fix(NODE-6735): prevent serializer and stringify from creating invalid float32 vectors

Author: nbbeeken

src/binary.ts

@@ -517,6 +517,12 @@ export function validateBinaryVector(vector: Binary): void {
     throw new BSONError('Invalid Vector: padding must be zero for int8 and float32 vectors');
   }
 
+  if (datatype === Binary.VECTOR_TYPE.Float32) {
+    if (size !== 0 && size - 2 !== 0 && (size - 2) % 4 !== 0) {
+      throw new BSONError('Invalid Vector: Float32 vector must contain a multiple of 4 bytes');
+    }
+  }
+
   if (datatype === Binary.VECTOR_TYPE.PackedBit && padding !== 0 && size === 2) {
     throw new BSONError(
       'Invalid Vector: padding must be zero for packed bit vectors that are empty'

test/node/bson_binary_vector.spec.test.ts

@@ -1,14 +1,15 @@
+import * as util from 'util';
 import * as fs from 'fs';
 import * as path from 'path';
-import { BSON, BSONError, Binary } from '../register-bson';
+import { BSON, BSONError, Binary, EJSON } from '../register-bson';
 import { expect } from 'chai';
 
 const { toHex, fromHex } = BSON.onDemand.ByteUtils;
 
 type VectorHexType = '0x03' | '0x27' | '0x10';
 type VectorTest = {
   description: string;
-  vector: (number | string)[];
+  vector?: (number | string)[];
   valid: boolean;
   dtype_hex: VectorHexType;
   padding?: number;
@@ -87,6 +88,10 @@ const invalidTestExpectedError = new Map()
     'Invalid Vector: padding must be a value between 0 and 7'
   )
   .set('Negative padding PACKED_BIT', 'Invalid Vector: padding must be a value between 0 and 7')
+  .set(
+    'Insufficient vector data FLOAT32',
+    'Invalid Vector: Float32 vector must contain a multiple of 4 bytes'
+  )
   // skipped
   .set('Overflow Vector PACKED_BIT', false)
   .set('Underflow Vector PACKED_BIT', false)
@@ -97,6 +102,84 @@ const invalidTestExpectedError = new Map()
   .set('Vector with float values PACKED_BIT', false)
   .set('Vector with float values PACKED_BIT', false);
 
+function testVectorBuilding(test: VectorTest, expectedErrorMessage: string) {
+  describe('creating an instance of a Binary class using parameters', () => {
+    it(`bson: ${test.description}`, function () {
+      let thrownError: Error | undefined;
+      try {
+        const bin = make(test.vector!, test.dtype_hex, test.padding);
+        BSON.serialize({ bin });
+      } catch (error) {
+        thrownError = error;
+      }
+
+      if (thrownError?.message.startsWith('unsupported_error')) {
+        expect(
+          expectedErrorMessage,
+          'We expect a certain error message but got an unsupported error'
+        ).to.be.false;
+        this.skip();
+      }
+
+      expect(thrownError, thrownError?.stack).to.be.instanceOf(BSONError);
+      expect(thrownError?.message).to.match(new RegExp(expectedErrorMessage));
+    });
+
+    it(`ejson: ${test.description}`, function () {
+      let thrownError: Error | undefined;
+      try {
+        const bin = make(test.vector!, test.dtype_hex, test.padding);
+        BSON.EJSON.stringify({ bin });
+      } catch (error) {
+        thrownError = error;
+      }
+
+      if (thrownError?.message.startsWith('unsupported_error')) {
+        expect(
+          expectedErrorMessage,
+          'We expect a certain error message but got an unsupported error'
+        ).to.be.false;
+        this.skip();
+      }
+
+      expect(thrownError, thrownError?.stack).to.be.instanceOf(BSONError);
+      expect(thrownError?.message).to.match(new RegExp(expectedErrorMessage));
+    });
+  });
+}
+
+function testVectorReserializing(test: VectorTest, expectedErrorMessage: string) {
+  describe('creating an instance of a Binary class using canonical_bson', () => {
+    it(`bson deserialize: ${test.description}`, function () {
+      let thrownError: Error | undefined;
+      const bin = BSON.deserialize(Buffer.from(test.canonical_bson!, 'hex'));
+
+      try {
+        BSON.serialize(bin);
+      } catch (error) {
+        thrownError = error;
+      }
+
+      expect(thrownError, thrownError?.stack).to.be.instanceOf(BSONError);
+      expect(thrownError?.message).to.match(new RegExp(expectedErrorMessage));
+    });
+
+    it(`ejson stringify: ${test.description}`, function () {
+      let thrownError: Error | undefined;
+      const bin = BSON.deserialize(Buffer.from(test.canonical_bson!, 'hex'));
+
+      try {
+        EJSON.stringify(bin);
+      } catch (error) {
+        thrownError = error;
+      }
+
+      expect(thrownError, thrownError?.stack).to.be.instanceOf(BSONError);
+      expect(thrownError?.message).to.match(new RegExp(expectedErrorMessage));
+    });
+  });
+}
+
 describe('BSON Binary Vector spec tests', () => {
   const tests: Record<string, VectorSuite> = Object.create(null);
 
@@ -121,7 +204,7 @@ describe('BSON Binary Vector spec tests', () => {
          */
         for (const test of valid) {
           it(`encode ${test.description}`, function () {
-            const bin = make(test.vector, test.dtype_hex, test.padding);
+            const bin = make(test.vector!, test.dtype_hex, test.padding);
 
             const buffer = BSON.serialize({ [suite.test_key]: bin });
             expect(toHex(buffer)).to.equal(test.canonical_bson!.toLowerCase());
@@ -147,47 +230,22 @@ describe('BSON Binary Vector spec tests', () => {
         for (const test of invalid) {
           const expectedErrorMessage = invalidTestExpectedError.get(test.description);
 
-          it(`bson: ${test.description}`, function () {
-            let thrownError: Error | undefined;
-            try {
-              const bin = make(test.vector, test.dtype_hex, test.padding);
-              BSON.serialize({ bin });
-            } catch (error) {
-              thrownError = error;
-            }
-
-            if (thrownError?.message.startsWith('unsupported_error')) {
-              expect(
-                expectedErrorMessage,
-                'We expect a certain error message but got an unsupported error'
-              ).to.be.false;
-              this.skip();
-            }
-
-            expect(thrownError).to.be.instanceOf(BSONError);
-            expect(thrownError?.message).to.match(new RegExp(expectedErrorMessage));
-          });
-
-          it(`extended json: ${test.description}`, function () {
-            let thrownError: Error | undefined;
-            try {
-              const bin = make(test.vector, test.dtype_hex, test.padding);
-              BSON.EJSON.stringify({ bin });
-            } catch (error) {
-              thrownError = error;
-            }
-
-            if (thrownError?.message.startsWith('unsupported_error')) {
-              expect(
-                expectedErrorMessage,
-                'We expect a certain error message but got an unsupported error'
-              ).to.be.false;
-              this.skip();
-            }
-
-            expect(thrownError).to.be.instanceOf(BSONError);
-            expect(thrownError?.message).to.match(new RegExp(expectedErrorMessage));
-          });
+          if (test.vector != null && test.canonical_bson != null) {
+            describe('both manual vector building and re-serializing', () => {
+              testVectorBuilding(test, expectedErrorMessage);
+              testVectorReserializing(test, expectedErrorMessage);
+            });
+          } else if (test.canonical_bson != null) {
+            describe('vector re-serializing', () => {
+              testVectorReserializing(test, expectedErrorMessage);
+            });
+          } else if (test.vector != null) {
+            describe('manual vector building', () => {
+              testVectorBuilding(test, expectedErrorMessage);
+            });
+          } else {
+            throw new Error('not testing anything for: ' + util.inspect(test));
+          }
         }
       });
     });

test/node/specs/bson-binary-vector/float32.json

@@ -44,8 +44,15 @@
       "vector": [127.0, 7.0],
       "dtype_hex": "0x27",
       "dtype_alias": "FLOAT32",
-      "padding": 3
+      "padding": 3,
+      "canonical_bson": "1C00000005766563746F72000A0000000927030000FE420000E04000"
+    },
+    {
+      "description": "Insufficient vector data FLOAT32",
+      "valid": false,
+      "dtype_hex": "0x27",
+      "dtype_alias": "FLOAT32",
+      "canonical_bson": "1700000005766563746F7200050000000927002A2A2A00"
     }
   ]
 }
-

test/node/specs/bson-binary-vector/int8.json

@@ -42,7 +42,8 @@
       "vector": [127, 7],
       "dtype_hex": "0x03",
       "dtype_alias": "INT8",
-      "padding": 3
+      "padding": 3,
+      "canonical_bson": "1600000005766563746F7200040000000903037F0700"
     },
     {
       "description": "INT8 with float inputs",
@@ -54,4 +55,3 @@
     }
   ]
 }
-

test/node/specs/bson-binary-vector/packed_bit.json

@@ -8,7 +8,8 @@
       "vector": [],
       "dtype_hex": "0x10",
       "dtype_alias": "PACKED_BIT",
-      "padding": 1
+      "padding": 1,
+      "canonical_bson": "1400000005766563746F72000200000009100100"
     },
     {
       "description": "Simple Vector PACKED_BIT",
@@ -61,21 +62,14 @@
       "dtype_alias": "PACKED_BIT",
       "padding": 0
     },
-    {
-      "description": "Padding specified with no vector data PACKED_BIT",
-      "valid": false,
-      "vector": [],
-      "dtype_hex": "0x10",
-      "dtype_alias": "PACKED_BIT",
-      "padding": 1
-    },
     {
       "description": "Exceeding maximum padding PACKED_BIT",
       "valid": false,
       "vector": [1],
       "dtype_hex": "0x10",
       "dtype_alias": "PACKED_BIT",
-      "padding": 8
+      "padding": 8,
+      "canonical_bson": "1500000005766563746F7200030000000910080100"
     },
     {
       "description": "Negative padding PACKED_BIT",
@@ -84,15 +78,6 @@
       "dtype_hex": "0x10",
       "dtype_alias": "PACKED_BIT",
       "padding": -1
-    },
-    {
-      "description": "Vector with float values PACKED_BIT",
-      "valid": false,
-      "vector": [127.5],
-      "dtype_hex": "0x10",
-      "dtype_alias": "PACKED_BIT",
-      "padding": 0
     }
   ]
 }
-