Merge pull request #442 from romanz/p2p-auth

Fix `--auth` support
2025-02-24 15:02:21 +01:00 · 2021-07-22 22:24:40 +03:00 · 2021-07-22 22:24:40 +03:00 · d9b8691a27
commit d9b8691a27
parent 8be997f208 5f0a10e517
2 changed files with 71 additions and 10 deletions
--- a/src/config.rs
+++ b/src/config.rs
@ -1,4 +1,5 @@
 use bitcoin::network::constants::Network;
+use bitcoincore_rpc::Auth;
 use dirs_next::home_dir;

 use std::ffi::{OsStr, OsString};
@ -104,7 +105,7 @@ impl FromStr for BitcoinNetwork {
 }

 impl ::configure_me::parse_arg::ParseArgFromStr for BitcoinNetwork {
-    fn describe_type<W: fmt::Write>(mut writer: W) -> std::fmt::Result {
+    fn describe_type<W: fmt::Write>(mut writer: W) -> fmt::Result {
        write!(writer, "either 'bitcoin', 'testnet', 'regtest' or 'signet'")
    }
 }
@ -122,7 +123,7 @@ pub struct Config {
    pub network: Network,
    pub db_path: PathBuf,
    pub daemon_dir: PathBuf,
-    pub daemon_cookie_file: PathBuf,
+    pub daemon_auth: SensitiveAuth,
    pub daemon_rpc_addr: SocketAddr,
    pub daemon_p2p_addr: SocketAddr,
    pub electrum_rpc_addr: SocketAddr,
@ -134,6 +135,27 @@ pub struct Config {
    pub args: Vec<String>,
 }

+pub struct SensitiveAuth(pub Auth);
+
+impl SensitiveAuth {
+    pub(crate) fn get_auth(&self) -> Auth {
+        self.0.clone()
+    }
+}
+
+impl fmt::Debug for SensitiveAuth {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        match self.0 {
+            Auth::UserPass(ref user, _) => f
+                .debug_tuple("UserPass")
+                .field(&user)
+                .field(&"<sensitive>")
+                .finish(),
+            _ => write!(f, "{:?}", self.0),
+        }
+    }
+}
+
 /// Returns default daemon directory
 fn default_daemon_dir() -> PathBuf {
    let mut home = home_dir().unwrap_or_else(|| {
@ -228,15 +250,28 @@ impl Config {
        }

        let daemon_dir = &config.daemon_dir;
-        let daemon_cookie_file = config
-            .cookie_file
-            .unwrap_or_else(|| daemon_dir.join(".cookie"));
+        let daemon_auth = SensitiveAuth(match (config.auth, config.cookie_file) {
+            (None, None) => Auth::CookieFile(daemon_dir.join(".cookie")),
+            (None, Some(cookie_file)) => Auth::CookieFile(cookie_file),
+            (Some(auth), None) => {
+                let parts: Vec<&str> = auth.splitn(2, ":").collect();
+                if parts.len() != 2 {
+                    eprintln!("Error: auth cookie doesn't contain colon");
+                    std::process::exit(1);
+                }
+                Auth::UserPass(parts[0].to_owned(), parts[1].to_owned())
+            }
+            (Some(_), Some(_)) => {
+                eprintln!("Error: ambigous configuration - auth and cookie_file can't be specified at the same time");
+                std::process::exit(1);
+            }
+        });

        let config = Config {
            network: config.network,
            db_path: config.db_dir,
            daemon_dir: config.daemon_dir,
-            daemon_cookie_file,
+            daemon_auth,
            daemon_rpc_addr,
            daemon_p2p_addr,
            electrum_rpc_addr,
@ -255,3 +290,27 @@ impl Config {
        config
    }
 }
+
+#[cfg(test)]
+mod tests {
+    use super::{Auth, SensitiveAuth};
+    use std::path::Path;
+
+    #[test]
+    fn test_auth_debug() {
+        let auth = Auth::None;
+        assert_eq!(format!("{:?}", SensitiveAuth(auth)), "None");
+
+        let auth = Auth::CookieFile(Path::new("/foo/bar/.cookie").to_path_buf());
+        assert_eq!(
+            format!("{:?}", SensitiveAuth(auth)),
+            "CookieFile(\"/foo/bar/.cookie\")"
+        );
+
+        let auth = Auth::UserPass("user".to_owned(), "pass".to_owned());
+        assert_eq!(
+            format!("{:?}", SensitiveAuth(auth)),
+            "UserPass(\"user\", \"<sensitive>\")"
+        );
+    }
+}
--- a/src/daemon.rs
+++ b/src/daemon.rs
@ -48,11 +48,13 @@ fn rpc_poll(client: &mut bitcoincore_rpc::Client) -> PollResult {

 pub(crate) fn rpc_connect(config: &Config) -> Result<bitcoincore_rpc::Client> {
    let rpc_url = format!("http://{}", config.daemon_rpc_addr);
-    if !config.daemon_cookie_file.exists() {
-        bail!("{:?} is missing", config.daemon_cookie_file);
+    let auth = config.daemon_auth.get_auth();
+    if let bitcoincore_rpc::Auth::CookieFile(ref path) = auth {
+        if !path.exists() {
+            bail!("{:?} is missing - is bitcoind running?", path);
+        }
    }
-    let rpc_auth = bitcoincore_rpc::Auth::CookieFile(config.daemon_cookie_file.clone());
-    let mut client = bitcoincore_rpc::Client::new(rpc_url, rpc_auth)
+    let mut client = bitcoincore_rpc::Client::new(rpc_url, auth)
        .with_context(|| format!("failed to connect to RPC: {}", config.daemon_rpc_addr))?;

    loop {