Check that filename matches ID in csaf_checker

2025-12-22 11:55:40 +01:00 · 2023-04-25 19:24:59 +02:00 · 2023-04-25 19:24:59 +02:00 · c37b127d82
commit c37b127d82
parent 900da91687
1 changed files with 8 additions and 0 deletions
--- a/cmd/csaf_checker/processor.go
+++ b/cmd/csaf_checker/processor.go
@ -423,6 +423,7 @@ func (p *processor) integrity(
 	client := p.httpClient()

 	var data bytes.Buffer
+	eval := util.NewPathEval()

 	makeAbs := func(u *url.URL) *url.URL {
 		if u.IsAbs() {
@ -512,6 +513,13 @@ func (p *processor) integrity(
 			p.invalidAdvisories.error("CSAF file %s has %d validation errors.", u, len(errors))
 		}

+		if err := util.IDMatchesFilename(eval, doc, filepath.Base(u)); err != nil {
+
+			p.invalidAdvisories.error("%s: %v\n", u, err)
+			continue
+
+		}
+
 		// Validate against remote validator.
 		if p.validator != nil {
 			if rvr, err := p.validator.Validate(doc); err != nil {