Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Stack Overflow occurs with cyclic component links in OpenAPI Spec #34

Open
kranonetka opened this issue Nov 4, 2024 · 2 comments
Open

Stack Overflow occurs with cyclic component links in OpenAPI Spec #34

kranonetka opened this issue Nov 4, 2024 · 2 comments

Comments

@kranonetka
Copy link

kranonetka commented Nov 4, 2024
edited
Loading

Describe the bug

thread 'main' has overflowed its stack
fatal runtime error: stack overflow
[1]    13195 abort      ./wuppiefuzz output-corpus --openapi-spec openapi_cyclic.json

When trying to generate the initial corpus for openapi with cyclic links li in request body

Versions:

  • OS: MacOS
  • rustc: rustc 1.82.0 (f6e511eec 2024-10-15)
  • Wuppiefuzz: v1.1.0 (2024-09-17)

To Reproduce
Given an OpenAPI specification with cyclic links in the request body:

{
  "openapi": "3.0.0",
  "info": {
    "title": "Cyclic API Example",
    "version": "1.0.0"
  },
  "servers": [
    {
      "url": "http://localhost:80"
    }
  ],
  "paths": {
    "/categories": {
      "post": {
        "summary": "Create a category with subcategories",
        "requestBody": {
          "required": true,
          "content": {
            "application/json": {
              "schema": {
                "$ref": "#/components/schemas/Category"
              }
            }
          }
        },
        "responses": {
          "201": {
            "description": "Category created successfully"
          }
        }
      }
    }
  },
  "components": {
    "schemas": {
      "Category": {
        "type": "object",
        "properties": {
          "id": {
            "type": "integer",
            "example": 1
          },
          "name": {
            "type": "string",
            "example": "Electronics"
          },
          "subcategories": {
            "type": "array",
            "items": {
              "$ref": "#/components/schemas/Category"
            }
          }
        }
      }
    }
  }
}

To reproduce the error, run:

./wuppiefuzz output-corpus --openapi-spec openapi_cyclic.json corpus_directory

Expected behavior
Proper handling of cyclic links in request bodies or guidance on how to manage cyclic links in the corpus generation process.
@grebnetiew
Copy link
Contributor

grebnetiew commented Nov 4, 2024
edited
Loading

Thanks! This is indeed a bug / design problem - it did not occur to us that people would express 'infinite nesting' of schemas, so we eagerly generate example array items for the corpus.

Since this is probably not a very quickly-fixable thing, my guidance for now would be to express the depth limit as part of the API specification (assuming arbitrarily deep subsubsub(...)subcategories are not a use case you actually use). So you could define schemas for Subcategory and Subsubcategory, where the latter does not have the 'subcategories' field, and it would work.

  "components": {
    "schemas": {
      "Category": {
        "type": "object",
        "properties": {
          "id": {
            "type": "integer",
            "example": 1
          },
          "name": {
            "type": "string",
            "example": "Electronics"
          },
          "subcategories": {
            "type": "array",
            "items": {
              "$ref": "#/components/schemas/Subcategory"
            }
          }
        }
      }
      "Subcategory": {
        "type": "object",
        "properties": {
          "id": {
            "type": "integer",
            "example": 1
          },
          "name": {
            "type": "string",
            "example": "Electronics"
          },
          "subcategories": {
            "type": "array",
            "items": {
              "$ref": "#/components/schemas/Subsubcategory"
            }
          }
        }
      }
      "Subsubcategory": {
        "type": "object",
        "properties": {
          "id": {
            "type": "integer",
            "example": 1
          },
          "name": {
            "type": "string",
            "example": "Electronics"
          }
        }
      }
    }
  }

@kranonetka
Copy link
Author

Yea, i already did that. The problem is that I encountered it on a project with 12k lines :) I think until this is fixed it is worth writing about it at least in the documentation.

@ThomasTNO ThomasTNO mentioned this issue Nov 4, 2024
Open
4 tasks
@kranonetka kranonetka changed the title Stack Overflow occurs with recursive structures in OpenAPI Spec Stack Overflow occurs with cyclic component links in OpenAPI Spec Nov 5, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@grebnetiew @kranonetka