Issue #4261 - Fix CWE-73: File Manipulation

Signed-off-by: Aleksandra Chyła <aleksandra.chyla@ibm.com>

Author: Aleksandra Chyła

agreementbot/api.go

@@ -3,6 +3,13 @@ package agreementbot
 import (
 	"encoding/json"
 	"fmt"
+	"io"
+	"net/http"
+	"regexp"
+	"sort"
+	"sync"
+	"time"
+
 	"github.com/golang/glog"
 	"github.com/gorilla/mux"
 	"github.com/open-horizon/anax/abstractprotocol"
@@ -14,12 +21,6 @@ import (
 	"github.com/open-horizon/anax/exchange"
 	"github.com/open-horizon/anax/policy"
 	"github.com/open-horizon/anax/worker"
-	"io/ioutil"
-	"net/http"
-	"regexp"
-	"sort"
-	"sync"
-	"time"
 )
 
 type API struct {
@@ -544,7 +545,7 @@ func (a *API) policy(w http.ResponseWriter, r *http.Request) {
 
 		// Demarshal the input body and verify it.
 		var upgrade UpgradeDevice
-		body, _ := ioutil.ReadAll(r.Body)
+		body, _ := io.ReadAll(r.Body)
 		if err := json.Unmarshal(body, &upgrade); err != nil {
 			writeInputErr(w, http.StatusBadRequest, &APIUserInputError{Input: "body", Error: fmt.Sprintf("user submitted data couldn't be deserialized to struct: %v. Error: %v", string(body), err)})
 			return

agreementbot/pattern_manager_test.go

@@ -8,11 +8,11 @@ import (
 	"errors"
 	"flag"
 	"fmt"
-	"github.com/open-horizon/anax/exchange"
-	"io/ioutil"
 	"os"
 	"strings"
 	"testing"
+
+	"github.com/open-horizon/anax/exchange"
 )
 
 func init() {
@@ -781,7 +781,7 @@ func getPatternEntryFiles(files []string) error {
 func getPolicyFiles(homePath string) ([]os.FileInfo, error) {
 	res := make([]os.FileInfo, 0, 10)
 
-	if files, err := ioutil.ReadDir(homePath); err != nil {
+	if files, err := io.ReadDir(homePath); err != nil {
 		return nil, err
 	} else {
 		for _, fileInfo := range files {

agreementbot/secrets/vault/http.go

@@ -7,16 +7,16 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
-	"github.com/golang/glog"
-	"github.com/open-horizon/anax/agreementbot/secrets"
-	"github.com/open-horizon/anax/config"
 	"io"
-	"io/ioutil"
 	"net"
 	"net/http"
 	"os"
 	"strings"
 	"time"
+
+	"github.com/golang/glog"
+	"github.com/open-horizon/anax/agreementbot/secrets"
+	"github.com/open-horizon/anax/config"
 )
 
 // Retry intervals when connecting to the vault
@@ -96,7 +96,7 @@ func (vs *AgbotVaultSecrets) newHTTPClient(cfg *config.HorizonConfig) (*http.Cli
 
 	if _, err = os.Stat(cfg.GetVaultCertPath()); err == nil {
 
-		caBytes, err = ioutil.ReadFile(cfg.GetVaultCertPath())
+		caBytes, err = os.ReadFile(cfg.GetVaultCertPath())
 		if err != nil {
 			return nil, errors.New(fmt.Sprintf("unable to read %v, error %v", cfg.GetVaultCertPath(), err))
 		}

agreementbot/secrets/vault/init.go

@@ -4,10 +4,11 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
+	"io"
+	"net/http"
+
 	"github.com/golang/glog"
 	"github.com/open-horizon/anax/config"
-	"io/ioutil"
-	"net/http"
 )
 
 // This function is called by the anax main to allow the plugin a chance to initialize itself.
@@ -57,7 +58,7 @@ func (vs *AgbotVaultSecrets) Login() (err error) {
 	}
 
 	// Save the login token
-	respBytes, err := ioutil.ReadAll(resp.Body)
+	respBytes, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return errors.New(fmt.Sprintf("unable to read login response, error: %v", err))
 	}
@@ -111,7 +112,7 @@ func (vs *AgbotVaultSecrets) Renew() (err error) {
 
 	// Save the token locally
 
-	_, err = ioutil.ReadAll(resp.Body)
+	_, err = io.ReadAll(resp.Body)
 	if err != nil {
 		return errors.New(fmt.Sprintf("unable to read renew response, error: %v", err))
 	}

agreementbot/secrets/vault/vault.go

@@ -4,14 +4,15 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
+	"io"
+	"net/http"
+	"strings"
+
 	"github.com/golang/glog"
 	"github.com/open-horizon/anax/agreementbot/secrets"
 	"github.com/open-horizon/anax/cli/cliutils"
 	"github.com/open-horizon/anax/config"
 	"github.com/open-horizon/anax/cutil"
-	"io/ioutil"
-	"net/http"
-	"strings"
 )
 
 // This function registers an uninitialized agbot secrets implementation with the secrets plugin registry. The plugin's Initialize
@@ -85,7 +86,7 @@ func (vs *AgbotVaultSecrets) listSecret(user, token, org, name, url string) erro
 	}
 
 	// parse the vault response
-	respBytes, err := ioutil.ReadAll(resp.Body)
+	respBytes, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return &secrets.InvalidResponse{ReadError: err, HttpMethod: http.MethodGet, SecretPath: url}
 	} else {
@@ -243,7 +244,7 @@ func (vs *AgbotVaultSecrets) listSecrets(user, token, org, url, path string, all
 	}
 
 	// parse the vault response
-	respBytes, err := ioutil.ReadAll(resp.Body)
+	respBytes, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return nil, &secrets.InvalidResponse{ReadError: err, HttpMethod: "LIST", SecretPath: url}
 	} else {
@@ -356,7 +357,7 @@ func (vs *AgbotVaultSecrets) createSecret(user, token, org, vaultSecretName, url
 	}
 
 	// parse the vault response
-	respBytes, err := ioutil.ReadAll(resp.Body)
+	respBytes, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return &secrets.InvalidResponse{ReadError: err, HttpMethod: http.MethodPost, SecretPath: url}
 	} else {
@@ -446,7 +447,7 @@ func (vs *AgbotVaultSecrets) deleteSecret(user, token, org, name, url string) er
 	}
 
 	// parse the vault response
-	respBytes, err := ioutil.ReadAll(resp.Body)
+	respBytes, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return &secrets.InvalidResponse{ReadError: err, HttpMethod: http.MethodDelete, SecretPath: url}
 	} else {
@@ -539,7 +540,7 @@ func (vs *AgbotVaultSecrets) GetSecretDetails(user, token, org, secretUser, secr
 	}
 
 	// parse the vault response
-	respBytes, rerr := ioutil.ReadAll(resp.Body)
+	respBytes, rerr := io.ReadAll(resp.Body)
 	if rerr != nil {
 		err = &secrets.InvalidResponse{ReadError: rerr, HttpMethod: http.MethodGet, SecretPath: url}
 		return
@@ -634,7 +635,7 @@ func (vs *AgbotVaultSecrets) GetSecretMetadata(secretOrg, secretUser, secretNode
 	}
 
 	// parse the vault response
-	respBytes, rerr := ioutil.ReadAll(resp.Body)
+	respBytes, rerr := io.ReadAll(resp.Body)
 	if rerr != nil {
 		err = &secrets.InvalidResponse{ReadError: rerr, HttpMethod: http.MethodGet, SecretPath: url}
 		return
@@ -710,7 +711,7 @@ func (vs *AgbotVaultSecrets) loginUser(user, token, org string) (string, string,
 	}
 
 	// Save the login token
-	respBytes, err := ioutil.ReadAll(resp.Body)
+	respBytes, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return "", "", errors.New(fmt.Sprintf("unable to read login response: %v", err))
 	}

agreementbot/secure_api.go

@@ -19,6 +19,12 @@ package agreementbot
 import (
 	"encoding/json"
 	"fmt"
+	"io"
+	"net/http"
+	"os"
+	"strings"
+	"time"
+
 	"github.com/golang/glog"
 	"github.com/gorilla/mux"
 	"github.com/open-horizon/anax/agreementbot/persistence"
@@ -34,11 +40,6 @@ import (
 	"github.com/open-horizon/anax/i18n"
 	"github.com/open-horizon/anax/worker"
 	"golang.org/x/text/message"
-	"io/ioutil"
-	"net/http"
-	"os"
-	"strings"
-	"time"
 )
 
 const UserTypeCred = "users"
@@ -272,7 +273,7 @@ func (a *SecureAPI) policyCompatibleNodeList(w http.ResponseWriter, r *http.Requ
 		matchingNodes := []string{}
 
 		if user_ec, _, msgPrinter, ok := a.processExchangeCred("/compatibility/constraints/node", UserTypeCred, w, r); ok {
-			body, _ := ioutil.ReadAll(r.Body)
+			body, _ := io.ReadAll(r.Body)
 			if len(body) == 0 {
 				glog.Errorf(APIlogString(fmt.Sprintf("No input found.")))
 				writeResponse(w, msgPrinter.Sprintf("No input found."), http.StatusBadRequest)
@@ -350,7 +351,7 @@ func (a *SecureAPI) patternCompatibleNodeList(w http.ResponseWriter, r *http.Req
 		matchingNodes := []string{}
 
 		if user_ec, _, msgPrinter, ok := a.processExchangeCred("/compatibility/patterns/node", UserTypeCred, w, r); ok {
-			body, _ := ioutil.ReadAll(r.Body)
+			body, _ := io.ReadAll(r.Body)
 			if len(body) == 0 {
 				glog.Errorf(APIlogString(fmt.Sprintf("No input found.")))
 				writeResponse(w, msgPrinter.Sprintf("No input found."), http.StatusBadRequest)
@@ -491,7 +492,7 @@ func (a *SecureAPI) policy_compatible(w http.ResponseWriter, r *http.Request) {
 
 		// check user cred
 		if user_ec, _, msgPrinter, ok := a.processExchangeCred("/deploycheck/policycompatible", UserTypeCred, w, r); ok {
-			body, _ := ioutil.ReadAll(r.Body)
+			body, _ := io.ReadAll(r.Body)
 			if len(body) == 0 {
 				glog.Errorf(APIlogString(fmt.Sprintf("No input found.")))
 				writeResponse(w, msgPrinter.Sprintf("No input found."), http.StatusBadRequest)
@@ -624,7 +625,7 @@ func (a *SecureAPI) userinput_compatible(w http.ResponseWriter, r *http.Request)
 		glog.V(5).Infof(APIlogString(fmt.Sprintf("/deploycheck/userinputcompatible called.")))
 
 		if user_ec, _, msgPrinter, ok := a.processExchangeCred("/deploycheck/userinputcompatible", UserTypeCred, w, r); ok {
-			body, _ := ioutil.ReadAll(r.Body)
+			body, _ := io.ReadAll(r.Body)
 			if len(body) == 0 {
 				glog.Errorf(APIlogString(fmt.Sprintf("No input found.")))
 				writeResponse(w, msgPrinter.Sprintf("No input found."), http.StatusBadRequest)
@@ -747,7 +748,7 @@ func (a *SecureAPI) secretbinding_compatible(w http.ResponseWriter, r *http.Requ
 		glog.V(5).Infof(APIlogString(fmt.Sprintf("/deploycheck/secretbindingcompatible called.")))
 
 		if user_ec, exUser, msgPrinter, ok := a.processExchangeCred("/deploycheck/secretbindingcompatible", UserTypeCred, w, r); ok {
-			body, _ := ioutil.ReadAll(r.Body)
+			body, _ := io.ReadAll(r.Body)
 			if len(body) == 0 {
 				glog.Errorf(APIlogString(fmt.Sprintf("No input found.")))
 				writeResponse(w, msgPrinter.Sprintf("No input found."), http.StatusBadRequest)
@@ -909,7 +910,7 @@ func (a *SecureAPI) deploy_compatible(w http.ResponseWriter, r *http.Request) {
 		glog.V(5).Infof(APIlogString(fmt.Sprintf("/deploycheck/deploycompatible called.")))
 
 		if user_ec, exUser, msgPrinter, ok := a.processExchangeCred("/deploycheck/deploycompatible", UserTypeCred, w, r); ok {
-			body, _ := ioutil.ReadAll(r.Body)
+			body, _ := io.ReadAll(r.Body)
 			if len(body) == 0 {
 				glog.Errorf(APIlogString(fmt.Sprintf("No input found.")))
 				writeResponse(w, msgPrinter.Sprintf("No input found."), http.StatusBadRequest)
@@ -1305,7 +1306,7 @@ func (a *SecureAPI) secretsSetup(w http.ResponseWriter, r *http.Request) *Secret
 
 func parseSecretDetails(w http.ResponseWriter, r *http.Request, msgPrinter *message.Printer) *secrets.SecretDetails {
 	var input secrets.SecretDetails
-	if body, err := ioutil.ReadAll(r.Body); err != nil {
+	if body, err := io.ReadAll(r.Body); err != nil {
 		glog.Errorf(APIlogString(fmt.Sprintf("Unable to read request body, error: %v.", err)))
 		writeResponse(w, msgPrinter.Sprintf("Unable to read request body, error: %v.", err), http.StatusInternalServerError)
 		return nil

api/api_int_test.go

@@ -7,7 +7,6 @@ import (
 	"bytes"
 	"encoding/json"
 	"fmt"
-	"io/ioutil"
 	"net/http"
 	"net/http/httptest"
 	"net/url"
@@ -36,7 +35,7 @@ func handleResp(r *http.Response, expectedStatus int) ([]byte, error) {
 
 	defer r.Body.Close()
 
-	return ioutil.ReadAll(r.Body)
+	return io.ReadAll(r.Body)
 }
 
 func deserialArray(b []byte) ([]Attribute, error) {
@@ -70,7 +69,7 @@ func serial(t *testing.T, attrInput []byte) []byte {
 }
 
 func setup() (string, *bolt.DB, error) {
-	dir, err := ioutil.TempDir("", "api-attribute-")
+	dir, err := io.TempDir("", "api-attribute-")
 	if err != nil {
 		return "", nil, err
 	}

api/api_management.go

@@ -3,15 +3,16 @@ package api
 import (
 	"encoding/json"
 	"fmt"
+	"io"
+	"net/http"
+
 	"github.com/golang/glog"
 	"github.com/gorilla/mux"
 	"github.com/open-horizon/anax/eventlog"
 	"github.com/open-horizon/anax/exchange"
 	"github.com/open-horizon/anax/exchangecommon"
 	"github.com/open-horizon/anax/persistence"
 	"github.com/open-horizon/anax/version"
-	"io/ioutil"
-	"net/http"
 )
 
 func (a *API) managementStatus(w http.ResponseWriter, r *http.Request) {
@@ -49,7 +50,7 @@ func (a *API) managementStatus(w http.ResponseWriter, r *http.Request) {
 
 		// Read in the HTTP body.
 		var nmStatus exchangecommon.NodeManagementPolicyStatus
-		body, _ := ioutil.ReadAll(r.Body)
+		body, _ := io.ReadAll(r.Body)
 		if err := json.Unmarshal(body, &nmStatus); err != nil {
 			errorHandler(NewAPIUserInputError(fmt.Sprintf("Input body couldn't be deserialized to %v object: %v, error: %v", resource, string(body), err), "management status"))
 			return