From b354deaac92d6ce72be6fe14f24dff7d1dff8fa8 Mon Sep 17 00:00:00 2001
From: Tyera Eulberg <tyera@solana.com>
Date: Wed, 28 Apr 2021 22:39:42 -0600
Subject: [PATCH] Check Filepath existence, readability in parse_signer_source

---
 Cargo.lock                |  1 +
 clap-utils/Cargo.toml     |  3 ++
 clap-utils/src/keypair.rs | 63 ++++++++++++++++++++++++++-------------
 3 files changed, 46 insertions(+), 21 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 59b822a6c89bfe..02508ea0fb8ea8 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -4107,6 +4107,7 @@ dependencies = [
  "rpassword",
  "solana-remote-wallet",
  "solana-sdk",
+ "tempfile",
  "thiserror",
  "tiny-bip39 0.8.0",
  "uriparse",
diff --git a/clap-utils/Cargo.toml b/clap-utils/Cargo.toml
index c8560cc2f58863..147281dd6dc1a7 100644
--- a/clap-utils/Cargo.toml
+++ b/clap-utils/Cargo.toml
@@ -20,6 +20,9 @@ uriparse = "0.6.3"
 url = "2.1.0"
 chrono = "0.4"
 
+[dev-dependencies]
+tempfile = "3.1.0"
+
 [lib]
 name = "solana_clap_utils"
 
diff --git a/clap-utils/src/keypair.rs b/clap-utils/src/keypair.rs
index b3bda939e53052..8dd4cd82c04ab4 100644
--- a/clap-utils/src/keypair.rs
+++ b/clap-utils/src/keypair.rs
@@ -167,6 +167,8 @@ pub(crate) enum SignerSourceError {
     RemoteWalletLocatorError(#[from] RemoteWalletLocatorError),
     #[error(transparent)]
     DerivationPathError(#[from] DerivationPathError),
+    #[error(transparent)]
+    IoError(#[from] std::io::Error),
 }
 
 pub(crate) fn parse_signer_source<S: AsRef<str>>(
@@ -196,9 +198,13 @@ pub(crate) fn parse_signer_source<S: AsRef<str>>(
                     ASK_KEYWORD => Ok(SignerSource::new(SignerSourceKind::Ask)),
                     _ => match Pubkey::from_str(source) {
                         Ok(pubkey) => Ok(SignerSource::new(SignerSourceKind::Pubkey(pubkey))),
-                        Err(_) => Ok(SignerSource::new(SignerSourceKind::Filepath(
-                            source.to_string(),
-                        ))),
+                        Err(_) => std::fs::OpenOptions::new()
+                            .read(true)
+                            .open(source)
+                            .map(|_| {
+                                SignerSource::new(SignerSourceKind::Filepath(source.to_string()))
+                            })
+                            .map_err(|err| err.into()),
                     },
                 }
             }
@@ -466,6 +472,7 @@ mod tests {
     use super::*;
     use solana_remote_wallet::locator::Manufacturer;
     use solana_sdk::system_instruction;
+    use tempfile::NamedTempFile;
 
     #[test]
     fn test_sanitize_seed_phrase() {
@@ -539,16 +546,32 @@ mod tests {
             }
             if p == pubkey)
         );
-        let path = "/absolute/path".to_string();
-        assert!(matches!(parse_signer_source(&path).unwrap(), SignerSource {
+
+        // Set up absolute and relative path strs
+        let file0 = NamedTempFile::new().unwrap();
+        let path = file0.path();
+        assert!(path.is_absolute());
+        let absolute_path_str = path.to_str().unwrap();
+
+        let file1 = NamedTempFile::new_in(std::env::current_dir().unwrap()).unwrap();
+        let path = file1.path().file_name().unwrap().to_str().unwrap();
+        let path = std::path::Path::new(path);
+        assert!(path.is_relative());
+        let relative_path_str = path.to_str().unwrap();
+
+        assert!(
+            matches!(parse_signer_source(absolute_path_str).unwrap(), SignerSource {
                 kind: SignerSourceKind::Filepath(p),
                 derivation_path: None,
-            } if p == path));
-        let path = "relative/path".to_string();
-        assert!(matches!(parse_signer_source(&path).unwrap(), SignerSource {
+            } if p == absolute_path_str)
+        );
+        assert!(
+            matches!(parse_signer_source(&relative_path_str).unwrap(), SignerSource {
                 kind: SignerSourceKind::Filepath(p),
                 derivation_path: None,
-            } if p == path));
+            } if p == relative_path_str)
+        );
+
         let usb = "usb://ledger".to_string();
         let expected_locator = RemoteWalletLocator {
             manufacturer: Manufacturer::Ledger,
@@ -568,13 +591,13 @@ mod tests {
                 kind: SignerSourceKind::Usb(u),
                 derivation_path: d,
             } if u == expected_locator && d == expected_derivation_path));
-        // Catchall into SignerSource::Filepath
-        let junk = "sometextthatisnotapubkey".to_string();
+        // Catchall into SignerSource::Filepath fails
+        let junk = "sometextthatisnotapubkeyorfile".to_string();
         assert!(Pubkey::from_str(&junk).is_err());
-        assert!(matches!(parse_signer_source(&junk).unwrap(), SignerSource {
-                kind: SignerSourceKind::Filepath(j),
-                derivation_path: None,
-            } if j == junk));
+        assert!(matches!(
+            parse_signer_source(&junk),
+            Err(SignerSourceError::IoError(_))
+        ));
 
         let ask = "ask:".to_string();
         assert!(matches!(
@@ -584,19 +607,17 @@ mod tests {
                 derivation_path: None,
             }
         ));
-        let path = "/absolute/path".to_string();
         assert!(
-            matches!(parse_signer_source(&format!("file:{}", path)).unwrap(), SignerSource {
+            matches!(parse_signer_source(&format!("file:{}", absolute_path_str)).unwrap(), SignerSource {
                 kind: SignerSourceKind::Filepath(p),
                 derivation_path: None,
-            } if p == path)
+            } if p == absolute_path_str)
         );
-        let path = "relative/path".to_string();
         assert!(
-            matches!(parse_signer_source(&format!("file:{}", path)).unwrap(), SignerSource {
+            matches!(parse_signer_source(&format!("file:{}", relative_path_str)).unwrap(), SignerSource {
                 kind: SignerSourceKind::Filepath(p),
                 derivation_path: None,
-            } if p == path)
+            } if p == relative_path_str)
         );
     }
 }