Skip to content

Commit 6459c10

Browse files
sgsullivansgsullivan
authored
Merge pull request #61 from liquidweb/gosec-issues
Latest gosec reported some new issues
2 parents 7824c1f + 64cc195 commit 6459c10

File tree

2 files changed

+29
-26
lines changed

2 files changed

+29
-26
lines changed

instance/plan.go

Lines changed: 18 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -63,8 +63,8 @@ func (ci *Client) ProcessPlan(plan *Plan) error {
6363
}
6464
}
6565

66-
for _, x := range plan.Ssh {
67-
if err := ci.processPlanSsh(&x); err != nil {
66+
for i, _ := range plan.Ssh {
67+
if err := ci.processPlanSsh(&plan.Ssh[i]); err != nil {
6868
return err
6969
}
7070
}
@@ -104,22 +104,22 @@ func (ci *Client) processPlanSsh(params *SshParams) (err error) {
104104
func (ci *Client) processPlanCloudServer(server *PlanCloudServer) error {
105105

106106
if server.Create != nil {
107-
for _, c := range server.Create {
108-
if err := ci.processPlanCloudServerCreate(&c); err != nil {
107+
for i, _ := range server.Create {
108+
if err := ci.processPlanCloudServerCreate(&server.Create[i]); err != nil {
109109
return err
110110
}
111111
}
112112
}
113113
if server.Resize != nil {
114-
for _, r := range server.Resize {
115-
if err := ci.processPlanCloudServerResize(&r); err != nil {
114+
for i, _ := range server.Resize {
115+
if err := ci.processPlanCloudServerResize(&server.Resize[i]); err != nil {
116116
return err
117117
}
118118
}
119119
}
120120
if server.Reboot != nil {
121-
for _, r := range server.Reboot {
122-
if err := ci.processPlanCloudServerReboot(&r); err != nil {
121+
for i, _ := range server.Reboot {
122+
if err := ci.processPlanCloudServerReboot(&server.Reboot[i]); err != nil {
123123
return err
124124
}
125125
}
@@ -168,8 +168,8 @@ func (ci *Client) processPlanCloudServerReboot(params *CloudServerRebootParams)
168168
func (ci *Client) processPlanCloudTemplate(template *PlanCloudTemplate) error {
169169

170170
if template.Restore != nil {
171-
for _, c := range template.Restore {
172-
if err := ci.processPlanCloudTemplateRestore(&c); err != nil {
171+
for i, _ := range template.Restore {
172+
if err := ci.processPlanCloudTemplateRestore(&template.Restore[i]); err != nil {
173173
return err
174174
}
175175
}
@@ -198,16 +198,16 @@ func (ci *Client) processPlanCloudNetwork(network *PlanCloudNetwork) error {
198198
func (ci *Client) processPlanCloudNetworkPublic(public *PlanCloudNetworkPublic) error {
199199

200200
if public.Add != nil {
201-
for _, c := range public.Add {
202-
if err := ci.processPlanCloudNetworkPublicAdd(&c); err != nil {
201+
for i, _ := range public.Add {
202+
if err := ci.processPlanCloudNetworkPublicAdd(&public.Add[i]); err != nil {
203203
return err
204204
}
205205
}
206206
}
207207

208208
if public.Remove != nil {
209-
for _, c := range public.Remove {
210-
if err := ci.processPlanCloudNetworkPublicRemove(&c); err != nil {
209+
for i, _ := range public.Remove {
210+
if err := ci.processPlanCloudNetworkPublicRemove(&public.Remove[i]); err != nil {
211211
return err
212212
}
213213
}
@@ -219,16 +219,16 @@ func (ci *Client) processPlanCloudNetworkPublic(public *PlanCloudNetworkPublic)
219219
func (ci *Client) processPlanCloudNetworkPrivate(private *PlanCloudNetworkPrivate) error {
220220

221221
if private.Attach != nil {
222-
for _, c := range private.Attach {
223-
if err := ci.processPlanCloudNetworkPrivateAttach(&c); err != nil {
222+
for i, _ := range private.Attach {
223+
if err := ci.processPlanCloudNetworkPrivateAttach(&private.Attach[i]); err != nil {
224224
return err
225225
}
226226
}
227227
}
228228

229229
if private.Detach != nil {
230-
for _, c := range private.Detach {
231-
if err := ci.processPlanCloudNetworkPrivateDetach(&c); err != nil {
230+
for i, _ := range private.Detach {
231+
if err := ci.processPlanCloudNetworkPrivateDetach(&private.Detach[i]); err != nil {
232232
return err
233233
}
234234
}

utils/utils.go

Lines changed: 11 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -16,11 +16,10 @@ limitations under the License.
1616
package utils
1717

1818
import (
19+
"crypto/rand"
1920
"fmt"
20-
"math/rand"
2121
"net"
2222
"os"
23-
"time"
2423

2524
"github.com/k0kubun/go-ansi"
2625
)
@@ -43,14 +42,18 @@ func IpRangeIsValid(cidr string) bool {
4342

4443
func RandomString(length int) string {
4544
charset := "abcdefghijklmnopqrstuvwxyz" + "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789" + "0123456789"
46-
var seededRand *rand.Rand = rand.New(
47-
rand.NewSource(time.Now().UnixNano()))
4845

49-
b := make([]byte, length)
50-
for i := range b {
51-
b[i] = charset[seededRand.Intn(len(charset))]
46+
bytes := make([]byte, length)
47+
48+
if _, err := rand.Read(bytes); err != nil {
49+
panic(err)
50+
}
51+
52+
for i, b := range bytes {
53+
bytes[i] = charset[b%byte(len(charset))]
5254
}
53-
return string(b)
55+
56+
return string(bytes)
5457
}
5558

5659
func FileExists(file string) bool {

0 commit comments

Comments
 (0)