Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reduce code paths that could encode post data as the string undefined #300

Merged
merged 8 commits into from
Oct 6, 2021
Merged

Reduce code paths that could encode post data as the string undefined #300

merged 8 commits into from
Oct 6, 2021

Conversation

pauldambra
Copy link
Member

@pauldambra pauldambra commented Sep 30, 2021
edited
Loading

Property based testing is a mechanism of sending many different combinations of arguments into some software and asserting on the general result of that.

Often when property based testing libraries find possible failures. They search for simpler examples of the failure to make them easy to understand. E.g. A library will try to identify not that failures are caused by "very long strings" but instead that they're caused by "strings longer than 6400 characters"

Imagine someone has implemented an algorithm which should always generate a number below 100

const fancyAlgorithm = (n) => n > 7 ? 99 : 101

It is easy to see in this simple example that the implementation doesn't meet the spec. But it isn't always easy to see that in real code.

using fast check we could test that the code has the property "regardless of the number given as input it generates a number less than 100"

import * as fc from 'fast-check'

fc.assert(
  fc.property(
    //generate number for input
    fc.integer(),
    // express the property
    (n) => fancyAlgorithm(n) < 100
  )
)

In this output below we can see FastCheck tried a negative number, identified a failure, and then tried zero to see if that still failed. When it did it reported zero as a counter example to the rule it had been given

image

In PostHog/posthog#4816 we see many instances of the API receiving an event or screen recording payload where the body is the literal value "undefined"

It is not easy to identify what is causing this

This PR uses property based testing to identify routes through the encodePostData method which could cause that output

Fast check allows the test below

describe('using property based testing to identify edge cases in encodePostData', () => {
    it('can use many combinations of typed arrays and options to detect if the method generates undefined', () => {
        assert(
            property(
                // the fast check framework runs the same test many times
                // these methods generate different values to use as input
                uint8Array(),
                boolean(),
                boolean(),
                // the test framework tries to be clever about generating values
                // or combinations that are more likely to cause a fail
                // e.g. very long strings or unusual string encodings for string inputs
                (data, blob, sendBeacon) => {
                // this method receives the generated parameters
                // uses them
                // and then returns true or false
                // false means that combination of parameters don't work as expected
                    const encodedData = encodePostData(data, { blob, sendBeacon, method: 'POST' })
                    // returns blob or string - ignore when it is not a string response
                    return (encodedData.indexOf && encodedData.indexOf('undefined') < 0) || true
                }
            ),
            { numRuns: 1000 } // default is 100 combinations
        )
    })
})

that property based test identifed a combination that generated the body data=undefined

    // this was identified as a combination that generated `data=undefined`, and the code could be fixed to stop that
    it('does not return undefined when blob and send beacon are false and the input is an empty uint8array', () => {
        const encodedData = encodePostData(new Uint8Array([]), { method: 'POST' })
        expect(typeof encodedData).toBe('string')
        expect(encodedData).toBe('data=')
    })

if both options.blob and options.sendBeacon were false ) and the input was a TypedArray then the undesirable input was generated.

Within the code was the check Array.isArray which fails for a TypedArray (thanks, JavaScript) and as a result the code would treat the input as an object and try to read a data property.

That can now be made impossible

NB that doesn't mean that the running application does travel that code path but that the code path was present and could have been travelled

@pauldambra pauldambra requested a review from macobo September 30, 2021 13:18
@pauldambra pauldambra added the bump patch Bump patch version when this PR gets merged label Sep 30, 2021
@pauldambra pauldambra requested review from mariusandra and removed request for macobo September 30, 2021 13:23
@pauldambra pauldambra marked this pull request as draft September 30, 2021 17:27
@pauldambra
Copy link
Member Author

Have shifted to "draft" status for clarity. Am convinced this is (the|a) source of the issue but not convinced I fully understand the consequence of the change yet

@pauldambra pauldambra changed the title Prefer options.sendBeacon to options.blob Reduce code paths that could encode post data as the string undefined Oct 1, 2021
@pauldambra pauldambra marked this pull request as ready for review October 5, 2021 09:07
mariusandra
mariusandra requested changes Oct 5, 2021
View reviewed changes
Copy link
Collaborator

@mariusandra mariusandra left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it looks good... just one annoying compatibility issue

src/send-request.js Outdated Show resolved Hide resolved
@pauldambra pauldambra force-pushed the can-zip-output-undefined branch from 4e61667 to 66e1520 Compare October 5, 2021 12:12
@pauldambra pauldambra requested a review from mariusandra October 6, 2021 06:16
yakkomajuri
yakkomajuri approved these changes Oct 6, 2021
View reviewed changes
Copy link
Contributor

@yakkomajuri yakkomajuri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We talked this over during a pairing session and made a few minor changes.

LGTM!

@pauldambra pauldambra merged commit a0a337e into master Oct 6, 2021
@pauldambra pauldambra deleted the can-zip-output-undefined branch October 6, 2021 10:12
@pauldambra pauldambra mentioned this pull request Oct 13, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yakkomajuri yakkomajuri yakkomajuri approved these changes

@mariusandra mariusandra Awaiting requested review from mariusandra

Assignees
No one assigned
Labels
bump patch Bump patch version when this PR gets merged
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@pauldambra @mariusandra @yakkomajuri