wip

use auth bypass
upload scripts
2024-12-26 15:46:56 -08:00 · 2024-12-26 15:28:46 -08:00 · 2024-12-26 15:28:46 -08:00
2 changed files with 171 additions and 19 deletions
--- a/src/cmd/mod.rs
+++ b/src/cmd/mod.rs
@ -0,0 +1,26 @@
 use clap::{Args,Parser,Subcommand};
 #[derive(Parser)]
 #[command(author,version,about,long_about=None)]
 #[command(propagate_version=true)]
 pub struct Cli{
 	#[command(subcommand)]
 	command:Commands,
 }
 #[derive(Subcommand)]
 pub enum Commands{
 	Review(ReviewCommand),
 	UploadScripts(UploadScriptsCommand),
 }
 #[derive(Args)]
 struct ReviewCommand{
 	#[arg(long)]
 	cookie:String,
 }
 #[derive(Args)]
 struct UploadScriptsCommand{
 	#[arg(long)]
 	session_id:PathBuf,
 }
--- a/src/main.rs
+++ b/src/main.rs
@ -1,23 +1,7 @@
-use clap::{Args,Parser,Subcommand};
+mod cmd;
-#[derive(Parser)]
+use cmd::{Cli,Commands};
-#[command(author,version,about,long_about=None)]
+use futures::{StreamExt,TryStreamExt};
 #[command(propagate_version=true)]
 struct Cli{
 	#[command(subcommand)]
 	command:Commands,
 }
 #[derive(Subcommand)]
 enum Commands{
 	Review(ReviewCommand),
 }
 #[derive(Args)]
 struct ReviewCommand{
 	#[arg(long)]
 	cookie:String,
 }
 #[tokio::main]
 async fn main(){
@ -26,6 +10,7 @@ async fn main(){
 		Commands::Review(command)=>review(ReviewConfig{
 			cookie:command.cookie,
 		}).await.unwrap(),
 		Commands::UploadScripts(command)=>upload_scripts(command.session_id).await.unwrap(),
 	}
 }
@ -158,3 +143,144 @@ async fn review(config:ReviewConfig)->Result<(),ReviewError>{
 	Ok(())
 }
 fn hash_source(source:&str)->u64{
 	let mut hasher=siphasher::sip::SipHasher::new();
 	std::hash::Hasher::write(&mut hasher,source.as_bytes());
 	std::hash::Hasher::finish(&hasher)
 }
 fn hash_format(hash:u64)->String{
 	format!("{:016x}",hash)
 }
 type GOCError=submissions_api::types::SingleItemError;
 type GOCResult=Result<submissions_api::types::ScriptID,GOCError>;
 async fn get_or_create_script(api:&submissions_api::external::Context,source:&str)->GOCResult{
 	let script_response=api.get_script_from_hash(submissions_api::types::HashRequest{
 		hash:hash_format(hash_source(source)).as_str(),
 	}).await?;
 	Ok(match script_response{
 		Some(script_response)=>script_response.ID,
 		None=>api.create_script(submissions_api::types::CreateScriptRequest{
 			Name:"Script",
 			Source:source,
 			SubmissionID:None,
 		}).await.map_err(GOCError::Other)?.ID
 	})
 }
 async fn check_or_create_script_poicy(
 	api:&submissions_api::external::Context,
 	hash:&str,
 	script_policy:submissions_api::types::CreateScriptPolicyRequest,
 )->Result<(),GOCError>{
 	let script_policy_result=api.get_script_policy_from_hash(submissions_api::types::HashRequest{
 		hash,
 	}).await?;
 	match script_policy_result{
 		Some(script_policy_reponse)=>{
 			// check that everything matches the expectation
 			assert!(hash==script_policy_reponse.FromScriptHash);
 			assert!(script_policy.ToScriptID==script_policy_reponse.ToScriptID);
 			assert!(script_policy.Policy==script_policy_reponse.Policy);
 		},
 		None=>{
 			// create a new policy
 			api.create_script_policy(script_policy).await.map_err(GOCError::Other)?;
 		}
 	}
 	Ok(())
 }
 async fn do_policy(
 	api:&submissions_api::external::Context,
 	script_ids:&std::collections::HashMap<&str,submissions_api::types::ScriptID>,
 	source:&str,
 	to_script_id:submissions_api::types::ScriptID,
 	policy:submissions_api::types::Policy,
 )->Result<(),GOCError>{
 	let hash=hash_format(hash_source(source));
 	check_or_create_script_poicy(api,hash.as_str(),submissions_api::types::CreateScriptPolicyRequest{
 		FromScriptID:script_ids[source],
 		ToScriptID:to_script_id,
 		Policy:policy,
 	}).await
 }
 async fn upload_scripts(session_id:PathBuf)->Result<()>{
 	let cookie={
 		let mut cookie=String::new();
 		std::fs::File::open(session_id)?.read_to_string(&mut cookie)?;
 		submissions_api::Cookie::new(&cookie)?
 	};
 	let api=&submissions_api::external::Context::new("http://localhost:8083".to_owned(),cookie)?;
 	let allowed_set=get_allowed_set()?;
 	let allowed_map=get_allowed_map()?;
 	let replace_map=get_replace_map()?;
 	let blocked=get_blocked()?;
 	// create a unified deduplicated set of all scripts
 	let script_set:std::collections::HashSet<&str>=allowed_set.iter()
 	.map(|s|s.as_str())
 	.chain(
 		replace_map.keys().map(|s|s.as_str())
 	).chain(
 		blocked.iter().map(|s|s.as_str())
 	).collect();
 	// get or create every unique script
 	let script_ids:std::collections::HashMap<&str,submissions_api::types::ScriptID>=
 	futures::stream::iter(script_set)
 	.map(|source|async move{
 		let script_id=get_or_create_script(api,source).await?;
 		Ok::<_,GOCError>((source,script_id))
 	})
 	.buffer_unordered(16)
 	.try_collect().await?;
 	// get or create policy for each script in each category
 	//
 	// replace
 	futures::stream::iter(replace_map.iter().map(Ok))
 	.try_for_each_concurrent(Some(16),|(source,id)|async{
 		do_policy(
 			api,
 			&script_ids,
 			source,
 			script_ids[allowed_map[id].as_str()],
 			submissions_api::types::Policy::Replace
 		).await
 	}).await?;
 	// allowed
 	futures::stream::iter(allowed_set.iter().map(Ok))
 	.try_for_each_concurrent(Some(16),|source|async{
 		do_policy(
 			api,
 			&script_ids,
 			source,
 			script_ids[source.as_str()],
 			submissions_api::types::Policy::Allowed
 		).await
 	}).await?;
 	// blocked
 	futures::stream::iter(blocked.iter().map(Ok))
 	.try_for_each_concurrent(Some(16),|source|async{
 		do_policy(
 			api,
 			&script_ids,
 			source,
 			script_ids[source.as_str()],
 			submissions_api::types::Policy::Blocked
 		).await
 	}).await?;
 	Ok(())
 }
Author	SHA1	Message	Date
Quaternions	4b99f2028d	wip	2024-12-26 15:46:56 -08:00
Quaternions	e9e51d455b	use auth bypass	2024-12-26 15:28:46 -08:00
Quaternions	3252927df7	upload scripts	2024-12-26 15:28:46 -08:00