Add REGO debugger to Mindev. #5229

blkt · 2024-12-19T22:38:59Z

Summary

This change adds the possibility to start evaluate a REGO-based rule type in a debugger.

The debugger allows setting breakpoints, stepping, printing source, and a few other simple utilities.

The debugger is currently very, very, VERY rough around the edges and could use some love, especially in the reception of events from the debuggee, which is done inline and not asynchronously.

Change Type

Bug fix (resolves an issue without affecting existing features)
Feature (adds new functionality without breaking changes)
Breaking change (may impact existing functionalities or require documentation updates)
Documentation (updates or additions to documentation)
Refactoring or test improvements (no bug fixes or new functionality)

Testing

Mostly untested, hic sunt dracones.

Review Checklist:

Reviewed my own code for quality and clarity.
Added comments to complex or tricky code sections.
Updated any affected documentation.
Included tests that validate the fix or feature.
Checked that related changes are merged.

internal/engine/eval/rego/debug.go

+	if err != nil {
+		return debug.BreakpointID(-1), fmt.Errorf(`%w: invalid breakpoint id %s`, errInvalidBP, num)
+	}
+	return debug.BreakpointID(i), nil


To fix the problem, we need to ensure that the parsed integer is within the valid range for debug.BreakpointID before performing the conversion. This can be done by adding an upper bound check after parsing the integer. If the parsed integer exceeds the maximum value for debug.BreakpointID, we should return an error.

Add an upper bound check after parsing the integer.

Ensure that the parsed integer is within the valid range for debug.BreakpointID.

Return an error if the parsed integer is out of bounds.

internal/engine/eval/rego/debug.go

+	if err != nil {
+		return nil, fmt.Errorf(`%w: invalid line "%s": %s`, errInvalidBP, num, err)
+	}
+	if i < 1 || int(i) > lineCount {


To fix the problem, we need to ensure that the value parsed by strconv.ParseInt fits within the range of the int type before converting it. This can be done by adding an upper bound check against math.MaxInt (the maximum value for the int type). If the value exceeds this limit, we should return an error.

internal/engine/eval/rego/debug.go

+	if i < 1 || int(i) > lineCount {
+		return nil, fmt.Errorf("%w: invalid line %d", errInvalidBP, i)
+	}
+	return &location.Location{File: "minder.rego", Row: int(i)}, nil


To fix the problem, we need to ensure that the parsed integer value fits within the bounds of an int before performing the conversion. This can be done by adding an upper bound check against the maximum value of an int type. We will use the math.MaxInt constant to perform this check.

internal/engine/eval/rego/debug.go

+		)
+	}
+
+	if !slices.Contains(ids, debug.BreakpointID(i)) {


To fix the problem, we need to ensure that the parsed integer value falls within the valid range for the debug.BreakpointID type before performing the conversion. This can be achieved by adding an upper bound check using the maximum value for the debug.BreakpointID type.

Use strconv.ParseInt with a bit size of 32 to directly parse the string into a 32-bit integer if debug.BreakpointID is a 32-bit type.

Alternatively, add explicit bounds checks to ensure the parsed value is within the valid range for debug.BreakpointID.

This change adds the possibility to start evaluate a REGO-based rule type in a debugger. The debugger allows setting breakpoints, stepping, printing source, and a few other simple utilities. The debugger is currently very, very, VERY rough around the edges and could use some love, especially in the reception of events from the debuggee, which is done inline and not asynchronously.

blkt added the hackathon label Dec 19, 2024

blkt self-assigned this Dec 19, 2024

blkt requested a review from a team as a code owner December 19, 2024 22:39

blkt marked this pull request as draft December 19, 2024 22:44

github-advanced-security bot found potential problems Dec 19, 2024

View reviewed changes

blkt force-pushed the feat/rego-debugger-awesomeness branch 6 times, most recently from 03a9952 to 2fd436e Compare December 20, 2024 22:34

github-advanced-security bot found potential problems Dec 20, 2024

View reviewed changes

blkt force-pushed the feat/rego-debugger-awesomeness branch 2 times, most recently from ef3e360 to 4edfdb7 Compare December 20, 2024 23:09

blkt force-pushed the feat/rego-debugger-awesomeness branch 2 times, most recently from 5e66be4 to 3515312 Compare December 23, 2024 14:31

Accept any as input and add comments.

586947b

blkt force-pushed the feat/rego-debugger-awesomeness branch from 3515312 to 586947b Compare December 23, 2024 14:45

@@ -565,5 +565,5 @@
-            	if i < 1 {
+            	if i < 1 || i > math.MaxInt32 {
             		return debug.BreakpointID(-1), fmt.Errorf(
-            			"%w: negative line id",
+            			"%w: invalid line id",
             			errInvalidBP,

@@ -536,3 +536,3 @@
             	}
-            	if i < 1 || int(i) > lineCount {
+            	if i < 1 || i > math.MaxInt || int(i) > lineCount {
             		return nil, fmt.Errorf("%w: invalid line %d", errInvalidBP, i)
@@ -565,5 +565,5 @@
-            	if i < 1 {
+            	if i < 1 || i > math.MaxInt {
             		return debug.BreakpointID(-1), fmt.Errorf(
-            			"%w: negative line id",
+            			"%w: invalid line id",
             			errInvalidBP,

@@ -557,3 +557,3 @@
-            	i, err := strconv.ParseInt(num, 10, 64)
+            	i, err := strconv.ParseInt(num, 10, 32)
             	if err != nil {
@@ -565,5 +565,5 @@
-            	if i < 1 {
+            	if i < 1 || i > math.MaxInt32 {
             		return debug.BreakpointID(-1), fmt.Errorf(
-            			"%w: negative line id",
+            			"%w: invalid line id",
             			errInvalidBP,

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add REGO debugger to Mindev. #5229

Add REGO debugger to Mindev. #5229

blkt commented Dec 19, 2024

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Add REGO debugger to Mindev. #5229

Are you sure you want to change the base?

Add REGO debugger to Mindev. #5229

Conversation

blkt commented Dec 19, 2024

Summary

Change Type

Testing

Review Checklist: