mirror of
https://github.com/garrytan/gstack.git
synced 2026-05-16 09:12:13 +08:00
0c88517a0f
* feat(config): add resolveGstackHome, resolveChromiumProfile, cleanSingletonLocks Three new exported helpers in browse/src/config.ts: - resolveGstackHome(): honors GSTACK_HOME env, falls back to os.homedir()/.gstack Matches the existing convention in browse/src/telemetry.ts:26 and browse/src/domain-skills.ts:66. - resolveChromiumProfile(explicit?): explicit arg wins -> CHROMIUM_PROFILE env -> resolveGstackHome()/chromium-profile. Lets gbrowser pass per-workspace profile paths through ServerConfig instead of relying on ambient env state. - cleanSingletonLocks(dir): removes SingletonLock/Socket/Cookie via safeUnlinkQuiet. Defensive guard refuses to operate unless dir basename is 'chromium-profile' OR matches explicit CHROMIUM_PROFILE env value, preventing accidental deletion in unrelated directories. Extends browse/test/config.test.ts with 12 tests covering env precedence, guard behavior, ENOENT swallowing, and CHROMIUM_PROFILE override. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * fix(security-classifier): TDZ when claude CLI is missing from PATH The checkTranscript Promise executor in browse/src/security-classifier.ts referenced `finish()` at the !claude early-return guard before declaring it 5 lines later. JavaScript throws ReferenceError: Cannot access 'finish' before initialization (TDZ) for that path, but the path is only reachable when resolveClaudeCommand returns null inside the spawn block (a TOCTOU window vs. the outer checkHaikuAvailable cache). Fix: hoist `let stdout = ''`, `let done = false`, and `const finish` block above `const claude = resolveClaudeCommand()` so finish is in scope before any reference to it. Behavior is identical when claude is on PATH; the fix only matters for the dormant missing-CLI degraded path. Adds browse/test/security-classifier-tdz.test.ts as the regression guard: clears PATH + override env vars, calls checkTranscript, asserts the result serializes with degraded:true and a meaningful reason field. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * feat(browser-manager): isCustomChromium gate + per-workspace profile + lock cleanup Three fold-ins so gbrowser can become a thin overlay instead of forking browse-server: - Export isCustomChromium(): detects custom Chromium builds that bake the extension in as a component extension. Prefers explicit GSTACK_CHROMIUM_KIND=custom-extension-baked signal; falls back to GSTACK_CHROMIUM_PATH substring containing 'GBrowser' / 'gbrowser'. Gates the --load-extension push at launchHeaded so we don't trigger ServiceWorkerState::SetWorkerId DCHECK when two copies of the same service worker race to register. - Swap hardcoded path.join(HOME, '.gstack', 'chromium-profile') in launchHeaded for resolveChromiumProfile() so phoenix can pass a per-workspace profile via CHROMIUM_PROFILE env (one daemon per gbd workspace, each with a distinct profile dir). - Call cleanSingletonLocks(userDataDir) immediately after mkdirSync. Chromium's ProcessSingleton refuses to start when stale SingletonLock/Socket/Cookie files survive a SIGKILL or hard crash; pre-launch cleanup defends against the crash case. Safe under external coordination (gbd.lock for gbrowser, single-instance CLI check for gstack). The existing .auth.json write at L291-302 is preserved — extensions still need it for bootstrap even when component-baked. Adds browse/test/browser-manager-custom-chromium.test.ts with 8 tests covering both the env-kind and path-substring signals plus stock / playwright-bundled Chromium negative cases. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * feat(server): factory-export API surface + import.meta.main gate Surfaces the embedder API gbrowser (phoenix) needs to consume gstack as a submodule, and gates module-load side effects so the file is safe to import without auto-starting a daemon. Changes to browse/src/server.ts: - AUTH_TOKEN now honors process.env.AUTH_TOKEN (trimmed) before falling back to crypto.randomUUID(). Whitespace-only values are rejected so the security boundary can't be silently weakened. - New exported types: ServerConfig and ServerHandle. ServerConfig documents the full factory contract (authToken, browsePort, idleTimeoutMs, config, browserManager, chromiumProfile, xvfb, proxyBridge, startTime, beforeRoute). ServerHandle documents the return shape (fetchLocal, fetchTunnel, shutdown, stopListeners). Caller-owned lifecycle annotations on xvfb and proxyBridge prevent double-close bugs from surprise ownership. - New exported function: resolveConfigFromEnv() builds a ServerConfig-shaped object from process.env for CLI use. Embedders construct their own ServerConfig explicitly. - start() is now exported. Embedders can call it with env vars set as a v1 escape hatch until full buildFetchHandler extraction lands. - Signal handlers (SIGINT, SIGTERM, Windows exit, uncaughtException, unhandledRejection) and the auto-kickoff at module bottom are now wrapped in `if (import.meta.main)`. CLI path is unchanged. Embedders register their own handlers. - shutdown() and emergencyCleanup() now call cleanSingletonLocks( resolveChromiumProfile()) instead of inline path+loop. Single implementation, defensive guard, honors per-workspace CHROMIUM_PROFILE. New tests: - browse/test/server-no-import-side-effects.test.ts: spawns a fresh Bun subprocess that imports server.ts, asserts no signal handlers registered, no state-dir populated. Guards the core refactor invariant from regression. - browse/test/server-factory.test.ts: 12 tests covering AUTH_TOKEN env behavior (honored, whitespace-rejected, trimmed), preserved exports (TUNNEL_COMMANDS, canDispatchOverTunnel), and ServerConfig/ServerHandle type compatibility. Deferred to follow-up PR: full buildFetchHandler extraction that hoists the 13 module-level mutables + helpers into a factory closure. Phoenix can ship v0.6.0.0 against the start()+env surface today; the cleaner factory comes next. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * fix: harden auth-token validation, TDZ try/catch, lockfile path safety Three security hardening fixes from /ship adversarial review: 1. AUTH_TOKEN unicode-whitespace bypass (server.ts:67-83). Old: `process.env.AUTH_TOKEN?.trim() || randomUUID()` only stripped ASCII whitespace. A misconfigured embedder shipping AUTH_TOKEN=$'' (BOM) or $'' (zero-width space) would silently get a one-character bearer secret. New `sanitizeAuthToken()` strips all unicode whitespace via regex and requires >= 16 chars after stripping; anything shorter falls back to crypto.randomUUID(). Same sanitizer used by `resolveConfigFromEnv()` so the embedder path is hardened too. 2. security-classifier.ts checkTranscript safety net. `resolveClaudeCommand()` and `spawn()` can throw under transient conditions (PATH probe failure, posix_spawn ENOMEM). Old code let the throw propagate and rejected the Promise with a raw exception. Now wrapped in try/catch that calls finish() with a degraded signal, matching the graceful-degradation contract the layer already promises for missing-CLI / exit-nonzero / parse-error. 3. cleanSingletonLocks defensive guard tightened (config.ts). Old: basename === 'chromium-profile' OR userDataDir === $CHROMIUM_PROFILE. The second branch was env-controlled and the first was bypassable by passing a relative path that resolved to chromium-profile via CWD drift. New guard: refuses relative paths outright, resolves both sides via path.resolve(), and only accepts the env-match path when $CHROMIUM_PROFILE is itself absolute. Test updates: replace the old `.trim()` test with three new cases covering unicode-whitespace stripping, short-token rejection, and zero-width-only rejection (server-factory.test.ts). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * chore: bump version and changelog (v1.34.0.0) Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
221 lines
7.3 KiB
TypeScript
221 lines
7.3 KiB
TypeScript
/**
|
|
* Shared config for browse CLI + server.
|
|
*
|
|
* Resolution:
|
|
* 1. BROWSE_STATE_FILE env → derive stateDir from parent
|
|
* 2. git rev-parse --show-toplevel → projectDir/.gstack/
|
|
* 3. process.cwd() fallback (non-git environments)
|
|
*
|
|
* The CLI computes the config and passes BROWSE_STATE_FILE to the
|
|
* spawned server. The server derives all paths from that env var.
|
|
*/
|
|
|
|
import * as fs from 'fs';
|
|
import * as os from 'os';
|
|
import * as path from 'path';
|
|
import { mkdirSecure } from './file-permissions';
|
|
import { safeUnlinkQuiet } from './error-handling';
|
|
|
|
export interface BrowseConfig {
|
|
projectDir: string;
|
|
stateDir: string;
|
|
stateFile: string;
|
|
consoleLog: string;
|
|
networkLog: string;
|
|
dialogLog: string;
|
|
auditLog: string;
|
|
}
|
|
|
|
/**
|
|
* Detect the git repository root, or null if not in a repo / git unavailable.
|
|
*/
|
|
export function getGitRoot(): string | null {
|
|
try {
|
|
const proc = Bun.spawnSync(['git', 'rev-parse', '--show-toplevel'], {
|
|
stdout: 'pipe',
|
|
stderr: 'pipe',
|
|
timeout: 2_000, // Don't hang if .git is broken
|
|
});
|
|
if (proc.exitCode !== 0) return null;
|
|
return proc.stdout.toString().trim() || null;
|
|
} catch {
|
|
return null;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Resolve all browse config paths.
|
|
*
|
|
* If BROWSE_STATE_FILE is set (e.g. by CLI when spawning server, or by
|
|
* tests for isolation), all paths are derived from it. Otherwise, the
|
|
* project root is detected via git or cwd.
|
|
*/
|
|
export function resolveConfig(
|
|
env: Record<string, string | undefined> = process.env,
|
|
): BrowseConfig {
|
|
let stateFile: string;
|
|
let stateDir: string;
|
|
let projectDir: string;
|
|
|
|
if (env.BROWSE_STATE_FILE) {
|
|
stateFile = env.BROWSE_STATE_FILE;
|
|
stateDir = path.dirname(stateFile);
|
|
projectDir = path.dirname(stateDir); // parent of .gstack/
|
|
} else {
|
|
projectDir = getGitRoot() || process.cwd();
|
|
stateDir = path.join(projectDir, '.gstack');
|
|
stateFile = path.join(stateDir, 'browse.json');
|
|
}
|
|
|
|
return {
|
|
projectDir,
|
|
stateDir,
|
|
stateFile,
|
|
consoleLog: path.join(stateDir, 'browse-console.log'),
|
|
networkLog: path.join(stateDir, 'browse-network.log'),
|
|
dialogLog: path.join(stateDir, 'browse-dialog.log'),
|
|
auditLog: path.join(stateDir, 'browse-audit.jsonl'),
|
|
};
|
|
}
|
|
|
|
/**
|
|
* Create the .gstack/ state directory if it doesn't exist.
|
|
* Throws with a clear message on permission errors.
|
|
*/
|
|
export function ensureStateDir(config: BrowseConfig): void {
|
|
try {
|
|
mkdirSecure(config.stateDir);
|
|
} catch (err: any) {
|
|
if (err.code === 'EACCES') {
|
|
throw new Error(`Cannot create state directory ${config.stateDir}: permission denied`);
|
|
}
|
|
if (err.code === 'ENOTDIR') {
|
|
throw new Error(`Cannot create state directory ${config.stateDir}: a file exists at that path`);
|
|
}
|
|
throw err;
|
|
}
|
|
|
|
// Ensure .gstack/ is in the project's .gitignore
|
|
const gitignorePath = path.join(config.projectDir, '.gitignore');
|
|
try {
|
|
const content = fs.readFileSync(gitignorePath, 'utf-8');
|
|
if (!content.match(/^\.gstack\/?$/m)) {
|
|
const separator = content.endsWith('\n') ? '' : '\n';
|
|
fs.appendFileSync(gitignorePath, `${separator}.gstack/\n`);
|
|
}
|
|
} catch (err: any) {
|
|
if (err.code !== 'ENOENT') {
|
|
// Write warning to server log (visible even in daemon mode)
|
|
const logPath = path.join(config.stateDir, 'browse-server.log');
|
|
try {
|
|
fs.appendFileSync(logPath, `[${new Date().toISOString()}] Warning: could not update .gitignore at ${gitignorePath}: ${err.message}\n`);
|
|
} catch {
|
|
// stateDir write failed too — nothing more we can do
|
|
}
|
|
}
|
|
// ENOENT (no .gitignore) — skip silently
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Derive a slug from the git remote origin URL (owner-repo format).
|
|
* Falls back to the directory basename if no remote is configured.
|
|
*/
|
|
export function getRemoteSlug(): string {
|
|
try {
|
|
const proc = Bun.spawnSync(['git', 'remote', 'get-url', 'origin'], {
|
|
stdout: 'pipe',
|
|
stderr: 'pipe',
|
|
timeout: 2_000,
|
|
});
|
|
if (proc.exitCode !== 0) throw new Error('no remote');
|
|
const url = proc.stdout.toString().trim();
|
|
// SSH: git@github.com:owner/repo.git → owner-repo
|
|
// HTTPS: https://github.com/owner/repo.git → owner-repo
|
|
const match = url.match(/[:/]([^/]+)\/([^/]+?)(?:\.git)?$/);
|
|
if (match) return `${match[1]}-${match[2]}`;
|
|
throw new Error('unparseable');
|
|
} catch {
|
|
const root = getGitRoot();
|
|
return path.basename(root || process.cwd());
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Read the binary version (git SHA) from browse/dist/.version.
|
|
* Returns null if the file doesn't exist or can't be read.
|
|
*/
|
|
export function readVersionHash(execPath: string = process.execPath): string | null {
|
|
try {
|
|
const versionFile = path.resolve(path.dirname(execPath), '.version');
|
|
return fs.readFileSync(versionFile, 'utf-8').trim() || null;
|
|
} catch {
|
|
return null;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Resolve the gstack home directory.
|
|
*
|
|
* Honors the existing convention used by telemetry.ts and domain-skills.ts:
|
|
* 1. GSTACK_HOME env (explicit override)
|
|
* 2. $HOME/.gstack (default)
|
|
*/
|
|
export function resolveGstackHome(): string {
|
|
return process.env.GSTACK_HOME || path.join(os.homedir(), '.gstack');
|
|
}
|
|
|
|
/**
|
|
* Resolve the Chromium profile directory.
|
|
*
|
|
* Resolution order:
|
|
* 1. `explicit` arg (passed via ServerConfig.chromiumProfile by embedders)
|
|
* 2. CHROMIUM_PROFILE env (used by gbrowser's gbd per-workspace)
|
|
* 3. <resolveGstackHome()>/chromium-profile (default)
|
|
*/
|
|
export function resolveChromiumProfile(explicit?: string): string {
|
|
if (explicit && explicit.length > 0) return explicit;
|
|
const env = process.env.CHROMIUM_PROFILE;
|
|
if (env && env.length > 0) return env;
|
|
return path.join(resolveGstackHome(), 'chromium-profile');
|
|
}
|
|
|
|
/**
|
|
* Pre-launch / shutdown cleanup of stale Chromium singleton lockfiles
|
|
* (SingletonLock, SingletonSocket, SingletonCookie). Chromium's
|
|
* ProcessSingleton refuses to start when these exist from a prior crash
|
|
* (SIGKILL, hard crash, etc.) since they point at a PID that no longer exists.
|
|
*
|
|
* Defensive guard: refuses to operate unless ALL of these hold:
|
|
* 1. `userDataDir` is an absolute path (no CWD-relative footguns)
|
|
* 2. basename is exactly 'chromium-profile' OR the absolute path matches
|
|
* the absolute form of $CHROMIUM_PROFILE env value
|
|
*
|
|
* Prevents accidentally deleting lock files from an unrelated directory if
|
|
* profile resolution is misconfigured upstream (CWD drift, env injection).
|
|
*
|
|
* Caller MUST ensure external coordination has already guaranteed no live
|
|
* peer is using this profile (gbd.lock for gbrowser; single-instance CLI
|
|
* check for gstack).
|
|
*/
|
|
export function cleanSingletonLocks(userDataDir: string): void {
|
|
if (!path.isAbsolute(userDataDir)) {
|
|
console.warn(`[browse] cleanSingletonLocks: refusing relative path: ${userDataDir}`);
|
|
return;
|
|
}
|
|
const resolved = path.resolve(userDataDir);
|
|
const basename = path.basename(resolved);
|
|
const explicitProfile = process.env.CHROMIUM_PROFILE;
|
|
const explicitAbs = explicitProfile && path.isAbsolute(explicitProfile)
|
|
? path.resolve(explicitProfile)
|
|
: null;
|
|
const isSafe = basename === 'chromium-profile' || (explicitAbs !== null && resolved === explicitAbs);
|
|
if (!isSafe) {
|
|
console.warn(`[browse] cleanSingletonLocks: refusing to clean unrecognized profile dir: ${resolved}`);
|
|
return;
|
|
}
|
|
for (const lockFile of ['SingletonLock', 'SingletonSocket', 'SingletonCookie']) {
|
|
safeUnlinkQuiet(path.join(resolved, lockFile));
|
|
}
|
|
}
|