maproom 0.1.0

Semantic code search powered by embeddings and SQLite
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207

//! Path normalization utilities for incremental indexing.
//!
//! This module provides robust path normalization to convert absolute filesystem paths
//! to repository-relative paths. It prevents path format mismatches that can cause
//! database lookup failures and ensures security by rejecting path traversal attempts.

use anyhow::{bail, Context, Result};
use std::path::{Component, Path, PathBuf};

/// Normalizes an absolute filesystem path to a repository-relative path.
///
/// This function converts absolute paths (e.g., `/workspace/packages/cli/src/main.ts`)
/// to repository-relative paths (e.g., `packages/cli/src/main.ts`) by stripping the
/// repository root prefix.
///
/// # Security
///
/// This function explicitly rejects paths containing parent directory components (`..`)
/// to prevent path traversal attacks. Any attempt to access paths outside the repository
/// root will result in an error.
///
/// # Arguments
///
/// * `absolute_path` - The absolute filesystem path to normalize
/// * `repo_root` - The absolute path to the repository root
///
/// # Returns
///
/// A `Result` containing the normalized relative path, or an error if:
/// - The path is outside the repository root
/// - The path contains parent directory components (`..`)
/// - The path cannot be stripped of the repository root prefix
///
/// # Examples
///
/// ```
/// use std::path::Path;
/// use maproom::incremental::normalize_to_relpath;
///
/// let repo_root = Path::new("/workspace");
/// let absolute_path = Path::new("/workspace/packages/cli/src/main.ts");
///
/// let relative = normalize_to_relpath(absolute_path, repo_root).unwrap();
/// assert_eq!(relative, Path::new("packages/cli/src/main.ts"));
/// ```
///
/// ```
/// use std::path::Path;
/// use maproom::incremental::normalize_to_relpath;
///
/// let repo_root = Path::new("/workspace");
/// let outside_path = Path::new("/etc/passwd");
///
/// // This will return an error
/// assert!(normalize_to_relpath(outside_path, repo_root).is_err());
/// ```
///
/// # Cross-platform Compatibility
///
/// This function works on both Unix and Windows systems. On Windows, it correctly
/// handles both forward slashes and backslashes as path separators.
pub fn normalize_to_relpath(absolute_path: &Path, repo_root: &Path) -> Result<PathBuf> {
    // Strip the repository root prefix to get the relative path
    let relative_path = absolute_path.strip_prefix(repo_root).with_context(|| {
        format!(
            "Path '{}' is outside repository root '{}'",
            absolute_path.display(),
            repo_root.display()
        )
    })?;

    // Security check: reject any paths with parent directory components (..)
    // This prevents path traversal attacks
    for component in relative_path.components() {
        if matches!(component, Component::ParentDir) {
            bail!(
                "Path '{}' contains parent directory components (..), which is not allowed for security reasons",
                relative_path.display()
            );
        }
    }

    // Return the normalized relative path
    Ok(relative_path.to_path_buf())
}

#[cfg(test)]
mod tests {
    use super::*;
    use std::path::Path;

    #[test]
    fn test_simple_path_conversion() {
        let repo_root = Path::new("/workspace");
        let absolute_path = Path::new("/workspace/src/main.rs");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        assert_eq!(result, Path::new("src/main.rs"));
    }

    #[test]
    fn test_nested_path_conversion() {
        let repo_root = Path::new("/workspace");
        let absolute_path = Path::new("/workspace/packages/cli/src/commands/index.ts");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        assert_eq!(result, Path::new("packages/cli/src/commands/index.ts"));
    }

    #[test]
    fn test_path_outside_repo_root() {
        let repo_root = Path::new("/workspace");
        let outside_path = Path::new("/etc/passwd");

        let result = normalize_to_relpath(outside_path, repo_root);
        assert!(result.is_err());

        let err_msg = result.unwrap_err().to_string();
        assert!(err_msg.contains("outside repository root"));
        assert!(err_msg.contains("/etc/passwd"));
        assert!(err_msg.contains("/workspace"));
    }

    #[test]
    fn test_path_with_parent_dir_components() {
        let repo_root = Path::new("/workspace");
        // Create a path that strips to a valid prefix but contains ..
        // Note: strip_prefix would fail on /workspace/../etc/passwd, so we test
        // a constructed relative path with .. components
        let absolute_path = Path::new("/workspace/src/../etc/passwd");

        // First normalize using standard library to remove ..
        let normalized = absolute_path
            .canonicalize()
            .unwrap_or_else(|_| absolute_path.to_path_buf());

        // This should fail because it's outside the repo root after normalization
        let result = normalize_to_relpath(&normalized, repo_root);
        assert!(result.is_err());
    }

    #[test]
    fn test_path_with_trailing_slash() {
        let repo_root = Path::new("/workspace");
        let absolute_path = Path::new("/workspace/src/lib.rs/");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        // PathBuf normalizes away trailing slashes
        assert_eq!(result, Path::new("src/lib.rs"));
    }

    #[test]
    fn test_repo_root_itself() {
        let repo_root = Path::new("/workspace");
        let absolute_path = Path::new("/workspace");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        // Stripping a path from itself yields an empty relative path
        assert_eq!(result, Path::new(""));
    }

    #[test]
    fn test_deeply_nested_path() {
        let repo_root = Path::new("/home/user/projects/myrepo");
        let absolute_path =
            Path::new("/home/user/projects/myrepo/crates/maproom/src/incremental/path_utils.rs");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        assert_eq!(
            result,
            Path::new("crates/maproom/src/incremental/path_utils.rs")
        );
    }

    #[test]
    #[cfg(target_os = "windows")]
    fn test_windows_paths() {
        let repo_root = Path::new(r"C:\workspace");
        let absolute_path = Path::new(r"C:\workspace\packages\cli\src\main.ts");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        assert_eq!(result, Path::new(r"packages\cli\src\main.ts"));
    }

    #[test]
    #[cfg(target_os = "windows")]
    fn test_windows_path_outside_repo() {
        let repo_root = Path::new(r"C:\workspace");
        let outside_path = Path::new(r"D:\other\file.txt");

        let result = normalize_to_relpath(outside_path, repo_root);
        assert!(result.is_err());

        let err_msg = result.unwrap_err().to_string();
        assert!(err_msg.contains("outside repository root"));
    }

    #[test]
    #[cfg(target_os = "windows")]
    fn test_windows_unc_path() {
        let repo_root = Path::new(r"\\server\share\workspace");
        let absolute_path = Path::new(r"\\server\share\workspace\src\main.rs");

        let result = normalize_to_relpath(absolute_path, repo_root).unwrap();
        assert_eq!(result, Path::new(r"src\main.rs"));
    }
}