fix(contrib/registry/consul): validate port in consul Register #3658
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dosubot
bot
added
the
size:XS
Contributor
There was a problem hiding this comment.
Pull Request Overview
Adds stricter validation for service registration endpoints by ensuring parsed ports are within the valid range (1–65535) and non-zero, preventing invalid Consul registrations.
- Validate
raw.Port()errors and reject zero or out-of-range ports - Change second port parsing to use
strconv.ParseUintinstead ofParseInt
Comments suppressed due to low confidence (2)
contrib/registry/consul/client.go:164
- No tests cover the new port validation logic (invalid, zero, or missing port). Add unit tests for endpoints with missing or out-of-range ports to verify correct error handling.
port, err := strconv.ParseUint(raw.Port(), 10, 16)
contrib/registry/consul/client.go:163
- [nitpick] Port parsing and validation logic is repeated; extract into a shared helper function to reduce duplication and improve readability.
addr := raw.Hostname()
| if len(checkAddresses) > 0 { | ||
| host, portRaw, _ := net.SplitHostPort(checkAddresses[0]) | ||
| port, _ := strconv.ParseInt(portRaw, 10, 32) | ||
| port, _ := strconv.ParseUint(portRaw, 10, 16) |
There was a problem hiding this comment.
The error from strconv.ParseUint is ignored here; consider handling parse errors to avoid silently defaulting to port 0, similar to the validation added above.
Suggested change
| port, _ := strconv.ParseUint(portRaw, 10, 16) | |
| port, err := strconv.ParseUint(portRaw, 10, 16) | |
| if err != nil || port == 0 { | |
| return fmt.Errorf("invalid port in check address: %q", checkAddresses[0]) | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR addresses an issue where the port parsed from the endpoint using
raw, err := url.Parse(endpoint)andraw.Port()was not being validated properly. Althoughraw.Port()extracts the port from the URL, it does not guarantee that the port is valid or within the legal range (0-65535). This fix ensures that the port is parsed and checked to fall within the valid range and is not zero, preventing invalid service registration.