.00	19.9	19.9
job	10.1	9.9	1.02	0.8	0.8

POST /api/v2/project/3/dataset/413/images/query/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
dataset	152.6	150.9	1.01	275.1	275.1

GET /auth/current-user/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
vanilla	4.3	4.4	0.98	0.2	0.2
power	4.0	4.2	0.95	0.2	0.2
dataset	4.1	4.1	1.00	0.2	0.2
project	4.0	4.2	0.95	0.2	0.2
job	4.1	4.2	0.98	0.2	0.2

POST /auth/token/login/

User	Time current (ms)	Time `main` (ms)	Ratio current/`main`	Size current (Kb)	Size `main` (Kb)
dataset	263.7	262.3	1.01	0.2	0.2

github-actions · 2024-09-16T12:43:06Z

Coverage report

Click to see where and how coverage changed

File	Statements	Missing	Coverage	Coverage (new stmts)
fractal_server
string_tools.py	$This PR adds 8 to the number of statements in fractal_server/string_tools.py, taking it from 9 to 17.$	$This PR doesn't change the number of statements missing coverage in fractal_server/string_tools.py, which is 0.$	$This PR doesn't change the coverage rate in fractal_server/string_tools.py, which is 100% (17/17).$	$In this PR, 8 new statements are added to fractal_server/string_tools.py, 8 of which are covered (100%).$
fractal_server/app/routes/api/v2
task_collection_custom.py	$This PR adds 2 to the number of statements in fractal_server/app/routes/api/v2/task_collection_custom.py, taking it from 64 to 66.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/routes/api/v2/task_collection_custom.py, which is 1.$	$This PR adds 0.05 percentage points to the coverage rate in fractal_server/app/routes/api/v2/task_collection_custom.py, taking it from 98.43% (63/64) to 98.48% (65/66).$	$In this PR, 2 new statements are added to fractal_server/app/routes/api/v2/task_collection_custom.py, 2 of which are covered (100%).$
fractal_server/app/runner
compress_folder.py	$This PR doesn't change the number of statements in fractal_server/app/runner/compress_folder.py, which is 57.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/runner/compress_folder.py, which is 2.$	$This PR doesn't change the coverage rate in fractal_server/app/runner/compress_folder.py, which is 96.49% (55/57).$	$In this PR, 1 new statements are added to fractal_server/app/runner/compress_folder.py, 1 of which are covered (100%).$
run_subprocess.py	$This PR adds 2 to the number of statements in fractal_server/app/runner/run_subprocess.py, taking it from 18 to 20.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/runner/run_subprocess.py, which is 0.$	$This PR doesn't change the coverage rate in fractal_server/app/runner/run_subprocess.py, which is 100% (20/20).$	$In this PR, 2 new statements are added to fractal_server/app/runner/run_subprocess.py, 2 of which are covered (100%).$
fractal_server/app/runner/executors/slurm/sudo
_subprocess_run_as_user.py	$This PR adds 2 to the number of statements in fractal_server/app/runner/executors/slurm/sudo/_subprocess_run_as_user.py, taking it from 44 to 46.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/runner/executors/slurm/sudo/_subprocess_run_as_user.py, which is 0.$	$This PR doesn't change the coverage rate in fractal_server/app/runner/executors/slurm/sudo/_subprocess_run_as_user.py, which is 100% (46/46).$	$In this PR, 2 new statements are added to fractal_server/app/runner/executors/slurm/sudo/_subprocess_run_as_user.py, 2 of which are covered (100%).$
executor.py	$This PR adds 3 to the number of statements in fractal_server/app/runner/executors/slurm/sudo/executor.py, taking it from 443 to 446.$	$This PR removes 5 from the number of statements missing coverage in fractal_server/app/runner/executors/slurm/sudo/executor.py, taking it from 41 to 36.$	$This PR adds 1.18 percentage points to the coverage rate in fractal_server/app/runner/executors/slurm/sudo/executor.py, taking it from 90.74% (402/443) to 91.92% (410/446).$	$In this PR, 3 new statements are added to fractal_server/app/runner/executors/slurm/sudo/executor.py, 3 of which are covered (100%).$
fractal_server/app/runner/v1
_common.py	$This PR adds 2 to the number of statements in fractal_server/app/runner/v1/_common.py, taking it from 166 to 168.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/runner/v1/_common.py, which is 8.$	$This PR adds 0.06 percentage points to the coverage rate in fractal_server/app/runner/v1/_common.py, taking it from 95.18% (158/166) to 95.23% (160/168).$	$In this PR, 2 new statements are added to fractal_server/app/runner/v1/_common.py, 2 of which are covered (100%).$
fractal_server/app/runner/v2
runner_functions_low_level.py	$This PR adds 5 to the number of statements in fractal_server/app/runner/v2/runner_functions_low_level.py, taking it from 55 to 60.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/runner/v2/runner_functions_low_level.py, which is 5.$	$This PR adds 0.76 percentage points to the coverage rate in fractal_server/app/runner/v2/runner_functions_low_level.py, taking it from 90.9% (50/55) to 91.66% (55/60).$	$In this PR, 5 new statements are added to fractal_server/app/runner/v2/runner_functions_low_level.py, 5 of which are covered (100%).$
fractal_server/app/schemas
_validators.py	$This PR doesn't change the number of statements in fractal_server/app/schemas/_validators.py, which is 60.$	$This PR adds 1 to the number of statements missing coverage in fractal_server/app/schemas/_validators.py, taking it from 0 to 1.$	$This PR removes 1.67 percentage points from the coverage rate in fractal_server/app/schemas/_validators.py, taking it from 100% (60/60) to 98.33% (59/60).$	$This PR does not seem to add statements to fractal_server/app/schemas/_validators.py.$
user.py	$This PR adds 10 to the number of statements in fractal_server/app/schemas/user.py, taking it from 59 to 69.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/schemas/user.py, which is 0.$	$This PR doesn't change the coverage rate in fractal_server/app/schemas/user.py, which is 100% (69/69).$	$In this PR, 13 new statements are added to fractal_server/app/schemas/user.py, 13 of which are covered (100%).$
fractal_server/app/schemas/v2
task.py	$This PR adds 5 to the number of statements in fractal_server/app/schemas/v2/task.py, taking it from 87 to 92.$	$This PR doesn't change the number of statements missing coverage in fractal_server/app/schemas/v2/task.py, which is 0.$	$This PR doesn't change the coverage rate in fractal_server/app/schemas/v2/task.py, which is 100% (92/92).$	$In this PR, 5 new statements are added to fractal_server/app/schemas/v2/task.py, 5 of which are covered (100%).$
fractal_server/ssh
_fabric.py	$This PR adds 2 to the number of statements in fractal_server/ssh/_fabric.py, taking it from 157 to 159.$	$This PR doesn't change the number of statements missing coverage in fractal_server/ssh/_fabric.py, which is 0.$	$This PR doesn't change the coverage rate in fractal_server/ssh/_fabric.py, which is 100% (159/159).$	$In this PR, 2 new statements are added to fractal_server/ssh/_fabric.py, 2 of which are covered (100%).$
Project Total

_{This report was generated by python-coverage-comment-action}

This reverts commit c5245ef.

fractal_server/string_tools.py

fractal_server/ssh/_fabric.py

tests/v2/00_ssh/test_setup.py

fractal_server/app/runner/run_subprocess.py

fractal_server/app/runner/v2/runner_functions_low_level.py

fractal_server/app/schemas/user.py

tests/no_version/test_unit_schemas_no_version.py

fractal_server/string_tools.py

…user-provided-strings

ychiucco and others added 11 commits August 19, 2024 11:55

use string_tools in validator

2146d8e

Revert "use string_tools in validator"

b25e881

This reverts commit 2146d8e.

update mkdocstrings-python

58b9076

git checkout main -- poetry.lock pyproject.toml

08777aa

Merge branch 'main' into 1646-escape-or-reject-special-characters-in-…

6e6c044

…user-provided-strings

Merge branch 'main' into 1646-escape-or-reject-special-characters-in-…

234284f

…user-provided-strings

Merge branch 'main' into 1646-escape-or-reject-special-characters-in-…

db16179

…user-provided-strings

Merge remote-tracking branch 'refs/remotes/origin/1646-escape-or-reje…

7ef31e1

…ct-special-characters-in-user-provided-strings' into 1646-escape-or-reject-special-characters-in-user-provided-strings

Merge branch 'main' into 1646-escape-or-reject-special-characters-in-…

768d3ea

…user-provided-strings

Merge branch 'main' into 1646-escape-or-reject-special-characters-in-…

4a5f673

…user-provided-strings

validate commands

d7822b8

allow asterisk

c5245ef

validate fabric cmd

2eb593d

ychiucco changed the title ~~1646 escape or reject special characters in user provided strings~~ Escape or reject special characters in commands to execute Sep 16, 2024

ychiucco added 10 commits September 16, 2024 15:04

validate User.cache_dir

bd856ca

validate TaskCreateV2 commands

33d432c

Revert "allow asterisk"

2f065a2

This reverts commit c5245ef.

introduce allow_char

747225b

allow char for the right command

d4bbc64

return validated attribute

00e0467

return stripped string

0e6cf25

fix broken test

a553193

fix broken test again

eb1134b

coverage

ae49e90

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/string_tools.py Outdated Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/string_tools.py Outdated Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/string_tools.py Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/string_tools.py Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/ssh/_fabric.py Outdated Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

tests/v2/00_ssh/test_setup.py Outdated Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/app/runner/run_subprocess.py Outdated Show resolved Hide resolved

tcompa mentioned this pull request Sep 17, 2024

Check that current task commands are valid in live instances #1770

Closed

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/app/runner/v2/runner_functions_low_level.py Outdated Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/app/schemas/user.py Show resolved Hide resolved

tcompa approved these changes Sep 17, 2024

View reviewed changes

ychiucco added 7 commits September 17, 2024 09:02

forbidden is disjoint

b08b7e0

allow_char is optional

9ffdc18

not raw string

713cb3b

catch and reraise

d86fc13

unit test validate_cmd

09221f4

Unit test cache_dir validators

c0da2de

test TaskExecutionError

a2786de

tcompa reviewed Sep 17, 2024

View reviewed changes

tests/no_version/test_unit_schemas_no_version.py Outdated Show resolved Hide resolved

tcompa reviewed Sep 17, 2024

View reviewed changes

fractal_server/string_tools.py Outdated Show resolved Hide resolved

ychiucco and others added 6 commits September 17, 2024 11:24

readability

5ac3837

Merge branch 'main' into 1646-escape-or-reject-special-characters-in-…

8cb2201

…user-provided-strings

changelog [skip ci]

cbe1b08

Update CHANGELOG.md [skip ci]

414425f

Update test_unit_schemas_no_version.py [readability]

a423240

precommit

329121c

tcompa merged commit 494d63e into main Sep 17, 2024
20 checks passed

tcompa deleted the 1646-escape-or-reject-special-characters-in-user-provided-strings branch September 17, 2024 11:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Escape or reject special characters in commands to execute #1767

Escape or reject special characters in commands to execute #1767

ychiucco commented Sep 16, 2024 •

edited

Loading

github-actions bot commented Sep 16, 2024 •

edited

Loading

github-actions bot commented Sep 16, 2024 •

edited

Loading

Escape or reject special characters in commands to execute #1767

Escape or reject special characters in commands to execute #1767

Conversation

ychiucco commented Sep 16, 2024 • edited Loading

Checklist before merging

github-actions bot commented Sep 16, 2024 • edited Loading

Benchmark comparison

GET /api/alive/

GET /api/v2/dataset/

GET /api/v2/job/

GET /api/v2/project/

GET /api/v2/workflow/

POST /api/v2/project/3/dataset/413/images/query/

GET /auth/current-user/

POST /auth/token/login/

github-actions bot commented Sep 16, 2024 • edited Loading

Coverage report

ychiucco commented Sep 16, 2024 •

edited

Loading

github-actions bot commented Sep 16, 2024 •

edited

Loading

github-actions bot commented Sep 16, 2024 •

edited

Loading