From cda0927fa4692a905e083490035d143e014b8f00 Mon Sep 17 00:00:00 2001
From: Wesley Hershberger <wesley.hershberger@canonical.com>
Date: Fri, 19 Apr 2024 15:51:46 -0500
Subject: [PATCH] internal/rest: Validate new member names serverside

We probably shouldn't just rely on the client to validate new cluster
member names correctly.

Signed-off-by: Wesley Hershberger <wesley.hershberger@canonical.com>
---
 internal/rest/resources/cluster.go | 6 ++++++
 internal/rest/resources/control.go | 8 ++++++++
 2 files changed, 14 insertions(+)

diff --git a/internal/rest/resources/cluster.go b/internal/rest/resources/cluster.go
index 77d4ae48..6b877d68 100644
--- a/internal/rest/resources/cluster.go
+++ b/internal/rest/resources/cluster.go
@@ -17,6 +17,7 @@ import (
 	"github.com/canonical/lxd/lxd/response"
 	"github.com/canonical/lxd/shared/api"
 	"github.com/canonical/lxd/shared/logger"
+	"github.com/canonical/lxd/shared/validate"
 	"github.com/gorilla/mux"
 	"golang.org/x/sys/unix"
 
@@ -97,6 +98,11 @@ func clusterPost(s *state.State, r *http.Request) response.Response {
 		return response.SmartError(err)
 	}
 
+	err = validate.IsHostname(req.Name)
+	if err != nil {
+		return response.SmartError(fmt.Errorf("Invalid cluster member name %q: %w", req.Name, err))
+	}
+
 	// Check if any of the remote's addresses are currently in use.
 	existingRemote := s.Remotes().RemoteByAddress(req.Address)
 	if existingRemote != nil {
diff --git a/internal/rest/resources/control.go b/internal/rest/resources/control.go
index f25ce953..c684585f 100644
--- a/internal/rest/resources/control.go
+++ b/internal/rest/resources/control.go
@@ -11,6 +11,7 @@ import (
 	"github.com/canonical/lxd/shared"
 	"github.com/canonical/lxd/shared/api"
 	"github.com/canonical/lxd/shared/logger"
+	"github.com/canonical/lxd/shared/validate"
 
 	"github.com/canonical/microcluster/internal/rest/access"
 	"github.com/canonical/microcluster/internal/rest/client"
@@ -43,6 +44,13 @@ func controlPost(state *state.State, r *http.Request) response.Response {
 		return joinWithToken(state, req)
 	}
 
+	if req.Bootstrap {
+		err = validate.IsHostname(req.Name)
+		if err != nil {
+			return response.SmartError(fmt.Errorf("Invalid cluster member name %q: %w", req.Name, err))
+		}
+	}
+
 	daemonConfig := &trust.Location{Address: req.Address, Name: req.Name}
 	err = state.StartAPI(req.Bootstrap, req.InitConfig, daemonConfig)
 	if err != nil {