deckide 3.5.15 → 3.5.16
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/routes/decks.js +22 -1
- package/dist/routes/terminals.js +89 -26
- package/dist/server.js +1 -1
- package/dist/websocket.js +180 -29
- package/package.json +1 -1
- package/web/dist/assets/{index-WCMMFyXJ.css → index-Bw4TZ5S5.css} +1 -1
- package/web/dist/assets/index-Dqd8LdlD.js +122 -0
- package/web/dist/index.html +2 -2
- package/web/dist/assets/index-SgvouX2D.js +0 -129
package/dist/routes/decks.js
CHANGED
|
@@ -2,7 +2,7 @@ import crypto from 'node:crypto';
|
|
|
2
2
|
import { Hono } from 'hono';
|
|
3
3
|
import { createHttpError, handleError, readJson } from '../utils/error.js';
|
|
4
4
|
import { requireWorkspace } from './workspaces.js';
|
|
5
|
-
export function createDeckRouter(db, workspaces, decks) {
|
|
5
|
+
export function createDeckRouter(db, workspaces, decks, terminals) {
|
|
6
6
|
const router = new Hono();
|
|
7
7
|
const insertDeck = db.prepare('INSERT INTO decks (id, name, root, workspace_id, created_at) VALUES (?, ?, ?, ?, ?)');
|
|
8
8
|
function createDeck(name, workspaceId) {
|
|
@@ -76,12 +76,33 @@ export function createDeckRouter(db, workspaces, decks) {
|
|
|
76
76
|
});
|
|
77
77
|
const deleteDeckStmt = db.prepare('DELETE FROM decks WHERE id = ?');
|
|
78
78
|
const deleteTerminalsByDeckStmt = db.prepare('DELETE FROM terminals WHERE deck_id = ?');
|
|
79
|
+
function closeDeckTerminalSockets(sockets, reason) {
|
|
80
|
+
sockets.forEach((socket) => {
|
|
81
|
+
try {
|
|
82
|
+
socket.close(1000, reason);
|
|
83
|
+
}
|
|
84
|
+
catch { /* ignore */ }
|
|
85
|
+
});
|
|
86
|
+
sockets.clear();
|
|
87
|
+
}
|
|
79
88
|
router.delete('/:id', (c) => {
|
|
80
89
|
try {
|
|
81
90
|
const deckId = c.req.param('id');
|
|
82
91
|
if (!decks.has(deckId)) {
|
|
83
92
|
throw createHttpError('Deck not found', 404);
|
|
84
93
|
}
|
|
94
|
+
const deckTerminalIds = Array.from(terminals.values())
|
|
95
|
+
.filter((session) => session.deckId === deckId)
|
|
96
|
+
.map((session) => session.id);
|
|
97
|
+
deckTerminalIds.forEach((terminalId) => {
|
|
98
|
+
const session = terminals.get(terminalId);
|
|
99
|
+
if (!session)
|
|
100
|
+
return;
|
|
101
|
+
terminals.delete(terminalId);
|
|
102
|
+
session.resizeOwner = null;
|
|
103
|
+
closeDeckTerminalSockets(session.sockets, 'Deck deleted');
|
|
104
|
+
session.kill();
|
|
105
|
+
});
|
|
85
106
|
deleteTerminalsByDeckStmt.run(deckId);
|
|
86
107
|
deleteDeckStmt.run(deckId);
|
|
87
108
|
decks.delete(deckId);
|
package/dist/routes/terminals.js
CHANGED
|
@@ -5,43 +5,99 @@ import { TERMINAL_BUFFER_LIMIT } from '../config.js';
|
|
|
5
5
|
import { createHttpError, handleError, readJson } from '../utils/error.js';
|
|
6
6
|
import { getDefaultShell } from '../utils/shell.js';
|
|
7
7
|
import { saveTerminal, deleteTerminal as deleteTerminalFromDb } from '../utils/database.js';
|
|
8
|
-
|
|
9
|
-
const
|
|
8
|
+
const DEFAULT_TERMINAL_TITLE = 'ターミナル';
|
|
9
|
+
const MAX_SOCKET_BUFFERED_AMOUNT = 1024 * 1024;
|
|
10
10
|
export function createTerminalRouter(db, decks, terminals) {
|
|
11
11
|
const router = new Hono();
|
|
12
|
+
function toBuffer(data) {
|
|
13
|
+
return Buffer.isBuffer(data) ? data : Buffer.from(data, 'utf8');
|
|
14
|
+
}
|
|
12
15
|
function appendToTerminalBuffer(session, data) {
|
|
13
|
-
const
|
|
14
|
-
if (
|
|
15
|
-
|
|
16
|
-
session.buffer = newBuffer.slice(excess);
|
|
17
|
-
session.bufferBase += excess;
|
|
16
|
+
const chunk = toBuffer(data);
|
|
17
|
+
if (chunk.length === 0) {
|
|
18
|
+
return;
|
|
18
19
|
}
|
|
19
|
-
|
|
20
|
-
|
|
20
|
+
if (chunk.length >= TERMINAL_BUFFER_LIMIT) {
|
|
21
|
+
const retainedChunk = Buffer.from(chunk.subarray(chunk.length - TERMINAL_BUFFER_LIMIT));
|
|
22
|
+
session.bufferBase += session.bufferLength + (chunk.length - TERMINAL_BUFFER_LIMIT);
|
|
23
|
+
session.bufferChunks = [retainedChunk];
|
|
24
|
+
session.bufferLength = retainedChunk.length;
|
|
25
|
+
return;
|
|
26
|
+
}
|
|
27
|
+
session.bufferChunks.push(Buffer.from(chunk));
|
|
28
|
+
session.bufferLength += chunk.length;
|
|
29
|
+
while (session.bufferLength > TERMINAL_BUFFER_LIMIT && session.bufferChunks.length > 0) {
|
|
30
|
+
const overflow = session.bufferLength - TERMINAL_BUFFER_LIMIT;
|
|
31
|
+
const firstChunk = session.bufferChunks[0];
|
|
32
|
+
if (firstChunk.length <= overflow) {
|
|
33
|
+
session.bufferChunks.shift();
|
|
34
|
+
session.bufferBase += firstChunk.length;
|
|
35
|
+
session.bufferLength -= firstChunk.length;
|
|
36
|
+
continue;
|
|
37
|
+
}
|
|
38
|
+
session.bufferChunks[0] = Buffer.from(firstChunk.subarray(overflow));
|
|
39
|
+
session.bufferBase += overflow;
|
|
40
|
+
session.bufferLength -= overflow;
|
|
21
41
|
}
|
|
22
42
|
}
|
|
23
|
-
function
|
|
24
|
-
const
|
|
25
|
-
const
|
|
26
|
-
|
|
27
|
-
|
|
43
|
+
function getUniqueTerminalTitle(deckId, requestedTitle) {
|
|
44
|
+
const trimmedTitle = requestedTitle?.trim();
|
|
45
|
+
const baseTitle = trimmedTitle && trimmedTitle.length > 0 ? trimmedTitle : null;
|
|
46
|
+
const existingTitles = new Set(Array.from(terminals.values())
|
|
47
|
+
.filter((session) => session.deckId === deckId)
|
|
48
|
+
.map((session) => session.title));
|
|
49
|
+
if (!baseTitle) {
|
|
50
|
+
let index = 1;
|
|
51
|
+
while (existingTitles.has(`${DEFAULT_TERMINAL_TITLE} ${index}`)) {
|
|
52
|
+
index++;
|
|
53
|
+
}
|
|
54
|
+
return `${DEFAULT_TERMINAL_TITLE} ${index}`;
|
|
55
|
+
}
|
|
56
|
+
if (!existingTitles.has(baseTitle)) {
|
|
57
|
+
return baseTitle;
|
|
58
|
+
}
|
|
59
|
+
let suffix = 2;
|
|
60
|
+
while (existingTitles.has(`${baseTitle} ${suffix}`)) {
|
|
61
|
+
suffix++;
|
|
62
|
+
}
|
|
63
|
+
return `${baseTitle} ${suffix}`;
|
|
28
64
|
}
|
|
29
65
|
function broadcastToSockets(session, data) {
|
|
66
|
+
const payload = toBuffer(data);
|
|
30
67
|
const deadSockets = new Set();
|
|
31
68
|
session.sockets.forEach((socket) => {
|
|
32
69
|
try {
|
|
33
|
-
if (socket.readyState
|
|
34
|
-
|
|
70
|
+
if (socket.readyState !== 1) {
|
|
71
|
+
deadSockets.add(socket);
|
|
72
|
+
return;
|
|
35
73
|
}
|
|
36
|
-
|
|
74
|
+
if (socket.bufferedAmount > MAX_SOCKET_BUFFERED_AMOUNT) {
|
|
75
|
+
try {
|
|
76
|
+
socket.close(1009, 'Terminal output overflow');
|
|
77
|
+
}
|
|
78
|
+
catch { /* ignore */ }
|
|
37
79
|
deadSockets.add(socket);
|
|
80
|
+
return;
|
|
38
81
|
}
|
|
82
|
+
socket.send(payload, { binary: true }, (error) => {
|
|
83
|
+
if (error) {
|
|
84
|
+
try {
|
|
85
|
+
socket.close(1011, 'Terminal stream error');
|
|
86
|
+
}
|
|
87
|
+
catch { /* ignore */ }
|
|
88
|
+
}
|
|
89
|
+
});
|
|
39
90
|
}
|
|
40
91
|
catch {
|
|
41
92
|
deadSockets.add(socket);
|
|
42
93
|
}
|
|
43
94
|
});
|
|
44
|
-
deadSockets.forEach((s) =>
|
|
95
|
+
deadSockets.forEach((s) => {
|
|
96
|
+
session.sockets.delete(s);
|
|
97
|
+
if (session.resizeOwner === s) {
|
|
98
|
+
session.resizeOwner = null;
|
|
99
|
+
}
|
|
100
|
+
});
|
|
45
101
|
}
|
|
46
102
|
function handleTerminalExit(id) {
|
|
47
103
|
const session = terminals.get(id);
|
|
@@ -57,6 +113,7 @@ export function createTerminalRouter(db, decks, terminals) {
|
|
|
57
113
|
catch { /* ignore */ }
|
|
58
114
|
});
|
|
59
115
|
session.sockets.clear();
|
|
116
|
+
session.resizeOwner = null;
|
|
60
117
|
}
|
|
61
118
|
function createTerminalSession(deck, title, command) {
|
|
62
119
|
const id = crypto.randomUUID();
|
|
@@ -106,11 +163,11 @@ export function createTerminalRouter(db, decks, terminals) {
|
|
|
106
163
|
cols: 120,
|
|
107
164
|
rows: 32,
|
|
108
165
|
env,
|
|
109
|
-
encoding:
|
|
166
|
+
encoding: null,
|
|
110
167
|
...(isWindows ? { useConpty: true } : {}),
|
|
111
168
|
});
|
|
112
169
|
console.log(`[TERMINAL] Created terminal ${id}: shell=${shell}, cwd=${deck.root}, pid=${term.pid}`);
|
|
113
|
-
const resolvedTitle =
|
|
170
|
+
const resolvedTitle = getUniqueTerminalTitle(deck.id, title);
|
|
114
171
|
const createdAt = new Date().toISOString();
|
|
115
172
|
const session = {
|
|
116
173
|
id,
|
|
@@ -119,13 +176,18 @@ export function createTerminalRouter(db, decks, terminals) {
|
|
|
119
176
|
command: command || null,
|
|
120
177
|
createdAt,
|
|
121
178
|
sockets: new Set(),
|
|
122
|
-
|
|
179
|
+
resizeOwner: null,
|
|
180
|
+
bufferChunks: [],
|
|
181
|
+
bufferLength: 0,
|
|
123
182
|
bufferBase: 0,
|
|
124
183
|
lastActive: Date.now(),
|
|
125
|
-
write: (data) => {
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
|
|
184
|
+
write: (data) => {
|
|
185
|
+
const payload = Buffer.isBuffer(data) ? data : Buffer.from(data);
|
|
186
|
+
try {
|
|
187
|
+
term.write(payload);
|
|
188
|
+
}
|
|
189
|
+
catch { /* terminal may be dying */ }
|
|
190
|
+
},
|
|
129
191
|
resize: (cols, rows) => { try {
|
|
130
192
|
term.resize(cols, rows);
|
|
131
193
|
}
|
|
@@ -136,7 +198,7 @@ export function createTerminalRouter(db, decks, terminals) {
|
|
|
136
198
|
catch { /* already dead */ } },
|
|
137
199
|
};
|
|
138
200
|
// Wire up PTY output → buffer + WebSocket broadcast
|
|
139
|
-
term.
|
|
201
|
+
term.on('data', (data) => {
|
|
140
202
|
appendToTerminalBuffer(session, data);
|
|
141
203
|
session.lastActive = Date.now();
|
|
142
204
|
broadcastToSockets(session, data);
|
|
@@ -193,6 +255,7 @@ export function createTerminalRouter(db, decks, terminals) {
|
|
|
193
255
|
catch { /* ignore */ }
|
|
194
256
|
});
|
|
195
257
|
session.sockets.clear();
|
|
258
|
+
session.resizeOwner = null;
|
|
196
259
|
session.kill();
|
|
197
260
|
return c.body(null, 204);
|
|
198
261
|
}
|
package/dist/server.js
CHANGED
|
@@ -65,7 +65,7 @@ export async function createServer() {
|
|
|
65
65
|
// Mount routers
|
|
66
66
|
app.route('/api/settings', createSettingsRouter());
|
|
67
67
|
app.route('/api/workspaces', createWorkspaceRouter(db, workspaces, workspacePathIndex));
|
|
68
|
-
app.route('/api/decks', createDeckRouter(db, workspaces, decks));
|
|
68
|
+
app.route('/api/decks', createDeckRouter(db, workspaces, decks, terminals));
|
|
69
69
|
const terminalRouter = createTerminalRouter(db, decks, terminals);
|
|
70
70
|
app.route('/api/terminals', terminalRouter);
|
|
71
71
|
app.route('/api/git', createGitRouter(workspaces));
|
package/dist/websocket.js
CHANGED
|
@@ -1,11 +1,13 @@
|
|
|
1
1
|
import crypto from 'node:crypto';
|
|
2
|
-
import { WebSocketServer } from 'ws';
|
|
2
|
+
import { WebSocketServer, WebSocket } from 'ws';
|
|
3
3
|
import { PORT, TRUST_PROXY, CORS_ORIGIN, NODE_ENV } from './config.js';
|
|
4
4
|
import { logSecurityEvent } from './middleware/security.js';
|
|
5
5
|
import { verifyWebSocketAuth } from './middleware/auth.js';
|
|
6
6
|
const MIN_TERMINAL_SIZE = 1;
|
|
7
7
|
const MAX_TERMINAL_SIZE = 500;
|
|
8
8
|
const MAX_MESSAGE_SIZE = 64 * 1024; // 64KB max message size
|
|
9
|
+
const MAX_SOCKET_BUFFERED_AMOUNT = 1024 * 1024;
|
|
10
|
+
const HEARTBEAT_INTERVAL_MS = 30_000;
|
|
9
11
|
// Configurable connection limit per IP (default: 1000)
|
|
10
12
|
let maxConnectionsPerIP = 1000;
|
|
11
13
|
// Track connections per IP
|
|
@@ -84,8 +86,112 @@ function validateTerminalSize(value) {
|
|
|
84
86
|
}
|
|
85
87
|
return intValue;
|
|
86
88
|
}
|
|
89
|
+
function rawDataByteLength(data) {
|
|
90
|
+
if (typeof data === 'string') {
|
|
91
|
+
return Buffer.byteLength(data, 'utf8');
|
|
92
|
+
}
|
|
93
|
+
if (Array.isArray(data)) {
|
|
94
|
+
return data.reduce((total, chunk) => total + chunk.length, 0);
|
|
95
|
+
}
|
|
96
|
+
if (data instanceof ArrayBuffer) {
|
|
97
|
+
return data.byteLength;
|
|
98
|
+
}
|
|
99
|
+
return data.length;
|
|
100
|
+
}
|
|
101
|
+
function rawDataToBuffer(data) {
|
|
102
|
+
if (typeof data === 'string') {
|
|
103
|
+
return Buffer.from(data, 'utf8');
|
|
104
|
+
}
|
|
105
|
+
if (Array.isArray(data)) {
|
|
106
|
+
return Buffer.concat(data);
|
|
107
|
+
}
|
|
108
|
+
if (data instanceof ArrayBuffer) {
|
|
109
|
+
return Buffer.from(data);
|
|
110
|
+
}
|
|
111
|
+
return data;
|
|
112
|
+
}
|
|
113
|
+
function canSendToSocket(socket) {
|
|
114
|
+
if (socket.readyState !== WebSocket.OPEN) {
|
|
115
|
+
return false;
|
|
116
|
+
}
|
|
117
|
+
if (socket.bufferedAmount > MAX_SOCKET_BUFFERED_AMOUNT) {
|
|
118
|
+
try {
|
|
119
|
+
socket.close(1009, 'Terminal output overflow');
|
|
120
|
+
}
|
|
121
|
+
catch { /* ignore */ }
|
|
122
|
+
return false;
|
|
123
|
+
}
|
|
124
|
+
return true;
|
|
125
|
+
}
|
|
126
|
+
function sendControl(socket, message) {
|
|
127
|
+
if (!canSendToSocket(socket)) {
|
|
128
|
+
return false;
|
|
129
|
+
}
|
|
130
|
+
try {
|
|
131
|
+
socket.send(JSON.stringify(message));
|
|
132
|
+
return true;
|
|
133
|
+
}
|
|
134
|
+
catch {
|
|
135
|
+
try {
|
|
136
|
+
socket.close(1011, 'Terminal control send failed');
|
|
137
|
+
}
|
|
138
|
+
catch { /* ignore */ }
|
|
139
|
+
return false;
|
|
140
|
+
}
|
|
141
|
+
}
|
|
142
|
+
function readBufferedRange(session, startOffset, endOffset) {
|
|
143
|
+
const relativeStart = Math.max(0, startOffset - session.bufferBase);
|
|
144
|
+
const relativeEnd = Math.max(relativeStart, Math.min(session.bufferLength, endOffset - session.bufferBase));
|
|
145
|
+
const totalLength = relativeEnd - relativeStart;
|
|
146
|
+
if (totalLength <= 0 || session.bufferChunks.length === 0) {
|
|
147
|
+
return Buffer.alloc(0);
|
|
148
|
+
}
|
|
149
|
+
if (session.bufferChunks.length === 1) {
|
|
150
|
+
return session.bufferChunks[0].subarray(relativeStart, relativeEnd);
|
|
151
|
+
}
|
|
152
|
+
const slices = [];
|
|
153
|
+
let traversed = 0;
|
|
154
|
+
for (const chunk of session.bufferChunks) {
|
|
155
|
+
const chunkStart = traversed;
|
|
156
|
+
const chunkEnd = traversed + chunk.length;
|
|
157
|
+
traversed = chunkEnd;
|
|
158
|
+
if (chunkEnd <= relativeStart) {
|
|
159
|
+
continue;
|
|
160
|
+
}
|
|
161
|
+
if (chunkStart >= relativeEnd) {
|
|
162
|
+
break;
|
|
163
|
+
}
|
|
164
|
+
const startInChunk = Math.max(0, relativeStart - chunkStart);
|
|
165
|
+
const endInChunk = Math.min(chunk.length, relativeEnd - chunkStart);
|
|
166
|
+
slices.push(chunk.subarray(startInChunk, endInChunk));
|
|
167
|
+
}
|
|
168
|
+
return slices.length === 1 ? slices[0] : Buffer.concat(slices, totalLength);
|
|
169
|
+
}
|
|
87
170
|
export function setupWebSocketServer(server, terminals) {
|
|
88
|
-
const wss = new WebSocketServer({ server });
|
|
171
|
+
const wss = new WebSocketServer({ server, maxPayload: MAX_MESSAGE_SIZE });
|
|
172
|
+
const heartbeatState = new WeakMap();
|
|
173
|
+
const heartbeatInterval = setInterval(() => {
|
|
174
|
+
for (const socket of wss.clients) {
|
|
175
|
+
if (heartbeatState.get(socket) === false) {
|
|
176
|
+
try {
|
|
177
|
+
socket.terminate();
|
|
178
|
+
}
|
|
179
|
+
catch { /* ignore */ }
|
|
180
|
+
continue;
|
|
181
|
+
}
|
|
182
|
+
heartbeatState.set(socket, false);
|
|
183
|
+
try {
|
|
184
|
+
socket.ping();
|
|
185
|
+
}
|
|
186
|
+
catch {
|
|
187
|
+
try {
|
|
188
|
+
socket.terminate();
|
|
189
|
+
}
|
|
190
|
+
catch { /* ignore */ }
|
|
191
|
+
}
|
|
192
|
+
}
|
|
193
|
+
}, HEARTBEAT_INTERVAL_MS);
|
|
194
|
+
heartbeatInterval.unref?.();
|
|
89
195
|
const WS_ALLOWED_ORIGINS = new Set([
|
|
90
196
|
`http://localhost:${PORT}`,
|
|
91
197
|
]);
|
|
@@ -101,6 +207,7 @@ export function setupWebSocketServer(server, terminals) {
|
|
|
101
207
|
wss.on('connection', (socket, req) => {
|
|
102
208
|
const socketId = crypto.randomUUID();
|
|
103
209
|
const clientIP = getClientIP(req);
|
|
210
|
+
heartbeatState.set(socket, true);
|
|
104
211
|
// Validate Origin header to prevent Cross-Site WebSocket Hijacking
|
|
105
212
|
// Skip check if CORS_ORIGIN is '*' or unset in development mode
|
|
106
213
|
const skipOriginCheck = CORS_ORIGIN === '*' || (!CORS_ORIGIN && NODE_ENV !== 'production');
|
|
@@ -120,6 +227,9 @@ export function setupWebSocketServer(server, terminals) {
|
|
|
120
227
|
// Socket might already be closed
|
|
121
228
|
}
|
|
122
229
|
});
|
|
230
|
+
socket.on('pong', () => {
|
|
231
|
+
heartbeatState.set(socket, true);
|
|
232
|
+
});
|
|
123
233
|
// Check connection limit per IP
|
|
124
234
|
if (!trackConnection(clientIP, socket)) {
|
|
125
235
|
logSecurityEvent('WS_CONNECTION_LIMIT_EXCEEDED', { ip: clientIP });
|
|
@@ -146,67 +256,101 @@ export function setupWebSocketServer(server, terminals) {
|
|
|
146
256
|
socket.close(1000, 'Terminal not found');
|
|
147
257
|
return;
|
|
148
258
|
}
|
|
259
|
+
const hadNoSockets = session.sockets.size === 0;
|
|
149
260
|
session.sockets.add(socket);
|
|
261
|
+
if (hadNoSockets && !session.resizeOwner) {
|
|
262
|
+
session.resizeOwner = socket;
|
|
263
|
+
}
|
|
150
264
|
session.lastActive = Date.now();
|
|
151
265
|
// Send buffer content if available
|
|
152
|
-
// bufferOffset: absolute
|
|
153
|
-
// bufferBase: absolute position of buffer[0] (
|
|
266
|
+
// bufferOffset: absolute byte count the client already processed
|
|
267
|
+
// bufferBase: absolute byte position of buffer[0] (bytes dropped from start)
|
|
154
268
|
const offsetParam = url.searchParams.get('bufferOffset');
|
|
155
269
|
const clientOffset = offsetParam ? Math.max(0, parseInt(offsetParam, 10) || 0) : 0;
|
|
156
|
-
|
|
270
|
+
const bufferStart = session.bufferBase;
|
|
271
|
+
const bufferEnd = session.bufferBase + session.bufferLength;
|
|
272
|
+
let replayStartOffset = clientOffset;
|
|
273
|
+
let resetTerminal = false;
|
|
274
|
+
if (clientOffset <= bufferStart) {
|
|
275
|
+
replayStartOffset = bufferStart;
|
|
276
|
+
resetTerminal = session.bufferLength > 0;
|
|
277
|
+
}
|
|
278
|
+
else if (clientOffset >= bufferEnd) {
|
|
279
|
+
replayStartOffset = bufferEnd;
|
|
280
|
+
}
|
|
281
|
+
if (!sendControl(socket, { type: 'sync', offsetBase: replayStartOffset, reset: resetTerminal })) {
|
|
282
|
+
return;
|
|
283
|
+
}
|
|
284
|
+
if (session.bufferLength > 0) {
|
|
157
285
|
try {
|
|
158
|
-
|
|
159
|
-
const bufferEnd = session.bufferBase + session.buffer.length;
|
|
160
|
-
let bufferToSend;
|
|
286
|
+
let bufferToSend = Buffer.alloc(0);
|
|
161
287
|
if (clientOffset <= bufferStart) {
|
|
162
288
|
// Client's last position is before (or at) what we have — send everything
|
|
163
|
-
bufferToSend = session
|
|
289
|
+
bufferToSend = readBufferedRange(session, bufferStart, bufferEnd);
|
|
164
290
|
}
|
|
165
291
|
else if (clientOffset >= bufferEnd) {
|
|
166
292
|
// Client is fully up to date
|
|
167
|
-
bufferToSend =
|
|
293
|
+
bufferToSend = Buffer.alloc(0);
|
|
168
294
|
}
|
|
169
295
|
else {
|
|
170
296
|
// Send only the delta
|
|
171
|
-
bufferToSend = session
|
|
297
|
+
bufferToSend = readBufferedRange(session, clientOffset, bufferEnd);
|
|
172
298
|
}
|
|
173
|
-
if (bufferToSend) {
|
|
174
|
-
socket.send(bufferToSend);
|
|
299
|
+
if (bufferToSend.length > 0 && canSendToSocket(socket)) {
|
|
300
|
+
socket.send(bufferToSend, { binary: true });
|
|
175
301
|
}
|
|
176
302
|
}
|
|
177
303
|
catch (error) {
|
|
178
304
|
console.error(`Failed to send buffer to socket ${socketId}:`, error);
|
|
179
305
|
}
|
|
180
306
|
}
|
|
307
|
+
sendControl(socket, { type: 'ready' });
|
|
181
308
|
socket.on('message', (data) => {
|
|
182
309
|
try {
|
|
183
|
-
|
|
184
|
-
const message = data.toString('utf8');
|
|
185
|
-
// Check message size
|
|
186
|
-
const messageSize = Buffer.byteLength(message, 'utf8');
|
|
310
|
+
const messageSize = rawDataByteLength(data);
|
|
187
311
|
if (messageSize > MAX_MESSAGE_SIZE) {
|
|
188
312
|
logSecurityEvent('WS_MESSAGE_TOO_LARGE', { ip: clientIP, size: messageSize });
|
|
189
|
-
socket.
|
|
313
|
+
socket.close(1009, 'Message too large');
|
|
190
314
|
return;
|
|
191
315
|
}
|
|
192
316
|
session.lastActive = Date.now();
|
|
193
|
-
|
|
194
|
-
|
|
195
|
-
|
|
196
|
-
|
|
197
|
-
|
|
198
|
-
|
|
317
|
+
if (typeof data === 'string') {
|
|
318
|
+
let control = null;
|
|
319
|
+
try {
|
|
320
|
+
control = JSON.parse(data);
|
|
321
|
+
}
|
|
322
|
+
catch {
|
|
323
|
+
control = null;
|
|
324
|
+
}
|
|
325
|
+
if (control?.type === 'claim') {
|
|
326
|
+
session.resizeOwner = socket;
|
|
327
|
+
return;
|
|
328
|
+
}
|
|
329
|
+
if (control?.type === 'resize') {
|
|
330
|
+
if (session.resizeOwner && session.resizeOwner !== socket) {
|
|
331
|
+
return;
|
|
332
|
+
}
|
|
333
|
+
session.resizeOwner = socket;
|
|
334
|
+
const cols = validateTerminalSize(control.cols);
|
|
335
|
+
const rows = validateTerminalSize(control.rows);
|
|
336
|
+
try {
|
|
337
|
+
session.resize(cols, rows);
|
|
338
|
+
}
|
|
339
|
+
catch (resizeError) {
|
|
340
|
+
console.error(`Failed to resize terminal ${id}:`, resizeError);
|
|
341
|
+
}
|
|
342
|
+
return;
|
|
343
|
+
}
|
|
199
344
|
try {
|
|
200
|
-
session.
|
|
345
|
+
session.write(Buffer.from(data, 'utf8'));
|
|
201
346
|
}
|
|
202
|
-
catch (
|
|
203
|
-
console.error(`Failed to
|
|
347
|
+
catch (writeError) {
|
|
348
|
+
console.error(`Failed to write text input to terminal ${id}:`, writeError);
|
|
204
349
|
}
|
|
205
350
|
return;
|
|
206
351
|
}
|
|
207
352
|
try {
|
|
208
|
-
|
|
209
|
-
session.write(message);
|
|
353
|
+
session.write(rawDataToBuffer(data));
|
|
210
354
|
}
|
|
211
355
|
catch (writeError) {
|
|
212
356
|
console.error(`Failed to write to terminal ${id}:`, writeError);
|
|
@@ -218,12 +362,19 @@ export function setupWebSocketServer(server, terminals) {
|
|
|
218
362
|
});
|
|
219
363
|
socket.on('close', () => {
|
|
220
364
|
session.sockets.delete(socket);
|
|
365
|
+
if (session.resizeOwner === socket) {
|
|
366
|
+
session.resizeOwner = null;
|
|
367
|
+
}
|
|
221
368
|
session.lastActive = Date.now();
|
|
369
|
+
heartbeatState.delete(socket);
|
|
222
370
|
untrackConnection(clientIP, socket);
|
|
223
371
|
});
|
|
224
372
|
});
|
|
225
373
|
wss.on('error', (error) => {
|
|
226
374
|
console.error('WebSocket server error:', error);
|
|
227
375
|
});
|
|
376
|
+
wss.on('close', () => {
|
|
377
|
+
clearInterval(heartbeatInterval);
|
|
378
|
+
});
|
|
228
379
|
return wss;
|
|
229
380
|
}
|