Fix stamp verification when content has been inserted before the stamp (#2527)

2025-12-10 13:46:13 +08:00 · 2024-03-26 20:31:30 +01:00 · 2024-03-26 20:31:30 +01:00 · 94a0aedfda
commit 94a0aedfda
parent 57ddb29159
2 changed files with 43 additions and 5 deletions
--- a/lib/livebook/live_markdown/import.ex
+++ b/lib/livebook/live_markdown/import.ex
@ -632,7 +632,8 @@ defmodule Livebook.LiveMarkdown.Import do

    {stamp_verified?, notebook, messages} =
      with %{"offset" => offset, "stamp" => stamp} <- stamp_data,
-           {:ok, notebook_source} <- safe_binary_slice(notebook_source, 0, offset),
+           {:ok, notebook_source, rest_source} <- safe_binary_split(notebook_source, offset),
+           {:ok, ^stamp_data} <- only_stamp_data(rest_source),
           {:ok, metadata} <- Livebook.Hubs.verify_notebook_stamp(hub, notebook_source, stamp) do
        notebook = apply_stamp_metadata(notebook, metadata)
        {true, notebook, []}
@ -658,12 +659,23 @@ defmodule Livebook.LiveMarkdown.Import do
    {%{notebook | teams_enabled: teams_enabled}, stamp_verified?, messages}
  end

-  defp safe_binary_slice(binary, start, size)
-       when byte_size(binary) < start + size,
+  defp safe_binary_split(binary, offset)
+       when byte_size(binary) < offset,
       do: :error

-  defp safe_binary_slice(binary, start, size) do
-    {:ok, binary_slice(binary, start, size)}
+  defp safe_binary_split(binary, offset) do
+    size = byte_size(binary)
+    {:ok, binary_slice(binary, 0, offset), binary_slice(binary, offset, size - offset)}
+  end
+
+  defp only_stamp_data(source) do
+    {_, ast, _} = source |> String.trim() |> MarkdownHelpers.markdown_to_block_ast()
+    {ast, _} = rewrite_ast(ast)
+
+    case group_elements(ast) do
+      [{:stamp, data}] -> {:ok, data}
+      _ -> :error
+    end
  end

  defp apply_stamp_metadata(notebook, metadata) do
--- a/test/livebook/live_markdown/import_test.exs
+++ b/test/livebook/live_markdown/import_test.exs
@ -1205,6 +1205,32 @@ defmodule Livebook.LiveMarkdown.ImportTest do
               messages
    end

+    test "treats stamp as invalid when there is additional content after offset" do
+      markdown = """
+      # My Notebook
+
+      ## Section 1
+
+      ```elixir
+      IO.puts("hey")
+      ```
+
+      ```elixir
+      # This cell has been added after stamping
+      ```
+
+      <!-- livebook:{"offset":58,"stamp":{"token":"XCP.XcdH6x1x9B90SIKObuM8NWuEN7Tg2nyGWV3YhYtw6M0h8c4K0N5EFa8krthkrIqdIj6aEpUcsbEm4klRkSIh_W2YV1PXuMRQA0vCYU042IVFDbz1gq4","version":2}} -->
+      """
+
+      {notebook, %{warnings: [message], stamp_verified?: false}} =
+        Import.notebook_from_livemd(markdown)
+
+      assert %Notebook{hub_secret_names: []} = notebook
+
+      assert message =~
+               "this notebook can only access environment variables defined in this machine"
+    end
+
    test "restores hub secret names from notebook stamp using offline hub" do
      markdown = """
      <!-- livebook:{"hub_id":"team-org-number-3079"} -->