jfraeysd/fetch_ml
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
fetch_ml/native/queue_index/queue_index.cpp
Jeremie Fraeys 7efe8bbfbf
native: security hardening, research trustworthiness, and CVE mitigations 
Security Fixes:
- CVE-2024-45339: Add O_EXCL flag to temp file creation in storage_write_entries()
  Prevents symlink attacks on predictable .tmp file paths
- CVE-2025-47290: Use openat_nofollow() in storage_open()
  Closes TOCTOU race condition via path_sanitizer infrastructure
- CVE-2025-0838: Add MAX_BATCH_SIZE=10000 to add_tasks()
  Prevents integer overflow in batch operations

Research Trustworthiness (dataset_hash):
- Deterministic file ordering: std::sort after collect_files()
- Recursive directory traversal: depth-limited with cycle detection
- Documented exclusions: hidden files and special files noted in API

Bug Fixes:
- R1: storage_init path validation for non-existent directories
- R2: safe_strncpy return value check before strcat
- R3: parallel_hash 256-file cap replaced with std::vector
- R4: wire qi_compact_index/qi_rebuild_index stubs
- R5: CompletionLatch race condition fix (hold mutex during decrement)
- R6: ARMv8 SHA256 transform fix (save abcd_pre before vsha256hq_u32)
- R7: fuzz_index_storage header format fix
- R8: enforce null termination in add_tasks/update_tasks
- R9: use 64 bytes (not 65) in combined hash to exclude null terminator
- R10: status field persistence in save()

New Tests:
- test_recursive_dataset.cpp: Verify deterministic recursive hashing
- test_storage_symlink_resistance.cpp: Verify CVE-2024-45339 fix
- test_queue_index_batch_limit.cpp: Verify CVE-2025-0838 fix
- test_sha256_arm_kat.cpp: ARMv8 known-answer tests
- test_storage_init_new_dir.cpp: F1 verification
- test_parallel_hash_large_dir.cpp: F3 verification
- test_queue_index_compact.cpp: F4 verification

All 8 native tests passing. Library ready for research lab deployment.
2026-02-21 13:33:45 -05:00

145 lines
4.4 KiB
C++
Raw Blame History

#include "queue_index.h"
#include "index/priority_queue.h"
#include <cstring>
// C API Implementation - delegates to PriorityQueueIndex
qi_index_t* qi_open(const char* queue_dir) {
auto* idx = new PriorityQueueIndex(queue_dir);
if (!idx->open()) {
delete idx;
return nullptr;
}
return reinterpret_cast<qi_index_t*>(idx);
}
void qi_close(qi_index_t* idx) {
if (idx) {
delete reinterpret_cast<PriorityQueueIndex*>(idx);
}
}
int qi_add_tasks(qi_index_t* idx, const qi_task_t* tasks, uint32_t count) {
if (!idx || !tasks || count == 0) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->add_tasks(tasks, count);
}
int qi_get_next_batch(qi_index_t* idx, qi_task_t* out_tasks, uint32_t max_count, uint32_t* out_count) {
if (!idx || !out_tasks || max_count == 0) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->get_next_batch(out_tasks, max_count, out_count);
}
int qi_save(qi_index_t* idx) {
if (!idx) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->save();
}
const char* qi_last_error(qi_index_t* idx) {
if (!idx) return nullptr;
return reinterpret_cast<PriorityQueueIndex*>(idx)->last_error();
}
// Stub implementations for functions referenced by Go bindings
// These would delegate to PriorityQueueIndex methods when fully implemented
int qi_update_tasks(qi_index_t* idx, const qi_task_t* tasks, uint32_t count) {
if (!idx || !tasks || count == 0) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->update_tasks(tasks, count);
}
int qi_remove_tasks(qi_index_t* idx, const char** task_ids, uint32_t count) {
if (!idx || !task_ids || count == 0) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->remove_tasks(task_ids, count);
}
int qi_peek_next(qi_index_t* idx, qi_task_t* out_task) {
if (!idx || !out_task) return -1;
uint32_t count = 0;
return qi_get_next_batch(idx, out_task, 1, &count);
}
int qi_get_task_by_id(qi_index_t* idx, const char* task_id, qi_task_t* out_task) {
if (!idx || !task_id || !out_task) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->get_task_by_id(task_id, out_task);
}
int qi_get_all_tasks(qi_index_t* idx, qi_task_t** out_tasks, size_t* count) {
if (!idx || !out_tasks || !count) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->get_all_tasks(out_tasks, count);
}
int qi_get_tasks_by_status(qi_index_t* idx, const char* status, qi_task_t** out_tasks, size_t* count) {
(void)idx; (void)status; (void)out_tasks; (void)count;
return -1; // Not yet implemented
}
// Task lifecycle operations
int qi_retry_task(qi_index_t* idx, const char* task_id, int64_t next_retry_at, uint32_t max_retries) {
(void)idx; (void)task_id; (void)next_retry_at; (void)max_retries;
return -1; // Not yet implemented
}
int qi_move_to_dlq(qi_index_t* idx, const char* task_id, const char* reason) {
(void)idx; (void)task_id; (void)reason;
return -1; // Not yet implemented
}
// Lease operations
int qi_renew_lease(qi_index_t* idx, const char* task_id, const char* worker_id, int64_t lease_expiry) {
(void)idx; (void)task_id; (void)worker_id; (void)lease_expiry;
return -1; // Not yet implemented
}
int qi_release_lease(qi_index_t* idx, const char* task_id, const char* worker_id) {
(void)idx; (void)task_id; (void)worker_id;
return -1; // Not yet implemented
}
// Index maintenance
int qi_rebuild_index(qi_index_t* idx) {
if (!idx) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->rebuild();
}
int qi_compact_index(qi_index_t* idx) {
if (!idx) return -1;
return reinterpret_cast<PriorityQueueIndex*>(idx)->compact_index();
}
// Memory management
void qi_free_task_array(qi_task_t* tasks) {
if (tasks) {
delete[] tasks;
}
}
void qi_free_string_array(char** strings, size_t count) {
if (strings) {
for (size_t i = 0; i < count; i++) {
delete[] strings[i];
}
delete[] strings;
}
}
void qi_clear_error(qi_index_t* idx) {
if (idx) {
reinterpret_cast<PriorityQueueIndex*>(idx)->clear_error();
}
}
// Utility
uint64_t qi_get_index_version(qi_index_t* idx) {
(void)idx;
return 0; // Not yet implemented
}
int64_t qi_get_index_mtime(qi_index_t* idx) {
(void)idx;
return 0; // Not yet implemented
}
size_t qi_get_task_count(qi_index_t* idx, const char* status) {
(void)idx; (void)status;
return 0; // Not yet implemented
}
Reference in a new issue View git blame Copy permalink