forked from Silverfish/proton-bridge
feat(GODT-2255): Randomize the focus service port.
This commit is contained in:
Romain Le Jeune
@ -1,66 +0,0 @@
|
||||
// Copyright (c) 2023 Proton AG
|
||||
//
|
||||
// This file is part of Proton Mail Bridge.Bridge.
|
||||
//
|
||||
// Proton Mail Bridge is free software: you can redistribute it and/or modify
|
||||
// it under the terms of the GNU General Public License as published by
|
||||
// the Free Software Foundation, either version 3 of the License, or
|
||||
// (at your option) any later version.
|
||||
//
|
||||
// Proton Mail Bridge is distributed in the hope that it will be useful,
|
||||
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||
// GNU General Public License for more details.
|
||||
//
|
||||
// You should have received a copy of the GNU General Public License
|
||||
// along with Proton Mail Bridge. If not, see <https://www.gnu.org/licenses/>.
|
||||
|
||||
package grpc
|
||||
|
||||
import (
|
||||
"encoding/json"
|
||||
"os"
|
||||
)
|
||||
|
||||
// Config is a structure containing the service configuration data that are exchanged by the gRPC server and client.
|
||||
type Config struct {
|
||||
Port int `json:"port"`
|
||||
Cert string `json:"cert"`
|
||||
Token string `json:"token"`
|
||||
FileSocketPath string `json:"fileSocketPath"`
|
||||
}
|
||||
|
||||
// save saves a gRPC service configuration to file.
|
||||
func (s *Config) save(path string) error {
|
||||
// Another process may be waiting for this file to be available. In order to prevent this process to open
|
||||
// the file while we are writing in it, we write it with a temp file name, then rename it.
|
||||
tempPath := path + "_"
|
||||
if err := s._save(tempPath); err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
return os.Rename(tempPath, path)
|
||||
}
|
||||
|
||||
func (s *Config) _save(path string) error {
|
||||
f, err := os.Create(path) //nolint:errcheck,gosec
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
defer func() { _ = f.Close() }()
|
||||
|
||||
return json.NewEncoder(f).Encode(s)
|
||||
}
|
||||
|
||||
// load loads a gRPC service configuration from file.
|
||||
func (s *Config) load(path string) error {
|
||||
f, err := os.Open(path) //nolint:errcheck,gosec
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
defer func() { _ = f.Close() }()
|
||||
|
||||
return json.NewDecoder(f).Decode(s)
|
||||
}
|
||||
@ -1,57 +0,0 @@
|
||||
// Copyright (c) 2023 Proton AG
|
||||
//
|
||||
// This file is part of Proton Mail Bridge.
|
||||
//
|
||||
// Proton Mail Bridge is free software: you can redistribute it and/or modify
|
||||
// it under the terms of the GNU General Public License as published by
|
||||
// the Free Software Foundation, either version 3 of the License, or
|
||||
// (at your option) any later version.
|
||||
//
|
||||
// Proton Mail Bridge is distributed in the hope that it will be useful,
|
||||
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||
// GNU General Public License for more details.
|
||||
//
|
||||
// You should have received a copy of the GNU General Public License
|
||||
// along with Proton Mail Bridge. If not, see <https://www.gnu.org/licenses/>.
|
||||
|
||||
package grpc
|
||||
|
||||
import (
|
||||
"path/filepath"
|
||||
"testing"
|
||||
|
||||
"github.com/stretchr/testify/require"
|
||||
)
|
||||
|
||||
const (
|
||||
dummyPort = 12
|
||||
dummyCert = "A dummy cert"
|
||||
dummyToken = "A dummy token"
|
||||
tempFileName = "test.json"
|
||||
socketPath = "/a/socket/file/path"
|
||||
)
|
||||
|
||||
func TestConfig(t *testing.T) {
|
||||
conf1 := Config{
|
||||
Port: dummyPort,
|
||||
Cert: dummyCert,
|
||||
Token: dummyToken,
|
||||
FileSocketPath: socketPath,
|
||||
}
|
||||
|
||||
// Read-back test
|
||||
tempDir := t.TempDir()
|
||||
tempFilePath := filepath.Join(tempDir, tempFileName)
|
||||
require.NoError(t, conf1.save(tempFilePath))
|
||||
|
||||
conf2 := Config{}
|
||||
require.NoError(t, conf2.load(tempFilePath))
|
||||
require.Equal(t, conf1, conf2)
|
||||
|
||||
// failure to load
|
||||
require.Error(t, conf2.load(tempFilePath+"_"))
|
||||
|
||||
// failure to save
|
||||
require.Error(t, conf2.save(filepath.Join(tempDir, "non/existing/folder", tempFileName)))
|
||||
}
|
||||
@ -38,6 +38,7 @@ import (
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/certs"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/events"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/safe"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/service"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/updater"
|
||||
"github.com/bradenaw/juniper/xslices"
|
||||
"github.com/elastic/go-sysinfo"
|
||||
@ -97,7 +98,7 @@ type Service struct { // nolint:structcheck
|
||||
func NewService(
|
||||
panicHandler CrashHandler,
|
||||
restarter Restarter,
|
||||
locations Locator,
|
||||
locations service.Locator,
|
||||
bridge *bridge.Bridge,
|
||||
eventCh <-chan events.Event,
|
||||
quitCh <-chan struct{},
|
||||
@ -109,7 +110,7 @@ func NewService(
|
||||
logrus.WithError(err).Panic("Could not generate gRPC TLS config")
|
||||
}
|
||||
|
||||
config := Config{
|
||||
config := service.Config{
|
||||
Cert: string(certPEM),
|
||||
Token: uuid.NewString(),
|
||||
}
|
||||
@ -140,7 +141,7 @@ func NewService(
|
||||
config.Port = address.Port
|
||||
}
|
||||
|
||||
if path, err := saveGRPCServerConfigFile(locations, &config); err != nil {
|
||||
if path, err := service.SaveGRPCServerConfigFile(locations, &config, serverConfigFileName); err != nil {
|
||||
logrus.WithError(err).WithField("path", path).Panic("Could not write gRPC service config file")
|
||||
} else {
|
||||
logrus.WithField("path", path).Info("Successfully saved gRPC service config file")
|
||||
@ -486,17 +487,6 @@ func newTLSConfig() (*tls.Config, []byte, error) {
|
||||
}, certPEM, nil
|
||||
}
|
||||
|
||||
func saveGRPCServerConfigFile(locations Locator, config *Config) (string, error) {
|
||||
settingsPath, err := locations.ProvideSettingsPath()
|
||||
if err != nil {
|
||||
return "", err
|
||||
}
|
||||
|
||||
configPath := filepath.Join(settingsPath, serverConfigFileName)
|
||||
|
||||
return configPath, config.save(configPath)
|
||||
}
|
||||
|
||||
// validateServerToken verify that the server token provided by the client is valid.
|
||||
func validateServerToken(ctx context.Context, wantToken string) error {
|
||||
values, ok := metadata.FromIncomingContext(ctx)
|
||||
|
||||
@ -32,6 +32,7 @@ import (
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/events"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/frontend/theme"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/safe"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/service"
|
||||
"github.com/ProtonMail/proton-bridge/v3/internal/updater"
|
||||
"github.com/ProtonMail/proton-bridge/v3/pkg/keychain"
|
||||
"github.com/ProtonMail/proton-bridge/v3/pkg/ports"
|
||||
@ -51,8 +52,8 @@ func (s *Service) CheckTokens(ctx context.Context, clientConfigPath *wrapperspb.
|
||||
path := clientConfigPath.Value
|
||||
logEntry := s.log.WithField("path", path)
|
||||
|
||||
var clientConfig Config
|
||||
if err := clientConfig.load(path); err != nil {
|
||||
var clientConfig service.Config
|
||||
if err := clientConfig.Load(path); err != nil {
|
||||
logEntry.WithError(err).Error("Could not read gRPC client config file")
|
||||
|
||||
return nil, err
|
||||
|
||||
@ -26,7 +26,3 @@ type Restarter interface {
|
||||
AddFlags(flags ...string)
|
||||
Override(exe string)
|
||||
}
|
||||
|
||||
type Locator interface {
|
||||
ProvideSettingsPath() (string, error)
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user