Refactor apps lookup semantic validation

ktsaou · ktsaou · commit ce7f21f2e0a8 · 2026-06-04T10:07:49.000+03:00
diff --git a/.agents/sow/current/SOW-0014-20260603-maintainability-hotspots.md b/.agents/sow/current/SOW-0014-20260603-maintainability-hotspots.md
@@ -366,6 +366,13 @@ Refined recommendation:
 - Continued the apps lookup builder complexity target:
   - reused the extracted lookup label writer from both cgroups and apps lookup builders in Go, C, and Rust.
   - kept item offsets, label-table layout, string storage order, directory entries, response finishing, and packed-data compaction unchanged.
+- User decision on 2026-06-04: proceed with option B, one more low-risk cleanup by splitting apps lookup semantic validation, then stop and re-check Codacy metrics.
+- Implemented option B by splitting apps lookup semantic validation into local domain, unknown-pid, and known-pid helpers in:
+  - `src/go/pkg/netipc/protocol/lookup.go`
+  - `src/libnetdata/netipc/src/protocol/netipc_protocol.c`
+  - `src/crates/netipc/src/protocol/lookup.rs`
+- The apps lookup semantic validation split preserves the existing order: status domain, cgroup-status domain, comm length, unknown-pid zero-field checks, then known-pid cgroup-state checks.
+- The apps lookup semantic validation split intentionally did not change decode offsets, builder layout, label table storage, directory entries, response finishing, serialization, or public APIs.
 
 ## Validation
 
@@ -429,6 +436,38 @@ Implementation validation:
     - ShellCheck: 0 issues.
     - Spectral: 0 issues.
     - total: 0 issues, 0 errors.
+- Option B apps lookup semantic validation split:
+  - `gofmt -w src/go/pkg/netipc/protocol/lookup.go` passed.
+  - `cargo fmt --manifest-path src/crates/netipc/Cargo.toml` passed.
+  - Lizard focused lookup-code comparison:
+    - Go `validateAppsLookupSemantics`: CCN 35 before, below the CCN 20 warning threshold after.
+    - C `apps_lookup_validate_semantics`: CCN 35 before, below the CCN 20 warning threshold after.
+    - Rust `validate_apps_lookup_semantics`: CCN 32 before, below the CCN 20 warning threshold after.
+  - Local reproduction of the Go static-analysis lane passed in `src/go`:
+    - `go test ./...` passed.
+    - `go vet ./...` passed.
+    - `staticcheck ./...` passed.
+    - `govulncheck ./...` passed with no vulnerabilities.
+    - `gosec -quiet -fmt sarif -out /tmp/plugin-ipc-gosec-src-go-b.sarif -exclude=G404 ./...` passed with status `0`.
+  - `cargo test --manifest-path src/crates/netipc/Cargo.toml` passed: 329 Rust unit tests passed, plus bin/doc test targets.
+  - `cmake --build build` passed.
+  - `/usr/bin/ctest --test-dir build --output-on-failure -R protocol` passed: 4/4 protocol tests.
+  - `bash tests/interop_codec.sh` passed after CTest, serially:
+    - Rust decoded C output: 89 passed, 0 failed.
+    - Go decoded C output: 90 passed, 0 failed.
+    - C decoded Rust output: 101 passed, 0 failed.
+    - Go decoded Rust output: 90 passed, 0 failed.
+    - C decoded Go output: 101 passed, 0 failed.
+    - Rust decoded Go output: 89 passed, 0 failed.
+    - C, Rust, and Go generated byte-identical protocol fixture files, including all apps lookup response variants.
+  - `codacy-analysis analyze --output-format json` passed:
+    - Checkov: 0 issues.
+    - Opengrep/Semgrep: 0 issues.
+    - Trivy: 0 issues.
+    - cppcheck: 0 issues.
+    - ShellCheck: 0 issues.
+    - Spectral: 0 issues.
+    - total: 0 issues, 0 errors.
   - `bash .agents/sow/audit.sh` passed and reported SOW initialization complete and clean.
   - `git diff --check` passed.
 - Lookup codec complexity validation:
@@ -547,7 +586,7 @@ Sensitive data gate:
 
 ## Outcome
 
-Raw cache, Go typed-facade, apps lookup, cgroups lookup, and the five Go code-scanning findings are locally remediated; the overall maintainability SOW remains in progress pending CI confirmation and the next useful target or closure decision.
+Raw cache, Go typed-facade, apps lookup builder, cgroups lookup builder, apps lookup semantic validation, and the five Go code-scanning findings are locally remediated; the overall maintainability SOW remains in progress pending CI confirmation and Codacy metric re-check.
 
 ## Lessons Extracted
 
diff --git a/src/crates/netipc/src/protocol/lookup.rs b/src/crates/netipc/src/protocol/lookup.rs
@@ -135,6 +135,35 @@ fn validate_apps_lookup_semantics(
     path_len: u64,
     name_len: u64,
     label_count: u64,
+) -> Result<(), NipcError> {
+    validate_apps_lookup_domains(status, cgroup_status, comm_len)?;
+    if status == PID_LOOKUP_UNKNOWN {
+        return validate_apps_lookup_unknown(
+            orchestrator,
+            cgroup_status,
+            ppid,
+            uid,
+            starttime,
+            comm_len,
+            path_len,
+            name_len,
+            label_count,
+        );
+    }
+    validate_apps_lookup_known(
+        cgroup_status,
+        orchestrator,
+        comm_len,
+        path_len,
+        name_len,
+        label_count,
+    )
+}
+
+fn validate_apps_lookup_domains(
+    status: u16,
+    cgroup_status: u16,
+    comm_len: u64,
 ) -> Result<(), NipcError> {
     if status != PID_LOOKUP_KNOWN && status != PID_LOOKUP_UNKNOWN {
         return Err(NipcError::BadLayout);
@@ -149,21 +178,43 @@ fn validate_apps_lookup_semantics(
     if comm_len > 15 {
         return Err(NipcError::BadLayout);
     }
-    if status == PID_LOOKUP_UNKNOWN {
-        if orchestrator != 0
-            || cgroup_status != 0
-            || ppid != 0
-            || uid != NIPC_UID_UNSET
-            || starttime != 0
-            || comm_len != 0
-            || path_len != 0
-            || name_len != 0
-            || label_count != 0
-        {
-            return Err(NipcError::BadLayout);
-        }
-        return Ok(());
+    Ok(())
+}
+
+fn validate_apps_lookup_unknown(
+    orchestrator: u16,
+    cgroup_status: u16,
+    ppid: u32,
+    uid: u32,
+    starttime: u64,
+    comm_len: u64,
+    path_len: u64,
+    name_len: u64,
+    label_count: u64,
+) -> Result<(), NipcError> {
+    if orchestrator != 0
+        || cgroup_status != 0
+        || ppid != 0
+        || uid != NIPC_UID_UNSET
+        || starttime != 0
+        || comm_len != 0
+        || path_len != 0
+        || name_len != 0
+        || label_count != 0
+    {
+        return Err(NipcError::BadLayout);
     }
+    Ok(())
+}
+
+fn validate_apps_lookup_known(
+    cgroup_status: u16,
+    orchestrator: u16,
+    comm_len: u64,
+    path_len: u64,
+    name_len: u64,
+    label_count: u64,
+) -> Result<(), NipcError> {
     if comm_len == 0 {
         return Err(NipcError::BadLayout);
     }
diff --git a/src/go/pkg/netipc/protocol/lookup.go b/src/go/pkg/netipc/protocol/lookup.go
@@ -64,6 +64,16 @@ func invalidSourceString(data []byte, requireNonEmpty bool) bool {
 }
 
 func validateAppsLookupSemantics(status, cgroupStatus, orchestrator uint16, ppid, uid uint32, starttime uint64, commLen, pathLen, nameLen, labelCount int) error {
+	if err := validateAppsLookupDomains(status, cgroupStatus, commLen); err != nil {
+		return err
+	}
+	if status == PidLookupUnknown {
+		return validateAppsLookupUnknown(orchestrator, cgroupStatus, ppid, uid, starttime, commLen, pathLen, nameLen, labelCount)
+	}
+	return validateAppsLookupKnown(cgroupStatus, orchestrator, commLen, pathLen, nameLen, labelCount)
+}
+
+func validateAppsLookupDomains(status, cgroupStatus uint16, commLen int) error {
 	if status != PidLookupKnown && status != PidLookupUnknown {
 		return ErrBadLayout
 	}
@@ -74,13 +84,18 @@ func validateAppsLookupSemantics(status, cgroupStatus, orchestrator uint16, ppid
 	if commLen > 15 {
 		return ErrBadLayout
 	}
-	if status == PidLookupUnknown {
-		if orchestrator != 0 || cgroupStatus != 0 || ppid != 0 || uid != NipcUIDUnset ||
-			starttime != 0 || commLen != 0 || pathLen != 0 || nameLen != 0 || labelCount != 0 {
-			return ErrBadLayout
-		}
-		return nil
+	return nil
+}
+
+func validateAppsLookupUnknown(orchestrator, cgroupStatus uint16, ppid, uid uint32, starttime uint64, commLen, pathLen, nameLen, labelCount int) error {
+	if orchestrator != 0 || cgroupStatus != 0 || ppid != 0 || uid != NipcUIDUnset ||
+		starttime != 0 || commLen != 0 || pathLen != 0 || nameLen != 0 || labelCount != 0 {
+		return ErrBadLayout
 	}
+	return nil
+}
+
+func validateAppsLookupKnown(cgroupStatus, orchestrator uint16, commLen, pathLen, nameLen, labelCount int) error {
 	if commLen == 0 {
 		return ErrBadLayout
 	}
diff --git a/src/libnetdata/netipc/src/protocol/netipc_protocol.c b/src/libnetdata/netipc/src/protocol/netipc_protocol.c
@@ -889,16 +889,9 @@ static bool source_string_invalid(const char *ptr, uint32_t len, bool require_no
     return ptr && bytes_have_nul(ptr, len);
 }
 
-static nipc_error_t apps_lookup_validate_semantics(uint16_t status,
-                                                   uint16_t cgroup_status,
-                                                   uint16_t orchestrator,
-                                                   uint32_t ppid,
-                                                   uint32_t uid,
-                                                   uint64_t starttime,
-                                                   uint64_t comm_len,
-                                                   uint64_t cgroup_path_len,
-                                                   uint64_t cgroup_name_len,
-                                                   uint64_t label_count)
+static nipc_error_t apps_lookup_validate_domains(uint16_t status,
+                                                 uint16_t cgroup_status,
+                                                 uint64_t comm_len)
 {
     if (status != NIPC_PID_LOOKUP_KNOWN &&
         status != NIPC_PID_LOOKUP_UNKNOWN)
@@ -910,17 +903,35 @@ static nipc_error_t apps_lookup_validate_semantics(uint16_t status,
         return NIPC_ERR_BAD_LAYOUT;
     if (comm_len > 15)
         return NIPC_ERR_BAD_LAYOUT;
+    return NIPC_OK;
+}
 
-    if (status == NIPC_PID_LOOKUP_UNKNOWN) {
-        if (orchestrator != 0 || cgroup_status != 0 ||
-            ppid != 0 || uid != NIPC_UID_UNSET ||
-            starttime != 0 || comm_len != 0 ||
-            cgroup_path_len != 0 || cgroup_name_len != 0 ||
-            label_count != 0)
-            return NIPC_ERR_BAD_LAYOUT;
-        return NIPC_OK;
-    }
+static nipc_error_t apps_lookup_validate_unknown(uint16_t orchestrator,
+                                                 uint16_t cgroup_status,
+                                                 uint32_t ppid,
+                                                 uint32_t uid,
+                                                 uint64_t starttime,
+                                                 uint64_t comm_len,
+                                                 uint64_t cgroup_path_len,
+                                                 uint64_t cgroup_name_len,
+                                                 uint64_t label_count)
+{
+    if (orchestrator != 0 || cgroup_status != 0 ||
+        ppid != 0 || uid != NIPC_UID_UNSET ||
+        starttime != 0 || comm_len != 0 ||
+        cgroup_path_len != 0 || cgroup_name_len != 0 ||
+        label_count != 0)
+        return NIPC_ERR_BAD_LAYOUT;
+    return NIPC_OK;
+}
 
+static nipc_error_t apps_lookup_validate_known(uint16_t cgroup_status,
+                                               uint16_t orchestrator,
+                                               uint64_t comm_len,
+                                               uint64_t cgroup_path_len,
+                                               uint64_t cgroup_name_len,
+                                               uint64_t label_count)
+{
     if (comm_len == 0)
         return NIPC_ERR_BAD_LAYOUT;
 
@@ -950,6 +961,30 @@ static nipc_error_t apps_lookup_validate_semantics(uint16_t status,
     return NIPC_OK;
 }
 
+static nipc_error_t apps_lookup_validate_semantics(uint16_t status,
+                                                   uint16_t cgroup_status,
+                                                   uint16_t orchestrator,
+                                                   uint32_t ppid,
+                                                   uint32_t uid,
+                                                   uint64_t starttime,
+                                                   uint64_t comm_len,
+                                                   uint64_t cgroup_path_len,
+                                                   uint64_t cgroup_name_len,
+                                                   uint64_t label_count)
+{
+    nipc_error_t err = apps_lookup_validate_domains(status, cgroup_status, comm_len);
+    if (err != NIPC_OK)
+        return err;
+    if (status == NIPC_PID_LOOKUP_UNKNOWN)
+        return apps_lookup_validate_unknown(orchestrator, cgroup_status,
+                                            ppid, uid, starttime, comm_len,
+                                            cgroup_path_len, cgroup_name_len,
+                                            label_count);
+    return apps_lookup_validate_known(cgroup_status, orchestrator,
+                                      comm_len, cgroup_path_len,
+                                      cgroup_name_len, label_count);
+}
+
 static nipc_error_t cgroups_lookup_validate_semantics(uint16_t status,
                                                       uint16_t orchestrator,
                                                       uint64_t path_len,
