Set fileshare PID if it's already running

Author: devzbysiu

cmd/daemon/main.go

@@ -466,7 +466,12 @@ func main() {
 		sharedContext,
 	)
 
-	filesharePortController := meshnet.NewPortAccessController(cfgMgr, netw, meshRegistry)
+	filesharePortController := meshnet.NewPortAccessController(
+		cfgMgr,
+		netw,
+		meshRegistry,
+		meshnet.NewProcessChecker(),
+	)
 	fileshareProcMonitor := meshnet.NewProcMonitor(
 		&filesharePortController,
 		netlinkMonitorSetupFn,

internal/filesystem_test.go

@@ -2,15 +2,13 @@ package internal
 
 import (
 	"fmt"
-	"io/fs"
 	"os"
 	"os/exec"
 	"path/filepath"
 	"regexp"
 	"strings"
 	"syscall"
 	"testing"
-	"time"
 
 	"github.com/NordSecurity/nordvpn-linux/test/category"
 
@@ -418,44 +416,3 @@ func TestOpenLogFile(t *testing.T) {
 		})
 	}
 }
-
-type MockDirEntry struct {
-	name string
-}
-
-func (m *MockDirEntry) Name() string {
-	return m.name
-}
-
-func (m *MockDirEntry) IsDir() bool {
-	return true
-}
-
-func (m *MockDirEntry) Type() fs.FileMode {
-	return os.ModeSymlink
-}
-
-func (m *MockDirEntry) Info() (fs.FileInfo, error) {
-	return &MockFileInfo{
-		name:    m.name,
-		size:    1024,
-		mode:    os.FileMode(0644),
-		modTime: time.Now(),
-		sys:     &syscall.Stat_t{},
-	}, nil
-}
-
-type MockFileInfo struct {
-	modTime time.Time
-	sys     any
-	name    string
-	size    int64
-	mode    fs.FileMode
-}
-
-func (m *MockFileInfo) Name() string       { return m.name }
-func (m *MockFileInfo) Size() int64        { return m.size }
-func (m *MockFileInfo) Mode() fs.FileMode  { return m.mode }
-func (m *MockFileInfo) ModTime() time.Time { return m.modTime }
-func (m *MockFileInfo) IsDir() bool        { return m.mode.IsDir() }
-func (m *MockFileInfo) Sys() any           { return m.sys }

meshnet/monitor.go

@@ -9,7 +9,7 @@ import (
 )
 
 type (
-	PID     uint32
+	PID     uint64
 	SetupFn func() (MonitorChannels, error)
 )
 

meshnet/monitor_event_handler.go

@@ -4,10 +4,6 @@ import (
 	"errors"
 	"fmt"
 	"log"
-	"os"
-	"path/filepath"
-	"strconv"
-	"strings"
 	"sync"
 
 	"github.com/NordSecurity/nordvpn-linux/config"
@@ -24,17 +20,30 @@ type FilesharePortAccessController struct {
 	netw           Networker
 	reg            mesh.Registry
 	filesharePID   PID
-	processChecker processChecker
+	processChecker ProcessChecker
 	mu             sync.Mutex
 }
 
-func NewPortAccessController(cm config.Manager, netw Networker, reg mesh.Registry) FilesharePortAccessController {
+func NewPortAccessController(
+	cm config.Manager,
+	netw Networker,
+	reg mesh.Registry,
+	pc ProcessChecker,
+) FilesharePortAccessController {
+	filesharePID := PID(0)
+	// NOTE:if the fileshare is already running, set the initial PID.
+	// This can happen only when the daemon was restarted, but nordfileshare
+	// process was not - for example there was a panic in daemon.
+	PID := pc.GiveProcessPID(internal.FileshareBinaryPath)
+	if PID != nil {
+		filesharePID = *PID
+	}
 	return FilesharePortAccessController{
 		cm:             cm,
 		netw:           netw,
 		reg:            reg,
-		filesharePID:   0,
-		processChecker: defaultProcChecker{},
+		filesharePID:   filesharePID,
+		processChecker: pc,
 	}
 }
 
@@ -44,9 +53,21 @@ func (eventHandler *FilesharePortAccessController) OnProcessStarted(ev ProcEvent
 		// process next events anymore until the PID gets reset in [EventHandler.OnProcessStopped]
 		return
 	}
-	if !eventHandler.processChecker.isFileshareProcess(ev.PID) {
+
+	// NOTE: at this point, we can ignore older processes. It's because
+	// we checked above that the [eventHandler.filesharePID] is not set
+	// which means that nordfileshare process was not running at the time
+	// of creation of [FilesharePortAccessController] - constructor checks
+	// if nordfilshare is already running - so we know that nordfileshare
+	// PID will be higher than the daemon PID.
+	if ev.PID < eventHandler.processChecker.CurrentPID() {
+		return
+	}
+
+	if !eventHandler.processChecker.IsFileshareProcess(ev.PID) {
 		return
 	}
+
 	log.Println(internal.InfoPrefix, "updating fileshare process pid to:", ev.PID)
 	eventHandler.filesharePID = ev.PID
 	go eventHandler.allowFileshare()
@@ -121,43 +142,9 @@ func (eventHandler *FilesharePortAccessController) blockFileshare() error {
 	return nil
 }
 
-// processChecker allows checking if process with specified [PID]
-// is a fileshare process.
-type processChecker interface {
-	isFileshareProcess(PID) bool
-}
-
-// defaultProcChecker allows checking if process specified by [PID]
-// is a fileshare process by reading its path via `/proc/<pid>/cmdline`.
-type defaultProcChecker struct{}
-
-func (defaultProcChecker) isFileshareProcess(pid PID) bool {
-	// ignore older processes, fileshare is always
-	// younger than the daemon so it has higher PID
-	if pid < PID(os.Getpid()) {
-		return false
-	}
-
-	procPath, err := readProcPath(pid)
-	if err != nil {
-		log.Println(internal.ErrorPrefix, "failed to read process path from /proc", err)
-		return false
-	}
-
-	return procPath == internal.FileshareBinaryPath
-}
-
-func readProcPath(pid PID) (string, error) {
-	pidStr := strconv.FormatUint(uint64(pid), 10)
-	cmdlinePath := filepath.Join("/proc", pidStr, "cmdline")
-
-	cmdline, err := os.ReadFile(cmdlinePath)
-	if err != nil {
-		return "", err
-	}
-	args := strings.Split(string(cmdline), "\x00")
-	if len(args) == 0 {
-		return "", ErrIncorrectCmdlineContent
-	}
-	return args[0], nil
+// ProcessChecker represents process-related utilities
+type ProcessChecker interface {
+	IsFileshareProcess(PID) bool
+	GiveProcessPID(string) *PID
+	CurrentPID() PID
 }

meshnet/monitor_event_handler_test.go

@@ -16,14 +16,21 @@ func TestEventHandler_OnProcessStarted(t *testing.T) {
 		savedPID  PID
 		finalPID  PID
 		procEvent ProcEvent
-		pc        processChecker
+		pc        ProcessChecker
 	}{
 		{
 			name:      "PID is set if process is fileshare",
 			savedPID:  PID(0),
 			procEvent: ProcEvent{1337},
 			finalPID:  PID(1337),
-			pc:        procCheckerStub{isFileshare: true},
+			pc:        procCheckerStub{isFileshare: true, currentPID: 1336}, // currentPID lower than the PID from event
+		},
+		{
+			name:      "PID is not updated if the event's PID is older than current process PID",
+			savedPID:  PID(0),
+			procEvent: ProcEvent{1337},
+			finalPID:  PID(0),
+			pc:        procCheckerStub{isFileshare: true, currentPID: 1338}, // currentPID higher than the PID from event
 		},
 		{
 			name:      "PID is not updated if process is NOT fileshare",
@@ -99,8 +106,17 @@ func TestEventHandler_OnProcessStopped(t *testing.T) {
 
 type procCheckerStub struct {
 	isFileshare bool
+	currentPID  PID
+}
+
+func (pc procCheckerStub) IsFileshareProcess(PID) bool {
+	return pc.isFileshare
+}
+
+func (pu procCheckerStub) GiveProcessPID(string) *PID {
+	return nil
 }
 
-func (pu procCheckerStub) isFileshareProcess(PID) bool {
-	return pu.isFileshare
+func (pc procCheckerStub) CurrentPID() PID {
+	return pc.currentPID
 }

meshnet/process_checker.go

@@ -0,0 +1,104 @@
+package meshnet
+
+import (
+	"fmt"
+	"log"
+	"os"
+	"path/filepath"
+	"strconv"
+	"strings"
+
+	"github.com/NordSecurity/nordvpn-linux/internal"
+)
+
+type (
+	readfileFunc func(name string) ([]byte, error)
+	readdirFunc  func(name string) ([]os.DirEntry, error)
+)
+
+var (
+	defaultReadfile readfileFunc = os.ReadFile
+	defaultReaddir  readdirFunc  = os.ReadDir
+)
+
+type DefaultProcChecker struct {
+	readfile readfileFunc
+	readdir  readdirFunc
+}
+
+func NewProcessChecker() DefaultProcChecker {
+	return DefaultProcChecker{
+		readfile: defaultReadfile,
+		readdir:  defaultReaddir,
+	}
+}
+
+// IsFileshareProcess returns true if the process specified by PID
+// is nordfileshare process, false otherwise.
+func (DefaultProcChecker) IsFileshareProcess(pid PID) bool {
+	execPath, err := readExecutablePath(pid)
+	if err != nil {
+		log.Println(internal.ErrorPrefix, "failed to read process path from /proc", err)
+		return false
+	}
+
+	return execPath == internal.FileshareBinaryPath
+}
+
+func readExecutablePath(pid PID) (string, error) {
+	pidStr := strconv.FormatUint(uint64(pid), 10)
+	cmdlinePath := filepath.Join("/proc", pidStr, "cmdline")
+
+	cmdline, err := os.ReadFile(cmdlinePath)
+	if err != nil {
+		return "", err
+	}
+	args := strings.Split(string(cmdline), "\x00")
+	if len(args) == 0 {
+		return "", ErrIncorrectCmdlineContent
+	}
+	return args[0], nil
+}
+
+// GiveProcessPID returns process PID if the executable specified
+// by `path` argument is being executed, `nil` otherwise.
+func (pc DefaultProcChecker) GiveProcessPID(path string) *PID {
+	PID, err := giveProcessPID(path, pc.readdir, pc.readfile)
+	if err != nil {
+		log.Println(internal.WarningPrefix, "failed to check if process is running:", err)
+		return nil
+	}
+	return PID
+}
+
+func giveProcessPID(executablePath string, readdir readdirFunc, readfile readfileFunc) (*PID, error) {
+	procDirs, err := readdir("/proc")
+	if err != nil {
+		return nil, fmt.Errorf("error while reading /proc directories: %w", err)
+	}
+
+	for _, dir := range procDirs {
+		cmdlinePath := filepath.Join("/proc", dir.Name(), "cmdline")
+
+		cmdline, err := readfile(cmdlinePath)
+		if err != nil {
+			continue
+		}
+		args := strings.Split(string(cmdline), "\x00")
+		if len(args) > 0 && args[0] == filepath.Clean(executablePath) {
+			result, err := strconv.ParseUint(dir.Name(), 10, 64)
+			if err != nil {
+				continue
+			}
+			PID := PID(result)
+			return &PID, nil
+		}
+	}
+
+	return nil, fmt.Errorf("process with path '%s' not found", executablePath)
+}
+
+// CurrentPID returns current process PID
+func (pc DefaultProcChecker) CurrentPID() PID {
+	return PID(os.Getpid())
+}