Skip to content

Commit

Permalink
Mark fileshare as forbidden only when there was no error when blocking
Browse files Browse the repository at this point in the history
  • Loading branch information
@devzbysiu
devzbysiu committed Dec 19, 2024
1 parent 9cb7056 commit 4f258e8
Show file tree
Hide file tree
Showing 2 changed files with 19 additions and 5 deletions.
22 changes: 18 additions & 4 deletions networker/networker.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,9 @@ var (
// connection to be canceled
ErrNothingToCancel = errors.New("nothing to cancel")
defaultMeshSubnet = netip.MustParsePrefix("100.64.0.0/10")
// ErrNoSuchRule is returned when networker tried to remove
// a rule, but such rule does not exist
ErrNoSuchRule = errors.New("such rule does not exist")
)

const (
Expand Down Expand Up @@ -1651,7 +1654,7 @@ func (netw *Combined) removeRule(ruleName string) error {
ruleIndex := slices.Index(netw.rules, ruleName)

if ruleIndex == -1 {
return fmt.Errorf("allow rule does not exist for %s", ruleName)
return ErrNoSuchRule
}

if err := netw.fw.Delete([]string{ruleName}); err != nil {
Expand All @@ -1668,15 +1671,26 @@ func (netw *Combined) ForbidFileshare() error {
if !netw.isFilesharePermitted {
return nil
}
defer func() { netw.isFilesharePermitted = false }()
return netw.blockFileshareAll()

err := netw.blockFileshareAll()
// NOTE: Mark fileshare as forbidden only when there was no error here, so it
// can be tried again.
if err == nil {
netw.isFilesharePermitted = false
}

return err
}

func (netw *Combined) blockFileshareAll() error {
var allErrors []error
for _, peer := range netw.cfg.Peers {
err := netw.blockFileshare(peer.PublicKey, peer.Address)
allErrors = append(allErrors, err)
// NOTE: It's fine to have the rule already removed which returns [ErrNoSuchRule].
// It's not fine to have any other errors, so keep those.
if !errors.Is(err, ErrNoSuchRule) {
allErrors = append(allErrors, err)
}
}
return errors.Join(allErrors...)
}
Expand Down
2 changes: 1 addition & 1 deletion networker/networker_test.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1730,7 +1730,7 @@ func TestCombined_BlocNonExistingRuleFail(t *testing.T) {
false,
)
// Should fail to block rule non existing
expectedErrorMsg := fmt.Sprintf("allow rule does not exist for %s", test.ruleName)
expectedErrorMsg := "such rule does not exist"
err := netw.BlockIncoming(meshnet.UniqueAddress{UID: test.name, Address: netip.MustParseAddr(test.address)})
assert.EqualErrorf(t, err, expectedErrorMsg, "Error should be: %v, got: %v", expectedErrorMsg, err)
})
Expand Down

0 comments on commit 4f258e8

Please sign in to comment.