summaryrefslogtreecommitdiffhomepage
path: root/mullvad-cli/src/rpc.rs
blob: 16a23bda94f23b6747b1d7a03c66d309c0fdbad2 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

use {Result, ResultExt};
use serde;

use std::fs::{File, Metadata};
use std::io::{self, Read};
use std::path::{Path, PathBuf};

use talpid_ipc::WsIpcClient;

pub fn call<T, O>(method: &str, args: &T) -> Result<O>
where
    T: serde::Serialize,
    O: for<'de> serde::Deserialize<'de>,
{
    call_internal(method, args).chain_err(|| "Unable to call backend over RPC")
}

pub fn call_internal<T, O>(method: &str, args: &T) -> Result<O>
where
    T: serde::Serialize,
    O: for<'de> serde::Deserialize<'de>,
{
    let address = read_rpc_address().chain_err(|| "Unable to read RPC address")?;
    info!("Using RPC address {}", address);
    let mut rpc_client = WsIpcClient::new(address).chain_err(|| "Unable to create RPC client")?;
    rpc_client
        .call(method, args)
        .chain_err(|| format!("Unable to call RPC method {}", method))
}


#[cfg(unix)]
lazy_static! {
    /// The path to the file where we read the RPC address
    static ref RPC_ADDRESS_FILE_PATH: PathBuf = Path::new("/tmp").join(".mullvad_rpc_address");
}

#[cfg(not(unix))]
lazy_static! {
    /// The path to the file where we read the RPC address
    static ref RPC_ADDRESS_FILE_PATH: PathBuf = ::std::env::temp_dir().join(".mullvad_rpc_address");
}

fn read_rpc_address() -> io::Result<String> {
    debug!(
        "Trying to read RPC address at {}",
        RPC_ADDRESS_FILE_PATH.to_string_lossy()
    );
    let mut file = File::open(&*RPC_ADDRESS_FILE_PATH)?;
    if is_rpc_file_trusted(file.metadata()?) {
        let mut address = String::new();
        file.read_to_string(&mut address)?;
        Ok(address)
    } else {
        Err(io::Error::new(
            io::ErrorKind::Other,
            "RPC file is not trusted",
        ))
    }
}

#[cfg(unix)]
fn is_rpc_file_trusted(metadata: Metadata) -> bool {
    use std::os::unix::fs::MetadataExt;

    let is_owned_by_root = metadata.uid() == 0;
    let is_read_only_by_non_owner = (metadata.mode() & 0o022) == 0;

    is_owned_by_root && is_read_only_by_non_owner
}

#[cfg(windows)]
fn is_rpc_file_trusted(metadata: Metadata) -> bool {
    // TODO: Check permissions correctly
    true
}
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.