hedl-csv 2.0.0

HEDL to/from CSV conversion
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167

// Dweve HEDL - Hierarchical Entity Data Language
//
// Copyright (c) 2025 Dweve IP B.V. and individual contributors.
//
// SPDX-License-Identifier: Apache-2.0

//! CSV validation and size tracking

use crate::error::{CsvError, Result};
use crate::from_csv::config::FromCsvConfig;

pub(crate) fn validate_headers(headers: &csv::StringRecord, config: &FromCsvConfig) -> Result<()> {
    // Check column count
    let column_count = headers.len();
    if column_count > config.max_columns {
        return Err(CsvError::Security {
            limit_type: "column count".to_string(),
            limit: config.max_columns,
            actual: column_count,
            message: format!(
                "CSV has {} columns, exceeds limit of {}",
                column_count, config.max_columns
            ),
        });
    }

    // Check total header size
    let header_size: usize = headers.iter().map(str::len).sum();
    if header_size > config.max_header_size {
        return Err(CsvError::Security {
            limit_type: "header size".to_string(),
            limit: config.max_header_size,
            actual: header_size,
            message: format!(
                "CSV header size {} bytes, exceeds limit of {} bytes",
                header_size, config.max_header_size
            ),
        });
    }

    // Check for individual column name size (prevent single huge name)
    for (i, header) in headers.iter().enumerate() {
        if header.len() > config.max_cell_size {
            // Safely create preview by finding the last complete character before byte 100
            let preview = if header.len() > 100 {
                // Find the last character boundary before position 100
                let mut preview_end = 100;
                while !header.is_char_boundary(preview_end) && preview_end > 0 {
                    preview_end -= 1;
                }
                format!("{}...", &header[..preview_end])
            } else {
                header.to_string()
            };
            return Err(CsvError::Security {
                limit_type: "column name size".to_string(),
                limit: config.max_cell_size,
                actual: header.len(),
                message: format!(
                    "Column name '{}' at index {} is {} bytes, exceeds cell size limit of {} bytes",
                    preview,
                    i,
                    header.len(),
                    config.max_cell_size
                ),
            });
        }
    }

    Ok(())
}

/// Validate a single cell against security limits.
///
/// This function checks that the cell size does not exceed `max_cell_size`.
///
/// # Arguments
///
/// * `cell` - The cell content to validate
/// * `row` - Row number (1-based, for error messages)
/// * `column` - Column index (0-based, for error messages)
/// * `config` - Configuration containing security limits
///
/// # Returns
///
/// `Ok(())` if the cell is within limits, otherwise an error.
pub(crate) fn validate_cell(
    cell: &str,
    row: usize,
    column: usize,
    config: &FromCsvConfig,
) -> Result<()> {
    if cell.len() > config.max_cell_size {
        // Safely create preview by finding the last complete character before byte 100
        let preview = if cell.len() > 100 {
            // Find the last character boundary before position 100
            let mut preview_end = 100;
            while !cell.is_char_boundary(preview_end) && preview_end > 0 {
                preview_end -= 1;
            }
            format!("{}...", &cell[..preview_end])
        } else {
            cell.to_string()
        };
        return Err(CsvError::Security {
            limit_type: "cell size".to_string(),
            limit: config.max_cell_size,
            actual: cell.len(),
            message: format!(
                "Cell at row {}, column {} is {} bytes, exceeds limit of {} bytes. Content preview: '{}'",
                row,
                column,
                cell.len(),
                config.max_cell_size,
                preview
            ),
        });
    }
    Ok(())
}

/// Tracker for CSV size during parsing.
///
/// This struct tracks the total bytes read during CSV parsing to prevent
/// decompression bomb attacks.
pub(crate) struct CsvSizeTracker {
    pub(crate) bytes_read: usize,
    max_total_size: usize,
}

impl CsvSizeTracker {
    /// Create a new size tracker with the specified maximum.
    pub(crate) fn new(max_total_size: usize) -> Self {
        Self {
            bytes_read: 0,
            max_total_size,
        }
    }

    /// Track a record and check if the total size exceeds the limit.
    ///
    /// # Arguments
    ///
    /// * `record` - The CSV record to track
    ///
    /// # Returns
    ///
    /// `Ok(())` if within limits, otherwise an error.
    pub(crate) fn track_record(&mut self, record: &csv::StringRecord) -> Result<()> {
        let record_size: usize = record.iter().map(str::len).sum();
        self.bytes_read += record_size;

        if self.bytes_read > self.max_total_size {
            return Err(CsvError::Security {
                limit_type: "total size".to_string(),
                limit: self.max_total_size,
                actual: self.bytes_read,
                message: format!(
                    "CSV total size {} bytes exceeds limit of {} bytes",
                    self.bytes_read, self.max_total_size
                ),
            });
        }

        Ok(())
    }
}