mirror
/
oragono
mirror of https://github.com/oragono/oragono
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 67 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3420 Commits
20 Branches
Branch: labeled-response-all
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'labeled-response-all'
${ noResults }
oragono/irc/authscript.go

authscript.go 2.6KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 
  1. // Copyright (c) 2020 Shivaram Lingamneni

  2. // released under the MIT license

  3. 

  4. package irc

  5. 

  6. import (

  7. 	"bufio"

  8. 	"encoding/json"

  9. 	"fmt"

  10. 	"io"

  11. 	"os/exec"

  12. 	"syscall"

  13. 	"time"

  14. )

  15. 

  16. // JSON-serializable input and output types for the script

  17. type AuthScriptInput struct {

  18. 	AccountName string `json:"accountName,omitempty"`

  19. 	Passphrase  string `json:"passphrase,omitempty"`

  20. 	Certfp      string `json:"certfp,omitempty"`

  21. 	IP          string `json:"ip,omitempty"`

  22. }

  23. 

  24. type AuthScriptOutput struct {

  25. 	AccountName string `json:"accountName"`

  26. 	Success     bool   `json:"success"`

  27. 	Error       string `json:"error"`

  28. }

  29. 

  30. // internal tupling of output and error for passing over a channel

  31. type authScriptResponse struct {

  32. 	output AuthScriptOutput

  33. 	err    error

  34. }

  35. 

  36. func CheckAuthScript(config AuthScriptConfig, input AuthScriptInput) (output AuthScriptOutput, err error) {

  37. 	inputBytes, err := json.Marshal(input)

  38. 	if err != nil {

  39. 		return

  40. 	}

  41. 	cmd := exec.Command(config.Command, config.Args...)

  42. 	stdin, err := cmd.StdinPipe()

  43. 	if err != nil {

  44. 		return

  45. 	}

  46. 	stdout, err := cmd.StdoutPipe()

  47. 	if err != nil {

  48. 		return

  49. 	}

  50. 

  51. 	channel := make(chan authScriptResponse, 1)

  52. 	err = cmd.Start()

  53. 	if err != nil {

  54. 		return

  55. 	}

  56. 	stdin.Write(inputBytes)

  57. 	stdin.Write([]byte{'\n'})

  58. 

  59. 	// lots of potential race conditions here. we want to ensure that Wait()

  60. 	// will be called, and will return, on the other goroutine, no matter

  61. 	// where it is blocked. If it's blocked on ReadBytes(), we will kill it

  62. 	// (first with SIGTERM, then with SIGKILL) and ReadBytes will return

  63. 	// with EOF. If it's blocked on Wait(), then one of the kill signals

  64. 	// will succeed and unblock it.

  65. 	go processAuthScriptOutput(cmd, stdout, channel)

  66. 	outputTimer := time.NewTimer(config.Timeout)

  67. 	select {

  68. 	case response := <-channel:

  69. 		return response.output, response.err

  70. 	case <-outputTimer.C:

  71. 	}

  72. 

  73. 	err = errTimedOut

  74. 	cmd.Process.Signal(syscall.SIGTERM)

  75. 	termTimer := time.NewTimer(config.Timeout)

  76. 	select {

  77. 	case <-channel:

  78. 		return

  79. 	case <-termTimer.C:

  80. 	}

  81. 

  82. 	cmd.Process.Kill()

  83. 	return

  84. }

  85. 

  86. func processAuthScriptOutput(cmd *exec.Cmd, stdout io.Reader, channel chan authScriptResponse) {

  87. 	var response authScriptResponse

  88. 	var out AuthScriptOutput

  89. 

  90. 	reader := bufio.NewReader(stdout)

  91. 	outBytes, err := reader.ReadBytes('\n')

  92. 	if err == nil {

  93. 		err = json.Unmarshal(outBytes, &out)

  94. 		if err == nil {

  95. 			response.output = out

  96. 			if out.Error != "" {

  97. 				err = fmt.Errorf("Authentication process reported error: %s", out.Error)

  98. 			}

  99. 		}

  100. 	}

  101. 	response.err = err

  102. 

  103. 	// always call Wait() to ensure resource cleanup

  104. 	err = cmd.Wait()

  105. 	if err != nil {

  106. 		response.err = err

  107. 	}

  108. 

  109. 	channel <- response

  110. }