fix: sanitize helm setFiles property (#5648)

gsquared94 · web-flow · commit 608ba98a712a · 2021-05-04T22:20:08.000-04:00
diff --git a/pkg/skaffold/deploy/helm/args.go b/pkg/skaffold/deploy/helm/args.go
@@ -18,6 +18,7 @@ package helm
 
 import (
 	"fmt"
+	"runtime"
 	"strconv"
 
 	"github.com/blang/semver"
@@ -55,6 +56,8 @@ func constructOverrideArgs(r *latest_v1.HelmRelease, builds []graph.Artifact, ar
 		if err != nil {
 			return nil, fmt.Errorf("unable to expand %q: %w", r.SetFiles[k], err)
 		}
+		exp = sanitizeFilePath(exp, runtime.GOOS == "windows")
+
 		record(exp)
 		args = append(args, "--set-file", fmt.Sprintf("%s=%s", k, exp))
 	}
@@ -201,3 +204,53 @@ func (h *Deployer) installArgs(r latest_v1.HelmRelease, builds []graph.Artifact,
 
 	return args, nil
 }
+
+// sanitizeFilePath is used to sanitize filepaths that are provided to the `setFiles` flag
+// helm `setFiles` doesn't work with the unescaped filepath separator (\) for Windows or if there are unescaped tabs and spaces in the directory names.
+// So we escape all odd count occurrences of `\` for Windows, and wrap the entire string in quotes if it has spaces.
+// This is very specific to the way helm handles its flags.
+// See https://github.com/helm/helm/blob/d55c53df4e394fb62b0514a09c57bce235dd7877/pkg/cli/values/options.
+// Otherwise the windows `syscall` package implements its own sanitizing for command args that's used by `exec.Cmd`.
+// See https://github.com/golang/go/blob/6951da56b0ae2cd4250fc1b0350d090aed633ac1/src/syscall/exec_windows.go#L27
+func sanitizeFilePath(s string, isWindowsOS bool) string {
+	if len(s) == 0 {
+		return `""`
+	}
+	needsQuotes := false
+	for i := 0; i < len(s); i++ {
+		if s[i] == ' ' || s[i] == '\t' {
+			needsQuotes = true
+			break
+		}
+	}
+
+	if !isWindowsOS {
+		if needsQuotes {
+			return fmt.Sprintf(`"%s"`, s)
+		}
+		return s
+	}
+
+	var b []byte
+	slashes := 0
+	for i := 0; i < len(s); i++ {
+		switch s[i] {
+		case '\\':
+			slashes++
+		default:
+			// ensure a single slash is escaped
+			if slashes == 1 {
+				b = append(b, '\\')
+			}
+			slashes = 0
+		}
+		b = append(b, s[i])
+	}
+	if slashes == 1 {
+		b = append(b, '\\')
+	}
+	if needsQuotes {
+		return fmt.Sprintf(`"%s"`, string(b))
+	}
+	return string(b)
+}
diff --git a/pkg/skaffold/deploy/helm/args_test.go b/pkg/skaffold/deploy/helm/args_test.go
@@ -0,0 +1,124 @@
+/*
+Copyright 2021 The Skaffold Authors
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package helm
+
+import (
+	"testing"
+
+	"github.com/GoogleContainerTools/skaffold/testutil"
+)
+
+func TestSanitizeFilePath(t *testing.T) {
+	tests := []struct {
+		description string
+		isWindowsOS bool
+		input       string
+		output      string
+	}{
+		{
+			description: "unescaped relative path on Windows",
+			isWindowsOS: true,
+			input:       `.\foo\not.escaped.relative.yaml`,
+			output:      `.\\foo\\not.escaped.relative.yaml`,
+		},
+		{
+			description: "unescaped absolute path on Windows",
+			isWindowsOS: true,
+			input:       `C:\Users\foo\not.escaped.abs.yaml`,
+			output:      `C:\\Users\\foo\\not.escaped.abs.yaml`,
+		},
+		{
+			description: "escaped relative path on Windows",
+			isWindowsOS: true,
+			input:       `.\\foo\\escaped.relative.yaml`,
+			output:      `.\\foo\\escaped.relative.yaml`,
+		},
+		{
+			description: "escaped absolute path on Windows",
+			isWindowsOS: true,
+			input:       `C:\\Users\\foo\\escaped.abs.yaml`,
+			output:      `C:\\Users\\foo\\escaped.abs.yaml`,
+		},
+		{
+			description: "escaped relative path with spaces on Windows",
+			isWindowsOS: true,
+			input:       `.\\foo bar\\escaped.spaces.relative.yaml`,
+			output:      `".\\foo bar\\escaped.spaces.relative.yaml"`,
+		},
+		{
+			description: "escaped absolute path with spaces on Windows",
+			isWindowsOS: true,
+			input:       `C:\\Users\\foo bar\\escaped.spaces.abs.yaml`,
+			output:      `"C:\\Users\\foo bar\\escaped.spaces.abs.yaml"`,
+		},
+		{
+			description: "unescaped relative path with spaces on Windows",
+			isWindowsOS: true,
+			input:       `.\foo bar\not.escaped.spaces.relative.yaml`,
+			output:      `".\\foo bar\\not.escaped.spaces.relative.yaml"`,
+		},
+		{
+			description: "unescaped absolute path with spaces on Windows",
+			isWindowsOS: true,
+			input:       `C:\Users\foo bar\not.escaped.spaces.abs.yaml`,
+			output:      `"C:\\Users\\foo bar\\not.escaped.spaces.abs.yaml"`,
+		},
+		{
+			description: "relative path on non-Windows",
+			input:       `./foo/spaces.relative.yaml`,
+			output:      `./foo/spaces.relative.yaml`,
+		},
+		{
+			description: "absolute path on non-Windows",
+			input:       `z/foo/spaces.abs.yaml`,
+			output:      `z/foo/spaces.abs.yaml`,
+		},
+		{
+			description: "relative path with spaces on non-Windows",
+			input:       `./foo bar/spaces.relative.yaml`,
+			output:      `"./foo bar/spaces.relative.yaml"`,
+		},
+		{
+			description: "absolute path with spaces on non-Windows",
+			input:       `z/foo bar/spaces.abs.yaml`,
+			output:      `"z/foo bar/spaces.abs.yaml"`,
+		},
+		{
+			description: "unescaped relative dir path on Windows",
+			isWindowsOS: true,
+			input:       `.\foo\not_escaped_relative\`,
+			output:      `.\\foo\\not_escaped_relative\\`,
+		},
+		{
+			description: "escaped relative dir path on Windows",
+			isWindowsOS: true,
+			input:       `.\\foo\\escaped_relative\\`,
+			output:      `.\\foo\\escaped_relative\\`,
+		},
+		{
+			description: "unescaped relative dir path on non-Windows",
+			input:       `./foo/not_escaped_relative/`,
+			output:      `./foo/not_escaped_relative/`,
+		},
+	}
+	for _, test := range tests {
+		testutil.Run(t, test.description, func(t *testutil.T) {
+			output := sanitizeFilePath(test.input, test.isWindowsOS)
+			t.CheckDeepEqual(test.output, output)
+		})
+	}
+}
diff --git a/pkg/skaffold/deploy/helm/helm_test.go b/pkg/skaffold/deploy/helm/helm_test.go
@@ -21,6 +21,7 @@ import (
 	"fmt"
 	"io/ioutil"
 	"path/filepath"
+	"strings"
 	"testing"
 
 	"github.com/mitchellh/go-homedir"
@@ -876,7 +877,7 @@ func TestHelmDeploy(t *testing.T) {
 				CmdRunWithOutput("helm version --client", version31).
 				AndRun("helm --kube-context kubecontext get all skaffold-helm --kubeconfig kubeconfig").
 				AndRun("helm --kube-context kubecontext dep build examples/test --kubeconfig kubeconfig").
-				AndRun(fmt.Sprintf("helm --kube-context kubecontext upgrade skaffold-helm examples/test -f skaffold-overrides.yaml --set-string image=docker.io:5000/skaffold-helm:3605e7bc17cf46e53f4d81c4cbc24e5b4c495184 --set-file expanded=%s --set-file value=/some/file.yaml --kubeconfig kubeconfig", filepath.Join(home, "file.yaml"))).
+				AndRun(fmt.Sprintf("helm --kube-context kubecontext upgrade skaffold-helm examples/test -f skaffold-overrides.yaml --set-string image=docker.io:5000/skaffold-helm:3605e7bc17cf46e53f4d81c4cbc24e5b4c495184 --set-file expanded=%s --set-file value=/some/file.yaml --kubeconfig kubeconfig", strings.ReplaceAll(filepath.Join(home, "file.yaml"), "\\", "\\\\"))).
 				AndRun("helm --kube-context kubecontext get all skaffold-helm --template {{.Release.Manifest}} --kubeconfig kubeconfig"),
 			helm:   testDeployConfigSetFiles,
 			builds: testBuilds,
