Add more error checking (#26)

Mostly checking previously ignored `error` values and a `nil` returned
by `net.ParseIP`.  Only tricky bit is not parsing IP address string
parameters unless they are non-zero length in certain cases.  This is
necessary since an empty string is used in certain situations to mean
"do a wildcard bind" rather than "bind to this address".

Author: nwidger

api/server.go

@@ -81,10 +81,14 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 		var b []byte
 		if strings.Contains(r.Header.Get("Accept"), "application/json") {
 			w.Header().Set("Content-Type", "applications/json")
-			b, _ = json.Marshal(m)
+			b, err = json.Marshal(m)
 		} else {
 			w.Header().Set("Content-Type", "text/yaml")
-			b, _ = yaml.Marshal(m)
+			b, err = yaml.Marshal(m)
+		}
+		if err != nil {
+			http.Error(w, "error marshalling manifest: "+err.Error(), http.StatusInternalServerError)
+			return
 		}
 		w.WriteHeader(http.StatusOK)
 		w.Write(b)
@@ -100,10 +104,14 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 		var b []byte
 		if strings.Contains(r.Header.Get("Accept"), "application/json") {
 			w.Header().Set("Content-Type", "applications/json")
-			b, _ = json.Marshal(store.GetAll())
+			b, err = json.Marshal(store.GetAll())
 		} else {
 			w.Header().Set("Content-Type", "text/yaml")
-			b, _ = yaml.Marshal(store.GetAll())
+			b, err = yaml.Marshal(store.GetAll())
+		}
+		if err != nil {
+			http.Error(w, "error marshalling manifests: "+err.Error(), http.StatusInternalServerError)
+			return
 		}
 		w.WriteHeader(http.StatusOK)
 		w.Write(b)
@@ -121,17 +129,21 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 		if r.Header.Get("Content-Type") == "application/json" {
 			m, err = manifest.ManifestFromJson(buf, rootPath)
 			if err != nil {
-				http.Error(w, err.Error(), http.StatusBadRequest)
+				http.Error(w, "error loading manifest from json: "+err.Error(), http.StatusBadRequest)
 				return
 			}
 		} else {
 			m, err = manifest.ManifestFromYaml(buf, rootPath)
 			if err != nil {
-				http.Error(w, err.Error(), http.StatusBadRequest)
+				http.Error(w, "error loading manifest from yaml: "+err.Error(), http.StatusBadRequest)
 				return
 			}
 		}
-		_ = store.PutManifest(m)
+		err = store.PutManifest(m)
+		if err != nil {
+			http.Error(w, "error storing manifest: "+err.Error(), http.StatusBadRequest)
+			return
+		}
 		w.WriteHeader(http.StatusCreated)
 	}).Methods("PUT")
 
@@ -150,16 +162,20 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 
 	// GET|POST /api/self/suspend-boot
 	r.HandleFunc("/api/self/suspend-boot", func(w http.ResponseWriter, r *http.Request) {
-		var ip net.IP
+		var ipStr string
 		if queryFirst(r, "spoof") != "" {
 			if authorization != r.Header.Get("Authorization") {
 				http.Error(w, "Forbidden", http.StatusForbidden)
 				return
 			}
-			ip = net.ParseIP(queryFirst(r, "spoof"))
+			ipStr = queryFirst(r, "spoof")
 		} else {
-			host, _, _ := net.SplitHostPort(r.RemoteAddr)
-			ip = net.ParseIP(host)
+			ipStr, _, _ = net.SplitHostPort(r.RemoteAddr)
+		}
+		ip := net.ParseIP(ipStr)
+		if ip == nil {
+			http.Error(w, "could not determine host's ip: invalid ip: "+ipStr, http.StatusInternalServerError)
+			return
 		}
 
 		m := server.store.FindByIP(ip)
@@ -174,16 +190,20 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 
 	// GET|POST /api/self/unsuspend-boot
 	r.HandleFunc("/api/self/unsuspend-boot", func(w http.ResponseWriter, r *http.Request) {
-		var ip net.IP
+		var ipStr string
 		if queryFirst(r, "spoof") != "" {
 			if authorization != r.Header.Get("Authorization") {
 				http.Error(w, "Forbidden", http.StatusForbidden)
 				return
 			}
-			ip = net.ParseIP(queryFirst(r, "spoof"))
+			ipStr = queryFirst(r, "spoof")
 		} else {
-			host, _, _ := net.SplitHostPort(r.RemoteAddr)
-			ip = net.ParseIP(host)
+			ipStr, _, _ = net.SplitHostPort(r.RemoteAddr)
+		}
+		ip := net.ParseIP(ipStr)
+		if ip == nil {
+			http.Error(w, "could not determine host's ip: invalid ip: "+ipStr, http.StatusInternalServerError)
+			return
 		}
 
 		m := server.store.FindByIP(ip)
@@ -198,16 +218,20 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 
 	// GET /api/self/manifest
 	r.HandleFunc("/api/self/manifest", func(w http.ResponseWriter, r *http.Request) {
-		var ip net.IP
+		var ipStr string
 		if queryFirst(r, "spoof") != "" {
 			if authorization != r.Header.Get("Authorization") {
 				http.Error(w, "Forbidden", http.StatusForbidden)
 				return
 			}
-			ip = net.ParseIP(queryFirst(r, "spoof"))
+			ipStr = queryFirst(r, "spoof")
 		} else {
-			host, _, _ := net.SplitHostPort(r.RemoteAddr)
-			ip = net.ParseIP(host)
+			ipStr, _, _ = net.SplitHostPort(r.RemoteAddr)
+		}
+		ip := net.ParseIP(ipStr)
+		if ip == nil {
+			http.Error(w, "could not determine host's ip: invalid ip: "+ipStr, http.StatusInternalServerError)
+			return
 		}
 
 		m := server.store.FindByIP(ip)
@@ -218,10 +242,14 @@ func NewServer(store *store.Store, authorization, rootPath string) (server *Serv
 		var b []byte
 		if strings.Contains(r.Header.Get("Accept"), "application/json") {
 			w.Header().Set("Content-Type", "applications/json")
-			b, _ = json.Marshal(store.GetAll())
+			b, err = json.Marshal(store.GetAll())
 		} else {
 			w.Header().Set("Content-Type", "text/yaml")
-			b, _ = yaml.Marshal(store.GetAll())
+			b, err = yaml.Marshal(store.GetAll())
+		}
+		if err != nil {
+			http.Error(w, "error marshalling manifest: "+err.Error(), http.StatusInternalServerError)
+			return
 		}
 		w.WriteHeader(http.StatusOK)
 		w.Write(b)

cmd/arpinject.go

@@ -28,6 +28,9 @@ var arpInjectCmd = &cobra.Command{
 	Run: func(cmd *cobra.Command, args []string) {
 		config.InitZeroLog()
 		parsedIp := net.ParseIP(ip)
+		if parsedIp == nil {
+			log.Fatal().Msgf("invalid ip: %s", ip)
+		}
 		parsedMac, err := net.ParseMAC(mac)
 		if err != nil {
 			log.Error().

cmd/server.go

@@ -77,7 +77,10 @@ var serverCmd = &cobra.Command{
 		})
 		if viper.GetString("manifestPath") != "" {
 			log.Info().Str("path", viper.GetString("manifestPath")).Msg("Loading manifests")
-			_ = store.LoadFromDirectory(viper.GetString("manifestPath"), viper.GetString("rootPath"))
+			err := store.LoadFromDirectory(viper.GetString("manifestPath"), viper.GetString("rootPath"))
+			if err != nil {
+				log.Fatal().Err(err).Msg("Failed to load manifests")
+			}
 		}
 		store.GlobalHints.HttpPort = viper.GetInt("http.port")
 		store.GlobalHints.ApiPort = viper.GetInt("api.port")
@@ -89,13 +92,23 @@ var serverCmd = &cobra.Command{
 		}
 		go dhcpServer.Serve()
 
+		var addressIP net.IP
+		addressIPStr := viper.GetString("address")
+		// only parse addressIPStr if non-zero length
+		if addressIPStr != "" {
+			addressIP = net.ParseIP(addressIPStr)
+			if addressIP == nil {
+				log.Fatal().Msgf("Invalid address: %s", addressIPStr)
+			}
+		}
+
 		// TFTP
 		tftpServer, err := tftpd.NewServer(store, viper.GetString("rootPath"))
 		if err != nil {
 			log.Fatal().Err(err).Msg("Failed to create TFTP server")
 		}
 		connTftp, err := net.ListenUDP("udp", &net.UDPAddr{
-			IP:   net.ParseIP(viper.GetString("address")),
+			IP:   addressIP,
 			Port: 69, // TFTP
 		})
 		if err != nil {
@@ -109,7 +122,7 @@ var serverCmd = &cobra.Command{
 			log.Fatal().Err(err).Msg("Failed to create HTTP server")
 		}
 		connHttp, err := net.ListenTCP("tcp", &net.TCPAddr{
-			IP:   net.ParseIP(viper.GetString("address")),
+			IP:   addressIP,
 			Port: viper.GetInt("http.port"), // HTTP
 		})
 		if err != nil {
@@ -124,7 +137,7 @@ var serverCmd = &cobra.Command{
 			log.Fatal().Err(err).Msg("Failed to create HTTP API server")
 		}
 		connApi, err := net.ListenTCP("tcp", &net.TCPAddr{
-			IP:   net.ParseIP(viper.GetString("address")),
+			IP:   addressIP,
 			Port: viper.GetInt("api.port"), // HTTP
 		})
 		if err != nil {

dhcpd/server.go

@@ -3,6 +3,7 @@
 package dhcpd
 
 import (
+	"fmt"
 	"net"
 
 	"github.com/DSpeichert/netbootd/store"
@@ -22,9 +23,17 @@ type Server struct {
 }
 
 func NewServer(addr, ifname string, store *store.Store) (server *Server, err error) {
+	var ip net.IP
+	// only parse addr if non-zero length
+	if addr != "" {
+		ip = net.ParseIP(addr)
+		if ip == nil {
+			return nil, fmt.Errorf("invalid ip: %s", addr)
+		}
+	}
 	server = &Server{
 		address: &net.UDPAddr{
-			IP:   net.ParseIP(addr),
+			IP:   ip,
 			Port: 67,
 			Zone: ifname,
 		},

httpd/handler.go

@@ -73,6 +73,10 @@ func (h Handler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
 	spoofIPs, ok := r.URL.Query()["spoof"]
 	if ok && len(spoofIPs[0]) > 0 {
 		manifestRaddr = net.ParseIP(spoofIPs[0])
+		if manifestRaddr == nil {
+			http.Error(w, "unable to determine host address: invalid ip: "+spoofIPs[0], http.StatusBadRequest)
+			return
+		}
 	}
 
 	manifest := h.server.store.FindByIP(manifestRaddr)