core/gui
8
0
Fork 0
Code Issues 1 Pull requests 2 Projects Releases Packages Wiki Activity Actions
gui/pkg/display/storage.go
Snider 7aaabf4b77
Some checks are pending
Security Scan / security (push) Waiting to run
Details
Test / test (push) Waiting to run
Details
Harden GUI storage and browser inputs
2026-04-15 22:51:07 +01:00

332 lines
8 KiB
Go
Raw Blame History

package display
import (
"fmt"
"net/url"
"os"
"path/filepath"
"sort"
"strings"
"sync"
"time"
core "dappco.re/go/core"
gostore "dappco.re/go/store"
)
const (
maxStorageOriginBytes = 512
maxStorageBucketBytes = 128
maxStorageKeyBytes = 1024
maxStorageValueBytes = 1 << 20
maxStorageEntriesPerOrigin = 1024
maxStorageBytesPerOrigin = 16 << 20
maxStorageSearchResults = 200
)
type StorageEntry struct {
Origin string `json:"origin"`
Bucket string `json:"bucket"`
Key string `json:"key"`
Value string `json:"value"`
UpdatedAt time.Time `json:"updated_at"`
}
type StorageRegistry struct {
mu sync.RWMutex
entries map[string]StorageEntry
store *gostore.Store
}
func NewStorageRegistry() *StorageRegistry {
registry := &StorageRegistry{entries: make(map[string]StorageEntry)}
registry.store = openStorageStore()
registry.loadPersistedEntries()
return registry
}
func openStorageStore() *gostore.Store {
path := storageDatabasePath()
if strings.TrimSpace(path) == "" {
return nil
}
if path != ":memory:" {
if err := os.MkdirAll(filepath.Dir(path), 0o755); err != nil {
return nil
}
}
storeInstance, err := gostore.New(path)
if err != nil {
return nil
}
return storeInstance
}
func storageDatabasePath() string {
if override := strings.TrimSpace(core.Env("CORE_GUI_STORAGE_PATH")); override != "" {
return override
}
if strings.TrimSpace(core.Env("CORE_GUI_STORAGE_PERSIST")) == "" {
return ":memory:"
}
home := strings.TrimSpace(core.Env("DIR_HOME"))
if home == "" {
return ":memory:"
}
return core.Path(home, ".core", "state", fmt.Sprintf("gui-storage-%d.db", os.Getpid()))
}
func storageOriginForPageURL(pageURL string) string {
trimmed := strings.TrimSpace(pageURL)
if trimmed == "" {
return ""
}
parsed, err := url.Parse(trimmed)
if err != nil {
return trimmed
}
switch strings.ToLower(strings.TrimSpace(parsed.Scheme)) {
case "http", "https":
if parsed.Host == "" {
return trimmed
}
return parsed.Scheme + "://" + parsed.Host
case "core":
if parsed.Host == "" {
return "core://"
}
return "core://" + parsed.Host
case "file":
if parsed.Path == "" {
return trimmed
}
return "file://" + parsed.Path
default:
origin := parsed.Scheme + "://" + parsed.Host
if parsed.Path != "" {
origin += parsed.Path
}
origin = strings.TrimRight(origin, "/")
if strings.TrimSpace(origin) == "://" {
return trimmed
}
return origin
}
}
func makeStorageEntryKey(origin, bucket, key string) string {
return storageCompositeKey(origin, bucket, key)
}
func storageCompositeKey(origin, bucket, key string) string {
return core.JSONMarshalString([]string{origin, bucket, key})
}
func decodeStorageCompositeKey(value string) (string, string, string, bool) {
var parts []string
if result := core.JSONUnmarshalString(value, &parts); !result.OK || len(parts) != 3 {
return "", "", "", false
}
return parts[0], parts[1], parts[2], true
}
func (r *StorageRegistry) loadPersistedEntries() {
if r == nil || r.store == nil {
return
}
for entry, err := range r.store.AllSeq("storage") {
if err != nil {
continue
}
var stored StorageEntry
if result := core.JSONUnmarshalString(entry.Value, &stored); !result.OK {
if origin, bucket, key, ok := decodeStorageCompositeKey(entry.Key); ok {
stored = StorageEntry{
Origin: origin,
Bucket: bucket,
Key: key,
Value: entry.Value,
UpdatedAt: time.Now(),
}
} else {
continue
}
}
if stored.UpdatedAt.IsZero() {
stored.UpdatedAt = time.Now()
}
r.entries[makeStorageEntryKey(stored.Origin, stored.Bucket, stored.Key)] = stored
}
}
func (r *StorageRegistry) Set(origin, bucket, key, value string) bool {
if !validStorageField(origin, maxStorageOriginBytes) ||
!validStorageField(bucket, maxStorageBucketBytes) ||
!validStorageField(key, maxStorageKeyBytes) ||
(len(value) > maxStorageValueBytes) {
return false
}
origin = strings.TrimSpace(origin)
bucket = strings.TrimSpace(bucket)
key = strings.TrimSpace(key)
r.mu.Lock()
defer r.mu.Unlock()
composite := makeStorageEntryKey(origin, bucket, key)
if !r.withinOriginQuotaLocked(origin, composite, StorageEntry{
Origin: origin,
Bucket: bucket,
Key: key,
Value: value,
}) {
return false
}
entry := StorageEntry{
Origin: origin,
Bucket: bucket,
Key: key,
Value: value,
UpdatedAt: time.Now(),
}
r.entries[composite] = entry
if r.store != nil {
if err := r.store.Set("storage", storageCompositeKey(origin, bucket, key), core.JSONMarshalString(entry)); err != nil {
return false
}
}
return true
}
func (r *StorageRegistry) Delete(origin, bucket, key string) bool {
if !validStorageField(origin, maxStorageOriginBytes) ||
!validStorageField(bucket, maxStorageBucketBytes) ||
!validStorageField(key, maxStorageKeyBytes) {
return false
}
origin = strings.TrimSpace(origin)
bucket = strings.TrimSpace(bucket)
key = strings.TrimSpace(key)
r.mu.Lock()
defer r.mu.Unlock()
composite := makeStorageEntryKey(origin, bucket, key)
delete(r.entries, composite)
if r.store != nil {
if err := r.store.Delete("storage", storageCompositeKey(origin, bucket, key)); err != nil {
return false
}
}
return true
}
func (r *StorageRegistry) Get(origin, bucket, key string) (StorageEntry, bool) {
r.mu.RLock()
defer r.mu.RUnlock()
if entry, ok := r.entries[makeStorageEntryKey(origin, bucket, key)]; ok {
return entry, true
}
var latest StorageEntry
found := false
for _, entry := range r.entries {
if bucket != "" && entry.Bucket != bucket {
continue
}
if key != "" && entry.Key != key {
continue
}
if origin != "" && entry.Origin != origin {
continue
}
if !found || entry.UpdatedAt.After(latest.UpdatedAt) {
latest = entry
found = true
}
}
return latest, found
}
func (r *StorageRegistry) Search(query string) []StorageEntry {
r.mu.RLock()
defer r.mu.RUnlock()
needle := strings.ToLower(strings.TrimSpace(query))
results := make([]StorageEntry, 0)
for _, entry := range r.entries {
if needle == "" ||
strings.Contains(strings.ToLower(entry.Origin), needle) ||
strings.Contains(strings.ToLower(entry.Bucket), needle) ||
strings.Contains(strings.ToLower(entry.Key), needle) ||
strings.Contains(strings.ToLower(entry.Value), needle) {
results = append(results, entry)
if len(results) >= maxStorageSearchResults {
break
}
}
}
sort.Slice(results, func(i, j int) bool {
return results[i].UpdatedAt.After(results[j].UpdatedAt)
})
return results
}
func validStorageField(value string, limit int) bool {
trimmed := strings.TrimSpace(value)
return trimmed != "" && len(trimmed) <= limit
}
func (r *StorageRegistry) Snapshot(pageURL string) map[string]map[string]string {
r.mu.RLock()
defer r.mu.RUnlock()
origin := storageOriginForPageURL(pageURL)
if strings.TrimSpace(origin) == "" {
return map[string]map[string]string{}
}
snapshot := make(map[string]map[string]string)
for _, entry := range r.entries {
if origin != "" && !strings.EqualFold(entry.Origin, origin) {
continue
}
bucket := snapshot[entry.Bucket]
if bucket == nil {
bucket = make(map[string]string)
snapshot[entry.Bucket] = bucket
}
bucket[entry.Key] = entry.Value
}
return snapshot
}
func (r *StorageRegistry) withinOriginQuotaLocked(origin, ignoreComposite string, candidate StorageEntry) bool {
entries := 0
bytes := 0
for composite, entry := range r.entries {
if !strings.EqualFold(entry.Origin, origin) {
continue
}
if composite == ignoreComposite {
continue
}
entries++
bytes += storageEntrySizeBytes(entry)
}
entries++
bytes += storageEntrySizeBytes(candidate)
if entries > maxStorageEntriesPerOrigin {
return false
}
if bytes > maxStorageBytesPerOrigin {
return false
}
return true
}
func storageEntrySizeBytes(entry StorageEntry) int {
return len(entry.Origin) + len(entry.Bucket) + len(entry.Key) + len(entry.Value)
}
func (r *StorageRegistry) Close() error {
if r == nil || r.store == nil {
return nil
}
return r.store.Close()
}
Reference in a new issue View git blame Copy permalink